• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Weird DNS problems

thebluebumblebee

thebluebumblebee

Joined
Jul 2, 2008
Messages
8,069 (1.40/day)
Location
Hillsboro, OR
System Specs
System Name Main/DC
Processor i7-3770K/i7-2600K
Motherboard MSI Z77A-GD55/GA-P67A-UD4-B3
Cooling Phanteks PH-TC14CS/H80
Memory Crucial Ballistix Sport 16GB (2 x 8GB) LP /4GB Kingston DDR3 1600
Video Card(s) Asus GTX 660 Ti/MSI HD7770
Storage Crucial MX100 256GB/120GB Samsung 830 & Seagate 2TB(died)
Display(s) Asus 24' LED/Samsung SyncMaster B1940
Case P100/Antec P280 It's huge!
Audio Device(s) on board
Power Supply SeaSonic SS-660XP2/Seasonic SS-760XP2
Software Win 7 Home Premiun 64 Bit
Hi,

My son is having a problem with his system taking him to different web sites than he intends. Today, it took him to www.multiplaygameservers.com. It has taken him to MSN.com and Google.com before. All have been benign. (XP Pro 32) I've tried ipconfig /flushdns and sometimes it works while other times it does not. We use SpybotS&D, AVG free AV, and are behind a NAT and firewall router.

Ideas???
 
Hybrid_theory

Hybrid_theory

Joined
Mar 31, 2007
Messages
1,895 (0.30/day)
Location
ontario canada
System Specs
System Name home brew
Processor Intel Corei7 3770K OC @ 4.5Ghz
Motherboard ASUS P8Z77-V
Cooling Corsair H100
Memory 16GB DDR3 1600 GSKILL
Video Card(s) Powercolor Radeon 7970, MSI Radeon 7970
Storage Mushkin Chronos Deluxe 240gb. 2 TB Hdd.
Display(s) 3x24inch Dell Ultra IPS
Case CM storm trooper
Power Supply Antec Quattro OC ed. 1200w
Software Windows 7 Business x64
Benchmark Scores vantage: P43089
Goto C:\WINDOWS\system32\drivers\etc\ open the hosts file with notepad or wordpad.

The only entry under the comments should be:
127.0.0.1 localhost
 
thebluebumblebee

thebluebumblebee

Joined
Jul 2, 2008
Messages
8,069 (1.40/day)
Location
Hillsboro, OR
System Specs
System Name Main/DC
Processor i7-3770K/i7-2600K
Motherboard MSI Z77A-GD55/GA-P67A-UD4-B3
Cooling Phanteks PH-TC14CS/H80
Memory Crucial Ballistix Sport 16GB (2 x 8GB) LP /4GB Kingston DDR3 1600
Video Card(s) Asus GTX 660 Ti/MSI HD7770
Storage Crucial MX100 256GB/120GB Samsung 830 & Seagate 2TB(died)
Display(s) Asus 24' LED/Samsung SyncMaster B1940
Case P100/Antec P280 It's huge!
Audio Device(s) on board
Power Supply SeaSonic SS-660XP2/Seasonic SS-760XP2
Software Win 7 Home Premiun 64 Bit
Hybrid_theory said:
Goto C:\WINDOWS\system32\drivers\etc\ open the hosts file with notepad or wordpad.

The only entry under the comments should be:
127.0.0.1 localhost
Click to expand...

SpybotS&D has inserted a huge list of domain names but they are all 127.0.0.1
 
thebluebumblebee

thebluebumblebee

Joined
Jul 2, 2008
Messages
8,069 (1.40/day)
Location
Hillsboro, OR
System Specs
System Name Main/DC
Processor i7-3770K/i7-2600K
Motherboard MSI Z77A-GD55/GA-P67A-UD4-B3
Cooling Phanteks PH-TC14CS/H80
Memory Crucial Ballistix Sport 16GB (2 x 8GB) LP /4GB Kingston DDR3 1600
Video Card(s) Asus GTX 660 Ti/MSI HD7770
Storage Crucial MX100 256GB/120GB Samsung 830 & Seagate 2TB(died)
Display(s) Asus 24' LED/Samsung SyncMaster B1940
Case P100/Antec P280 It's huge!
Audio Device(s) on board
Power Supply SeaSonic SS-660XP2/Seasonic SS-760XP2
Software Win 7 Home Premiun 64 Bit
We've tried Winsock and will post hijackthis info if needed.
 
N

Namslas90

New Member
Joined
Aug 27, 2006
Messages
4,846 (0.75/day)
Location
Earth
thebluebumblebee said:
We've tried Winsock and will post hijackthis info if needed.
Click to expand...

Just now had a customer bring me a laptop with similar issues.
Ran Winsockfix, loaded AVG with jump drive, ran installer and
it didn't install (I-net blocked by trojan).
Unpluged internet, Unistalled, re-installed AVG installer from JD
plugged in internet right after clicking run and it all went fine.

Found;
Malwareremover.bot (trojan)
Gamevance (several types, all trojans).
I believe multiplaygameservers,com is their site, but im not going there to check.
 
You must log in or register to reply here.
Top