Repeated Pop-ups - DNS stuck in system

By acorchia ยท 11 replies
Dec 29, 2008
  1. Hey you guys,
    i have this problem which i've already seen here on another post,
    i have this *i guess* permanent DNS servers on my WLAN and LAN cards automatically, i'm guessing it's some sort of a virus\Trojan but i couldn't figure out how to remove it, i'm downloading currently Norton360 which i hope is alright by you for scanning and checking the system,
    if you could please guide me, what information i need to supply for your help in this matter, and what else do i need to do, i'd be grateful...

    As of the DNS itself, these are the addresses i get:
    i'm using vista Ultimate, which has been updated almost daily.
    i think this issue is been going on for i guess half a month now... (just noticed it 2 days ago)

    that's about all. waiting for your reply.
    thanks alot and best regards.
  2. jobeard

    jobeard TS Ambassador Posts: 11,129   +982

    Both DNS addresses are associated with:
    inetnum: -
    org-name:       UkrTeleGroup Ltd.
    org-type:       LIR
    address:        UkrTeleGroup Ltd.
                    Mechnikova 58/5
                    65029 [B]Odessa[/B]
    Highly likely that you've been hijacked
  3. rev_olie

    rev_olie TS Guru Posts: 560

    Try and clean the hijack with SmitFraud

    Download here

    Double-click SmitfraudFix.exe
    Select option #5 - Search and Clean DNS Hijack by typing 5 and press "Enter."
    A box will appear
    Click Ok to continue with cleanup.
    A text file will appear, which lists infected/cleaned DNS settings (if present).

    See what happens then
  4. Blind Dragon

    Blind Dragon TS Evangelist Posts: 3,908

    After you clean the DNS changer trojan out, fix the damage, you need to do a hard reset on the router and flush DNS at the very least
  5. jobeard

    jobeard TS Ambassador Posts: 11,129   +982

  6. rev_olie

    rev_olie TS Guru Posts: 560

    A hard router reset is just pushing in the reset button of your Router for 10+seconds

    Everything will need reconfiguring afterwards

    Just some extra info for ya :)
  7. Blind Dragon

    Blind Dragon TS Evangelist Posts: 3,908

  8. rev_olie

    rev_olie TS Guru Posts: 560

    AH! that the article i was looking for a couple of weeks back for a similar problem tro this. I was sure there was something about and IP change somewere I had read and there is :)

    Thanks Blind Dragon :p
  9. acorchia

    acorchia TS Rookie Topic Starter

    ok guys, did what you've asked (didn't HR the router since it seems according to it's log that it recieves the right DNS servers from the ISP)
    as for the FIX it helped, it cleared it up but, unfortunatly after a boot to the computer it came back :( no idea why.. any more suggestions?
  10. acorchia

    acorchia TS Rookie Topic Starter

    i've just system restored my pc 14 days back, and it seemed to cleared the virus out, on top of that, i've added Norton 360 v2
    think i should be all good now, any recommendations from anyone? or am i fixed for now?

    *almost forgot*
    thanks alot to:
    and Blind Dragon, jobeard,
    thanks alot for your help, and best regards =)
  11. kimsland

    kimsland Ex-TechSpotter Posts: 14,523

  12. rev_olie

    rev_olie TS Guru Posts: 560

    I second Kim again Avira will serve you much better than Norton ever will
Topic Status:
Not open for further replies.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...