Browser always redirects to QSRCH.COM via DNS

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by wormsign, Jun 13, 2005.

  1. wormsign

    wormsign Private E-2

    Greetings, fellow Geeks. I am usually fairly self-sufficient IT-wise, but I have to admit to defeat in this case.

    A couple of days ago, my browsers (IE and Mozilla) on my main PC (but not my others) began redirecting all web site requests to moniker.qsrch.com

    Not only this, but once there, it performs several accesses of t.trafficmp.com

    Now, I'm presuming that some spammy individual had managed to land some code or executable on my machine which is racking him up some page hits on a domain search site in an attempt to earn some fast cash. In the mean time, my browser is unusable.

    I get something like the following:

    Browser Hijack

    I've run all of the suggestions in the 'READ THIS FIRST' document, but to no avail. Results here:

    Scan Results

    When I examine the DNS cache on the local machine, I see that the bug has entered the DNS entry of, in this case, symantec.com with the same IP address as qsrch.com:

    Poisoned DNS


    I'm really at a loss what to do now. I can't find reference to a bug like this on any web searches and having wasted 2 valuable days trying to fix it I'm at the point of re-formatting my PC, which is a sign of defeat.

    Can you please help???

    Many thanks in advance,

    Rob.
     
  2. wormsign

    wormsign Private E-2

    I seem to have confirmed that this starts to occur when a page is called which does not exist, or which perhaps is the higher level folder (e.g. www.website.com/products/) rather than a specific page.

    Whatever process is dedicated to handling unknown pages seems instead to be calling up moniker.qsrch.com and any pages called up subsequently are changed to assume qsrch.com's IP address in local DNS cache.

    Any ideas - please?!!!
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds