Posted 25 December 2011 - 06:19 AM
Hey guys on my brothers laptop (lenovo z560 win7home64) he was trying to get to a website the groceryoutlet.com and it would pull up as not available. Even though everyone else on our network could and his friends could at their homes and his phone. So after doing some basic cleaning of network temp files and such it still wasn't going to the site. So I checked the network settings on the wireless and the dns addresses were changed to 18.104.22.168 for both 1st and 2nd. I though that's odd. I changed them back to what I set them to and tried again. It wouldn't open the website so I checked back with the dns settings and again they were changed back to 22.214.171.124. I am assuming it could be a virus and I've run system sweeper 1st.
After I finished the scans they did not detect anything. I scanned with Norton, superantispyware, malwarebytes, & MS system sweeper.
It looks like after some research it might have been some program called Sendori. After uninstalling it I regained controll of the DNS settings. Not sure how it was installed. I'll have to wait and see if any further issues from this come up.
I'm blocking the site Sendori.com on my router.
Has anyone seen this and should I dig deeper into my brothers laptop?