Rokowski Posted June 10, 2015 ID:968401 Share Posted June 10, 2015 Hello!So today i ran malwarebytes for a full system scan and after half an hour when it finished it told me that it found 2 malicous registry keys; one of them was HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServerandHKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3E81DDBA-D96E-4341-8C52-4B0DB92007D4}|DhcpNameServer so when it finished i removed both and mbam asked me to restart pc, and so I did. After it booted up i opened chrome and some websites, and i noticed that it won't load, ran ipconfig /flushdns , ipconfig /renew and got my network connection back.Ran malwarebytes full system scan again and after a whole scan i got report that it found same addreses.. I hope that someone can help me how to solve this problem.Thank you in advance, Rok! Link to post Share on other sites More sharing options...
Staff shadowwar Posted June 10, 2015 Staff ID:968402 Share Posted June 10, 2015 Can you please provide the logs from the detection? Also what ip did it detect? Link to post Share on other sites More sharing options...
Rokowski Posted June 10, 2015 Author ID:968403 Share Posted June 10, 2015 Can you please provide the logs from the detection? Also what ip did it detect? Malwarebytes Anti-Malwarewww.malwarebytes.org Scan Date: 10.6.2015Scan Time: 19:39:51Logfile: Administrator: Yes Version: 2.01.6.1022Malware Database: v2015.06.10.04Rootkit Database: v2015.06.02.01License: PremiumMalware Protection: EnabledMalicious Website Protection: EnabledSelf-protection: Disabled OS: Windows 8.1CPU: x86File System: NTFSUser: Rok Scan Type: Threat ScanResult: CompletedObjects Scanned: 376061Time Elapsed: 31 min, 11 sec Memory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: EnabledHeuristics: EnabledPUP: EnabledPUM: Enabled Processes: 0(No malicious items detected) Modules: 0(No malicious items detected) Registry Keys: 0(No malicious items detected) Registry Values: 0(No malicious items detected) Registry Data: 2Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, 84.255.209.79 84.255.210.79, Good: (), Bad: (84.255.209.79),,[b9534f6aa8e213237d1d4ff08c7a07f9]Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3E81DDBA-D96E-4341-8C52-4B0DB92007D4}|DhcpNameServer, 84.255.209.79 84.255.210.79, Good: (), Bad: (84.255.209.79),,[b25af0c918723ef83d5de85747bf1be5] Folders: 0(No malicious items detected) Files: 0(No malicious items detected) Physical Sectors: 0(No malicious items detected) (end) Link to post Share on other sites More sharing options...
Rokowski Posted June 10, 2015 Author ID:968409 Share Posted June 10, 2015 T-2 is my ISP , if that may be usefull information.Rok Link to post Share on other sites More sharing options...
Staff shadowwar Posted June 10, 2015 Staff ID:968423 Share Posted June 10, 2015 Thanks. this will be fixed next update. Link to post Share on other sites More sharing options...
Rokowski Posted June 10, 2015 Author ID:968425 Share Posted June 10, 2015 Thank you! Can you please close this thread now?Rok Link to post Share on other sites More sharing options...
Staff shadowwar Posted June 10, 2015 Staff ID:968432 Share Posted June 10, 2015 just confirm please with 06 comes out that this is fixed and i will close it. Thanks for reporting! Should be out in about 20 mins from now. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now