Jump to content

Trojan.DNSChanger detected in MBAM scan after running ComboFix


hank

Recommended Posts

My Computer was infected with Rootkit.TDSS and Malwarebytes couldn't remove it, so I downloaded and ran ComboFix. After Uninstalling ComboFix and rerunning Malwarebytes it's finding 3 Registry Data Items Infected with Trojan.DNSChanger. Below is my MBAM scan log. Do I need to have Malwarebytes remove these or are they false positives? Thanks in advance for your anticipated help.

Malwarebytes' Anti-Malware 1.41

Database version: 3252

Windows 5.1.2600 Service Pack 3

11/29/2009 1:18:54 PM

mbam-log-2009-11-29 (13-18-48).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 136436

Time elapsed: 42 minute(s), 27 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 3

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4d25a13a-cf85-4548-96f7-5a6225ab7448}\NameServer (Trojan.DNSChanger) -> Data: 83.149.115.182 -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{4d25a13a-cf85-4548-96f7-5a6225ab7448}\NameServer (Trojan.DNSChanger) -> Data: 83.149.115.182 -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\Interfaces\{4d25a13a-cf85-4548-96f7-5a6225ab7448}\NameServer (Trojan.DNSChanger) -> Data: 83.149.115.182 -> No action taken.

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites

Hello and welcome to Malwarebytes.

I Apologize for the late response.

If you still require assistance, we would like to see the latest state of your system. So, please take a read in this thread on instructions on running the tools and posting the logs for instructions: http://www.malwarebytes.org/forums/index.php?showtopic=9573

In your reply, I would also like to know any symptoms you may still have and how your computer is running at the moment.

Please note that the forum is very busy and if I don

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.