Quick Links: SpywareGuide Greynets Blog | SpywareGuide Product Database | SpywareGuide Company Database | SpywareGuide Categories
Search SpywareGuide Database & Site
Security Email Alerts & Updates
SpywareGuide powered by FaceTime Security Labs
 
Full Name:
 DnsChanger Trojan Websearch   Read More
Type: Trojan
Also Known as: WIN32.DNSCHANGER.S TROJAN, Trojan.Flush.G (Symantec)
SG Index: 7 [Explain]
Removal tools: List of products that detect/remove/protect against DnsChanger Trojan:
  • Control IM and P2P use, block spyware and other malware: RTGuardian
  • Endpoint Spyware Remediation: Greynet Enterprise Manager
  • IM, P2P control, malware prevention and web filtering in single appliance: Unified Security Gateway
    		•
    Category Description: A Trojan is a program that enables an attacker to get nearly complete control over an infected PC. Frequently used tool by malicious hackers. When this program executes, the program performs a specific set of actions. This usually works toward the goal of allowing the trojan to survive on a system and open up a backdoor.
    Comment: This trojan modifies the DNS server settings and redirect the browser to unwanted sites. May download an adware payload.
       
    Manual removal: 1. Navigate to the following paths in the registry.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters "DhcpNameServer"
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\%Random CLSID% "DhcpNameServer"
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\%Random CLSID% "NameServer"
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\%Random CLSID% "DhcpNameServer"

    2. Look for unknown IP Addresses in the Data part. Change them into IP addresses for your DNS Servers.
    For more information contact your system administrator.
    Properties:
  •  Adds other software
  •  System Reconfiguration
  •  Redirects searches
    		•

    Click here to leave feedback for this product
    Help with the BUST!
    Become A Spyspotter!
    Bust the Bad Guys!
    Click here and give us what details you have and let our international research team take it from there. If you desire your report will remain anonymous.
    Recent Blog Posts
  • Hackers Target Neopets Users
  • Pay Per Click Autoclickers
  • Malware Pushers Jump On #Neda Twitter Tag
  • Iran: A Few DDoS Websites
  • Pushing The Self Destruct Button
  • Evolution Of A Moneymaking Tactic
  • iPhone Twitter Messages Lead To Male Enhancement Spam
  • "Obama has just been killed" - 100% Incorrect
  • The Valve Verification Center
  • Adding Insult To Injury
    • Recent Modifications
    2009-7-3  AntiArp
    2009-7-3  Armitage
    2009-7-3  AutoBot
    2009-7-3  BK.door.RpCs
    2009-7-3  Brushy
    2009-7-3  CN_Vids
    2009-7-3  Comcaraisn
    2009-7-3  DeepFree
    2009-7-3  DL.A.nvk
    2009-7-3  Dldr.Agent.eaa
     

    Site EULA | Site Map | Contact Us | About Us | Site and Spyware FAQ | Advertise | RSS Feeds  | Link To Us | SpywareGuide Japan Japanese

    © Copyright 2007, FaceTime Communications, Inc. All rights reserved.