Spyware free software spyware removal Anti Spyware software free spyware check adware spyware remover anti virus downloadAnti Spyware Software
Spyware Detector - HomeSpyware Detector - PurchaseSpyware Detector - AffiliatesSpyware Detector - Download UpdatesSpyware Detector -FAQSpyware Detector -Contact Us

Home/ Spyware Encyclopedia / Trojan.DNSChanger

 Trojan.DNSChanger Technical Details
 Category Trojan
 Discovered   7/13/2006 11:06:00 AM
 Modified   7/4/2009 9:39:25 AM
 Threat Level Critical
 Category Description
A destructive program that masquerades as a benign application. Unlike viruses, Trojan horses do not replicate themselves but they can be just as destructive. One of the most insidious types of Trojan horse is a program that claims to rid your computer of viruses but instead introduces viruses onto your computer.
 Notice

Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically in our Research Lab as a result of executing Spyware Files or browsing Internet. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Software.

We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.
 Summary
The following http urls were started:
• yourcodec.com/download/yourcodec1110.exe
• 69.50.175.24/gather.php
• www.crackspider.net/
The hosts file was updated with the following url-to-ip mappings:
217.20.175.74a1.review.zdnet.com
217.20.175.74d1.reviews.cnet.com
217.20.175.74review.2009softwarereviews.com
The following internet connection was established:
76.197.19.56 : 30087
87.248.113.14 : 80
83.211.240.146 : 80
 
 The following Files were created:
 
NameVersionPublisherSignature (MD5)File Size (in KB)
..\Temp\regsvr.exe1.0.0.0Mtksoft Corporation19ae43bfba9173bcfb61b9a125227b7655609
..\regsvr.exe1.0.0.0Mtksoft Corporation19ae43bfba9173bcfb61b9a125227b7655609
..\Temp\regsvr.exe1.0.0.0Microsoft Corporation19ae43bfba9173bcfb61b9a125227b7690112
..\regsvr.exe1.0.0.0Microsoft19ae43bfba9173bcfb61b9a125227b7691555
..\20D76A28.EXE1.0.0.4First 4 Internet93db3a3e09ab5dca68e2f2dca92f64c311776
..\Temp\20D76A28.EXE1.0.0.4First 4 Internet93db3a3e09ab5dca68e2f2dca92f64c311776
..\1C7B88E3.EXE1.0.0.0DXCODEC LLCad1e2e1a8724bd9d9880fbd893ed5a7165573
..\763A5D92.EXE1.0.0.0DXCODEC LLC4385215cd6dfd4af61f5041c0e81733065573
..\1245788A.EXE1.0.0.1BitAcceleratora1caf2b756e1a5f7937b49cdbadc45ab378879
..\Temp\1245788A.EXE1.0.0.1BitAcceleratora1caf2b756e1a5f7937b49cdbadc45ab378879
..\Temp\kernel32.exe1.0.0.0AriaMagicStudio579a4adc514f12776e7fef6a216fc7e145056
..\9A177CF9.EXE1.0.0.1ADSTechnologyc946296baa4d838f7d434ac17dc4fb90318859
..\Temp\9A177CF9.EXE1.0.0.1ADSTechnologyc946296baa4d838f7d434ac17dc4fb90318859
..\Temp\usrinit.exe5.1.2600.1634(C) Microsoft Corporation.727a062f219144758829dc5f3c67b1c911264
..\Temp\91011DEB.EXE  77fcac560522bbb8ee5775e3d1fe7bfb52224
..\kdycz.exe    
..\Temp\35690260.EXE  759ecc4533d67fd2a86d6d906ebe768452736
..\usrinit.exe  990df4171962eed7512f7c9260d4c9e7155648
..\Temp\usrinit.exe  727a062f219144758829dc5f3c67b1c9131072
..\Temp\sexgame.exe  990df4171962eed7512f7c9260d4c9e7155648
..\Temp\autoply.exe  990df4171962eed7512f7c9260d4c9e7155648
..\Temp\adobeupdate.exe  990df4171962eed7512f7c9260d4c9e7155648
..\C408EBB8.EXE  49b343409103e7e679e830c5a8656b1c29213
..\C3497FB1.EXE  4e163460025f40845ec4318dd7cc087031232
..\BE0F83A8.EXE  4a6a3587989fd3a16f12ca44b5f0745551712
..\3B9CBBE3.EXE  4eb547f6eb998d9f4098339e358b249052224
..\21D05BB0.EXE  48b990ae02c25769effa6ce6d0eba51452736
 The following Registry Entries were created:
 
..\Software\Microsoft\Windows\CurrentVersion\\"DMLQX.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMRBW.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMUTI.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMZUV.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"KDHYR.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"%WIN.SYS32%\KDHYR.EXE"\"%WIN.SYS32%\KDHYR.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"%WIN.SYS32%\KDTJA.EXE"\"%WIN.SYS32%\KDTJA.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"MSN MESSSENGER"\"%WIN.SYS32%\REGSVR.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"DMRBW.EXE"\"%WIN.SYS32%\DMRBW.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMQQO.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMHEO.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMFSS.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"DMAIW.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"DMFSS.EXE"\"%WIN.SYS32%\DMFSS.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"KDEIF.EXE"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"%WIN.SYS32%\KDEIF.EXE"\"%WIN.SYS32%\KDEIF.EXE"
..\Software\Microsoft\Windows\CurrentVersion\\"kdxoi.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"kdexz.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"kdbgd.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"kdbjm.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"kdjuc.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"dmztq.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"dmxti.exe"
..\Software\Microsoft\Windows\CurrentVersion\\"dmrnl.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"dmrnl.exe"\"%WIN.SYS32%\dmrnl.exe"
Recommendation to remove Trojan.DNSChanger
Spyware Detector can remove Trojan.DNSChanger, and thousands of other Spyware automatically and instantly. Click here to download Spyware Detector and scan for free.
Download Spyware Detector and Scan for FREE
 
Personalized E-mail support by our Research Team. You send an "Export Log" report to us, we then add new definition and you eliminate spyware found on YOUR PC in the next Live Update. So, not only do you benefit but the whole community enjoys the feedback.
Speed up your computer and increase browsing performance by deleting Spyware & Adware
Enjoy continuous protection and security with frequent spyware definition updates so you never have to worry about new threats and outdated software.
Surf the web with confidence knowing your online activities aren't being tracked, and your confidential data is secure from prying eyes.
Free Spyware Scan
 Search Threats
Testimonials

Read More
Information Desk
Spyware & Adware Categories we scan
  
List of Spyware &
Adware we remove
Submit a Threat
Submit a threat to be reviewed by our research team

Submit a Threat
Home| About Us| Purchase| Contact Us| FAQ| Privacy Policy
Copyrights© 2003-2009 Max Secure Software. All rights reserved.