Trojan.DNSChanger - Spyware Detector

Spyware free software spyware removal Anti Spyware software free spyware check adware spyware remover anti virus download

Home/ Spyware Encyclopedia / Trojan.DNSChanger

Trojan.DNSChanger Technical Details

Category

Trojan

Discovered

7/13/2006 11:11:00 AM

Modified

7/15/2008 18:34:00 PM

Threat Level

Medium

Description

A destructive program that masquerades as a benign application. Unlike viruses, Trojan horses do not replicate themselves but they can be just as destructive. One of the most insidious types of Trojan horse is a program that claims to rid your computer of viruses but instead introduces viruses onto your computer.

Summary

When the Trojan is executed, it creates the following files:

Name	Version	Publisher	Signature (MD5)	File Size (in Bytes)
..\freevideo\step1.exe			6E95CAABEA91C9B5CFF66018FF27FDB1
..\freevideo\step2.exe			7A1E7F6ABEABB2C003CD986E2C722120
..\hqvideo\register.exe			70CEFFCB60929902DBBA4A0E5932AF40
..\3b73758f.exe	3.1.1.0		B3EA5401A71042B8284590555F368B18	121182
..\codec_setup.exe			18E98E48E3DCC997EDBBF53F6EAE051B
..\hardcodec1089.exe			e622f2139d5bac8230084e6116c4bcb7	211654
..\ss.exe			6c3d46f2150acbcd8cf3b56cee48182f	868864
..\37c8099d.exe			3d7aa8a2dbec6989e9465e90553a2da6	235747
..\03df70f5.exe			4c9b9774c8f2cb1c624fa99e3db912b5	207277
..\22501f70.exe			476b62af11ba3d7f7ef8eac694d656d7	208327
..\u_f1_v34_78.exe			3d24c4a6f2edb71df075c230c39625f6	37420
..\nsl10.tmp\dcryptdll.dll			057a740bc9c01b2ef7dc0230b803336c	13824
..\nsl10.tmp\nsexec.dll			831621130c8312a535358df93b7888a6	6144
..\nsl10.tmp\startmenu.dll			3d8f82aa21fd7861890594027f39879f	7168
..\nss2.tmp\dcryptdll.dll			904beebec2790ee2ca0c90fc448ac7e0	14848
..\nss2.tmp\startmenu.dll			cb814a4c1dee60973379e6c3c9386777	7168
..\nsu5.tmp\nsexec.dll			165d8d1e0c21b60862079368b063b25b	6144
..\freevideo\uninstall.lnk				610
..\eroticscreensaver\addon.exe			06299ee1a582db86b0d8242059f21dd8	208581
..\0eda20ff.exe			a867131bbc0fdde542a73fc3808be4b2	137312
..\11886f97.exe			74e51acd4f1778c033620517e4d3efd0	155648
..\8e48f6a3.exe			ab062f963277c1103a08c7ba96b292e1	77944
..\ab25fcf7.exe			786b608218a070f5a3cd222e150cd0ad	86632
..\d9c30a98.exe			7b65fd97821f2e84934fb324f8013111	141656
..\eb4c2fe3.exe			70c517ca06bf2772852b1367141c1a33

When the Trojan is executed, it creates the following Registry entries:

•	..\software\searchporn
•	..\software\selectiveadmission
•	..\software\videoporn
•	..\software\classes\searchporn
•	..\software\classes\videoporn
•	..\software\microsoft\windows nt\currentversion\winlogon\system\"kdzzg.exe"
•	..\software\microsoft\windows\currentversion\run\"dmdzo.exe"
•	..\software\microsoft\windows\currentversion\uninstall\searchporn
•	..\software\microsoft\windows\currentversion\uninstall\selectiveadmission

Recommendation to remove Trojan.DNSChanger

Spyware Detector can remove Trojan.DNSChanger, and thousands of other Spyware definitions, automatically and instantly. Click here to download Spyware Detector and scan for free.

	Personalized e-Mail support by our Research Team. You send an "Export Log" report to us, we then add new definition and you eliminate spyware found on YOUR PC in the next Live Update. So, not only do you benefit but the whole community enjoys the feedback.

	Speed up your computer and increase browsing performance by deleting Spyware & Adware

	Enjoy continuous protection and security with frequent spyware definition updates so you never have to worry about new threats and outdated software.

	Surf the web with confidence knowing your online activities aren't being tracked, and your confidential data is secure from prying eyes.

Search Threats

Testimonials

Information Desk

	Spyware & Adware Categories we scan

	List of Spyware & Adware we remove


	Submit a Threat Submit a threat to be reviewed by our research team Submit a Threat