I have one of my users computer that was infected with trojans. I run a bunch of software to clean everything. but I still get 2 issues that I can't figure out how tot fix.
the first one is a pop up window that has a script error:
"internet explorer script error" with the url starting with http://view.atdmt.com/MRT/view
the second issues is that I see when typing nslookup in command prompt it has the wrong local IP address . instead it's pointing to 22.214.171.124
the network card has no ip setup there for dns ,
so I searched the registry and found this ip there in one of the key called dhcpNameServer
I tried to change it to a local one, but everytime I restart the computer the ips comming back.
Can somone help me , that drives me crazy .