I have recieved reports from IT department that OpenDNS reports requests from my machine to suspect dns server (nsXXX.ztomy.com) and that I am not allowed to connect to our network until i resolve issue.
I have run numerous tools to attempt to mitigate issue. Initially I found a couple of infected files (including a trojan) that were removed and cleaned. However despite subsequent clean reports the dns activity has continued and I have been unable to identify the source. I have run MBAM, BitDefender (our company AV), HitmanPro, RogueKiller, ComboFix, MBAM Breach Remediation, MBAM Anti-rootkit beta, TDSKiller, Gmer, ESET, and now FRST for this post.
My most recent run of ESET included an external drive inside of which it found (TrojanDropper.Agent.BQ) and cleaned. I am hoping this was the issue but would still like assistance as this has become quite crucial. I also need the experience as I am going to attempt the training program.
Thanks so much for your time. I have attached the FRST logs per the prep document instructions. also Firewall is enabled, etc.
I am running Windows7x64
Edited by johncgilliland, 23 August 2016 - 01:24 PM.