Can Symantec Endpoint Protection (SEP) detect the virus "DNSChanger"?
SEP can detect the DNS Changer, which Symantec named as Trojan.Flush.K. Update the computer's AntiVirus definitions to include protection against the latest known variants.
The Symantec Endpoint Protection and AntiVirus are not able the restore the DNS configuration.
More detailed information about this virus can be found in:
Further information can be found on the Security Response Blog article DNSChanger Fraud Ring Busted
The following links are provided for convenience. Symantec is not affiliated with these sites and these links should not be construed as an official endorsement.
Check to See if Your Computer is Using Rogue DNS
Information about the DNS-Changer (Federal Bureau of Investigation)
To test your system(s) whether they affected by DNS Changer, you can test the DNS configuration for example on the following websites:
Deutsche Telekom / Bundesamt fuer Sicherheit in der Informationstechnik (Federal Office for Security in Information Technology)
Did this article resolve your issue?
Did this article save you the trouble of contacting technical support?
How can we make this article more helpful?
Email Address (Optional)
Login to Subscribe
Please login to set up your subscription.
Get support for your product, with downloads, knowledge base articles, documentation, and more.
Maximize your product competency and validate technical knowledge to gain the most benefit from your IT investments.
Submit a suspected infected file to Symantec.
Report a suspected erroneous detection (false positive).
Create and manage cases, manage licensing and renewals, submit threats, and enroll with Symantec Rewards.
Customer and Technical Support phone numbers and hours of operation.
User-to-user forums, blogs, videos, and other community resources on Symantec Connect.
Set default language
Do you wish to save this as your future site?