Pum.Dns Not being removed

[Tomahawk2k]

Started from : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Delete -- Date : 04/15/2015 07:38:29

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D0706981-DA41-45B8-8F95-9A7AA76D2706} | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{DB5E1847-3B54-417C-8D1F-DC2B6E848A1D} | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{D0706981-DA41-45B8-8F95-9A7AA76D2706} | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()
[VT.Unknown|PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{DB5E1847-3B54-417C-8D1F-DC2B6E848A1D} | DhcpNameServer : 172.16.3.20 172.16.3.21 [(Private Address) (XX)][(Private Address) (XX)] -> Replaced ()

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 1 ¤¤¤
[File.Forged][File] SPPD.sys -- C:\Windows\System32\drivers\SPPD.sys -> ERROR [32]

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST1000LM014-1EJ164 +++++
--- User ---
[MBR] 7862507c4d4d6b732e3f0add637e291c
[BSP] 8f84910c5e3ddd0346fc5188ca9098de : Empty MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 1000 MB
1 - [SYSTEM][MAN-MOUNT] EFI system partition | Offset (sectors): 2050048 | Size: 260 MB
2 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2582528 | Size: 1000 MB
3 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 4630528 | Size: 128 MB
4 - Basic data partition | Offset (sectors): 4892672 | Size: 913211 MB
5 - Basic data partition | Offset (sectors): 1875148800 | Size: 25600 MB
6 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1927577600 | Size: 12669 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_02222015_211948.log - RKreport_DEL_02222015_212109.log - RKreport_DEL_02222015_212332.log - RKreport_DEL_02222015_212339.log
RKreport_SCN_02222015_212610.log - RKreport_DEL_02222015_212733.log - RKreport_SCN_02222015_220122.log - RKreport_DEL_02222015_220325.log
RKreport_DEL_02222015_220339.log - RKreport_DEL_02222015_220346.log - RKreport_SCN_02242015_193411.log - RKreport_DEL_02242015_194640.log
RKreport_DEL_02242015_194649.log - RKreport_DEL_02242015_194655.log - RKreport_DEL_02242015_194704.log - RKreport_SCN_02272015_140435.log
RKreport_DEL_02272015_140447.log - RKreport_SCN_03012015_160455.log - RKreport_DEL_03012015_160503.log - RKreport_SCN_03022015_063727.log
RKreport_DEL_03052015_080151.log - RKreport_SCN_03112015_164911.log - RKreport_DEL_03112015_164918.log - RKreport_SCN_03112015_190532.log
RKreport_DEL_03112015_190546.log - RKreport_SCN_03132015_073458.log - RKreport_DEL_03132015_073505.log - RKreport_DEL_03132015_073521.log
RKreport_SCN_03132015_075452.log - RKreport_DEL_03142015_125251.log - RKreport_SCN_04142015_164207.log - RKreport_DEL_04142015_164232.log
RKreport_DEL_04142015_164251.log - RKreport_SCN_04142015_170056.log - RKreport_DEL_04142015_170104.log - RKreport_SCN_04142015_171245.log
RKreport_DEL_04142015_171414.log - RKreport_DEL_04142015_171416.log - RKreport_DEL_04142015_171421.log - RKreport_DEL_04142015_171426.log
RKreport_DEL_04142015_171427.log - RKreport_SCN_04142015_173016.log - RKreport_SCN_04142015_173526.log - RKreport_DEL_04142015_173611.log
RKreport_SCN_04142015_181836.log - RKreport_DEL_04142015_181848.log - RKreport_DEL_04142015_181853.log - RKreport_DEL_04142015_181909.log
RKreport_DEL_04142015_181913.log - RKreport_DEL_04142015_181918.log - RKreport_DEL_04142015_181933.log - RKreport_SCN_04142015_183303.log
RKreport_DEL_04142015_183311.log - RKreport_DEL_04142015_183312.log - RKreport_DEL_04142015_183446.log - RKreport_DEL_04142015_183454.log
RKreport_DEL_04142015_190922.log - RKreport_DEL_04142015_190926.log - RKreport_DEL_04142015_190934.log - RKreport_DEL_04142015_190935.log
RKreport_DEL_04142015_190936.log - RKreport_DEL_04142015_190937.log - RKreport_DEL_04142015_190944.log - RKreport_SCN_04142015_192534.log
RKreport_DEL_04142015_192857.log - RKreport_DEL_04142015_192905.log - RKreport_DEL_04142015_193248.log - RKreport_SCN_04142015_200834.log
RKreport_DEL_04142015_200939.log - RKreport_SCN_04142015_211037.log - RKreport_DEL_04142015_211337.log - RKreport_SCN_04142015_212949.log
RKreport_DEL_04142015_213058.log - RKreport_SCN_04142015_214011.log - RKreport_DEL_04142015_214054.log - RKreport_SCN_04142015_215716.log
RKreport_DEL_04142015_215737.log - RKreport_SCN_04142015_220925.log - RKreport_DEL_04142015_220930.log - RKreport_DEL_04142015_220935.log
RKreport_DEL_04142015_220943.log - RKreport_DEL_04142015_220951.log - RKreport_SCN_04152015_061614.log - RKreport_DEL_04152015_061725.log
RKreport_SCN_04152015_062654.log - RKreport_DEL_04152015_063123.log - RKreport_DEL_04152015_063124.log - RKreport_DEL_04152015_063125.log
RKreport_DEL_04152015_063126.log - RKreport_DEL_04152015_063139.log - RKreport_DEL_04152015_063140.log - RKreport_DEL_04152015_063149.log
RKreport_SCN_04152015_063400.log - RKreport_DEL_04152015_064617.log - RKreport_SCN_04152015_064617.log - RKreport_DEL_04152015_065107.log
RKreport_DEL_04152015_065111.log - RKreport_DEL_04152015_065133.log - RKreport_SCN_04152015_065823.log - RKreport_DEL_04152015_065824.log
RKreport_SCN_04152015_073829.log


This is My rougekiller Scan however this wont removed the dns but only replaces it.
However it did remove when i did it last time
any help?
Thx

 

[i7Baby]

Why do you want to remove pum.dns?

 

[Tomahawk2k]

Why do you want to remove pum.dns?

This Removes my internet access on a network which requires a account name and password to gain internet access

 

[i7Baby]

They all do.

 

[Tomahawk2k]

well when i run rouge killer it only says replaced not deleted

 

[i7Baby]

Is that good or bad. What's it got to do with connecting to a network?

 

[Tomahawk2k]

Basically I Run A App called Tunnel Bear and it changes restricted internet into unrestricted and it plays around with the computer injecting paths into it. So since this happened i could delete it with rouge killer however since yesterday i cant

 

[i7Baby]

Maybe Tunnel Bear doesn't work so well.

 

[Tomahawk2k]

i mean i just want to delete these pum things because then it should work. Do you have any programme suggestions?

 

[bill001g]

Since this appears to only find the DNS entries it may not be a issue. Most DNS hijacks point to servers in the internet. Yours are pointing to private ip that would have to reside inside so are seldom a issue.

What are 172.16.3.20 172.16.3.21

These would not be uncommon if you use VPN software or if this machine is sometime connected to a business network that uses those ip addresses.

I would be more concerned as to why it could not remove the SPPD.sys file.

You may be best served to ask questions like this on the rougekiller forum they likely know much better what can be ignored and what should not.