Because the Malware DNS trap actually prevents the malicious DNS requests, the action in the log record was changed from "Detect" to "Prevent" in Security Gateways starting from the R81 version.
No fix is required. This behavior is by design.
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.