Stop Disconnection From Internet After 9th July 2012 Due To DNS Changer Malware Infection

by Abhishek Bhatnagar on April 25, 2012

Advertisement

Last year, one of the biggest malware program called the DNS Changer infected around half a million of computers and PC connected to internet. To understand more about this virus or Trojan you should know. It changes the DNS (Domain Name Server) configuration of your computer. The virus hijacks your Internet Service Provider’s (ISP) DNS servers and modifies with its own entries to direct your web browser to illegal, unsolicited, and other illegal websites. For those who don’t know.

DNS Malware Information

What are DNS Servers?

A DNS server is any computer registered to join the Domain Name System. A DNS server runs special-purpose networking program which has of public IP address of the websites, and contains a database of network names and addresses for other Internet websites.

What Role A DNS Server Play When I Use Internet?

When you use a internet browser like google chrome, internet explorer or any other web browser like these and you type www.troublefixers.com you get connected to a DNS server which stores the IP address of the web server or another computer on internet which has web pages of TroubleFixers so that I allows you to download those webpages on your computer to read our website through the internet browser you are using on your PC.

Why I May Lose Internet Connectivity On 9th July 2012?

In November 2011, many hackers were caught for spreading the DNS Changer malware but thousands of infected machines were left with the fake DNS Server entries pointing to their bogus DNS servers. But US government and the agencies that caught the hackers changed these DNS to be legitimate ones, at least temporarily so that people whose computers were infected should remain connected to internet. It comes at a cost to the government of about $10,000/month. On July 9th 2012, those Hackers created DNS servers which are now working right way, are going to be shut down.

How To Do I Know If My Computer Is Infected With DNS Changer?

First find out whether your PC or internet router is infected with DNS Changer Malware.

1. On your PC, press Windows + r to open run prompt and then type cmd and press enter to launch command prompt.

2. Type ‘ipconfig/all’ (without quotes) and hit Enter. Locate the DNS server entries.

These right DNS server entries should be anything between the span of 0 and 255.

on the other hand, The fake DNS Entries are

85.255.112.0 to 85.255.127.255; 64.28.176.0 to 64.28.191.255; 67.210.0.0 to 67.210.15.255; 77.67.83.0 to 77.67.83.255; 93.188.160.0 to 93.188.167.255; 213.109.64.0 to 213.109.79.255; and 193.227.227.218

Another way to know that you are infected, just search for the file named ndisprot.sys – if you find this file in %Windir%\system32\drivers it confirms that your computer is or was infected with DNS Changer Malware.

Advertisement

The other most simple way to know that your PC is infected with this Trojan is to go to this website page – you will get to know if you are or are not infected (see below). You will see the green image if your PC is not infected or if found infected you will see red image.

DNS-Changer-Check-GreenDNS-Changer-Check-Red

Please Note:

  • No Software is Downloaded! The tools do not need to to load any software on your computer to perform the check.
  • No changes are performed on your computer! Nothing is changed on your computer when you use sites like http://www.dns-ok.us/.
  • No scanning!  The “are you infected with DNS Changer” tool does not need to scan your computer.

How To Fix DNS Changer Malware Infection On My PC?

In order to fix this malware infection on your computer, the first recommended tool is Windows Defender Offline which was formerly known as Microsoft Standalone System Sweeper and the second one that would be targeted for deletion of DNS Changer is [ Avira’s DNS Repair-Tool ] or else you can run the following tools which will fix and remove and delete DNS Changer from your PC

Hitman Pro (32bit and 64bit versions)
http://www.surfright.nl/en/products/

Kaspersky Labs TDSSKiller
http://support.kaspersky.com/faq/?qid=208283363

McAfee Stinger
http://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Microsoft Windows Defender Offline
http://windows.microsoft.com/en-US/windows/what-is-windows-defender-offline

Microsoft Safety Scanner
http://www.microsoft.com/security/scanner/en-us/default.aspx

Norton Power Eraser
http://security.symantec.com/nbrt/npe.aspx

Trend Micro Housecall
http://housecall.trendmicro.com

MacScan
http://macscan.securemac.com/

If you like this article or this article helped you, you can +1 to recommend this article on google plus.

You can follow us on Twitter or join our Facebook Fan Page. If you have a question to ask us, submit your question at Answers By Trouble Fixers.

Looking for something else? Search here :

{ 1 comment… read it below or add one }

Ellem July 18, 2012 at 6:35 pm

Much appreciation for people like you who are trying to make life easier for people like us who depend on people like you to run our gadgets trouble-free. Your hints and suggestions drawn from vast your knowledge bank are quite helpful. Thanks a lot.

Leave a Comment

Previous post:

Next post:

© TroubleFixers – All about fixing computer troubles2007-2014 . All Rights Reserved.