“DNS Changer malware , expiring July 9 “


“DNS Changer malware , expiring July 9 “


A botnet operated by Rove Digital altered user DNS settings, pointing victims to malicious DNS in data centers in Estonia, New York, and Chicago. 
The malicious DNS servers would give fake, malicious answers, altering user searches, and promoting fake and dangerous products. 
& netted the attackers at least $14 million Because every web search starts with DNS, the malware showed users an altered version of the Internet.

Under a court order, expiring July 9, the Internet Systems Consortium is operating replacement DNS servers for the Rove Digital network. 
This will allow affected networks time to identify infected hosts, and avoid sudden disruption of services to victim machines. 
When the FBI and others arrested six Estonians last November, the agency replaced the rogue servers with Vixie's clean ones. 
Installing and running the two substitute servers for eight months is costing the federal government about $87,000.

"we get to the point where we say, how are we going to do this, how are we going to clean the system without creating a bigger mess than before."

but thease systems must be shut down july 9th but this has thousands of computers reliant on the confiscated servers.

more than 570,000 computers infected  worldwide . 
installed malicious software that  turned off antivirus updates
changed the way the computers reconcile website addresses on the Internet's domain name system.
that translates a web address — such as www.ap.org — into the numerical addresses that computers actualy use. 

then Five months later,  FBI estimates that the number is down to at least 360,000. 
The U.S. has the most, about 85,000, federal authorities said. 
Other countries with more than 20,000 each include Italy, India, England and Germany. 
Smaller numbers are online in Spain, France, Canada, China and Mexico.

Vixie said most of the victims are probably individual home users, rather than corporations that have technology staffs who routinely check the computers.


 In DOS shell, type in the command: ipconfig /all  and hit enter.

The command you entered displays information about your computer’s network settings. 
Read the line starting with "DNS Servers". 
There might be two or more IP addresses listed there. 
These are the DNS servers your computer uses. 
Write down these numbers

The malicious Rove viruses changed some peoples DNS settings to use computers they operated. 

Compare your DNS settings with the known malicious Rove DNS settings listed below:

Starting IP      Ending IP           CIDR



About homelessholocaust

I actually do not write most of these articles, I collect them here, for my personal useage, I find Some Other's enjoy them as well, which is a side effect of my Senility. As I am a Theosophist, and also study Vedanta Society of Northern California, so Your Visitation from the Akashic records to approve my feebile works gives me Great Hope! I am 68, years old, I will Come To You in another 30 or so years. You Reinforces my Belief that in my Sleep I visit The Akashic Records when I remember my dream's. I keep notes about 'Over There." the Colour of Daylight is Darker, but the Life is Brighter, property has no meaning, and it is homish. are the energetic records of all souls about their past lives, the present lives, and possible future lives. Each soul has its Akashic Records, like a series of books with each book representing one lifetime. The Hall (or Library) of the Akashic Records is where all souls’ Akashic Records are stored energetically. In other words, the information is stored in the Akashic field (also called zero point field). The Akashic Records, however, are not a dry compilation of events. They also contain our collective wisdom.
This entry was posted in Uncategorized. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s