Are you a victim of drive-by pharming?

Posted by KAKA | Posted in | Posted on 8:42 PM

Following the menace of phishing and rootkit trojans is pharming which is basically a DNS hijack. Affecting your system silently, with most antivirus software and antispyware software failing to detect this intrusion, the only symptoms you might see are slow or inability to connect to certain websites. Not only your computer but also your rounter or modem could be infected.

Detection:
  • If you are unable to change your DNS servers in network connections in your control panel you are infected.
  • At the start menu, click on run, "type ipconfig /all" without quotes. If your DNS servers are not the ones provided by your ISP you are infected.
  • Most rouge DNS servers are in the IP range of 85.255.x.x

Resolution:
  • Conventional software like Norton, Kapersky, Ad aware, NOD32 fail to detect or fix this. Even tools like HiJackThis or Smit Fraud fix may not work.
  • XP users need to run Fixwareout. Link1 and link2.(try link2 it works)
  • Vista users cannot run fixwareout. Manual editing of the registry is required.
__________________
I'll find those stairs. I'll whip their butt, too. Those stairs won't know which way they're going.

Comments (0)

Post a Comment

Subscribe to: Post Comments (Atom)