Blog‎ > ‎

TDSS Rootkit/Malware

posted Nov 19, 2011, 5:05 AM by WAVE Computer Services   [ updated Nov 19, 2011, 5:11 AM ]
This TDSS rootkit is the stealthiest so far.  The creators have just added the ability to control your DNS to the scary list of it's capabilities.  DNS stands for Domain Name System and it controls how things are found on the internet.  When you type in your destination in the browser DNS is used to route your journey through the internet. So TDSS really will control your computer should you become infected.

There is a upside to this...now you can just check your DNS numbers and see what they currently are by using the "Run" command in Windows and typing CMD in the Run box and then typing in IPCONFIG /all in the black box then compare the DNS numbers it shows you to the IP ranges listed below.  If your numbers fall within that range you are infected.  Be sure and check your router as well.

85.255.112.0 through 85.255.127.255

67.210.0.0 through 67.210.15.255

93.188.160.0 through 93.188.167.255

77.67.83.0 through 77.67.83.255

213.109.64.0 through 213.109.79.255

64.28.176.0 through 64.28.191.255

Comments