How to Check If You Are Infected by DNSChanger Malware

Written by on

Are you infected by DNSChanger malware? This is a question that you must find out before 9th July 2012. After this date, if you are infected and did not do any action, you will be cut off from the Internet.

Basically, DNSChanger, as the name implies, changes the DNS server settings in your computer. I copied the explanation from the website

DNSChanger is a class of malicious software (malware) that changes a user’s Domain Name System (DNS) settings, enabling criminals to direct unsuspecting internet users to fraudulent websites and otherwise interfere with access to internet services. It has been associated with ‘click fraud’, the installation of additional malware and other malicious activities.

In November 2011, the FBI closed down a ring of cyber-criminals believed to be responsible for the worldwide spread of DNSChanger.

An estimated four million users were affected worldwide. To avoid these victims losing access to internet services, the FBI worked with the Internet Systems Consortium (ISC) to set up and operate a temporary but correct DNS solution, while giving ISPs the opportunity to assist their customers to remove their potential infection.

This temporary solution will be switched off on 9 July 2012. Users infected by DNSChanger will be unable to access internet services when the temporary DNS solution is switched off.

What to Do or Check?

  • Read the information HERE
  • Go to THIS WEBSITE to check if you are infected.
  • To play safe, check your DNS server settings too. Refer to HERE(PDF file) to understand how to do it. I took the initiative to copy down the rouge DNS Servers. Check if yours is in it or not.
See also  Tweet @Nokia_Connects with #Lumia820 to win personalized 3D printed case (video)

Rogue DNS Servers

  • 85.255.112.0 through 85.255.127.255
  • 67.210.0.0 through 67.210.15.255
  • 93.188.160.0 through 93.188.167.255
  • 77.67.83.0 through 77.67.83.255
  • 213.109.64.0 through 213.109.79.255
  • 64.28.176.0 through 64.28.191.255

If you are still worried, check the router DNS too! The instruction is also in the PDF file.

For your information, I had my DNS server linked to Google DNS server and my router DNS server linked to Norton’s. 🙂

And here is my router address.

I guess the most effective method is to install a good antivirus and security software.

[ad#boxlist]

Tweet
Share
Pin
Share
0 Shares