First off. I know this is not a "true" hobby thread. But because this might affect you in a couple days and if it gets moved to the Sandbox, people might not see it. It might also need copied to the main tech forums if no one has posted about it yet.
Well, maybe it is considering that if you were infected by the malware DNS Changer and didn't fix your settings, you've been using FBI controlled DNS servers!
This video explains what happened, WHY the FBI has been controlling a number of DNS servers, and what you need to do to not only check, but to also fix things if you screwed up and weren't paying attention to possible malware actions.
http://nakedsecurity.sophos.com/2012...ion-on-july-9/
- LazurusLong
- 07-06-2012, 04:45 AM
- MUSHROOM MAN
- 07-06-2012, 08:01 AM
This is the first I have heard of any of this, thanks for the info, my laptop is fine, just went to site, came up with green background,
- TexTushHog
- 07-06-2012, 05:44 PM
Here are two easy sites to make sure you're not infected.
http://dns-ok.us/
http://www.siteadvisor.com/dns_checker.html?cid=109273#
Two quick articles that give background:
http://www.pcworld.com/businesscente...nschanger.html
http://www.pcworld.com/article/25427..._campaign.html
http://dns-ok.us/
http://www.siteadvisor.com/dns_checker.html?cid=109273#
Two quick articles that give background:
http://www.pcworld.com/businesscente...nschanger.html
http://www.pcworld.com/article/25427..._campaign.html
- Bestman200600
- 07-06-2012, 05:54 PM
There was a malware on the web that changed your IP address to a different address. The crooks were using the new IP address to remove your personal information from your computer. The FBI removed the illegal server but what happens with the new IP address no one knows. If you are hit contact your internet provider for help correcting the problem. Monday is D Day.
- aka
- 07-06-2012, 09:25 PM
Thanks for the heads up because l had most forgotten about it. I had made a post about it 2 months ago -
http://www.eccie.net/showthread.php?...ght=dnschanger
http://www.eccie.net/showthread.php?...ght=dnschanger
- Copierguy0
- 07-07-2012, 08:53 AM
woohooo....... i'm GREEN
CG
CG
- LazurusLong
- 07-07-2012, 09:13 PM
Thanks for the heads up because l had most forgotten about it. I had made a post about it 2 months ago -Although I didn't see your post from 2 months back when I checked, I figured that given that on Monday is when the FBI no longer has control of those Domain Name Servers, it'd be best to remind everyone to go check this out.
http://www.eccie.net/showthread.php?...ght=dnschanger
My antivirus protection has been blocking access to several escort websites. Anyone else have the same experience?
The authorities are going to be blocking access to servers infected with the DNSChanger virus on July 9th. I guess there is enuf time to be proactive and make sure that everyone's hosting servers are clean.
There is free software available on the internet to check and rid your home PC of this virus. Originally Posted by aka
The authorities were never blocking access to those servers. Instead, as noted in the SOPHOS post, the FBI was running those servers as legit ones and not allowing the re-directs.
And it really had nothing to do with escort sites, that infection could randomly re-direct you to any site and your anti-virus was blocking you being sent to those other sites via the re-direct.
There was a malware on the web that changed your IP address to a different address. The crooks were using the new IP address to remove your personal information from your computer. The FBI removed the illegal server but what happens with the new IP address no one knows. If you are hit contact your internet provider for help correcting the problem. Monday is D Day. Originally Posted by Bestman200600If you follow what happened, that malware didn't change your IP address. YOUR IP address was never touched.
But what it did was change the stored address of your DNS servers. The DNS is where URLs are conerted to the numers needed to actually get you to a website.
Even if the malware was safely removed, unless you go verify whether you have hard coded DNS entries and fix them as the video shows, when the FBI stops running those servers Monday, since your computer is being told to ONLY look at that location to direct you to a site, it would appear that you cannot access anything at all.
According to the stats from the FBI, as of June 2012, there are still close to 350,000 IP addresses hitting those bad Domain Name Servers. Given that certain large ISPs like ATT recycle through IP addresses whenever you reboot your router, or for those (shudder) who may stil use dial-up, that's an awful lot of still infected computers. Or even if no longer infected, the DNS numbers may have need of fixing.
- sensualsanaa
- 07-09-2012, 07:25 AM
Wow, this is the first I've heard of it. Glad my test came back clean!
- Look-at-Stupid
- 07-09-2012, 09:47 AM
I'm green, but a Mickey D's in Lake Highlands computers were down, while I would doubt in-store transactions have any connection to the internet, but management most certainly does. Somebody may have some splainn to do!!