Skip to: Content
Skip to: Site Navigation
Skip to: Search


Horizons

DNSChanger: Removing the virus just got a lot harder (+video)

If you didn't act fast enough to the DNSChanger scare, fixing the problem will be a lot more difficult today.

By Curt Hopkins / July 9, 2012

Norton's Internet Security 2012 software for computer security on display at Best Buy in Mountain View, Calif., Friday, July 6, 2012. Despite repeated alerts, some Americans may have lost their Internet service Monday.

Paul Sakuma/AP

Enlarge

If your PC is one of the possible 500,000 computers worldwide that has been hit by the DNSChanger virus, chances are, you already know it. Because of a move by the FBI today, all infected computers have gone offline. Many reports suggest that the damage today has been minimal. But if your computer still carries the virus, fixing the problem just got a lot harder. 

Skip to next paragraph

Recent posts

Thousands of computers across the U.S. won't be able to access the internet come Monday, July 9th. Yours could be one of them.

The good news: If you're reading this article, this machine is clearly not affected. 

DNSChanger is an computer virus that allowed criminals based in Estonia to redirect your Web browsing. Instead of visiting the website that you wanted, the virus rerouted you through a rogue server that would feed you advertisements. And, if anything happened to these rogue servers, the virus would keep trying to reach them unsuccessfully, effectively knocking your computers offline. 

Well, last year, the FBI and Estonian authorities busted the black-hat hacking ring who set up the virus. For the past eight months, the Bureau has arranged for a series of servers to stay online and carry the traffic that would otherwise be downed by cutting off the hackers’ servers. Now, however, those FBI servers have been shut down. You’re on your own.

If one of your PCs is hit by DNSChanger, you'll need to figure out a way to get anti-virus software onto that computer. 

First, here are several clean-up programs listed by the DNS Changer Working Group. These programs should remove the virus and related programs, but you'll need to get them onto the infected machine through a USB drive, CD/DVD, or some other way that does not involve the Internet. You can do that on your own, or have a computer professional do it for you.

Once your computer is set with a legitimate DNS, you will want to check your router, if you have one, to make sure it is also using the proper address.

As the DNSChanger Working Group cautions, “Changing DNS is only one of the functions of the malware kits. The malware could have been used for capturing keystrokes or acting as a proxy for traffic to sensitive sites like bank accounts or social media.”

You will want to check all of your financial accounts, and other sensitive information sources, to make sure they have not been affected. You will also want to change your passwords.

If you still find that you are not clear of the problems hatched by DNSCharger, experts encourage you to call your Internet service provider for help.

Permissions

Read Comments

View reader comments | Comment on this story

  • Weekly review of global news and ideas
  • Balanced, insightful and trustworthy
  • Subscribe in print or digital

Special Offer

 

Doing Good

 

What happens when ordinary people decide to pay it forward? Extraordinary change...

Danny Bent poses at the starting line of the Boston Marathon in Hopkinton, Mass.

After the Boston Marathon bombings, Danny Bent took on a cross-country challenge

The athlete-adventurer co-founded a relay run called One Run for Boston that started in Los Angeles and ended at the marathon finish line to raise funds for victims.

 
 
Become a fan! Follow us! Google+ YouTube See our feeds!