I find one article about this on USA Today. Everything else is promo from this DCWG.

If this is real, the FBI went about dealing with it the wrong way. At this point, I wouldn't touch it with a 10 foot pole with a Windows NT CD tied to the end.

nt

I went through mine, with the Comcast instructions, to check my DNS connections. My computer is clean, maybe because DNS was not enabled. I noted the grayed out numbers in the DNS window did not match the problem list, either.

Definitely not a scam since my ISP knows about it and has established a protocol for it. But they said they will not do an invasive test to determine anything about my computer, just to run through the instructions myself, instead.

Said they would notify by mail or email only if they received messages from the modem back to them if anything happened. I don't know if not having DNS enabled protected my computer from this or not. If they ever got that from my modem, they would give me instructions how to reset the modem and stop the problem.

So I did not do a malware test from the website. The FBI and other site directed me to my ISP without doing their test, and I think others can get this done without being exposed to the website's testing if they are worried.

I appreciate that Comcast said they were unwilling to do an invasive test; they only take in data sent back to them, from modem itself. If there was an infection, they would have noted the data streaming from my computer but only at the point of the modem.

I only have security updates from my computer working to prevent infections along with secure settings. My browser is also set to reject many things, giving me messages such as 'site is trying to check your keystrokes,' etc. kind of warnings which it gives the option to cut them off.

Thanks for the thread.

they would just have to issue free copies of Angry Birds.

...and it would be all over the news. DO NOT DO IT!

Sounds kinda fishy

You can go directly to an FBI site here....

https://forms.fbi.gov/check-to-see-if-your-computer-is-using-rogue-DNS

To get you're Dns server from Win XP do...

Start -> Run then enter cmd

In the Dos box enter

ipconfig /all

You may see two entries for DNS Servers
Enter the IP address that is not you're gateway on the FBI site.

Trojan:BAT/Dnschanger.B changes the computer's DNS server to 188.210.236.250 for the following default Internet connection names:

LAN
LAN 1
LAN 2
Local Area Connection
Local Area Connection 1
Local Area Connection 2
WAN
WAN 1
WAN 2
Wireless Network Connection
Wireless Network Connection 1
Wireless Network Connection 2


http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Trojan:BAT/Dnschanger.B


If you are using an up to date security package, it should detect and remove this one.

PS -- the address is in Romania. Why would a country's border firewalls allow DNS traffic to other countries except between top level DNS servers?

I remember from long long ago that part of the Norten package could pinpoint IP adresses. Is their something that does that today other than Norten?

Just as an aside. After the fall of the Soviet Union a number of eastern block countries became very active in creating software.
A notable example would be iL2. Game, sure, but one of the best flight simulators ever.

It would seam only natural that a bunch of malware also come from these places.

Not impossable that Romania has a few top level DNS servers they don't officaly know about.

I saw this the other day and was very suspect of the site. I did my own internal search to see if the rouge file was in my machines and came up with nada...also double-checked to see if that name had been entered into my spyware (it had). I'm very dubious about downloading any file onto my machine unless I know it's from a known entity.

a popular trick for malware providers.
Going to the FBI site and entering the DNS Server IP is like filling out a form.
Pretty much like entering a post here at DU.
About as safe as you can get.

Are you fucking serious?

Listen to yesterday's Democracy Now. It will sicken you.

It took all of 1 second and didn't do anything at all to my hard drive. It isn't a malware checker. If anyone is still paranoid, here's an article by the guy who made the site: http://www.circleid.com/posts/20120327_dns_changer/