In November 2011 the FBI issued a warning to alert computer users of the DNS malware that was infecting millions of computers worldwide with DNSChanger that allowed criminals to hijack legitimate websites and replace them with fraudulent websites, interfering with web browsing and making those computers vulnerable to other types of malicious software.
On March 12, 2012 they obtained a court order authorizing the Internet Systems Consortium (ISC) to deploy and maintain temporary clean DNS servers. This was to give computer owners time to clean any affected computers and restore their normal DNS settings.
July 9, 2012 these clean DNS servers will be turned off. Any computers still affected by the DNSChanger malware will lose the Internet connectivity after that time.
Statistics released last month show that almost 70,000 IP addresses within the United States are still affected by this malware. This is down significantly from the numbers at the beginning of the year.
Google announced May 23, 2012 that it would be adding the DNSChanger malware warning which would appear when an infected computer attempted a search. Some ISPs took their own actions. A few of those actions prevented Google’s warnings from being displayed. Facebook also has been helping to notify users .
You can do your own check to see for DNSChanger infections. DNS Changer Working Group has a quick check. If everything is okay the background will be green. If there are problems you will see a red background. The McAfee SiteAdvisor takes you to a landing page where you have the opportunity to learn more about the malware. To check all you need to do is click the “Check Now” button.
If you are infected it is recommended you not wait, but seek immediate professional help to clean up your computer. If not cleaned up the internet will be dark come Monday, July 9, 2012.