I edited out the live link as we don't encourage possibly dangerous links here for obvious reasons. What or who told you to do that?
All I can find is the odd news item regarding FBI activities and warnings: http://sanfrancisco.cbslocal.com/2012/04/20/fbi-computers-infected-with-malware- to-lose-internet-service-in-july/
You should know if your machine is infected by bizarre things happening but you can take precautions.
Always keep your system totally up to date, including any parts of it you don't use. For instance, many people use Firefox as their default browser and ignore updates to Internet Explorer which is a dangerous practice as many processes, McAfee included, use IE to 'call home'. Likewise always keep browser add-ons up to date.
Apart from your antivirus and firewall protection you should consider some additional anti-malware software and there are a few free ones mentioned HERE (see Free 3rd Party Tools) along with tools to help with malware detection (Hijackthis etc. lower down that page)
That "odd news item regarding FBI warnings" is the article to which I was referring. It suggests that one go to the website mentioned in the article and check if your computer has that bit of malware in it. What I wanted to know was: Is this a legitmate warning? Are they directing us to a safe website? I have McAfee security center, plus Super Anti Spware, and MalwareBytes Anti Malware. Should this have protected me, or should I also go to the above mentioned website to have my system checked? My system does seem to be running fine at this time, everything is up to date, and it gets scanned regularly; but I don't want to lose internet service in July.
Well of course being in Canada I hardly ever see FBI warnings but the website appears to be genuine and is labelled green by SiteAdvisor and by WoT both of which I use in my browsers for security purposes.
They are merely pointing out that these dangers lurk so really it's up to you if you want to go through all that. Probably not necessary if everything is operating as it should.
This is the DNSChanger story, which was discussed in the moderators' section back in March.
Since last November the FBI have been operating DNS servers set up to replace rogue DNS servers that were forwarding victims to malicious sites. Those servers are due to be pulled offline on March 8th, although that deadline may be extended.
The deadline was indeed extended. The FBI have a website where you can check if your PC is infected, which appears to be the one to which the OP gave a link in the first post. Yes, it's safe. I checked it out myself.
Advice for users :
1. How to check if a PC is infected
- http://dcwg.org/checkup.html ('ipconfig /all' in a DOS window : compare with list of malicious DNS settings. XP/Windows 7 only. Or use a browser to visit http://dns-ok.us(or ~.de, ~.fi or ~.ax) : not guaranteed to detect infection in every case)
- http://www.fbi.gov/news/stories/2011/november/malware_110911 - what is a DNSChanger; how to check if you are infected; instant IP check; claims information for anyone affected.
Rogue DNS settings :
I was following the story on several of the computing news websites. It's all gone pretty quiet now but the latest estimate is that a large number of PCs still remain infected. It does no harm to check just to be sure you're okay.
The deadline has been extended by 120 days -
Just in case :
Internet users can quickly see if their PCs are infected with DNSChanger by visiting one of several “eye check” sites, including this one.
DNSChanger also infected Mac OS X systems and home routers; go here if you need instructions for checking those systems for infections.
A larger network owner can find out if any PCs on the local network are infected by reaching out to one of the entities in the DNSChanger Working Group.
Thanks for the clarification Hayton, I had forgotten about that. I reinstated the link in the OP's original post.
Thanks everyone for this info, I'll go and check it out. Didn't realize this was already discussed, I just found out about it today via Yahoo.
Thanks again for the help.
OK, good luck ;-)
As a postscript, there's a McAfee blog about this (dated March 6th) by Jim Walter, manager of McAfee Threat Intelligence Service. He covers most of the main points, and says that McAfee customers are protected from infection by the DNSChanger Trojan.
The blog can be found at