McAfee´┐Ż ##OPENTAG##
Consumer Threat Alerts

Ensure you have continuous Internet security protection from recent threats like DNS Malware.
Get up-to-date internet protection today.
On July 9, 2012, the FBI shut down Internet servers that had previously allowed millions of Internet users, who were infected by the DNSChanger Trojan, access to the Internet. Internet users who were affected by the Trojan lost access to websites, email, chat, and social networking sites.

Get up-to-date internet protection today:

If you are unable to access the Internet due to this threat, here is how you can access the DNSChanger Stinger tool and resolve the issue:
  1. Click on this link to download the DNSChanger Stinger tool:
    Click "Open" then Click "Allow"
  2. Follow the instructions in the "Readme.txt" file to run the tool or you can also follow the instructions below:

  3. Double click "stinger.exe"
    Click "Run"
    Click "Scan now"
  4. If the tool does not detect any malicious DNS server settings or malware then no further action is required. However, if you are unable to still access the Internet then you'll want to contact your Internet service provider.
  5. If the tool does detect that your computer is using a malicious DNS server, the stinger tool will fix the DNS setting.
The stinger tool will create the registry backup "TCIP_Registry_Backup.reg". You can restore network settings with this file. Then restart your computer.

Additional information about DNS servers and the DNSChanger Trojan:

Internet servers are also known as Domain Name System (DNS) servers. DNSChanger Trojan is a nasty piece of malware that has been around for some time.

What is a Domain Name System (or DNS)?

Domain Name System, also known as DNS, changes user-friendly website names into the Internet protocol (IP) addresses that computers use to talk to each other. When computer users enter a website name (ex. into their web browsers, their computer will contact a DNS server.

What is the 'DNSChanger' Trojan?

'DNSChanger' is a trojan created by cybercriminals to redirect the Internet traffic of millions of unsuspecting consumers to websites where the thieves have profited from advertisements. If your DNS server has been infected by this virus, you will not be able to go anywhere online. All computers still infected with DNSChanger malware will no longer be able to access websites, email, chat, or social networking sites like Facebook after July 9th.

For more information, find the McAfee press release here and the McAfee blog post here