DNS Changer

April 27, 2012

You may have read in the paper or heard in the news about an infection referred to as a DNS changer. You have have read there is a website (www.dcwg.org) set up that you can go to that detects if you have the infection or not. You can go to this website and click on a link and it tells you if your computer has this infection or not. But then at the bottom it says you could still have it. Confusing.

Before we go any further, I want to explain what DNS is. Domain Name Service (DNS) is the process that translates web addresses into numerical addresses. When you type www.google.com into your browser, for example, DNS translates that into an actual numerical address so that your browser can find www.google.com.

It’s kind of like going to someone’s house. Let’s say you want to go to Joe Shmoe’s house. But you don’t know where it is. You might go to a phone book or an online phone book adn type in Joe Shmoe to find his address. Now that you have Joe’s actual address, you know exactly how to get there. In this example, Joe Shmoe’s house is comparable to www.google.com and Joe’s actual address is comparable to www.google.com’s IP address.

So now that you know what DNS does, you should know that there are a bunch of DNS servers on the internet. If you don’t change which DNS server you are using, then by default you will use the DNS server provided by your Internet Service Provider (ISP). You don’t have to use the DNS server provided by your ISP, but if you haven’t changed it, then you probably are.

What the DNS changer infection does is change what DNS server you are using. By doing that, they would now control where your web browser goes when you enter a website address. If they decide to redirect the name www.google.com to a different website, then when you try to go to www.google.com, you will actually go where they want you to go.

Even if your computer has the DNS Changer infection right now you may not be aware of it because your computer will work normally. The creaters of this infection currently have the DNS Changer set to operate like a normal DNS server. However, on July 9th, 2012, DNS Changer will no longer operate like a normal DNS. It will start redirecting your web browser to infected websites and so forth.

The media loves to dramatize these types of situations, but the fact is if you have a recent version of security software that is up-to-date and not expired, you are protected. Since this is an infection we know about ahead of time, all of the major security software already protect against this.

Cyber Tek Computer Pros customers who are on our HOST plan are totally protected and also have our 100% guarantee that if their computer becomes infected, we will clean off the infection for free! So if your computer is on our HOST plan, don’t worry about it.

Leave a Reply

You must be logged in to post a comment.