FBI Pulls The Plug On DNSChanger Network, Infected PCs Lose Internet Access [Updates]

Ads by Google

On March 9th, 2012 at 12:01am the FBI finally pulled the plug on a set of rogue DNS servers used by the trojan known as DNSChanger, potentially leaving hundreds of thousands without access to the Internet.

The malware has kept itself in the headlines because it changes the DNS settings of infected computers. Once changed, those computers have their traffic routed through servers set up by the hackers who developed the trojan.

FBI agents have long since caught up with the hackers responsible and captured the servers used to route traffic. But this presented the FBI with a problem – it could not shut down the servers because the infected PCs would suddenly lose Internet access.

An awareness campaign was launched to let users known of the potential threat. It included a site created by the DNS Changer Working Group that could inform visitors if their computer was infected. This has reduced the number of infected computers to around 250,000. Now, however, the servers are finally down for good – so those victims who remain infected are in the dark.

If you, or a friend, have suddenly experienced an unexplained Internet outage on one of your PCs there is a decent chance that DNSChanger is responsible. To remove it, visit the DCWG fix page on a computer that still has Internet access and download one of the many malware removal tools listed.

After you’ve removed the bug, check our coverage of the best free anti-virus programs and download one to keep your computer protected.

Ads by Google

Source: CNET, DNS Changer Working Group

12 Comments - Write a Comment


Shane La Horie

Good job by the FBI remove those scammers but they should have left tvshack alone.


Dany Bouffard

About time they finish the jobs by taking down the DNS used, peoples who have problems accessing internet because of this should have properly protected themselves a long time ago.


Agreed. Multiple warnings over the last month should have been enough for anyone. Multiple offerings to get rid of it for free as well. No excuse.


Deep Patel




Actually it was just yesterday July 9, 2012. I’m into details.

Matt Smith




Why didn’t they just put a “landing page” that redirected all DNS requests (for web browsing) to a page on their servers, allowing the affected users to download the fix? They could have left that up for the last 6 months or so before pulling the plug.

Matt Smith

Hmm, I don’t know. Maybe they were afraid people would go to the landing page, see the FBI is involved, and freak out? That would not surprise me.



OMG i used this! This was recently featured in ‘Lifehacker’


Spencer Vincent

They seem to do this so easily so why are there so many effed up sites out there that need their plugs pulled?


Shawn Ashree Baba

Sad to hear that many people may not be able to get connected to the internet. Good thing I’m protected though!


Igor Rizvi?

good thing i havent got infected

Your comment