[suomeksi | på svenska | in English]
[suomeksi | på svenska | in English]
This test page can be used to check, whether there is a configuration anomaly in your computer or broadband router that might indicate a presence of a malicious software.
DNSChanger is a family of malicious software that modifies the network configuration of Microsoft Windows and Apple Mac OS X operating systems and broadband routers in a way that DNS queries intended for servers operated by your ISP are instead redirected towards servers owned by criminals. These rogue DNS servers would then provide falsified answers in an effort to expose the users to unwanted and potentially harmful content. The malware and the falsified DNS servers have been active since 2007.
CERT-FI has produced advisories about the malware and information about the coordinated efforts to counter the threat since year 2009.
In November 2011, the United States Federal Bureau of Investigations (FBI) launched an operation in conjuction with several international partners, including officials in Estonia and The Netherlands, that lead to an arrest of several suspects and enabled the law enforcement officials to take over the network infrastructure previously operated by the criminals. The rogue name servers are currently in the custody of the FBI.
This service is produced by CERT-FI (a unit of Finnish Communications Regulatory Authority) in cooperation with DNS Changer Working Group and the FBI.
CERT-FI
P.O. Box 313
FI-00181 HELSINKI
Phone: +358 9 6966 510
www.cert.fi
© Finnish Communications Regulatory Authority 2012