Beware of bad virus, striking again

Saturday, November 12, 2011

By: Michael Schelin

The DNSChanger has struck again. It's not a new one, but it's unlike other types, and it's back in business affecting computers and routers worldwide. I was alerted of its recent activity two days ago by my main ISP; one of my IP addresses was infected.  This turned out to be a client computer in the client's office. This one is a trojan, which modifies the DNS (domain name service) server setting and redirects the browser to any site. Simply stated, it affects the way your computer looks up the places you visit on the net. It infects your computer then it attacks your home or office router.  Once in place it can trick your computer into thinking you've reached your bank or other sites you would normally visit.  You get the picture. 

It was reported this week the virus was the driver in hijacking over four million computers worldwide. This isn't a new virus, however, but is still very active. This virus is very unique in that it can affect both PC and Apple.

Some recommendations from Shelcomm in dealing with the DNSchanger:

Some precautions you should take with your wireless router/ wired router.
Check with your IT specialist or manufacture on upgrading the firmware on your router.  We believe it's the only way to remove the infection if it is infected.
Disable the universal plug and play feature in your router.
Lock Down the routers Admin password by changing it to at least 12 or more Characters using upper and lower case and symbols.  (!@#$%&*^)  

You should be using WPA2 encryption on ALL your wireless devices that connect to your router and again use strong passwords as stated above

 TRY REALLY HARD NOT TO USE OPEN WIFI ON YOUR DEVICES AND NEVER TYPE CREDIT CARD NUMBERS IF YOU ARE USING OPEN WIFI. 

If your computer seems slow or you suspect you may have a bug, please call your IT professional to check out your system.