Check whether your computer’s IP address is within the range from 192.168.1.2 to 192.168.1.254, because you might be infected with FBI DNS Changer, if your Internet connection is disabled or you cannot open desirabled websites. FBI DNS Changer is a piece of malware that creeps in to the system unnoticed and does not allow users to use the Internet. The infection disables the user’s antivirus software and does some changes in the DNS server so that the user is redirected to infected websites that can spread malware. Cyber criminals control DNS Servers, which not only allows them to redirect the users, but also interfere in the user’s browsing.
FBI DNS Changer can also access such SOHO network device as a router of home gateway. If the user does not change the manufacturer’s settings of the device, the malware may use the default setting and access the device. Moreover, other computers of the network may also be affected by the malware with the help of the infected router even if they are not infected directly through the Internet.
It is useful to check your DNS servers settings, which will show whether FBI DNS Changer is on your computer or not. If you are infected, then the DNS Server line in C:\Windows\Win32\cmd.exe should be with in the ranges presented:
188.8.131.52 through 184.108.40.206
220.127.116.11 through 18.104.22.168
22.214.171.124 through 126.96.36.199
188.8.131.52 through 184.108.40.206
220.127.116.11 through 18.104.22.168
22.214.171.124 through 126.96.36.199
To open the cmd.exe, open your Star menu and click on Run. Enter cmd.exe in the search box and press OK. When a black table appears, type “ipconfig /all” and press Enter. Now compare your DNS Servers line with the lines presented above.
If you find that you are infected, do not hesitate and remove FBI DNS Changer from your CP. Our expert advice is to use a reliable and powerful malware removal tool so that the infection is fully deleted.