Warning

 

Close

Confirm Action

Are you sure you wish to do this?

Confirm Cancel
BCM
User Panel
GS
VP
geissele
midwest
JRH
vortex
skd
bravocompany
palmetto
delton
aim
magpul
jt
fightlite
laRue
RS
troy
silencerShop
brownells
primaryArms
CA
Hit
springfield
SDS

Pro2A
CA
gray
geissele
RS
palmetto
primaryArms
cmmg
Faxxon
ar15com
silencerShop
LAPG
fightlite
blackhills
dsa
springfield
SAS
bravocompany
LAPG
THBRD
JRH
brownells
jt
bravocompany
cmmg
tnvc
trijicon
palmetto
Users Online4847 Online
bravocompany missing Hydra
Page General » General Discussion
Archived [ARCHIVED THREAD] - Malware and the FBI
Posted: 7/5/2012 3:23:11 PM EDT
http://www.wired.com/threatlevel/2012/07/dns-changer-going-dark/

So I got an email from ISP saying I had the malware even though I ran pretty much every anti-virus and malware program out there and came back clean. Anyone else going through this BS? I run servers everyday and know my way around networking. This seems like horse shit.

Link Posted: 7/5/2012 3:30:01 PM EDT
[#1]
Quoted:
http://www.wired.com/threatlevel/2012/07/dns-changer-going-dark/

So I got an email from ISP saying I had the malware even though I ran pretty much every anti-virus and malware program out there and came back clean. Anyone else going through this BS? I run servers everyday and know my way around networking. This seems like horse shit.


Shouldnta been browsin goose porn


Link Posted: 7/5/2012 3:31:26 PM EDT
[#2]
try this site on all of your computers:
http://dns-ok.us/

green = ok, red = infected

Link Posted: 7/5/2012 3:32:11 PM EDT
[#3]
I guess that's the 64,000 question
Link Posted: 7/5/2012 3:53:46 PM EDT
[#4]
Quoted:
http://www.wired.com/threatlevel/2012/07/dns-changer-going-dark/

So I got an email from ISP saying I had the malware even though I ran pretty much every anti-virus and malware program out there and came back clean. Anyone else going through this BS? I run servers everyday and know my way around networking. This seems like horse shit.


DNS changer can hide behind some pretty nasty rootkits...

Thing is, the way most Information Assurance works, all traffic is shunted through intrusion detection devices that screen each packet against a set of rules.
DNS changer is really, really easy to spot this way, because what of how DNS changer works.    There are a few servers that it uses to hijack your stuff, servers that the FBI confiscated and is running to let people disconnect.  The IDS looks for DNS traffic going to those servers.  There is no legit reason to send DNs traffic to those servers, so the false positive rates on this are reaaaaly low.

You might want to look into doing a scan from CD.  Sounds like your machine is compromised pretty bad.
Archived [ARCHIVED THREAD] - Malware and the FBI
Page General » General Discussion
Close Join Our Mail List to Stay Up To Date! Win a FREE Membership!

Sign up for the ARFCOM weekly newsletter and be entered to win a free ARFCOM membership. One new winner* is announced every week!

You will receive an email every Friday morning featuring the latest chatter from the hottest topics, breaking news surrounding legislation, as well as exclusive deals only available to ARFCOM email subscribers.


By signing up you agree to our User Agreement. *Must have a registered ARFCOM account to win.
Pro2A
RS
LAPG
palmetto
jt
bravocompany
ar15com
primaryArms
dsa
springfield
SAS
geissele
CA
LAPG
gray
THBRD
JRH
blackhills
cmmg
fightlite
Faxxon
silencerShop
brownells
missing
AR-15 AK-47 Handgun Precision Rifles Armory Training Competitive Shooting General Outdoors Archery Hometown Industry

About AR15.COM

Become an AR15.COM Team Member

AR15.COM is the world's largest firearm community and is a gathering place for firearm enthusiasts of all types.

From hunters and military members, to competition shooters and general firearm enthusiasts, we welcome anyone who values and respects the way of the firearm.

Stay Connected

AR15.COM Facebook AR15.COM Twitter AR15.COM YouTube AR15.COM Instagram
Pepperjam Verification

Newsletter

Subscribe to our monthly Newsletter to receive firearm news, product discounts from your favorite Industry Partners, and more.

Contact Us

Advertising
[email protected]
General
[email protected]

Copyright © 1996-2024 AR15.COM LLC. All Rights Reserved.
Any use of this content without express written consent is prohibited.

AR15.Com reserves the right to overwrite or replace any affiliate, commercial, or monetizable links, posted by users, with our own.

Advertising Memberships ARFCOM Shop Gear Deals Virtual Weapon Build Discussion Forums Help Privacy DMCA About Your Privacy Choices California Consumer Privacy Act (CCPA) Opt-Out Icon   Goat Signal
** When you click on links to various merchants on this site and make a purchase, this can result in this site earning a commission. Affiliate programs include, but are not limited to, the eBay Partner Network and Amazon.
Top Top