How to Detect DNSChanger
I do hope YOU do not have this malware. This is because if you do, you should have had it removed as soon as the FBI started announcing this at least a year ago. Not to mention, the FBI has gone through great expense to protect those that were hit by this virus, to include setting up DNS servers with the same IP address as those use by the malware writers from Estonia.
On July 9, the FBI will close down a network of DNS servers that many people have been depending on for proper Internet access. These servers were originally a part of a scam where a crime ring of Estonian nationals developed and distributed a malware package called DNSChanger, but which the FBI seized and converted to a legitimate DNS service.
This malware scam has been widespread enough that even third-party companies like Google and Facebook and a number of ISPs like Comcast, COX, Verizon, and AT&T have joined in the effort to help remove it by issuing automatic notifications to users that their systems are configured with the rogue DNS network.