How to detect if an agent was infected with DNSChanger malware with an Agent Procedure?
Is there any simple way to do it?
Since Jul.9, the website of http://www.dns-ok.us has not been working for checking if an agent is using roue dns server. But http://www.dcwg.org/ is still supporting to check it. So please just change the source of Get URL as "http://www.dcwg.org/" and the string option of Check Variable as "If you are reading this page, it means you are NOT infected with DNS Changer" in the attached agent procedure posted above.