Prev: Seeking TECH tutorial about cookies, beacons, etc
Next: I received a warning from Google ......
From: Roger on 7 Aug 2010 05:59
On Sat, 07 Aug 2010 02:31:00 -0500, "Lil' Abner"
<blvstk(a)dogpatch.com> wrote:

>How can an application change my settings so easily?

UPnP ? Well it's the first thing I'd look for.
--
Roger
From: David H. Lipman on 7 Aug 2010 07:56
From: "zxcar" <zxcar(a)sumting.com>

| On 8/6/2010 7:35 PM, David H. Lipman wrote:


>> http://www.trustedsource.org/blog/42/New-DNSChanger-Trojan-hacks-into-routers

>> http://www.pc1news.com/news/0017/warning-a-new-zlob-trojan-modifies-wireless-router-
>> settings.html

>> http://vil.nai.com/vil/content/v_141841.htm


| Thanks...
| Here's 2 others for the list that I found under the HKLM > System >
| CurrentControlSet > Services > TCPIP > Parameters > DHCPNameServer >
| 213.109.64.5 213.109.72.21 0.1.1.1 They are under Interfaces too. I've
| read that a NameServer Key will override those settings?


All products of a DNSChanger trojan.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


From: David H. Lipman on 7 Aug 2010 07:57
From: "Roger" <invalid(a)invalid.invalid>

| On Sat, 07 Aug 2010 02:31:00 -0500, "Lil' Abner"
| <blvstk(a)dogpatch.com> wrote:

>>How can an application change my settings so easily?

| UPnP ? Well it's the first thing I'd look for.


Correct and is NOT the OP's problem.

DNSChanger trojans modify the DNS Servers on the Router and thus the nodes on the LAN.


--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


From: David Kaye on 10 Aug 2010 17:35
"smurf" <smurf(a)smurf.com> wrote:

>Spotted it today, a dg834g netgear router was accessed by some malicious
>software which followed a limewire download. The software logged onto the
>router (using default password) and changed dns settings from automatic to a
>set of manual addresses.

You use the default password? Jeez...as soon as I connect a router I
immediately create a new password for it.

First  |  Prev  | 
Pages: 1 2
Prev: Seeking TECH tutorial about cookies, beacons, etc
Next: I received a warning from Google ......