Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[HedgeHocker]

Hi,

I'm getting some flakey DNS server issues and suspect I have a malware alteration to my DIR-855 ...especially after Windows One the Safety Scanner found more evidence.  I wish I could remember where and what Safety Scanner found (online scanner) but it said it was a worm/trojan that altered router settings.  I deleted that file suspecting the find was just a false possitive.  I've since reformatted and installed Windows 7 Beta (7000) but from what I've read the changed that worm/trojan does to your router can remain until you reset it.... I have never reset this router and I don't know how really.

i have tried unplugging it and using a paperclip I depressed the reset in the back for about 10 seconds but after plussing things back up my old settings are still there.

Obviously I need to learn more about my router but can anyone comment to this kind of malware attack and more importantly tell me how to reset this g.d. thing so I don't worry while I try and Google it? Please.

TY

[HedgeHocker]

I did find the Reset - okay.

I still get errors connecting wirelessly. It stays once I get it connected though.  Maybe I have a hard to detect malware changing my settings somewhere.  I am running Windows 7 but it did the same thing for Windows Vista.

[vulkanbros]

I have never heard about malware/trojan/worm should be able to alter hardware settings in a router ??

It sounds more like a virus/trojan/malware in your OS.

Have you tried the scanner from www.malwarebytes.org or www.superantispyware.com

/Vulkan

[EddieZ]

Hi,

I'm getting some flakey DNS server issues and suspect I have a malware alteration to my DIR-855 ...especially after Windows One the Safety Scanner found more evidence.  I wish I could remember where and what Safety Scanner found (online scanner) but it said it was a worm/trojan that altered router settings.  I deleted that file suspecting the find was just a false possitive.  I've since reformatted and installed Windows 7 Beta (7000) but from what I've read the changed that worm/trojan does to your router can remain until you reset it.... I have never reset this router and I don't know how really.

i have tried unplugging it and using a paperclip I depressed the reset in the back for about 10 seconds but after plussing things back up my old settings are still there.

Obviously I need to learn more about my router but can anyone comment to this kind of malware attack and more importantly tell me how to reset this g.d. thing so I don't worry while I try and Google it? Please.

TY

Routes can only be manipulated when your OS is infected. The router has nothing to do with it, it only has  a passive role. Clean your PC from viri and malware and reset the TCPIP and Winsock settings to default (google for the tool to do so) and everything should be OK.

[HedgeHocker]

Okay. Thanks guys.  It was hard to imagine a router malware.

[smlunatick]

Sometime last year, it was in the news that DNS services can have a major problem to cause bad results.  Several DNS providers were scrambling to fix this at the DNS server end.  Some seem that have not done this.  You might be able to fix your problem by trying OpenDNS, a free alternative to your ISP's DNS servers.

[Azuse]

For the record, the psyb0t Worm exclusively infects routers, although it's limited to linux based ones currently it's only a matter of time before someone adapts it  That said, swap to open dns (the fact that some isp still haven't fixed the vulnerability in their servers so long since detection should say alot about them as a company) and clean out the os and you should be good.