|
|
|
|||||||
| Notices |
 |
|
|
Thread Tools | Display Modes |
14-06-2008, 03:55 AM
|
#1 |
|
Guest
Posts: n/a
|
ZLob/DNSChanger Trojan now can modify DNS Servers in your SOHO Router
A variant of the ZLob Trojan known as DNSChanger has been known to modify the DNS servers on
your PC. Thus you get directed to malicious web sites instead of the web site you are trying to get to. Now there is a variant of the DNSChanger, installer ~300KB, that can use TCP port 80 and a dictionary of passwords to modify the DNS Server list on SOHO Routers. -- Dave Multi-AV - |
|
|
14-06-2008, 03:55 AM
|
#2 |
|
Guest
Posts: n/a
|
Re: ZLob/DNSChanger Trojan now can modify DNS Servers in your SOHO Router
I always update my anti-virus software regularly so I should be OK.
Thanks for the news anyway. -- PC Slowing Down? Hardware Problems? "David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message news:uiB4k.19$TL6.16@trnddc01... >A variant of the ZLob Trojan known as DNSChanger has been known to modify >the DNS servers on > your PC. Thus you get directed to malicious web sites instead of the web > site you are > trying to get to. > > Now there is a variant of the DNSChanger, installer ~300KB, that can use > TCP port 80 and a > dictionary of passwords to modify the DNS Server list on SOHO Routers. > > > > > -- > Dave > > Multi-AV - > > |
|
|
|
14-06-2008, 05:50 AM
|
#3 |
|
Guest
Posts: n/a
|
Re: ZLob/DNSChanger Trojan now can modify DNS Servers in your SOHO Router
There are other exploits that do this as well. The best protection against
this is to use a strong password on your router. -- Kerry Brown "Andrew McGovern" <.uk> wrote in message news:5lB4k.78830$cL6.22385@newsfe27.ams2... >I always update my anti-virus software regularly so I should be OK. > > Thanks for the news anyway. > > -- > PC Slowing Down? Hardware Problems? > > > > "David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message > news:uiB4k.19$TL6.16@trnddc01... >>A variant of the ZLob Trojan known as DNSChanger has been known to modify >>the DNS servers on >> your PC. Thus you get directed to malicious web sites instead of the web >> site you are >> trying to get to. >> >> Now there is a variant of the DNSChanger, installer ~300KB, that can use >> TCP port 80 and a >> dictionary of passwords to modify the DNS Server list on SOHO Routers. >> >> >> >> >> -- >> Dave >> >> Multi-AV - >> >> > > |
|
|
|
14-06-2008, 06:52 AM
|
#4 |
|
Guest
Posts: n/a
|
Re: ZLob/DNSChanger Trojan now can modify DNS Servers in your SOHO Router
From: "Kerry Brown" <kerry@kdbNOSPAMsys-tems.c*a*m>
| There are other exploits that do this as well. The best protection against | this is to use a strong password on your router. | Yes. There have been discussions about SOAP in conjunction with uPnP. However using uPnP you may be able to bypass the TCP port 80 authentication. -- Dave Multi-AV - |
|
|
|
14-06-2008, 10:51 AM
|
#5 |
|
Guest
Posts: n/a
|
Re: ZLob/DNSChanger Trojan now can modify DNS Servers in your SOHO Router
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:x3E4k.13213$8q2.5746@trnddc02... > From: "Kerry Brown" <kerry@kdbNOSPAMsys-tems.c*a*m> > > | There are other exploits that do this as well. The best protection > against > | this is to use a strong password on your router. > | > > Yes. There have been discussions about SOAP in conjunction with uPnP. > However using uPnP > you may be able to bypass the TCP port 80 authentication. > And turn off uPnP. I forgot about that. It's the first thing I do with anything I set up that may have it enabled. If you can believe this Microsoft wants uPnP turned on so they can automagically configure the router with the still in beta SBS 2008. Trustworthy computing :-) -- Kerry Brown |
|
|
|
| Thread Tools | |
| Display Modes | |
|
|
< Windows Help - MS Office Help - Hardware Support >
| New To Site? | Need Help? |
Linear Mode
