BleepingComputer.com: Unknown Malware Infection-changed permissions, corrupted program files

Hi,
thanks for letting me know.


The rouer reset should not knock you offline, but I know that unexpected things can happen and totally understand that you want to wait until you have the peace of mind to handle this.

regards myrti

I'm finally back! The router reset did knock me offline and I could not get it to work again once I reset it, all I could get was a fast flashing on and off of the lights on it. I finally was able to get my son to fix it, but before the reset I could no longer even sign onto bleepingcomputer.com nor could I properly view any webpage that used any java, activex or any enhanced content. The problems also spread to the base computer. While the router was down I had to connect the base computer directly to the modem and its problems magically went away. I immediately made sure all securities were properly set and updated all software. on my laptop I had to do a new install of Windows 7 and deleted the the 2 partitions. Basically starting over from scratch. This time once I connected I made sure to get the windows updates needed first then I got Microsoft security essentials, since I was able to get it directly from Microsoft's website, I figured the risk was lower, I didn't want to risk surfing the web or doing any searches. Once we got the router back up and running I set all the security settings to the most secure possible I also learned something new , which I feel should be the DEFAULT setting on routers and at the very LEAST clearly explained to consumers, and that is to turn OFF SSID broadcasting. For those that don't know (like I didn't) that makes it so you have to KNOW your SSID to connect to your network, sure you have to set up and connect manually the first time but my gosh its SOOO much more secure!!!! Anyway I think I have the problems fixed, it appears the router was what was infected all along and it was never my laptop or at least not directly. Who knew?! I also ended up having to do a factory reset on my other desktop (going to update that thread next) I just couldn't take a chance on connecting it to the router and re-infecting the whole network again. Wow this is some really scarey, major stuff and I am shocked there is so little info out there about it!

Any thing you would like me to run for you to check? As I said everything seems to be working great now, all systems are faster, cleaner (since I pretty much wiped everything out) All software updates easily including security software. Our IT guy at work is the one who suggested Microsoft Security Essentials, he said it was really good, I would love to know what you and the others here at BC opinion is on it?

many many thanks! I would NEVER have been able to figure it out without your help and knowledge, I had no idea a router could even get infected! BLESS YOU, BLESS YOU, BLESS YOU!!!

I would like to make a donation but I cannot set up a PayPal account as I do not have my own bank account, is there a way to mail a donation? A money order? I would really like to donate because as I said there is no way I could have fixed it and I would have been paying 120.00 plus to have my laptop cleaned at Best Buy just to bring it home and have it get reinfected from the router!

Hi,

sorry for the delay. Easter week-end over extended a little.

I'm happy to hear that you got things sorted, even though it sounds as if you had a rough time sorting things. The router is infected through a PC attached to it, meaning that one of the PCs that were connected to it must have been infected at one point. Though not necessarily still at the point when we started investigating your problems.

I'll PM you about the donation as I don't think paypal accepts money orders and I live in Europe, which would make mailing quite expensive.

regards myrti