Some malware can change the DNS servers in your router. Malicious DNS servers can direct you to phishing websites.
So make sure that your DNS server addresses in the router are not changed. You can follow these steps to protect your router from such malware :
- Restart your router.
- Change the default passwords to strong ones.
- Turn off remote access to your router. (Check your manual). This will disable access to your router from outside (external IP addresses).
- Check the DNS server addresses (again check your manual). See if these are same as your ISP provided (contact your ISP). Usually you have 2 DNS servers set in your router. When you are in doubt you can use Google public DNS servers 126.96.36.199 and 188.8.131.52
- Save the settings in your router. Your router will(should) restart automatically.
One way to check whether your router is accessible is from outside (from an external IP) is :
- Find out your IP address (when you are online) using http://www.whatismyip.com/
- Then visit, http://www.dnstools.com/
and choose option check port 80
then put in your IP address you earlier found. Click GO
- If you get Connected successfully to port 80.
Then your router is accessible from outside (not good - change your router settings).
Edited by Romeo29, 15 November 2010 - 11:29 PM.