Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




107 posts

Master Geek


# 133421 21-Oct-2013 22:57
Send private message

I was testing a malware solution in a virtual machine. And I came across a horrible virus! and since it was a vm I wasn't all that worried, until it prompted me for my router admin user name and password.  I was all freaking out at that point.  So I cleaned the vm as much as I could.  Trying to do something, yet after I removed all the vm files.  I went on my router settings, everything seemed pretty fine until I came across the system configuration.  It said the service name was: Routed PPPoA on 0/100 (modified by user) this really got me thinking that the malware modified my modem settings! and web browsing interception was enabled.  I am on Telecom Broadband and my Modem Router is a Technicolor TG582n.  So I'm not sure if this is standard settings or not. I am a total rookie with servers, so I'm asking if you guys know anything about this.  The Virus also deleted Windows Defender in the vm and just ruined windows firewall.  I also got all the alerts of the same websites being blocked by malwarebytes.  Feel free to ask for any questions if you want.  Thanks. Cya :)

Create new topic
Mr Snotty
8920 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 919472 21-Oct-2013 23:36
Send private message

Erm, you've got nothing to worry about, your modem is fine. In future understand how to VM if you're ever going to be testing malware in a VM, so create snapshots before, run the VM in a separate NAT or without network access and if you don't know what this means just simply never do it again since I guarantee you're testing this malware on a Windows PC running Virtualbox or something and are at risk of your host PC becoming infected.

Your modem settings are untouched, don't play with fire unless if you know how to put it out.




597 posts

Ultimate Geek


  # 919474 21-Oct-2013 23:40
3 people support this post
Send private message

Yes. The FBI is now watching everything you say and do. That's how they gain access, it just looks like a virus but it's the FBI playing tricks with help from the NSA.

On a more serious note, you should go to the netsafe website and learn the do's and dont's about using the Internet.
Here's an article that might help you: http://www.netsafe.org.nz/how-can-i-security-check-my-computer/

I highly doubt that you got a virus that infected your modem, if you're worried just do a factory reset (make sure you have the correct details to set it up again). That will wipe it completely.

If you're still worried that it's infected you could smash it with a hammer and buy a new one.




Regards
Stefan Andres Charsley

 
 
 
 


8035 posts

Uber Geek

Trusted

  # 919750 22-Oct-2013 15:21
One person supports this post
Send private message

I wouldn't be surprised if the Technicolor was vulnerable to some kind of upnp igd exploit, from a virus infected machine via upnp igd it's possible to request changes in the router like port forwards. It would depend on what the router's upnp server allowed.

Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Chorus to launch Hyperfibre service
Posted 18-Nov-2019 15:00


Microsoft launches first Experience Center worldwide for Asia Pacific in Singapore
Posted 13-Nov-2019 13:08


Disney+ comes to LG Smart TVs
Posted 13-Nov-2019 12:55


Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19


Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48


CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42


Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41


Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30


BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14


Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24


2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35


New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13


OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32


Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27


D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.