Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSpark New Zealand (including Skinny and BigPipe)unable to acess Spark HG659b router web page
Davoid

173 posts

Master Geek
+1 received by user: 37

Lifetime subscriber

#272005 5-Jun-2020 10:23
Send private message

Hello,

 

As of this morning, I cannot open my Spark router (HG659b) web page as Bitdefender now blocks it with the following message.

 

"http://192.168.1.254/atpscriptall_/lang/en/device_info_res.js/lang/en/user_login_res.js/lang/en/wizard_res.js/lib/base64.js/js/user_login.js?HG659bHG659bV100R001C227B0221234567890 Threat name: JS:Trojan.Cryxos.391"

 

The Router home page has this listed "Missing translation: UserLogin.GateWay_info"

 

Can anyone give me advice on this or how to remove if it is a threat?

 

It was working fine yesterday and I have run virus scan with Bitdefender, but came back okay.

 

Thanks,

 

David

Create new topic
Lias
5655 posts

Uber Geek
+1 received by user: 3978

ID Verified
Trusted
Lifetime subscriber

  #2499172 5-Jun-2020 16:08
Send private message

Paging @hio77




I'm a geek, a gamer, a dad, a Quic user, and an IT Professional. I have a full rack home lab, size 15 feet, an epic beard and Asperger's. I'm a bit of a Cypherpunk, who believes information wants to be free and the Net interprets censorship as damage and routes around it. If you use my Quic signup you can also use the code R570394EKGIZ8 for free setup. Opinions are my own and not the views of my employer.



hio77
'That VDSL Cat'
13036 posts

Uber Geek
+1 received by user: 3896

ID Verified
Trusted
Lizard Networks
Subscriber

  #2499213 5-Jun-2020 18:13
Send private message

Heya,

 

 

 

Can you confirm for me exactly the version of Bitdefender you have?




#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have. 

Davoid

173 posts

Master Geek
+1 received by user: 37

Lifetime subscriber

  #2499359 6-Jun-2020 05:31
Send private message

Hello hio77,

 

The version I use is Internet Security 2020 build 24.

 

thanks,

 

David



Gordy7
gordy7
2001 posts

Uber Geek
+1 received by user: 505

ID Verified
Lifetime subscriber

  #2499360 6-Jun-2020 07:04
Send private message

Maybe this is it... A search on  Trojan.Cryxos.391  brings up:

 

These trojans are essentially part of a 'call support' or 'tech support' scam ??

 

https://www.f-secure.com/v-descs/trojan_js_cryxos.shtml

 

 




Gordy

 

My first ever AM radio network connection was with a 1MHz AM crystal(OA91) radio receiver.

Davoid

173 posts

Master Geek
+1 received by user: 37

Lifetime subscriber

  #2499691 6-Jun-2020 15:44
Send private message

Thanks for this Gordy, but I am not getting a popup, just cannot load the router homepage and Bitdefender does not give me any option to delete or quarantine.

Gordy7
gordy7
2001 posts

Uber Geek
+1 received by user: 505

ID Verified
Lifetime subscriber

  #2499697 6-Jun-2020 16:00
Send private message

Davoid:

 

Thanks for this Gordy, but I am not getting a popup, just cannot load the router homepage and Bitdefender does not give me any option to delete or quarantine.

 

 

I had a problem a while back with not being able to log into my HG659 admin web page.

 

It was not a virus/trojan issue like you are reporting.

 

I had been playing about with DMZ or forwarding.

 

I figured that maybe the HG659 admin access was locked out in that situation to prevent someone messing with the HG659 after gaining external access to the LAN.

 

Problem was solved by a hard reset of the HG659 and re-installing the firmware. (one or both of these... can't remember exactly :-)

 

 

 

 

 

 




Gordy

 

My first ever AM radio network connection was with a 1MHz AM crystal(OA91) radio receiver.

HP

 
 
 
 

Shop now for HP laptops and other devices (affiliate link).
hio77
'That VDSL Cat'
13036 posts

Uber Geek
+1 received by user: 3896

ID Verified
Trusted
Lizard Networks
Subscriber

  #2499698 6-Jun-2020 16:06
Send private message

Gordy7:

 

Maybe this is it... A search on  Trojan.Cryxos.391  brings up:

 

These trojans are essentially part of a 'call support' or 'tech support' scam ??

 

https://www.f-secure.com/v-descs/trojan_js_cryxos.shtml

 

 

 

 

Yes, I wonder if it's a false positive or an infected device, but reviewing here.

 

I've not seen any reports through the channels yet.




#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have. 

richms
29098 posts

Uber Geek
+1 received by user: 10209

Trusted
Lifetime subscriber

  #2499722 6-Jun-2020 16:48
Send private message

Can you access the router on another device without bit defender on it?




Richard rich.ms

Davoid

173 posts

Master Geek
+1 received by user: 37

Lifetime subscriber

  #2499968 7-Jun-2020 07:54
Send private message

Thank you all for all your help.

 

Richms I just tried using my Samsung tablet and was able to log into the router home page no problem. Does this mean it is a false positive from Bitdefender?

Davoid

173 posts

Master Geek
+1 received by user: 37

Lifetime subscriber

  #2499970 7-Jun-2020 08:18
Send private message

Okay, have just completely uninstalled Bitdefender and can now access the router page without problems.

Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright