Malware Attacking Your Router?

[Guest ~BD~]

"Instead of installing malware that continues to run like a key logger or

trojan, malicious programs are increasingly attacking the network router

which is common with any internet connected home and/or office. An unwanted

program can quickly make a change to your router settings that will

immediately open all your computers to the world. The bad guys won't have to

install a key logger, they'll be able to record every byte that goes across

your network. It's happening now to thousands of routers which are still

using their default name and password."

 

So begins a recent item by Bill Pytlovany. Full detail here:-

http://billpstudios.blogspot.com/2008/06/m...our-router.html

 

Comments invited here!

 

Dave

[Guest Leythos]

In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

says...

[snip]<span style="color:blue">

> Comments invited here!</span>

 

Try posting to usenet for a few years before spamming Usenet.

 

 

--

- Igitur qui desiderat pacem, praeparet bellum.

- Calling an illegal alien an "undocumented worker" is like calling a

drug dealer an "unlicensed pharmacist"

spam999free@rrohio.com (remove 999 for proper email address)

[Guest ~BD~]

"Leythos" <void@nowhere.lan> wrote in message

news:1213995318_86351@news.usenet.com...<span style="color:blue">

> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

> says...

> [snip]<span style="color:green">

>> Comments invited here!</span>

>

> Try posting to usenet for a few years before spamming Usenet.

>

>

> --

> - Igitur qui desiderat pacem, praeparet bellum.

> - Calling an illegal alien an "undocumented worker" is like calling a

> drug dealer an "unlicensed pharmacist"

> spam999free@rrohio.com (remove 999 for proper email address)

></span>

 

I'd be grateful if you would explain your comment, Leythos. Do you not agree

with the content of the item I posted?

 

Dave

[Guest David H. Lipman]

From: "~BD~" <~BD~@nospam.invalid>

 

<span style="color:blue"><span style="color:green">

>></span></span>

| I'd be grateful if you would explain your comment, Leythos. Do you not agree

| with the content of the item I posted?

|

| Dave

|

 

Please don't Multi-Post.

Please learn to Cross-Post to pertinent, On Topic, News Groups instead.

 

 

--

Dave

http://www.claymania.com/removal-trojan-adware.html

Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

[Guest Leythos]

In article <ed#IHjw0IHA.5944@TK2MSFTNGP04.phx.gbl>, ~BD~@nospam.invalid

says...<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

> > In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

> > says...

> > [snip]<span style="color:darkred">

> >> Comments invited here!</span>

> >

> > Try posting to usenet for a few years before spamming Usenet.

> >

> >

> > --

> > - Igitur qui desiderat pacem, praeparet bellum.

> > - Calling an illegal alien an "undocumented worker" is like calling a

> > drug dealer an "unlicensed pharmacist"

> > spam999free@rrohio.com (remove 999 for proper email address)

> ></span>

>

> I'd be grateful if you would explain your comment, Leythos. Do you not agree

> with the content of the item I posted?</span>

 

First, your lack understanding about and use of Usenet, including your

broken Usenet client, is a good indicator that you're not highly

technical or of a base that understands the Net well enough to be

starting a blog to help people that you hope to see your message in

here.

 

You asked for comments, and being 100% honest and blunt, which many PC

liberal types can't handle, I stated that you should post to usenet for

a few years before you start spamming Usenet... with your blog.

 

--

- Igitur qui desiderat pacem, praeparet bellum.

- Calling an illegal alien an "undocumented worker" is like calling a

drug dealer an "unlicensed pharmacist"

spam999free@rrohio.com (remove 999 for proper email address)

[Guest David H. Lipman]

From: "Leythos" <void@nowhere.lan>

 

 

|

| First, your lack understanding about and use of Usenet, including your

| broken Usenet client, is a good indicator that you're not highly

| technical or of a base that understands the Net well enough to be

| starting a blog to help people that you hope to see your message in

| here.

|

| You asked for comments, and being 100% honest and blunt, which many PC

| liberal types can't handle, I stated that you should post to usenet for

| a few years before you start spamming Usenet... with your blog.

|

 

Leythos:

 

In all honesty, it isn't "his" Blog. It is by Bill P. author of WinPatrol.

WinPatrol is a trusted anti malware utility.

 

--

Dave

http://www.claymania.com/removal-trojan-adware.html

Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

[Guest Root Kit]

On Fri, 20 Jun 2008 21:17:35 -0400, "David H. Lipman"

<DLipman~nospam~@Verizon.Net> wrote:

<span style="color:blue">

>WinPatrol is a trusted anti malware utility.</span>

 

There is no such thing as a trusted anti malware utility.

[Guest MAP]

~BD~ wrote:<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>,

>> ~BD~@nospam.invalid says...

>> [snip]<span style="color:darkred">

>>> Comments invited here!</span>

>>

>> Try posting to usenet for a few years before spamming Usenet.

>>

>>

>> --

>> - Igitur qui desiderat pacem, praeparet bellum.

>> - Calling an illegal alien an "undocumented worker" is like calling a

>> drug dealer an "unlicensed pharmacist"

>> spam999free@rrohio.com (remove 999 for proper email address)

>></span>

>

> I'd be grateful if you would explain your comment, Leythos. Do you

> not agree with the content of the item I posted?</span>

 

 

 

Remember BD "No good deed will ever go unpunished".

 

This is one reason why I hardly ever post here anymore, the person I'm

trying to help never answers and I get cra_ from others, I was thinking of

posting that link a couple of days ago because it is worth knowing, now you

know why I didn't. But thank you.

 

 

--

Mike Pawlak

[Guest Leythos]

In article <elkiYyz0IHA.2224@TK2MSFTNGP05.phx.gbl>,

DLipman~nospam~@Verizon.Net says...<span style="color:blue">

> From: "Leythos" <void@nowhere.lan>

>

>

> |

> | First, your lack understanding about and use of Usenet, including your

> | broken Usenet client, is a good indicator that you're not highly

> | technical or of a base that understands the Net well enough to be

> | starting a blog to help people that you hope to see your message in

> | here.

> |

> | You asked for comments, and being 100% honest and blunt, which many PC

> | liberal types can't handle, I stated that you should post to usenet for

> | a few years before you start spamming Usenet... with your blog.

> |

>

> Leythos:

>

> In all honesty, it isn't "his" Blog. It is by Bill P. author of WinPatrol.

> WinPatrol is a trusted anti malware utility.</span>

 

It appeared to be the same as all other other spams and since I didn't

recognize the poster I made the comment accordingly.

 

I rarely see the need to advertise a blog in this group like was done,

but putting a reputable blog in a sig or posting links in response to

people needing help is always a good thing.

 

If it had not been posted in the same light as other spams I would not

have replied the way I did. Any of us that have been around for years

know how to properly post to usenet, including snipping sigs, even if we

had to snip manually.... normally a good indicator that the poster is

not familiar with Usenet which means they've not been here long.

 

So far I've not seen any reply from the person that indicates I was

wrong, just questioning my post without an explanation of their reason.

 

--

- Igitur qui desiderat pacem, praeparet bellum.

- Calling an illegal alien an "undocumented worker" is like calling a

drug dealer an "unlicensed pharmacist"

spam999free@rrohio.com (remove 999 for proper email address)

[Guest Leythos]

In article <O1$uu$20IHA.5300@TK2MSFTNGP06.phx.gbl>,

mikepawlak2REM@OVEhotmail.com says...

[snip]<span style="color:blue">

>

>

> Remember BD "No good deed will ever go unpunished".

>

> This is one reason why I hardly ever post here anymore, the person I'm

> trying to help never answers and I get cra_ from others, I was thinking of

> posting that link a couple of days ago because it is worth knowing, now you

> know why I didn't. But thank you.</span>

 

If your post didn't look like spam and the link was to a reputable site,

why would anyone be critical of it?

 

 

--

- Igitur qui desiderat pacem, praeparet bellum.

- Calling an illegal alien an "undocumented worker" is like calling a

drug dealer an "unlicensed pharmacist"

spam999free@rrohio.com (remove 999 for proper email address)

[Guest What's in a Name?]

In news:ah5p54ls5gpb3875fkobvqfe7557hqgubj@4ax.com,

Root Kit,whose name means 'bottom feeder', after much thought,came up with

this jewel:<span style="color:blue">

> On Fri, 20 Jun 2008 21:17:35 -0400, "David H. Lipman"

> <DLipman~nospam~@Verizon.Net> wrote:

><span style="color:green">

>> WinPatrol is a trusted anti malware utility.</span>

>

> There is no such thing as a trusted anti malware utility.</span>

 

ok-I'll bite...So how would you describe WinPatrol?

--

Virus Removal http://max.shplink.com/removal.html

I block all spam/googlegroupers-you can too!

http://improve-usenet.org/index.html

Change nomail.afraid.org to gmail.com to reply by email.

[Guest jen]

"Leythos" <void@nowhere.lan> wrote in message

news:1213995318_86351@news.usenet.com...<span style="color:blue">

> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>,

> ~BD~@nospam.invalid

> says...[clueless snip restored]:</span>

 

"Instead of installing malware that continues to run like a key logger

or

trojan, malicious programs are increasingly attacking the network router

which is common with any internet connected home and/or office. An

unwanted

program can quickly make a change to your router settings that will

immediately open all your computers to the world. The bad guys won't

have to

install a key logger, they'll be able to record every byte that goes

across

your network. It's happening now to thousands of routers which are still

using their default name and password."

 

So begins a recent item by Bill Pytlovany. Full detail here:-

http://billpstudios.blogspot.com/2008/06/m...our-router.html

 

Comments invited here!

 

Dave

<span style="color:blue">

> Try posting to usenet for a few years before spamming Usenet.</span>

 

LOL! If you are so Usenet savvy, how come you don't know this is

"Boater Dave", is not spam(look up the definition) and don't seem to

even know who the author of the Blog is? I've very rarely seen you

post anything helpful or relevant, preferring instead to post your

"rebuttals" (pun intended) to PCButts1's posts ad nauseum...

Get a clue!

 

HTH,

-jen

[Guest ~BD~]

"jen" <jen@example.com> wrote in message

news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>> says...[clueless snip restored]:</span>

>

> "Instead of installing malware that continues to run like a key logger or

> trojan, malicious programs are increasingly attacking the network router

> which is common with any internet connected home and/or office. An

> unwanted

> program can quickly make a change to your router settings that will

> immediately open all your computers to the world. The bad guys won't have

> to

> install a key logger, they'll be able to record every byte that goes

> across

> your network. It's happening now to thousands of routers which are still

> using their default name and password."

>

> So begins a recent item by Bill Pytlovany. Full detail here:-

> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>

> Comments invited here!

>

> Dave

><span style="color:green">

>> Try posting to usenet for a few years before spamming Usenet.</span>

>

> LOL! If you are so Usenet savvy, how come you don't know this is "Boater

> Dave", is not spam(look up the definition) and don't seem to even know

> who the author of the Blog is? I've very rarely seen you post

> anything helpful or relevant, preferring instead to post your

> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

> Get a clue!

>

> HTH,

> -jen</span>

 

Thank you for responding in this maner 'jen'. Everything I've ever seen

you post has been helpful and relevant ....... and I hope, by now, you

know that BoaterDave (yes, me!) wants nothing more than the bad guys hung

out to dry. I'd be grateful if you would take a look at the response to my

post (identical) placed in 'microsoft.public.security.homeusers' - the reply

is from Kerry Brown (aka TechB) who doesn't seem to think this a serious

threat. Perhaps you could respond in each group thereafter.

 

TIA

 

Dave

[Guest ~BD~]

"Leythos" <void@nowhere.lan> wrote in message

news:1214059915_86441@news.usenet.com...<span style="color:blue">

> In article <elkiYyz0IHA.2224@TK2MSFTNGP05.phx.gbl>,

> DLipman~nospam~@Verizon.Net says...<span style="color:green">

>> From: "Leythos" <void@nowhere.lan>

>>

>>

>> |

>> | First, your lack understanding about and use of Usenet, including your

>> | broken Usenet client, is a good indicator that you're not highly

>> | technical or of a base that understands the Net well enough to be

>> | starting a blog to help people that you hope to see your message in

>> | here.

>> |

>> | You asked for comments, and being 100% honest and blunt, which many PC

>> | liberal types can't handle, I stated that you should post to usenet for

>> | a few years before you start spamming Usenet... with your blog.

>> |

>>

>> Leythos:

>>

>> In all honesty, it isn't "his" Blog. It is by Bill P. author of

>> WinPatrol.

>> WinPatrol is a trusted anti malware utility.</span>

>

> It appeared to be the same as all other other spams and since I didn't

> recognize the poster I made the comment accordingly.

>

> I rarely see the need to advertise a blog in this group like was done,

> but putting a reputable blog in a sig or posting links in response to

> people needing help is always a good thing.

>

> If it had not been posted in the same light as other spams I would not

> have replied the way I did. Any of us that have been around for years

> know how to properly post to usenet, including snipping sigs, even if we

> had to snip manually.... normally a good indicator that the poster is

> not familiar with Usenet which means they've not been here long.

>

> So far I've not seen any reply from the person that indicates I was

> wrong, just questioning my post without an explanation of their reason.

>

> --

> - Igitur qui desiderat pacem, praeparet bellum.

> - Calling an illegal alien an "undocumented worker" is like calling a

> drug dealer an "unlicensed pharmacist"

> spam999free@rrohio.com (remove 999 for proper email address)</span>

 

I forgive you, Leythos! <wink>

 

Dave

[Guest ~BD~]

"MAP" <mikepawlak2REM@OVEhotmail.com> wrote in message

news:O1$uu$20IHA.5300@TK2MSFTNGP06.phx.gbl...<span style="color:blue">

> ~BD~ wrote:<span style="color:green">

>> "Leythos" <void@nowhere.lan> wrote in message

>> news:1213995318_86351@news.usenet.com...<span style="color:darkred">

>>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>,

>>> ~BD~@nospam.invalid says...

>>> [snip]

>>>> Comments invited here!

>>>

>>> Try posting to usenet for a few years before spamming Usenet.

>>>

>>>

>>> --

>>> - Igitur qui desiderat pacem, praeparet bellum.

>>> - Calling an illegal alien an "undocumented worker" is like calling a

>>> drug dealer an "unlicensed pharmacist"

>>> spam999free@rrohio.com (remove 999 for proper email address)

>>></span>

>>

>> I'd be grateful if you would explain your comment, Leythos. Do you

>> not agree with the content of the item I posted?</span>

>

>

>

> Remember BD "No good deed will ever go unpunished".

>

> This is one reason why I hardly ever post here anymore, the person I'm

> trying to help never answers and I get cra_ from others, I was thinking of

> posting that link a couple of days ago because it is worth knowing, now

> you know why I didn't. But thank you.

>

>

> --

> Mike Pawlak</span>

 

Hello Mike! style_emoticons/

 

Thank you for responding. This place is a minefield for a 'newbie' but it

really doesn't have to be that way. Please stay here and help whenever you

are able! You have my assurance that I will respond to any answer you give

me!

 

Dave

[Guest Sohtyaelehtreklats]

LOL so true.

 

--

Stalking is a Crime

Stalking charges are serious and

almost every state now has a strict stalking law.

 

 

 

 

"jen" <jen@example.com> wrote in message

news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>> says...[clueless snip restored]:</span>

>

> "Instead of installing malware that continues to run like a key logger or

> trojan, malicious programs are increasingly attacking the network router

> which is common with any internet connected home and/or office. An

> unwanted

> program can quickly make a change to your router settings that will

> immediately open all your computers to the world. The bad guys won't have

> to

> install a key logger, they'll be able to record every byte that goes

> across

> your network. It's happening now to thousands of routers which are still

> using their default name and password."

>

> So begins a recent item by Bill Pytlovany. Full detail here:-

> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>

> Comments invited here!

>

> Dave

><span style="color:green">

>> Try posting to usenet for a few years before spamming Usenet.</span>

>

> LOL! If you are so Usenet savvy, how come you don't know this is "Boater

> Dave", is not spam(look up the definition) and don't seem to even know

> who the author of the Blog is? I've very rarely seen you post

> anything helpful or relevant, preferring instead to post your

> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

> Get a clue!

>

> HTH,

> -jen

> </span>

[Guest Leythos]

In article <OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl>, jen@example.com

says...<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

> > In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>,

> > ~BD~@nospam.invalid

> > says...[clueless snip restored]:</span>

>

> "Instead of installing malware that continues to run like a key logger

> or

> trojan, malicious programs are increasingly attacking the network router

> which is common with any internet connected home and/or office. An

> unwanted

> program can quickly make a change to your router settings that will

> immediately open all your computers to the world. The bad guys won't

> have to

> install a key logger, they'll be able to record every byte that goes

> across

> your network. It's happening now to thousands of routers which are still

> using their default name and password."

>

> So begins a recent item by Bill Pytlovany. Full detail here:-

> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>

> Comments invited here!

>

> Dave

> <span style="color:green">

> > Try posting to usenet for a few years before spamming Usenet.</span>

>

> LOL! If you are so Usenet savvy, how come you don't know this is

> "Boater Dave", is not spam(look up the definition) and don't seem to

> even know who the author of the Blog is?</span>

 

I don't know BD and I didn't visit the blog, there was no reason. It's

that simple and nothing more.

<span style="color:blue">

> I've very rarely seen you

> post anything helpful or relevant, preferring instead to post your

> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

> Get a clue!</span>

 

Unlike you, I can live with being wrong and have been in the past. The

post appeared to be spam and was improperly formatted in a reply, like

your post is not properly quoting the text you quoted.

 

So, yes, it appears that BD is a good member, that the blog is

reputable, but, I had not seen either before and took it for face value.

 

Maybe you can get your Usenet interface fixed while you ponder the

simple misunderstanding because of a lack of explanation.

 

--

- Igitur qui desiderat pacem, praeparet bellum.

- Calling an illegal alien an "undocumented worker" is like calling a

drug dealer an "unlicensed pharmacist"

spam999free@rrohio.com (remove 999 for proper email address)

[Guest ---Fitz---]

I wondered when you would show up using a new nick, Chris.

 

"Sohtyaelehtreklats" <toidi@tpap.com> wrote in message

news:xic7k.5127$L_.4863@flpi150.ffdc.sbc.com...<span style="color:blue">

> LOL so true.

>

> --

> Stalking is a Crime

> Stalking charges are serious and

> almost every state now has a strict stalking law.

>

>

>

>

> "jen" <jen@example.com> wrote in message

> news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:green">

>> "Leythos" <void@nowhere.lan> wrote in message

>> news:1213995318_86351@news.usenet.com...<span style="color:darkred">

>>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>>> says...[clueless snip restored]:</span>

>>

>> "Instead of installing malware that continues to run like a key logger or

>> trojan, malicious programs are increasingly attacking the network router

>> which is common with any internet connected home and/or office. An

>> unwanted

>> program can quickly make a change to your router settings that will

>> immediately open all your computers to the world. The bad guys won't have

>> to

>> install a key logger, they'll be able to record every byte that goes

>> across

>> your network. It's happening now to thousands of routers which are still

>> using their default name and password."

>>

>> So begins a recent item by Bill Pytlovany. Full detail here:-

>> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>>

>> Comments invited here!

>>

>> Dave

>><span style="color:darkred">

>>> Try posting to usenet for a few years before spamming Usenet.</span>

>>

>> LOL! If you are so Usenet savvy, how come you don't know this is "Boater

>> Dave", is not spam(look up the definition) and don't seem to even know

>> who the author of the Blog is? I've very rarely seen you post

>> anything helpful or relevant, preferring instead to post your

>> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

>> Get a clue!

>>

>> HTH,

>> -jen

>></span>

></span>

[Guest Kerry Brown]

"~BD~" <~BD~@nospam.invalid> wrote in message

news:%23FFMn280IHA.5832@TK2MSFTNGP02.phx.gbl...<span style="color:blue">

>

> "jen" <jen@example.com> wrote in message

> news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:green">

>> "Leythos" <void@nowhere.lan> wrote in message

>> news:1213995318_86351@news.usenet.com...<span style="color:darkred">

>>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>>> says...[clueless snip restored]:</span>

>>

>> "Instead of installing malware that continues to run like a key logger or

>> trojan, malicious programs are increasingly attacking the network router

>> which is common with any internet connected home and/or office. An

>> unwanted

>> program can quickly make a change to your router settings that will

>> immediately open all your computers to the world. The bad guys won't have

>> to

>> install a key logger, they'll be able to record every byte that goes

>> across

>> your network. It's happening now to thousands of routers which are still

>> using their default name and password."

>>

>> So begins a recent item by Bill Pytlovany. Full detail here:-

>> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>>

>> Comments invited here!

>>

>> Dave

>><span style="color:darkred">

>>> Try posting to usenet for a few years before spamming Usenet.</span>

>>

>> LOL! If you are so Usenet savvy, how come you don't know this is "Boater

>> Dave", is not spam(look up the definition) and don't seem to even know

>> who the author of the Blog is? I've very rarely seen you post

>> anything helpful or relevant, preferring instead to post your

>> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

>> Get a clue!

>>

>> HTH,

>> -jen</span>

>

> Thank you for responding in this maner 'jen'. Everything I've ever seen

> you post has been helpful and relevant ....... and I hope, by now, you

> know that BoaterDave (yes, me!) wants nothing more than the bad guys hung

> out to dry. I'd be grateful if you would take a look at the response to my

> post (identical) placed in 'microsoft.public.security.homeusers' - the

> reply is from Kerry Brown (aka TechB) who doesn't seem to think this a

> serious threat. Perhaps you could respond in each group thereafter.

>

> TIA

>

> Dave

></span>

 

 

If you wish to reply to me please do so in person. Read my post again. I do

take this threat seriously. What the threat can do has been exaggerated in

the blog you posted a link to. The seriousness of the threat is not in

question. I've been warning people about this for quite a while.

 

--

Kerry Brown

MS-MVP - Windows Desktop Experience: Systems Administration

http://www.vistahelp.ca/phpBB2/

[Guest Peter Foldes]

See if this will help you understand Dave

http://www.blakjak.demon.co.uk/mul_crss.htm

--

Peter

 

Please Reply to Newsgroup for the benefit of others

Requests for assistance by email can not and will not be acknowledged.

 

"~BD~" <~BD~@nospam.invalid> wrote in message news:ed%23IHjw0IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:blue">

> "Leythos" <void@nowhere.lan> wrote in message

> news:1213995318_86351@news.usenet.com...<span style="color:green">

>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>> says...

>> [snip]<span style="color:darkred">

>>> Comments invited here!</span>

>>

>> Try posting to usenet for a few years before spamming Usenet.

>>

>>

>> --

>> - Igitur qui desiderat pacem, praeparet bellum.

>> - Calling an illegal alien an "undocumented worker" is like calling a

>> drug dealer an "unlicensed pharmacist"

>> spam999free@rrohio.com (remove 999 for proper email address)

>></span>

>

> I'd be grateful if you would explain your comment, Leythos. Do you not agree

> with the content of the item I posted?

>

> Dave

>

></span>

[Guest ~BD~]

"Peter Foldes" <okf22@hotmail.com> wrote in message

news:u2lI$o90IHA.800@TK2MSFTNGP02.phx.gbl...

See if this will help you understand Dave

http://www.blakjak.demon.co.uk/mul_crss.htm

--

Peter

 

Please Reply to Newsgroup for the benefit of others

Requests for assistance by email can not and will not be acknowledged.

 

 

 

Hello Peter Foldes!

 

Thank you for trying to help. I'm afraid, though, that when I copy and paste

the link you provided into either IE7 or my AOL browser, the page cannot be

found.

 

I'd be interested to know whether or not the link (when copied/pasted) works

for anyone else. Please advise. TIA.

 

Should I simply click on the link ............ and go wherever it may take

me? Hmmmm (stroking chin!)

 

Dave

[Guest ~BD~]

"Kerry Brown" <kerry@kdbNOSPAMsys-tems.c a m> wrote in message

news:6EB2935C-B3C7-42F9-A914-ABF91E226C67@microsoft.com...<span style="color:blue">

> "~BD~" <~BD~@nospam.invalid> wrote in message

> news:%23FFMn280IHA.5832@TK2MSFTNGP02.phx.gbl...<span style="color:green">

>>

>> "jen" <jen@example.com> wrote in message

>> news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...<span style="color:darkred">

>>> "Leythos" <void@nowhere.lan> wrote in message

>>> news:1213995318_86351@news.usenet.com...

>>>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>, ~BD~@nospam.invalid

>>>> says...[clueless snip restored]:

>>>

>>> "Instead of installing malware that continues to run like a key logger

>>> or

>>> trojan, malicious programs are increasingly attacking the network router

>>> which is common with any internet connected home and/or office. An

>>> unwanted

>>> program can quickly make a change to your router settings that will

>>> immediately open all your computers to the world. The bad guys won't

>>> have to

>>> install a key logger, they'll be able to record every byte that goes

>>> across

>>> your network. It's happening now to thousands of routers which are still

>>> using their default name and password."

>>>

>>> So begins a recent item by Bill Pytlovany. Full detail here:-

>>> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>>>

>>> Comments invited here!

>>>

>>> Dave

>>>

>>>> Try posting to usenet for a few years before spamming Usenet.

>>>

>>> LOL! If you are so Usenet savvy, how come you don't know this is

>>> "Boater Dave", is not spam(look up the definition) and don't seem to

>>> even know who the author of the Blog is? I've very rarely seen you

>>> post anything helpful or relevant, preferring instead to post your

>>> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

>>> Get a clue!

>>>

>>> HTH,

>>> -jen</span>

>>

>> Thank you for responding in this maner 'jen'. Everything I've ever seen

>> you post has been helpful and relevant ....... and I hope, by now, you

>> know that BoaterDave (yes, me!) wants nothing more than the bad guys hung

>> out to dry. I'd be grateful if you would take a look at the response to

>> my post (identical) placed in 'microsoft.public.security.homeusers' - the

>> reply is from Kerry Brown (aka TechB) who doesn't seem to think this a

>> serious threat. Perhaps you could respond in each group thereafter.

>>

>> TIA

>>

>> Dave

>></span>

>

>

> If you wish to reply to me please do so in person. Read my post again. I

> do take this threat seriously. What the threat can do has been exaggerated

> in the blog you posted a link to. The seriousness of the threat is not in

> question. I've been warning people about this for quite a while.

>

> --

> Kerry Brown

> MS-MVP - Windows Desktop Experience: Systems Administration

> http://www.vistahelp.ca/phpBB2/

>

></span>

 

Hello Kerry Brown/TechB!

 

You mentioned "They could redirect you to sites ....... "

 

Indeed - it appears that might well happen! You mention spyware, but I

suspect that one might be sent to URL's which will download malware

surrepticiously onto one's computer without the knowledge of the user. I

fully appreciate that the appropriation of a router does not itself load

malware onto a computer, but there is only one more step required to ensnare

the associated machines!

 

I'm pleased that you dropped by here. I was just about to reply to you in

the 'homeusers' group to tell you that I was involved in discussion here. I

am delighted to learn that you agree that the threat is real ........ and

very dangerous!

 

What is needed is some simple indication that a router has actually been

compromised - so that a user may take steps to format/reinstall their

operating system(s) and start afresh!

 

Any ideas on how one might be able to tell if a router has been 'got at'?

 

I suspect there is no such indicator! style_emoticons/

 

Dave

[Guest Kerry Brown]

"~BD~" <~BD~@nospam.invalid> wrote in message

news:ukg00d%230IHA.3920@TK2MSFTNGP02.phx.gbl...<span style="color:blue">

>

> "Kerry Brown" <kerry@kdbNOSPAMsys-tems.c a m> wrote in message

> news:6EB2935C-B3C7-42F9-A914-ABF91E226C67@microsoft.com...<span style="color:green">

>> "~BD~" <~BD~@nospam.invalid> wrote in message

>> news:%23FFMn280IHA.5832@TK2MSFTNGP02.phx.gbl...<span style="color:darkred">

>>>

>>> "jen" <jen@example.com> wrote in message

>>> news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...

>>>> "Leythos" <void@nowhere.lan> wrote in message

>>>> news:1213995318_86351@news.usenet.com...

>>>>> In article <eTtSYAw0IHA.4004@TK2MSFTNGP03.phx.gbl>,

>>>>> ~BD~@nospam.invalid

>>>>> says...[clueless snip restored]:

>>>>

>>>> "Instead of installing malware that continues to run like a key logger

>>>> or

>>>> trojan, malicious programs are increasingly attacking the network

>>>> router

>>>> which is common with any internet connected home and/or office. An

>>>> unwanted

>>>> program can quickly make a change to your router settings that will

>>>> immediately open all your computers to the world. The bad guys won't

>>>> have to

>>>> install a key logger, they'll be able to record every byte that goes

>>>> across

>>>> your network. It's happening now to thousands of routers which are

>>>> still

>>>> using their default name and password."

>>>>

>>>> So begins a recent item by Bill Pytlovany. Full detail here:-

>>>> http://billpstudios.blogspot.com/2008/06/m...our-router.html

>>>>

>>>> Comments invited here!

>>>>

>>>> Dave

>>>>

>>>>> Try posting to usenet for a few years before spamming Usenet.

>>>>

>>>> LOL! If you are so Usenet savvy, how come you don't know this is

>>>> "Boater Dave", is not spam(look up the definition) and don't seem to

>>>> even know who the author of the Blog is? I've very rarely seen you

>>>> post anything helpful or relevant, preferring instead to post your

>>>> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

>>>> Get a clue!

>>>>

>>>> HTH,

>>>> -jen

>>>

>>> Thank you for responding in this maner 'jen'. Everything I've ever seen

>>> you post has been helpful and relevant ....... and I hope, by now, you

>>> know that BoaterDave (yes, me!) wants nothing more than the bad guys

>>> hung out to dry. I'd be grateful if you would take a look at the

>>> response to my post (identical) placed in

>>> 'microsoft.public.security.homeusers' - the reply is from Kerry Brown

>>> (aka TechB) who doesn't seem to think this a serious threat. Perhaps

>>> you could respond in each group thereafter.

>>>

>>> TIA

>>>

>>> Dave

>>></span>

>>

>>

>> If you wish to reply to me please do so in person. Read my post again. I

>> do take this threat seriously. What the threat can do has been

>> exaggerated in the blog you posted a link to. The seriousness of the

>> threat is not in question. I've been warning people about this for quite

>> a while.

>>

>> --

>> Kerry Brown

>> MS-MVP - Windows Desktop Experience: Systems Administration

>> http://www.vistahelp.ca/phpBB2/

>>

>></span>

>

> Hello Kerry Brown/TechB!

>

> You mentioned "They could redirect you to sites ....... "

>

> Indeed - it appears that might well happen! You mention spyware, but I

> suspect that one might be sent to URL's which will download malware

> surrepticiously onto one's computer without the knowledge of the user. I

> fully appreciate that the appropriation of a router does not itself load

> malware onto a computer, but there is only one more step required to

> ensnare the associated machines!

></span>

 

When they have enough control to compromise your router they could just as

easily have installed malware on your computer if they wanted to. Changing

the DNS settings on your router indicates they probably have other things in

mind. They could redirect you to a fake bank site for instance.

<span style="color:blue">

> I'm pleased that you dropped by here. I was just about to reply to you in

> the 'homeusers' group to tell you that I was involved in discussion here.

> I am delighted to learn that you agree that the threat is real ........

> and very dangerous!

>

> What is needed is some simple indication that a router has actually been

> compromised - so that a user may take steps to format/reinstall their

> operating system(s) and start afresh!

>

> Any ideas on how one might be able to tell if a router has been 'got at'?

>

> I suspect there is no such indicator! style_emoticons/

></span>

 

It's quite easy to tell if a router has been compromised. Check which DNS

servers the router is using. If they aren't from your ISP the router has

been compromised. Formatting or reinstalling your OS would have no affect at

all on this. The wrong DNS settings would still exist in your router.

Flashing the router's firmware then setting a strong password and disabling

uPnP are the steps to take to correct the problem. If you think they

redirected you to a bad site that installed malware then yes, to fix that

you may need to format and reinstall the OS.

 

--

Kerry Brown

MS-MVP - Windows Desktop Experience: Systems Administration

http://www.vistahelp.ca/phpBB2/

[Guest xoactivity@gmail.com]

On Jun 21, 7:01�pm, "Kerry Brown" <ke...@kdbNOSPAMsys-tems.c a m>

wrote:<span style="color:blue">

> "~BD~" <~...@nospam.invalid> wrote in message

>

> news:ukg00d%230IHA.3920@TK2MSFTNGP02.phx.gbl...

>

>

>

>

>

>

><span style="color:green">

> > "Kerry Brown" <ke...@kdbNOSPAMsys-tems.c a m> wrote in message

> >news:6EB2935C-B3C7-42F9-A914-ABF91E226C67@microsoft.com...<span style="color:darkred">

> >> "~BD~" <~...@nospam.invalid> wrote in message

> >>news:%23FFMn280IHA.5832@TK2MSFTNGP02.phx.gbl...</span></span>

><span style="color:green"><span style="color:darkred">

> >>> "jen" <j...@example.com> wrote in message

> >>>news:OCkOkF80IHA.5944@TK2MSFTNGP04.phx.gbl...

> >>>> "Leythos" <v...@nowhere.lan> wrote in message

> >>>>news:1213995318_86351@news.usenet.com...

> >>>>> In article <eTtSYAw0IHA.4...@TK2MSFTNGP03.phx.gbl>,

> >>>>> ~...@nospam.invalid

> >>>>> says...[clueless snip restored]:</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> "Instead of installing malware that continues to run like a key logger

> >>>> or

> >>>> trojan, malicious programs are increasingly attacking the network

> >>>> router

> >>>> which is common with any internet connected home and/or office. An

> >>>> unwanted

> >>>> program can quickly make a change to your router settings that will

> >>>> immediately open all your computers to the world. The bad guys won't

> >>>> have to

> >>>> install a key logger, they'll be able to record every byte that goes

> >>>> across

> >>>> your network. It's happening now to thousands of routers which are

> >>>> still

> >>>> using their default name and password."</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> So begins a recent item by Bill Pytlovany. Full detail here:-

> >>>>http://billpstudios.blogspot.com/2008/06/m...king-your-route....</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> Comments invited here!</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> Dave</span></span>

><span style="color:green"><span style="color:darkred">

> >>>>> Try posting to usenet for a few years before spamming Usenet.</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> LOL! �If you are so Usenet savvy, how come you don't know this is

> >>>> "Boater Dave", is not spam(look up the definition) and don't seem to

> >>>> even know who the author of the Blog is? �I've very rarely seen you

> >>>> post anything helpful or relevant, preferring instead to post your

> >>>> "rebuttals" (pun intended) to PCButts1's posts ad nauseum...

> >>>> Get a clue!</span></span>

><span style="color:green"><span style="color:darkred">

> >>>> HTH,

> >>>> -jen</span></span>

><span style="color:green"><span style="color:darkred">

> >>> Thank you for responding in this maner 'jen'. Everything I've ever seen

> >>> you post has been helpful and relevant ....... and I hope, by now, you

> >>> know that BoaterDave (yes, me!) wants nothing more than the bad guys

> >>> hung out to dry. I'd be grateful if you would take a look at the

> >>> response to my post (identical) placed in

> >>> 'microsoft.public.security.homeusers' - the reply is from Kerry Brown

> >>> (aka TechB) who doesn't seem to think this a serious threat. Perhaps

> >>> you could respond in each group thereafter.</span></span>

><span style="color:green"><span style="color:darkred">

> >>> TIA</span></span>

><span style="color:green"><span style="color:darkred">

> >>> Dave</span></span>

><span style="color:green"><span style="color:darkred">

> >> If you wish to reply to me please do so in person. Read my post again. I

> >> do take this threat seriously. What the threat can do has been

> >> exaggerated in the blog you posted a link to. The seriousness of the

> >> threat is not in question. I've been warning people about this for quite

> >> a while.</span></span>

><span style="color:green"><span style="color:darkred">

> >> --

> >> Kerry Brown

> >> MS-MVP - Windows Desktop Experience: Systems Administration

> >>http://www.vistahelp.ca/phpBB2/</span></span>

><span style="color:green">

> > Hello Kerry Brown/TechB!</span>

><span style="color:green">

> > You mentioned "They could redirect you to sites ....... "</span>

><span style="color:green">

> > Indeed - it appears that might well happen! You mention spyware, but I

> > suspect that one might be sent to URL's which will download malware

> > surrepticiously onto one's computer without the knowledge of the user. I

> > fully appreciate that the appropriation of a router does not itself load

> > malware onto a computer, but there is only one more step required to

> > ensnare the associated machines!</span>

>

> When they have enough control to compromise your router they could just as

> easily have installed malware on your computer if they wanted to. Changing

> the DNS settings on your router indicates they probably have other things in

> mind. They could redirect you to a fake bank site for instance.

><span style="color:green">

> > I'm pleased that you dropped by here. I was just about to reply to you in

> > the 'homeusers' group to tell you that I was involved in discussion here.

> > I am delighted to learn that you agree that the threat is real ........

> > and very dangerous!</span>

><span style="color:green">

> > What is needed is some simple indication that a router has actually been

> > compromised - so that a user may take steps to format/reinstall their

> > operating system(s) and start afresh!</span>

><span style="color:green">

> > Any ideas on how one might be able to tell if a router has been 'got at'?</span>

><span style="color:green">

> > I suspect there is no such indicator! style_emoticons/</span>

>

> It's quite easy to tell if a router has been compromised. Check which DNS

> servers the router is using. If they aren't from your ISP the router has

> been compromised. Formatting or reinstalling your OS would have no affect at

> all on this. The wrong DNS settings would still exist in your router.

> Flashing the router's firmware then setting a strong password and disabling

> uPnP are the steps to take to correct the problem. If you think they

> redirected you to a bad site that installed malware then yes, to fix that

> you may need to format and reinstall the OS.

>

> --

> Kerry Brown

> MS-MVP - Windows Desktop Experience: Systems Administrationhttp://www.vistahelp.ca/phpBB2/- Hide quoted text -

>

> - Show quoted text -</span>

 

 

While I fear that commenting may cause more suspicious views I wanted

to confirm a few things.

 

I don't think I know Dave but I certainly didn't ask him to post a

link to my blog.

I do appreciate that Dave thought my topic earlier this week was worth

discussing. Thanks Dave

I certainly understand how messages could be viewed as spam which is I

why if you search you won't find any posts promoting my blog or

WinPatrol which might appear to be spam.

 

I think anyone who knows me will confirm I'm one of the most reputable

people you'll meet online. Perhaps not the most modest.

The only reason I found this post is because I have Google Alerts set

up to Email me any mentions of WinPatrol.

I appreciate Kerry's adding the discussion with valuable tip. The only

real tip in my blog post was that people need to change their d mn

default password.

 

Lastly, my BitsfromBill blog is non-commercial with the exception of

news about WinPatrol. WinPatrol is free and essentially supported by

the 1% of our users who do upgrade to the paid version.

 

Thanks,

Bill Pytlovany

BillP Studios

[Guest Kerry Brown]

> <span style="color:blue">

> While I fear that commenting may cause more suspicious views I wanted to

> confirm a few things.

>

> I don't think I know Dave but I certainly didn't ask him to post a link

> to my blog.

> I do appreciate that Dave thought my topic earlier this week was worth

> discussing. Thanks Dave

> I certainly understand how messages could be viewed as spam which is I

> why if you search you won't find any posts promoting my blog or

> WinPatrol which might appear to be spam.

>

> I think anyone who knows me will confirm I'm one of the most reputable

> people you'll meet online. Perhaps not the most modest. The only reason

> I found this post is because I have Google Alerts set up to Email me any

> mentions of WinPatrol. I appreciate Kerry's adding the discussion with

> valuable tip. The only real tip in my blog post was that people need to

> change their d mn default password.

>

> Lastly, my BitsfromBill blog is non-commercial with the exception of

> news about WinPatrol. WinPatrol is free and essentially supported by

> the 1% of our users who do upgrade to the paid version.

> </span>

 

I occasionally read your blog. I have a lot of respect for it and you.

While some may have thought Dave was spamming, I am not one of them. Dave

is overly focused on conspiracies. He has been known to post links to

blogs or forum posts then extrapolate things I'm sure the author never

intended.

 

I am of the belief that compromising routers is a very serious issue,

possibly one of the most serious we face when surfing the Internet.

Changing DNS settings allows criminals to do some very sophisticated

things that most users would have a very hard time detecting. It also is

OS agnostic as there is no infection of the computer. Fortunately the

current attacks are easily defeated but the user has to take action to do

this. Blogs like yours help to get the word out so people will take the

needed steps to protect themselves.

 

I still think the blog post overstated what they can do, but the fact

that the blog brings attention to this issue can only result in good.

 

--

Kerry Brown

MS-MVP - Windows Desktop Experience: Systems Administration

http://www.vistahelp.ca/phpBB2/