Archived from groups: alt.internet.wireless (More info?)
Dear All,
I have seen some strange behaviour on my new Belkin 802.11g Wireless
Router with ADSL Modem built in.
First I see SYN Flood Attacks in the Security Logs, The Norton Peronal
Firewall reports NMAP_Null_Port Scan from Wireless Router HTTP (80) to
my PC Port. Then my machine reset twice and now Norton said that my
email address was being sent to the cgi-bin directory on the ADSL
Router. Here is the exact Norton Warning:
Private Information:
Date Time: 24/08/2004 01:22:32
User: ours
Action: Blocked
Type: HTTP
Category: Email Address
Data: **my email address**
Destination: http://192.168.2.1/cgi-bin/Batmint.exe
I looked up the string "Batmint.exe" and could only find a non-English
site but I judged from the title it ain't good. Does anyone have any
ideas? Has my ADL router been compromised?
Article:
http://www.adslayuda.com/modules.php?op=modload&name=News&file=article&sid=1026&mode=nested&order=0&thold=-1
I don;t understand why my email address is being sent to a cgi-bin
directory on the Belkin ADSL router.
I am going to run a full Anti-virus scan and Spybot removal aswell.
Dear All,
I have seen some strange behaviour on my new Belkin 802.11g Wireless
Router with ADSL Modem built in.
First I see SYN Flood Attacks in the Security Logs, The Norton Peronal
Firewall reports NMAP_Null_Port Scan from Wireless Router HTTP (80) to
my PC Port. Then my machine reset twice and now Norton said that my
email address was being sent to the cgi-bin directory on the ADSL
Router. Here is the exact Norton Warning:
Private Information:
Date Time: 24/08/2004 01:22:32
User: ours
Action: Blocked
Type: HTTP
Category: Email Address
Data: **my email address**
Destination: http://192.168.2.1/cgi-bin/Batmint.exe
I looked up the string "Batmint.exe" and could only find a non-English
site but I judged from the title it ain't good. Does anyone have any
ideas? Has my ADL router been compromised?
Article:
http://www.adslayuda.com/modules.php?op=modload&name=News&file=article&sid=1026&mode=nested&order=0&thold=-1
I don;t understand why my email address is being sent to a cgi-bin
directory on the Belkin ADSL router.
I am going to run a full Anti-virus scan and Spybot removal aswell.