What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Recent content by crpt0

  1. C

    ac66u infected with LuaBot - help please

    tnks, great job ! I'd be happy to help you too ;) 1 - yes , i have some open ports (443 for sshd, sip port for my gigasetA510 and another port for my ipcam) and "respond to ping requests from wan" set to yes 2 - yes only DLNA, SMB and itunes (no upnp, aicloud, nfs, ftp, http, mail, etc) 3 -...
  2. C

    ac66u infected with LuaBot - help please

    here are the 3 file : .sox.rslv (md5sum 21f7eed3c4346b55ed659286b91ca051) .sox.pid .nttpd.pid http://www.filedropper.com/luabot (it was the first sharig file site i've found) i removed the 'x' attribute on the .sox.rslv file before copy ;) now i'm saving all the info i need to restore my...
  3. C

    ac66u infected with LuaBot - help please

    no result
  4. C

    ac66u infected with LuaBot - help please

    a small clarification, I found the 2 executables (.sox and .nttpd) in the process list only but not in my entire dir. the only files found are .sox.rslv .sox.pid and .nttpd.pid under my /tmp dir and i deleted it but i have a copy in my weekly backup. Here you can see the result ...
  5. C

    ac66u infected with LuaBot - help please

    thank you for all reply ... this weekend i was too busy but now it's time to finally solve this problem ;) at the moment I only have provided to remove all malicious file and executables. Everything seems to go well from 2 days but, i know, i can not feel comfortable and i must take urgent...
  6. C

    ac66u infected with LuaBot - help please

    thank you for your reply, you're absolutely right, but a 3 year old daughter can be an attenuating :p I just found out in the forum the existence of the merlin fork for the 374.43. LATEST RELEASE: Merlin fork 374.43_2-19E3j9527 can i use it ?
  7. C

    ac66u infected with LuaBot - help please

    I just discovered that my router is infected with LuaBot :eek: Information about this ARM specifc malware can be found here : https://w00tsec.blogspot.it/2016_09_01_archive.html In my process list i can see two of these binaries (.sox and .nttpd) and the file .sox.rslv in /tmp/ .... meaning...
  8. C

    Asuswrt-Merlin 374.43 is out

    solution found ! the repository for Entware packages has moved to Github. Follow this instructions and all be work again ! https://github.com/Entware/entware/wiki/FAQ#q-where-is-all-packages-gone-only-a-dozen-are-available bye bye crpt0
  9. C

    Asuswrt-Merlin 374.43 is out

    problem with opkg repo i have the same problem. Today morning i'm trying to install the rsnapshot utility but i get the error : Installing rsnapshot (1.3.1-1) to root... Downloading http://wl500g-repo.googlecode.com/svn/ipkg/openwrt/rsnapshot_1.3.1-1_entware.ipk. wget: server returned...
See more
Back
Top