Recent content by DarkBBQ
-
D
What Kernel version is used in Asuswrt-Merlin and Is there ACL support?
What do I have to do to get ext4 working on my merlin rt-n66u?- DarkBBQ
- Post #14
- Forum: ASUS AC Routers & Adapters (Wi-Fi 5)
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
Ah, my bad. thanks. nslookup www.google.com Server: 127.0.0.1 Address 1: 127.0.0.1 localhost.localdomain Name: www.google.com Address 1: 2a00:1450:400f:805::2004 arn06s07-in-x04.1e100.net Address 2: 83.140.66.42 83.140.66.42.biz.sta.port80.se Address 3: 83.140.66.38...- DarkBBQ
- Post #21
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
Now this was very interesting ColinTaylor. Now, how would I go about verifying this? And on a side note... just checked nslookup again and this is what I got: nslookup google.com Server: 127.0.0.1 Address 1: 127.0.0.1 localhost.localdomain Name: google.com Address 1...- DarkBBQ
- Post #19
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
How would Windows effect my router? My router is not running windows... I'm only analyzing this in my router running Asuswrt-Merlin. (but of course, any computer, including windows, connected via DHCP to my router will display the same symptoms, as was the case when this was first discovered.)- DarkBBQ
- Post #17
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
Problem was first observed while using the setting you are suggesting (IPS DNS). Then also checked with googleDNS and openDNS. Flushed in between. (and also checked with cache disabled)- DarkBBQ
- Post #12
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
None returned a rule (added "-L" to the second and third command line).- DarkBBQ
- Post #11
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
I checked the signature before I installed using QuickHash. No discrepancies. Uploaded using web GUI. cat /etc/dnsmasq.conf: pid-file=/var/run/dnsmasq.pid user=nobody bind-dynamic interface=br0 interface=ppp1* no-dhcp-interface=ppp1* resolv-file=/tmp/resolv.conf...- DarkBBQ
- Post #8
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
My ISP is Bahnhof.se. They are not affiliated in any way with port80.se (afaik). And coincidentally, port80.se (availo) is not a public ISP but rather a data center provider. Availo (through IP-only) is actually a competitor to Bahnhof and many companies in Sweden use both to achieve critical...- DarkBBQ
- Post #6
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
I contacted my ISP. They say they are not manipulating my DNS queries in any way. If I set up a VPN tunnel on the router; will DNS traffic go through the VPN or do I need to set up an external VPN? If I have to set up an external VPN I think I would rather share my mobile internet an feed it...- DarkBBQ
- Post #4
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
I will check that out. If you could point me in the right direction, I would be very interested in how they would be able to come about such manipulations. Thanks! I'll be back. :cool:- DarkBBQ
- Post #3
- Forum: Asuswrt-Merlin
-
D
Suspected (DNS) exploit kit on ASUS RT-N66U
Hi Installed the lastest firmware (380.58) and erased nvram through SSH. nslookups from console does not resolve into expected domains (except for IPv6). For example google.com does not resolve into a 1e100.net domain (which it does outside my network). Tried changing DNS to both 8.8.8.8 and...- DarkBBQ
- Thread
- dns exploit kit
- Replies: 31
- Forum: Asuswrt-Merlin