Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Open Resolver Malware

Status
Not open for further replies.
Bluejay07

Bluejay07

Programmer
Mar 9, 2007
780
0
0
CA
Hello,

I'm not sure if this would be the correct forum or not but I thought that it might be a good placed to start.
I have also cross post this in thread950-1730818.

We received a comment from a client.

"The (internet provider) tech said that we may have a possible infection and they believe it to be on one of our IP addresses - he called it an 'open resolver malware' and suggested that we should have someone check and/or configure our router."

How would we go about resolving this issue? How does one deal with an open resolver issue?

Thanks.

If at first you don't succeed, then sky diving wasn't meant for you!
 
Sort by date Sort by votes
How would we go about resolving this issue? How does one deal with an open resolver issue?
Click to expand...

What have you done so far? Sounds like you have multiple machines? Do you have an IT support person of any sort? That would be your first step - that person should at least know how to get started. The ISP rep told you to check your router. Have you checked the router?

I'm not trying to come across rude or arrogant, but you're really not telling us much, you're not giving us much to go on.

We don't know anything about your setup - do you have any sort of a centralized system ... such as a server/desktop setup, or do you have a cloud setup, or do you just have a handful of computers conected ofer a "home network".. so you're asking for how to fix something when we don't know the systems, the symptoms, the hardware, nothing.


"But thanks be to God, which giveth us the victory through our Lord Jesus Christ." 1 Corinthians 15:57
 
Upvote 0 Downvote
Hi Kjv1611,

Thanks for the response.

As stated in my first thread, that was a comment from one of our clients.
It's not my computer or a network in my office.

I can't tell you much because I don't have any other information.
This would be for an office network. I am not certain if they have a dedicated IT staff or department.

Since I have never dealt with anything like this before, I am trying to read up on open resolver so that we can provide the client with some more information.

What should they check for on their router?

If at first you don't succeed, then sky diving wasn't meant for you!
 
Upvote 0 Downvote
Unless the router is also running as a public DNS server or there is a DNS server actually running on the network that is externally accessible, (by having port 53 forwarded across the router) allowing recursive requests from external clients the I.S.P. tech is somewhat confused.


Chris.

Indifference will be the downfall of mankind, but who cares?
Time flies like an arrow, however, fruit flies like a banana.
Webmaster Forum
 
Upvote 0 Downvote
Hi Chris,

Thanks for the response.
I'll pass on that information.


If at first you don't succeed, then sky diving wasn't meant for you!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

2ffat
  • Locked
  • News
MalwareBytes may have been hacked
Replies
0
Views
43
2ffat
2ffat
goombawaho
  • Locked
  • News
Malware Injected Into CCleaner 3
Replies
2
Views
51
goombawaho
goombawaho
shivajiboss
  • Locked
  • Question
I am getting a problem while opening up my windows
Replies
1
Views
79
2ffat
2ffat
Tiffc0922
  • Locked
  • Question
Virus / Malware Scans on Local PCs
Replies
5
Views
70
goombawaho
goombawaho
goombawaho
  • Locked
  • Helpful tip
Evil: Poweliks Malware 1
Replies
1
Views
39
kjv1611
kjv1611

Part and Inventory Search

Sponsor

Back
Top