Do You Enjoy Solving Complex Malware And Annoying Dns Issues?? (the Saga Part 1)

Hi,
I've been having network issues for 4 years now and haven't been able to fix it. The security world seems to have caught up to these massive slealth rouge threats.

So basically my routers were compromised and my DNS has been posioned for years on all my devices. I believe this was through a vulnerbility (on both model routers I had). I won't even start on the secondary issues (this would turn into a novel).

This insanley persistant rouge malware is now imbedded in various firmware in devices around my house and home network since 2012.

I have 4 routers. I cannot get my Buffalo N-600 AP with DW-WRT firmware setup anymore. There was a vulterbility at some point with this model too.

I cannot connect to the local standard admin interface to preform any kind of access point setup and the factory default key does not work for wireless.

--------------------------------------------------
- Used Chrome, Firefox, Opera, IE, Edge - Safari.
- Used various DNS public servers. Google's, my ISP's etc.
- Every combo of Ethernet Plugged, Wifi on / off, multiple machines...
- Various machines / OSes (phone's browser -- why not)

Via the Command Prompt:
- Flushing the dns cache does nothing.
- IPconfig Release, renew shows it's set to the default gateway but no DNS servers are shown no matter what I do -- and always says no internet .

- I've done the wait reset, rebooted repeat - 404 error everytime I try to access the admin page in my browser (https and http) -- (gateway shown under netstatus is correct default)

- hosts.etc file is normal.

- Cleared the cache manual setup of the connection through IE does not resolve.

- Read the router docs and watched youtube videos to verify I'm resetting it correctly and nothing (I have done a few hard resets since I bought this router so it did work at one point).

---------------------------------------------------------------
When I revert to my old router. The DNS will resolve normally.
---------------------------------------------------------------
Q1 - How should I approach this (unposioning my DNS cleaning at least one machine?)
------------------

Some things I notice any device that connects It broadcasts a new network with a NETGEAR86 SSID (which is hidden shortly there after).

I've never been able to connect to connect to the 5GHZ broadcast from my router.

I use VoIP (so wireless phone's and seemly everything in the world operates around that 2.5GHZ specturm the network uses.)

Thank you so much for any help you can offer and sorry for the novel.

 

Hi,
Thanks for your reply. Honestly if I read that posted by someone, I would come to the same conclusion (and it could be an AP issue).

Lets try this route instead.

After connecting, all machines (windows, macs, various linux distros) are re-broadcasting an unknown and hidden network.
Occasionally it shows up briefly and disappears after 1-2 min. Other times it lingers.

> My nearest neighbor is out of range and he confirmed that's not his SSID.

I think starting there would be best. Any idea what exactly would cause this?