On 04/10/14 18:24, C. Brouerius van Nidek wrote:
Where should I start looking for this problem?
Small additional side question. My wife's Windows computer also got the problem. She is still on Windows but the change to Linux looms :).
She was at least instructed not to update any files so no virus for the time being.
Where do I find the changed suspicious DNS ? Anybody within reach with a basic understanding of Windows? The last Windows I worked with was the version 3.1.1.
Do you have a router that gives out IP addresses for your home network? I.e., is your Linux system and your wife's Windows system configured to use DHCP? If your Linux system uses DHCP (check /etc/sysconfig/network/ifcfg-* if you don't use NetworkManager), there's a good bet that this is used by Windows, too. Then the problematic DNS entry is handed out by your router. As Marcus and Andreas wrote, quite some routers (especially AVM Fritz-Boxes) recently had a serious vulnerability that is actively exploited. Joachim -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Joachim Schrod, Roedermark, Germany Email: jschrod@acm.org -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org