Avast Says My Router is Infected – Solved

Updated on: 14 June 2019
Updated on: 14 June 2019

Just as your laptop or mobile can get infected with malware, your router is a prime target for attackers who want to monitor your internet activity or worse, whilst often remaining unidentified.

Antiviruses such as Avast are specifically made to detect these intrusions, warn you, and push them to quarantine.

In this article, we’ll be investigating Avast’s infected router warnings and how to deal with them.

We’ll take the necessary steps to fix the issue, and update your DNS settings to avoid future issues.

1. Reset router and change DNS

When Avast tells you that your router has been compromised and that your network connections are being routed through a malicious remote server, it will stop all connectivity and block the internet.

What can you do?

Firstly, you will need to check every connection that leads to the router and then perform a full factory reset. Change the admin password as well and never use the old one again.

After you finish doing this, you will need to go to the Internet Setup. Change the primary settings option from DNS 1 to 8.8.8.8. (Google’s public DNS) As for the secondary setting option, change it from DNS 2 to 8.8.4.4. Then, hit Save and Apply.

Click on Ok, and after a few moments, the changes will take effect. If you want to see if your router is still “infected”, run an Avast scan again.

2. Upgrade your Avast subscription

The second solution is to buy the premium version of avast and update the app to get the SecureDNS feature.

This way, you’ll get rid of all false-positive alarms (I know, right?) and receive even more security features to safeguard your important data. If you want some serious protection, then you have to realize that free tools are not always the best.

3. Upgrade your router

If you have the SecureDNS feature activated and you’re still getting the warning that your router is infected, then disable your internet connection now.

Update your router firmware to get updates and counter this issue. You can even change it completely to make sure nothing like this will ever appear in the future. There were obvious chinks in the cyber-shield that the old version was using, so changing it could prove to be the best solution.

4. Change your router DNS settings

When the Avast Home Network Security tracks down an intrusive virus worming its way through your router, the notification you’ll receive will look something like this:

Avast Router Settings

When Avast shows you this, it means your router is already infected. Your DNS settings have been changed so as to provide important data and unrestrained access to your device.

Usually, when cyber-thieves manage to override your internet security protocols and exploit your router vulnerabilities, they will modify the DNS settings and reroute your internet traffic to rogue servers.

This is called a man-in-the-middle attack.

Why it so dangerous?

Your DNS or Domain Name System carries your IP signature. It’s just like a phone book that lists your real identity, your credentials and confidential data that make up your online persona.

The DNS is responsible for the identification of all the computers, services, websites or pretty any other resource on the web.

You can be redirected to a corrupt version of the website you’re trying to access.

Every bit of information can be stolen at that moment, even your banking information, all your credentials you use, and other confidential data.

What’s more, this man-in-the-middle attack will spread its influence on the SSL and HTTPS security protocols. So, checking to see if a website is secure is actually useless because the virus can cut through this screening like hot knife cuts through butter.

One of the most probable causes of this infection is that many people don’t change their router’s default password. The factory credentials are very weak and are actually not intended to be used, merely to act as a default login access.

Solving this problem takes a bit of time but it’s nothing overly-complicated, and you can do this while sipping on the morning coffee.

1. Configuring Asus wireless routers

  • In order to change the DNS settings of an Asus router, follow the next steps:
  • Go to the Wi-Fi Security results screen, then select Go to your router settings. This will open your router’s admin page
  • Enter your credentials
  • Go to Advanced Settings, then WAN – DDNS, and then check if the Enable the DDNS client setting is set to No
  • Go to Advanced Settings – WAN – Internet Connection
  • If you can input an automatic configuration and if the ISP allows this, then change the WAN Connection Type to Automatic IP or Dynamic IP. Next, you should make sure that all your DNS servers records are blank or if they’re set to 0.0.0.0.
  • If you cannot automatically configure your router, which is to that your WAN Connection Type is set to Static IP, then fill in the DNS server fields with good IP addresses of secure DNS servers
  • Confirm these changes. Click on Apply, then reboot your router

3. Configuring Netgear wireless routers

Netgear routers have a few differences in terms of settings but the changes essentially remain the same. This is what you have to do:

  • From the Wi-Fi security screen, select the Go to your router settings option
  • Enter your username or password. If you don’t know them, contact your router’s provider and ask for the credentials
  • Go to Advanced – Advanced Setup – Dynamic DNS to make sure that the Use a Dynamic DNS service option is unchecked
  • Go to Basic – Internet – Domain Name Server (DNS) Address
  • From there, you will have to change your Internet IP address to Get Dynamically from ISP, only if your ISP supports automatic configuration
  • If you can’t set an automatic configuration, then fill in the DNS server fields with a reliable IP address of a DNS server that you can get, for example, from Google Public DNS
    Hit Apply, then reboot your router

As for Linksys/Cisco, ZyXEL, TP-LINK, Huawei, D-Link, and Sagem/Sagemcom routers, the changes remain essentially the same, so the instructions will have the same steps.

Furthermore, some users have said that the UPnP option has to be disabled and that you should do any port forwarding manually. Having this option enabled means that your device is made public for any other devices to notice, and this increases your chances of being hacked.

It’s better to keep your router as private as possible.

Written by: Alex Popa

Content writer and technology enthusiast. Alex discovered his love for writing not long ago, one that deepens with each written article. Tech subjects are right up his alley, and as he strives to perfect his craft, even more, his journey through the cyber-world leads to many interesting topics that he approaches with the skill and passion of an avid learner. He’s decided to put his ability to good use and share any digital novelties he comes across.

Leave a Reply

Your email address will not be published. Required fields are marked *