Here is the initial site reporting the virus, you'll need chrome to translate it for you. This would be much easier if their forums werent down :-\
Edit: Sorry I took the URL down I didnt know they had skynet available for download on that site, dont want to spread it
Here is the Just of what it said, if you need the address PM me
-----------------------------------------------------
"What virus causes?
We managed to catch a few modifications, but all have in common:
naturally reproduce itself
interception login cookies to devices and their communication to author virus
listening to network traffic identification and passwords on port 80, and their communication to the author of the virus
Among other things, the virus causes random reboots device, probably exhaustion of free memory, but in a modified and targeted restarts WiFi router.
How the virus works?
It must be said that the worm uses a combination of two errors creators firmware for the device. The first mistake is that in these versions of firmware for the device there is a site / admin.cgi , which is of course protected by a password for the device setup, but allows uploading files to devices or brazen command execution as root via a web interface. This page from the production firmware would definitely launched. The second mistake is misconfigured configuration AirOS proprietary module for lighttpd web server that allows for entering a couple of characters for display url of any website configuration without knowing the password.
The few characters can trace in the attached file with a virus skynet.tgz and deliberately not mentioned directly in the article.
With these two errors virus has the opportunity to spread easily without breaking complex passwords, etc., basically a test ip address for a few seconds and tries to cycle through more and more."