字體:小 中 大 |
|
|
|
| 2025/08/02 10:30:31瀏覽96|回應0|推薦0 | |
| (from 7/29/2025 posted 360doc) Can my ISP control my router? Most broadband providers (ISPs) provide you with a router to use with their service. These routers are usually locked down, provide poor WiFi and can be remotely controlled by your ISP or worse by hackers if the ISP has stopped updating the router or not patched bugs.Jun 7, 2025
--in the past we have no tech. problem to buy our own router/modem and easy installed without difficulty. until this year my strong feeling hackers/moles hide in our network caused millions DDoS SYN Flood attack whenever unknown stick to our network. i am quite happy with C3700 because can easy find out who stick to our network and thru change channel can stay away the ghost. the admin advanced administration logs also can analysis who are those malicious bad IP addresses companies issued SYN Flood attack our 2 PCs and sent spam emails. until 7/28/2025 1:30-2:00 am C3700 was killed by ISP(spouse believes modem portion seems ok but router definitely went wrong, all i knew the equip went very hot after ISP machine auto reset but failed, i didnt know until 0.5-1 hour later found it extreamly hot then unplugged, very likely too late), bought wrong new CM1000 modem(no router combo) cant but added N600 router. the nightmare began that disallow change router admin password or internet broke and must hard reset N600 router to re-connect wifi again. what is going on? is it ISP forbid or N600 router company problem ? ISP today denied any related router and denied their company might doing something caused problem that windows setting can see neighbourhood users got very low signal 7/28 1:30am till 10:00am ie internet broke too. i am prety sure router company would declare they provide equips, it is ISP decide which brand, equips fit their system. because it happened in the past whenever ISP internet broke accused each other that i always believe router company words. Spouse prefer to buy same router company as he always bought from, that we are quite satisfied (indeed i am began worry wehther would be terminated by usa competitors under Trump policy, didnt even taiwan companies are suffering?). we all are older (79, 68) have no energy to learn another company router/modem such as Arris surfband any more. Can someone change my router password? If your Wi-Fi password is cracked, hackers can change the password and lock you out of your home Wi-Fi. Using the manufacturers default password: Wi-Fi hackers can use the manufacturers default admin password to gain access to your router and change its settings.Jan 17, 2024 --this is exactly what i saw on 7/27/2025-7/28 that already block readyshare auto on, C3700 router admin access control auto disabled which happened in front of my eyes after i enabled then very quickly by unknown mole disabled it (repeatedly several times). maybe the mole was freaky upset so killed C3700 around 7/28 1:30-2:00am ps [DoS attack: IP packet w/MC or BC SRC addr] from 207.172.19.255, port 0 3 Sun Jul 27 00:14:02 2025 spouse-PC 207.172.19.255:0 searched got another poster had same issue as: Kakashi2000 Star Sep 08, 2016 : i dont use torrent and nothing to share on the pc the pc is normal but i dont share nothing(ps anything) or use torret ect that cold (ps etc that could) put the pc on risk ect (ps etc).... 7/28/2025 1:30-2:00 am found our internet broke while i was login email account failed due to firefox popped up [identity.att.com] so busy to make sure it is not fraud and to find out [trust_xxx] and [serial number] for email usages what are they. later login router admin to get answear then internet broke and called company auto machine performed reset modem failed. the whole ealier morning. spouse cant but called ISP (xalove) person who suggested router/modem dead so spouse went to buy CM1000 V2 $199.99 + tax $20 which turned out modem only so use another router N600 connected with CM1000 with the ISP company it works till i tried to set up new admin password, disable guest network, change wireless network settings (security type and code) the same thing happened that internet broke. so hardware reset finally made it work. i got feeling it is the ISP moles didnt allow/want any changes by router settings. because N600 had no problem before and same as c3700 before 7/28 1:30am but changed channel whenever found unknown device stick to our network. both router got quite hot then immediately unplug till cool down. then turn on but lights very weird. ISP can turn on/off our equip certainly can kill not welcome good negear C3700 which allow users change settings such as channel and recorded logs to block malicious issued SYN Flood attack websites. N600 also allowed to block sites and disable fuctions(not so good as C3700). indeed i suspect ISP workers quality not good so might easy kill good ones. i did verify N600 . and C3700 is cable modem router with DOCSIS 3.0 which for lower speed 75 /100-300Mbps @$40-/month when i requested what ISP suggested modem/router they wont tell clearly but mentioned DOCSIS 3.1 so from now on 7/28/2025 we paied up to $40 100Mbps but must replace with DOCSIS 3.1 router/modem or cant change default settings? i was told only need change password no hackers would invade our network. if so why many quite big companies got data breach? they definitely wont use less then 300Mbps. spouse told me new modem CM1000 V2 is DOCSIS 3.1, as N600 router has no major related to DOCSIS 3.1 but 2.5G and 5G speed matters which compatible with 6G. 7/29/2025 around 2 am when i tried set wireless settings one more time because it seemed can block sites without problem so i assume maybe it would work but didnt and as usual after clicked apply popped up [Unable to connect Firefox can’t establish a connection to the server at xxx.xxx.xx.xx] internet broke and exactly as C3700 that can smell plastic burned smelling after unplugged and cool down plugged , hardware reset but all lights off never light on since . i didnt call the company robot this time but unplugged both router and modem. till spouse woke up and told me it connected. i deeply suspect C3700 router portion may not dead. i told spouse if today still cant change router admin password we must return the CM 1000 V2 and buy other brand (Arris? i really have no desire unless that can reduce password and security setting problems. i dont suspect router company but might malicious be kicked off usa marketing or ISP workers only familiar Arris so block it to reduce job burden?) ps 7/30/2025 spouse searched and told me Arris got users bad complaints, he wants to return/replace CM1000 V2 modem to modem/router combo, will it work as not Arris brand but Netgear ? **** Updated: called ISP that spouse didnt want to as the company wont help. he didnt feel well since the problem happened. and didnt known what he should select the [right] modem/router any more. Lucky me i told the lady why it works but wont allow change router admin password and showing [Unable to connect] in the beginning she insisted to call router company that they dont manage/control our router admin password as we bought by ourself. after i repeated the sympton and declared their robot killed our modem/router.... she decided do the test and then she found something and went away (very likely discuss with other technician) returned back saying change the password. it works. obviously ISP did control/forbid our router password be changed. i wont suspect router company but ISP company workers. quite suspect those network users are all from 诈骗园区 such as ATTUUjDC7a, chingon plus ,Tmobile-C2BA, Marianita77, MotherofDragons... that i kept monitor thru windows setting network & internet >wifi show available networks whole night behaviour. i got 3 days(7/24-7/26) quite good signal and no spam emails as no weird stick to our network, 1-3 users in networks. Assumed att-yahoo took action then CS3700 killed and 7/27(7/29 received),7/28 each got one very bad spam email agin. it reminds me earlier i called ILL state about how many times they might adjust internet related service rate for Taxes, Surcharges & Fees $24.64 - [Municipal Construction Surcharge $3.75 it charged by city not state]. the man told me they have many years didnt adjust till 2025 July. i should submit in the past statements whenever it jump up but too busy and forgot now the person who gave me their contact email address and what he told me the year 2003? to 2024 didnt adjust i recorded file was stolen, same as download 2025 bill statements auto disapppeared again. Hackers or 诈骗园区 group or ISP workers ? ***** 8/1/2025 Updated after ISP solved cant change router admin password. Firefox kept showing Access Denied whenever logged out att-yahoo account. message as: Access Denied You dont have permission to access "http://signout.att.net/iamLRR/LrrController?" on this server. PS if visited it showed quite similar as it except a bit different (Reference #18.11192117.1754093334.3c829763; https://errors.edgesuite.net/18.11192117.1754093334.3c829763) Reference #18.11192117.1754087589.3b5fc1a5 https://errors.edgesuite.net/18.11192117.1754087589.3b5fc1a5 ps if clicked it showed : Uh oh! Something went wrong with the previous request. If you navigated here, its because the previous request experienced an error. If you are the site owner, you can use the Translate Error String tool to investigate this further. This is located on the control center under: Hamburger menu > SUPPORT > Edge Diagnostics. in the past cant login now the good news i can log-in but cant logout. searched [cant log-out caused by http://signout.att.net/iamLRR/LrrController? ] got poster : Scott Law 8097 Original Poster Aug 13, 2020 ATT Yahoo logout issue; and read all suffering posters response. i did Clear browser Cookies and Site Data [clear data] then tried to re-login it showed logout successfully, but cant login since. same sympton as those posters response. this mornning after [clear data] i still can re-login just cant logout. verified N600 logs found today 8/1/2025 millions as: [Site allowed: ocsp.dcocsp.cn] from source xxx, Friday, Aug 01,2025 15:26:56 [Site allowed: ocsp.globalsign.com] from source xxx , Friday, Aug 01,2025 15:26:53 [Site allowed: detectportal.firefox.com] from source xxx, Friday, Aug 01,2025 15:25:58 [Site allowed: x1.c.lencr.org] from source xxx, Friday, Aug 01,2025 15:24:43 [Site allowed: c.pki.goog] from source xxx, Friday, Aug 01,2025 15:24:43 [Site allowed: ctldl.windowsupdate.com] from source xxx, Friday, Aug 01,2025 15:24:43 [Site allowed: msedge.b.tlu.dl.delivery.mp.microsoft.com] from source xxx, Friday, Aug 01,2025 15:22:52..... [Site allowed: x1.c.lencr.org] from source xxx, Friday, Aug 01,2025 09:47:13 [Site allowed: c.pki.goog] from source xxx, Friday, Aug 01,2025 09:47:13 [Site allowed: ctldl.windowsupdate.com] from source xxx, Friday, Aug 01,2025 09:47:13 [Site allowed: www.msftconnecttest.com] from source xxx, Friday, Aug 01,2025 09:46:12 --7/28 bought new CM1000 V2+ N600(not new, already owned) replaced C3700(ISP robot destroyed it on 7/28 1:30-2:00am) and N600 7/29-7/31 didnt have such [Site allowed] in logs until 8/1/2025 after 7/31/2025 ISP finally allowed to change N600 admin password ps C3700 never happened such weird site allowed in logs. such so many sites allowed happened to every one or just target at us today? does it relate to cant logout then cant login ATT-Yahoo events such as [ocsp.globalsign.com]? i told spouse maybe we should buy new C3700 and return CM1000 V2 which allow 30days return the product. searched [what is ocsp.globalsign.com?] What is OCSP GlobalSign? OCSP or Online Certificate Status Protocol addresses some of the performance and scalability issues inherent to CRLs. Instead of having to download a full revocation list each time, the OCSP server can be queried like a database for a specific certificate entry.Jan 28, 2025 What are the risks of OCSP? OCSP requests and responses can potentially reveal sensitive information, such as the domain name and the IP address of the client making the request. This can result in privacy risks, as this information can be monitored or intercepted by attackers to gain insights into the organizations systems and applications.May 3, 2023 another [Site allowed: 128.203.59.6] from source xxx, Friday, Aug 01,2025 15:03:59] IP地址 128.203.59.6cloudhosting 数字地址 2160802566 IP-api 美国 弗吉尼亚州 Microsoft Azure Cloud (eastus) ASN AS8075 Microsoft Corporation (http://www.microsoft.com) 企业 Microsoft Limited (microsoft.com) IP评分 62 (满分为100分,分数越高越好) searched [what is x1.c.lencr.org ?] ie [Site allowed: x1.c.lencr.org] https://community.letsencrypt.org/t/x1-c-lencr-org-flagged-as-compromised/157066 X1.c.lencr.org flagged as compromised - Help Aug 3, 2021 — We have a firewall that has started flagging x1.c.lencr.org as a compromised website. I see Lets Encrypt owns the domain, but not sure what is going on with our firewall? I assume the traffic to this domain is legit?? Anyone else having any similar issues?... Virus software keeps blocking an access for Host process for Windows Services by x1.c.lencr.org. Is the a scam or spam? Learn Microsoft https://learn.microsoft.com › en-us › answers › questions Jan 16, 2023 — X1.c.lencr.org is a browser hijacker, if your anti-virus software blocked that, then that is the correct action, you do not want your PC to connect to that web address. --so why the [site allowed], and who allowed it, ISP workers or 电诈园区 group hide in ISP networks or 20231219 black mailer... ? ................................. What are the signs of a hacked router? Unusual Activity on Your Network: - Slow Internet Speeds: If your internet connection suddenly becomes slow, it might indicate unauthorized use or malware. Unrecognized Devices: ---> one in 2.4G, one ghost in 5G Changed Settings: ---> 7/27 C3700 admin router; 7/28 N600 wont allow chanage or got [Unable to connect] and must hardware reset to re-connect again, all changed wipped off. Frequent Disconnections: 7/28 N600 if click apply after admin setting changes Unusual Lights on the Modem: 7/28 C3700 (till died?) and N600 after hardware reset. --my question is hackers are ISP workers or a group from 诈骗园区. did hackers control our cell phones that called ISP company on 7/28 ? how about browser ? searched a poster suffered unknown devices hooked in his network and used same N600? router from his case almost same default settings as ours. he played games. the helper solved his questions. the result as the user needs to modify : A. internet ip address : router mac address use default address [checked] in stead use the mac address B. NAT filtering secured checked ie no security issues on user side C. disable SIP ALG checked (ours didnt have) D. hooked devices are : 35.83.33.213 amazon.com game servers; 168.119.40.32 hetzner online GmbH hetzner.com game servers; 74.91.120.148 nuclearfallout enterprises, inc nfoservers.com sell dedicated servers; 40.113.105.173 MS microsoft corp. data center/web hosting/transit 100% abused Netherlands Amsterdam, noord-holland |
|
| ( 知識學習|科學百科 ) |
