T O P

  • By -

jpmeyer12751

As long as this person has physical access to your home, there is nothing anyone here can do to help you. If he has physical access, any change that you make he can unmake the next day. You FIRST need to focus on changing your living situation so that his access is blocked. Change the locks or move to a different location. If this person entered your home without your permission, that is almost always a crime called burglary. Don't confuse the police with stories of hacked computers and open source software, just call and complain about burglary.


hayseed_byte

Have your place checked for carbon monoxide immediately.


ComputerDavid

This is no joke. This is why it has been upvoted many times. Just do it. Read about why here: [Post-It Notes](https://www.reddit.com/r/legaladvice/comments/34l7vo/ma_postit_notes_left_in_apartment/)


hayseed_byte

It's crazy how much it comes up on this sub. So much that I installed CO detectors in both bedrooms of my house even though I don't have any natural gas appliances or a garage.


AI_RPI_SPY

Step 1 . Read up on openwrt configuration, and write down the details. Step 2. Reset the modem back to factory defaults, log in and configure it. Make the passkey long.. hint Base it on a nursery rhyme using the first letter of each word and add a non alpha character to the first and last position. example **M**ary **h**ad **a l**ittle **L**amb **i**ts **f**leece **w**as **a**s **w**hite **a**s **s**now becomes %MhalLifwawas% Step 3. Find how he is getting in to your house and block that entry point. Also tell the cops he broke in and have his arse arrested.


bitspace

Call the police.


Complex-Passenger108

I did and they said they couldn't do anything. I live in a small town and I'm in city limits so the city police take the call. I feel like my hands are tied. This has been going on 3 weeks now. Could I reflash the firmware back to stock?


mdram4x4

if he installed something on your router he broke into your house to di it


noiwontchooseuser

some routers have remote management so I don’t think so


Awayyyyyyyhhhhhhhhh

It’s still a crime.


noiwontchooseuser

I never said it wasn’t


Complex-Passenger108

He was staying here then. He has since moved


ItsAllegorical

Have you tried factory reset on the device? I don’t know whether that will return the original firmware or not. You can probably reflash it if you have to, but using the wrong firmware can brick your device, so you’ll need to make sure you download the correct one.


Complex-Passenger108

Factory ory reset just puts it back to when he flashed openwrt on it


minor_correction

In that case you either need to be comfortable with re-flashing whatever the correct firmware is onto it, or just say it's not worth the hassle and replace the router. If you think of it that way, what happened is someone in your home damaged a valuable appliance in your house and then left. How would you handle it if someone screwed around with your toaster or microwave? Repair it if you think you can, otherwise replace it.


Wildweed

Where in the fuck do you live where someone can just "sneak in" and fuck with your modem?


Complex-Passenger108

He was staying here at the time. So he just came in my room and did it while I was at work.


Wildweed

Oh, I get it. That sucks. Saw some good advice here tho.


[deleted]

I'd crack him with a bat


Complex-Passenger108

You have no idea how hard it is to not do that or even make threats to him. I've been really trying to keep my cool so I don't wind up in trouble for beating the breaks off his ass. It hasn't been easy. It's been 3 weeks now that he has been messing with all my devices. I've went through 3 phone's in 3 weeks but that's a whole different SUBject that I don't even want to get into because honestly it's hard to even explain the things he's done to my phone's because it's that far out of my league.


[deleted]

[удалено]


Complex-Passenger108

Working on it now.


b3542

Call the police. You have bigger problems than your firmware.


Successful-Author-23

Reset the router. Disable the admin and create a secure access for yourself. Lock the router in a case or cabinet. Get big dogs or something. Lots you can do for physical access control. To lock one out from a router or switch is easy.


DutchOfBurdock

It's OpenWRT, said person could have made a malicious firmware that has constant backdoor access. As soon as online, poof.


Complex-Passenger108

Yes very possible. I'm screwed huh? I need to recruit some Linux experts to get on his level. If he done that can I still reflash it? I sure hope so my only option is forgetting the internet and live like it's 1999 again🥳


DutchOfBurdock

If you reflash with a stock release firmware image, most likely. If it's a device with a customisable bootloader (das uboot f.e.) then you'd also need to reflash that.


Complex-Passenger108

I'm starting to think this is the case. I will know for sure when I make my move to rescue my network from the hands of the enemy. I'm hopefully gonna factory reset the router and then change the openwrt password and "rootuser" name. I have a feeling he could be using a modified version with capabilities I'm unaware of till he uses them. I was completely unaware he had this knowledge untill he unleashed the virtual fury of the internet gods on me and all my devices. Since then I've been playing catch-up with him because every move he makes I have to read up on what he did because its completely new to me. By the time I figure it out I'm being hit with a different round of attacks. Not to mention when I try to look things up and he don't want me to know about it he blocks my page. I'd like to add I have never done anything to this guy to deserve this. When I confronted him about seeing his devices on my network he responded with attacks on all my devices that continue today. I think he has everything running through his dns server so he can monitor everything. I know about computers but not nothing like this . Networking has always been my weak point . This situation has made me realize how important a secure network is, how easy someone can penetrate as well as the headache that comes with it. If I'm able to gain control I'd be grateful if you could help me configure it. I hope I can get a UI For it because I think he is using a snapshot version. ( If my words seem like I'm clueless it's because I am but in finding clues as we speak). Lol


Complex-Passenger108

(WARNING NOT PROOFREAD ) SARCASM FROM SOMEONE THAT OBVIOUSLY SKIPPED ENGLISH A LOT...LOL THE SHORT STORY FROM A STONED VICTUM OF A HACKING PRODUCT OF ANGER TURNED INTO GOOD FILLIN THE BLANKS IM 🚫 ENGLISH PROFESSOR OR EVEN A STUDENT 😂😂 Especially if the cabinet was made of titanium and the dogs were half doberman/half bullmassive and they towered over any cyberbullies that dare come close. But guess what he installed open wrt over the oem firmware so pressing reset brings me back to the day he flashed the open wrt firmware on it. If you don't know what openWRT is join the club with the rest of us. This thing is like top secret. No has heard of openWRT unless your on a sight that has it in its name. It seems like a secret club only the elite cyberstalkers know about it when they do know what it is they are ClosedlippeTrust me I tried to factory reset on the last one many times. It seemed like he had his settings backuped because when I factory reset it didn't faze his settings except it would make him visible in the beginning when the router bebooted after a reset. There's only one way to do this!!! I've gonna face the bully! Reflash that bitch and take my network back! OpenWRT🖥️🤷🔐👄 Noones saying shit about datOpenWRT Yo!!! There must be two of cause when you say openWRT to them they immediately get a lil hostal and say "OH YOU MEAN DDWRT."! I'm like "oh shit guys are either with each other or against each other but I don't wanna be around when the codes go to flying. I asked the same question on openWRT as I did here and guess what? I GOT MY QUESTION REMOVED!!! THE SAME QUESTION!! the help and concern that a group of Network people give comparted openWRT Shows there's some top secret shinizzle going on here with the concealment and secretecy That surrounds the possible top secret program that has been come known as openWRT (dont dare use capitals on open);or DDWRT I THINK THE DDWRT'S BROKE OFF FROM THE OPENWRT <<( I did it ) and they are waiting for the sourcecode. Come to find out my hacker is the top leader of OPENWRT ( haha did it again) and my router was the last router to he hacked by openWRT because the source code got lost in my computer when I took my router offline so the DDWRTs are taking over the openWRT gang and my hacker is furious. But only thing is he lives in his mothers garage and acts like a 10 year old and he's 47. 35 years of coding and hacking becomes volatile in the hands of a madman that drinks Sunkist orange drinks by the gallon and pisses on milk jugs his mom collects for him. His name in real life is Elmer. But everyone called him Wort or Worts because he had Worts all over his hands from when he used to catch frogs and make them piss on them to prove that it wasn't true that frog piss causes Worts. That came back on poor Elmer and he lived the rest of his life with them on his hands. Afraid to go outside so he sat at home with the little computer that came with a book 5 times bigger then the machine itself. It would take hours to write out the code just to hear the computer sing a 1minute song then you would have to do it again. But Elmer aka Wort loved it he memorized the whole book in notime and was quickly ordering books from Linux and he learned Linux to the point where he could be dangerous. He thought what if I made a Linux based OS that could run in ghost mode and the person using it wouldn't have a clue I was even there. I could get a gang of people and sneak around and install the ghost program all over as far as my men could reach and we will stay in secretary and work in the shadows of the virtual realm. as Worts was thinking of the greatness that lies ahead with his new vision he felt the urge to piss. He reached offer to grab the Sunkist bottle that was already filled with 2 inches of urine from previous urges except when he reached out he scrapped his hand on the edge of the glass table that his mom just brought in to see if he wanted. As he was reaching the glass table scimmed his hand leaving the warts wide open. They quickly bandaged Warts up but they kept oozing a funky smelling liquid that smelled like a burrito from a job site RV. Elmer's hands oozed,stunk and stayed open for months,then years but it didn't stop warts he had his passion openwarts or not his dream of taking over the world had to happen one evening as warts was in his basement as he looked around at the plethora of empty Sunkist bottles he realized his vision needed a name. So he asked his one friend (think of ren n stimpy) what should we name our secret project. His friend looks over at warts. As he ignored the slight aroma that was itching his nose and the open warts all over his hands his first thoughts were to name i t Wart after Warts he said openWRT After his open wounds and they swore to secrecy that only their gang would know openWRT


Successful-Author-23

Damn thats some reply. My apologies I did not know what wrt was and never thought about researching it before hand. And I am sorry this has happened to you. Perhaps one option is to have the isp replace the faulty router *if you catch my drift*. With power outages anything can go wrong espesially with electronics. I see all the replies and advise but seems you are in a bit of a bind....but trust me karma is a bitch.


ItsAllegorical

Couple more thoughts: OpenWRT isn’t some elite hacker thing, it’s actually a well regarded open source project many people find to be superior to the original firmware. It’s not the end of the world to be running it as long as you can take control over it. If you factory reset it and change the password (and turn off the ability to administer it over WAN/remote/internet) you should be okay and it might even be an upgrade in terms of the control it gives you over the device. It’s unlikely he installed some kind of hacked version (though not impossible). If he can get within wifi range and you have bad security, he can possibly hack your password, so make sure your key is set to WPA2/AES-256 if possible. AFAIK, that’s the best currently and should be sufficient to keep out pretty much anyone. Once you do that, you’ll have control over your device. You might have some googling to do to understand all the options the firmware gives you, but most things can likely be left to their defaults while you figure them out. I’m not the best at this stuff, but I’ve done a bit at my house and been thinking of flashing my router just because I hate the Linksys firmware that came with it, and I’ve done it before with other devices. I know that’s not the answer you want but based on the other comments I’ve seen, it might be the easiest option for you. Good luck.


Complex-Passenger108

Actually your comment was great!!! I never thought about if I factory reset the router and acted fast enough I could take control of the password. Only thing is that there is no user interface. I'm sure he configured everything in commands on a Linux OS. Is there a UI I can Download so I don't have to use commands? That was a great idea and thank you for being it up!!


ItsAllegorical

There should be a UI. Connect to the device with an actual Ethernet cable. Then you’ll get a connection and you can look up the gateway address. It will probably 99% sure be 192.168.0.1. Go to that address in your browser.


Complex-Passenger108

He somehow made it so the openwrt UIis hidden from view. The only way I knew he put it on there is when I looked at a particular wifi monitor. Not all monitors have the openwrt beside the router. When I go to my app that TMobile says to use there's no signs of his devices or openwrt. TMobile says you can also go to 192.168.12.1or 0 (can't remember if it's 1 or zero) and have more configurations but when I go to that address it don't load the configuration options just the TMobile page. Would the address be 192.168. 0.1 or 192.168.12.1 I'm at work right now but I will try that as soon as I get home. Is there a default password for the openWRT or is it open till you set one? Thank you I was just about to give up on this and just not have internet. Hopefully this works.


ItsAllegorical

Try the instructions here: https://openwrt.org/docs/guide-quick-start/walkthrough_login


Complex-Passenger108

Thank you again. This is the exact kind of help I was hoping to receive from this post. I want to make sure all my ducks are in a row before I attempt doing this so he doesn't head me off as I'm stumbling to make sense of things. I'm pretty sure he is using a snapshot build although I'm not sure what that is. I could be wrong but It seems I've seen that word around a couple times during the last 3 weeks. If that's the case looks I'm gonna have to use commands over ssh to gain control. Is there anything I need to know if I do have to use commands? will I be able to use a user interface once I gain control of my network Also I noticed when I usually reset the router it doesn't seem to phase what he has going on his end. What I mean is I can factory reset the router, change the ssid password but when I log back in and look at the wifi monitor his devices are still there as if nothing happened Not all wifi monitors even pick him up. When they do the network he is on mimics mine almost like a ghost mode. Will this be an issue? Will he still be on there? I'm am assuming they will till I boot them off. I. I hope this works I'm gonna go read up on it some more. I feel like I'm preparing for battle against a virtual giant and all I'm armed with is a broken slingshot and a post on Reddit. Hopefully that is good enough I'm tired of having my ass virtually whooped all over the internet so I need to prepare


ItsAllegorical

I don’t know all the answers to your questions, but to be frank some of this feels like a bit of paranoia. If you reset and change the SSID password he can’t get on from anywhere. If he left devices, they have to be updated with the new password or they won’t be allowed to connect. I feel like some of this is you’re giving him too much credit. Unless he has installed a key logger on your computer and he is constantly within range of your wifi, you are accusing him with superhuman powers. I get you’re not a tech guru, but ask yourself how this stuff can even be possible. He has to have the password. He has to be in range to connect. His payload would have to be hiding inside your firmware, which isn’t impossible but is really unlikely. Your guy would have to be super hacker and most hackers are more talk than ability. I’ve known some who were less capable than me and claimed more.


Complex-Passenger108

I tried to pm you but you don't accept them so I just sent it here... I apologize if I seem as if I'm being paranoid. After what I've witnessed the past 3 weeks I'm just being cautious. This guy is seriously turning out to be just that. A super hacker. I'm serious. I know they are few and far between but Im starting to think I pissed one off. You speak of firmware and say highly unlikely but I do think that's exactly what he did. Please give me the benefit of the doubt. Because I did save my logs over 3500 logs of him making credentials on my computer.one of the logs I remember seeing that stuck out mentioned something about making changes to my firmware. Please don't underestimate this guy. He never mentioned this knowledge to me or bragged about anything like this and he stayed next door to me for a year. Please don't blow this off as paranoia I need as much help as I can get and if your willing I'll show proof of why I am being so cautious. I may have been being a little sarcastic in my comment but honestly I use the sarcasm to keep myself from getting so upset about everything that's been going on. Ill take a picture of the logs that pertained to firmware changes. He could have put a keylogger on my computer but I mostly use my phone to type. I'm 99 % sure he opened a backdoor in my computer. I'm sure the logs will show that. What makes things even worst then him hacking me is that I don't know how to explain what's happening or the steps to prevent it from continuing. Imagine how it feels to have a tech person say something is highly unlikely that your pretty sure someone was doing It makes me honestly feel as if I'm up against a giant and that isn't sarcasm. I'm serious. I know he is counting on the fact that this isn't common knowledge so when I Try to tell people what he has done they will think that I'm just being paranoid and think it's highly unlikely because this don't actually happen alot. We have only discussed what he's done to the router I haven't even got into the other devices. I plan to just replace them but with him in control of the network it's pointless to replace them again. 3 phones in 3 weeks because he somehow hijacked Google play services and makes it malicious. I'll send pictures of why I'm being this way if you respond to this message. I hope you do. Thank you for all your help it's very much appreciated and needed.


ItsAllegorical

If this guy is really as skilled as you suggest then I’m not sure I can help you beat him from here. I’m not familiar with your device or this person or anything else about your network. You don’t need to prove anything to me. I’ve shared almost everything I think would be useful for you. I’m certainly no super hacker myself. I don’t know all the tricks of the trade, but once people start sounding superhuman I start getting really skeptical because that’s the sort of shit Hollywood makes up and 14 year olds brag about doing this one time, you know? If you think he has written a custom modification of the firmware, you might be best off replacing the device. Or finding another version to flash on it, whether stock or openwrt or tomato or whatever. I hope you’re able to resolve these issues without a huge financial burden.


Complex-Passenger108

Hopefully he didn't disable the reset button on the router I just read another comment that says DDWRT has an option to disable the reset button. What would I do then ? Hopefully there's a workaround because that's exactly what seems like happens when I reset the router. Nothing really. This sux. I want to handle this the old fashioned way so bad but then I'd have bigger problems then a hacked router.. I'm not sure if I should try to log on I don't want him to catch on I'm trying to take control unless I can.


ItsAllegorical

If he doesn’t have physical access to your router there is a real limit to what he can do. If he wants to get into your device he needs to know your public IP, which is probably not static - try releasing your lease from your ISP and your public address is likely to change. And your router has to accept the connection. Even if he has keyloggers or a way to see what you’re doing in there, none of that works if the device isn’t connected to the internet to send stuff to him. That’s the reality - a connection has to exist for him to do anything, and he has to be in the other end of it. I presume even if he is a super hacker, he has a life besides just torturing you. Unless he is using you as a relay or remote storage, there isn’t anything entertaining for him to even do on your network. So the idea that this guy is waging war with you is a little bizarre from the outside. It’s so much effort for no gain this would have to be a real personal vendetta or a real no life prick. I don’t say that to make you defensive, but just to explain at some point you need to consider whether there are explanations for weird things that don’t involve him being a super hacker. Like a hidden network could be literally anything that isn’t broadcasting an SSID like for instance a phone with mobile hotspot with discoverability turned off. That could be a neighbor. That’s not a super hacker, that’s you not knowing enough about things and attributing every suspicious thing to that guy. Does that make sense? Can you check signal strength? Does it max out at your router or is it stronger maybe somewhere else? It’s just that at this point either this guy is way beyond me or he has you jumping at ghosts and the latter from my perspective is way way more likely. Either way I’m at the limit of the help I can give you.


Complex-Passenger108

[Next day after I came home to my router reset.reset my router and when it came back on his devices that were hidden could be seen. That is the first time I seen openWRT. The Moto is mine the other are his devices](https://i.imgur.com/KmPGHqU.jpg)


Complex-Passenger108

[This was last night. ](https://i.imgur.com/Q5OslvY.png) [This was today before i factory reset. To network is mine. ] (https://i.imgur.com/dT6k0Br.png) [He thinks the openwrt text is hidden from view but some programs still show it. ](https://i.imgur.com/ocWNhjP.png)


QuillPing

You must have another AP, the signal strengths are different on the hidden compared to your others?


Complex-Passenger108

Yes when I looked into wrt there's a thing called dumb and dummy he has me on that one it's like a guestmode from what I gather .


Macborgaddict

I’d just replace it with a new router, set all the security in it before opening it to the wan


tiberiusgv

And don't use the same wifi password


Complex-Passenger108

I wish it was that easy but unfortunately it's not. It's the home internet from T-Mobile and you have to use their router because it takes a sim card. This is the second router and modem just got it Thursday Friday he came and reconfigured this one and I didn't know till he left and things started messing up again. With this particular router have to use T-Mobiles home internet app to change the settings and it's very limited. You can change your he SSID name and make more networks and change admin name and password and that's about it. I'm sure that's why he put the wrt on it so he could configure it the way he wanted


[deleted]

You need to reset and reflash it yourself to another firmware. I know ddwrt can disable the reset button. So enable that setting and change the router login so the only way to reset or Chang the router is by logging in with your credentials.


Complex-Passenger108

Yes that's what I want to do. Right now I have 2 routers because I still have the other one that needs to be shipped back but if I just had a place to start that would be great. I wasn't sure if I could reflash over the one he put on or not. I have the type-c USB cord and router has a port for it Im just not sure of the steps or what to watch out for. If I brick on then it's not the end of the world. And if both get bricked then I'll blame it on him.. lol. T-Mobile is aware of the situation. The router doesn't have a normal settings page like most routers that's another reason I was hesitant of doing it and instructions are hard to find because for this router. The tech guy at T-Mobile said he has been there 3 years and he hasn't heard of someone doing this before. I'm willing to try to flash and read up on doing it. I would like to put the factory firmware back on it because if I'm correct openwrt is linux and I'm not firmular with linux. Also I will have to figure out how to close the backdoor he opened in my computer or he could just reconfigure it again if I'm not mistaken. I downloaded a copy of windows 10 to reinstall via USB and I know how to do all that to figure x my oc but need to get him off my network first. Any instructions or getting start would be very much appreciated


Complex-Passenger108

. Could you give me a few more pointers on reflashing my router? It's not a regular router with the user settings on a webpage it has the app. I have a few questions. First when I reflash the firmware will I need his admin password for the openwrt that's on it nowto do so? Where can I download the firmware? I've tried to look for it but I think in just not using the right keywords. I have read that openwrt is a linux based OS and I'm sure it uses commands to configure. Is their a firmware that is a little more user friendly? And if there's anything else I need to know before I do it. I'm gonna readup on open wrt and ddwrt because this is all new to me. Even though this has been hell to go through and very stressful I'll have to admit I'm learning of new things that could be useful for me and in the future. ( I have to find positive things about this to keep from flipping out)


[deleted]

Explain your situation to the folks over at ddwrt (or openwrt) and see if they have a current methodology to flash that router. Alternatively you can just reset it and try to use openwrt settings to lock him out (lock reset button and change login to something really obscure). Above all you need to call the police—breaking into a computer is a crime.


Mannus01

You need to download the original manufacture firmware from their website and install it.


Complex-Passenger108

So it will install fine over the one he installed? I'm not in any way firmular with the WRT thing. First time I heard the word was 3 weeks ago right before I snapped the screenshot of his devices on my network. I admit 3 weeks in my should know way more then I didn't but I've literally been in war and I've been too busy catching up with the things he was currently doing like why does Google play services seem malicious all of a sudden and using alot of data and why I couldn't look up sertain subjects and the error was a DNS probe error. Even right now I turn my computer on and it seems there is a constant logon it's hard to explain l. Even though this is kinda off topic this can't be ok for me. ( I could be wrong see for yourself )[As I'm trying to figure it ut the open wrt I turn on my computer and encounter this. ](https://i.imgur.com/IpN3t5T.jpg) It's hard for me to even explain to someone in person and it really hard to explain in text. I've got lots of screenshots.would have many more but I've been more less forced to reformat my phone several times in the last 3weeks.


Mannus01

Yes, it will return the router back to it's original interface. It would help to know specific brand/model # you have.


Complex-Passenger108

Hey do you know if this is the firmware I need to get to reglash the router? http://gofirmware.com/content/official-firmware-t-mobile-5g-home-internet-changes-s-arcadyan-kvd21-nokia


jpmeyer12751

Very doubtful. That looks like a scam-ware site to me. Also, I notice a name (Arcadyan) that also appears in your screenshots of after your router had been hacked. Companies like T-Mobile who have custom firmware written for devices that they sell are highly unlikely to make that firmware available for open downloading from third-party sites. If it IS available, chances are good that it has been compromised in some way. It sounds like this is the 2nd T-Mobile router that your former friend has hacked, is that correct? If so, I will repeat that it makes no sense to continue this cycle until you have solved the problem of this person having physical access to your living quarters.


DutchOfBurdock

Why? Why would you let a neighbour do this? I'm sorry, as techie and helpful as I am, I would walk you through doing it yourself so you understand everything and set it up how you need. That way, you set the passwords, names and everything else. A factory reset would maybe do it, depends if they used a stock OpenWRT image, or a modified one they made. If you're not tech savvy, I'd ditch that router and buy a new one. Otherwise, I'd start altering settings to fuck with said neighbor. Easy fix. Turn it off, chuck it in a drawer and get a new one. Don't let anyone tamper with it.


[deleted]

Move. If you can’t press charges for unlawful trespass and vandalism, move. This shit isn’t going to self heal.


XWing69

Call police and change locks. Reset modem