Forum Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Rum37Tmdf
Beginner

on ‎25-11-2024 7h10

908 Views
Message 1 of 16

Replacement Router Hacked Remote Host

Hi everyone, first post so sorry if it’s a bit confusing- I have no tech skills whatsoever. Bt said my router was hacked from the logs and sent a replacement. Devices - phones were hacked, phone calls, camera, screen and access to websites. All devices wiped to factory settings in Store, passwords for apple, Microsoft, gmail etc changed on someone’s secure WiFi laptop in another building. Same things happened again within days, can only half the screen, can’t open files. When I changed admin password it logged as http admin instead of just admin. Devices are labelled by their name or unknown and then labelled as host. Last night remote host opened portals I haven’t seen before both external and internal from my sons smart tv. I’ve probably made everything worse restarting the hub and messing about with the settings but I have no idea what to do. My son was reported for hacking school systems in August and had bought usb sticks with prebuilt Kali Linux software. both his and his brothers computers displayed No Operating System Reboot when switched off - pc shop said whole memory gone for pc but laptop, sons phone and the usbs were seized by police. He’s not hacking anymore but he had originally taken the card out of the hub with the passwords etc. how the hell do I get these people out and take my life back?

Reply
15 REPLIES 15
Keith_Beddoe
Distinguished Sage
Distinguished Sage

on ‎25-11-2024 7h22

902 Views
Message 2 of 16

Re: Replacement Router Hacked Remote Host

You are the victim of a scam, BT would never contact you to say your router has been hacked. Who set the "replacement" router, as its probably not a BT one.

https://www.bt.com/help/security/scams

This is just a BT customer to customer forum.

I doubt anyone here would be able to help.

Reply
naylor2006
Recognised Expert

on ‎25-11-2024 8h08

876 Views
Message 3 of 16

Re: Replacement Router Hacked Remote Host

Even the post looks like a hoax....

-----------------------------------------------------------------------------------------------
BT900 | Nokia ONT | Ubiquiti ER-X | EETV Box Pro (IP Mode) | Unifi CK2 | 6x Unifi U6+ | 2x Unifi SAK Ultra
Reply
Rum37Tmdf
Beginner

on ‎25-11-2024 9h44

847 Views
Message 4 of 16

Re: Replacement Router Hacked Remote Host

I phoned them and they went through the technical log. Told me to unplug all devices and unplug router. Sent me a new hub 2 which I received about 4 days later. I spoke to o2, reported to action fraud - had to do a separate report for every device in the house. Cost £170 for pc to have new operating system and memory put back. No one contacted me I contacted them. This is genuine. I need help urgently because I don’t know who else to go to
Reply
Rum37Tmdf
Beginner

on ‎25-11-2024 9h45

846 Views
Message 5 of 16

Re: Replacement Router Hacked Remote Host

Seriously not a hoax. This is an awful experience that i can’t resolve
Reply
VeteranISPUser
Recognised Expert

on ‎25-11-2024 10h34

825 Views
Message 6 of 16

Re: Replacement Router Hacked Remote Host

@Rum37Tmdfwrote:
Cost £170 for pc to have new operating system and memory put back.

Hi @Rum37Tmdf  I'm afraid that is a classic scam. 

Reply
Rum37Tmdf
Beginner

on ‎25-11-2024 15h00

770 Views
Message 7 of 16

Re: Replacement Router Hacked Remote Host

How can I find out who the remote host is and stop them? They added port rules that opened external and internal ports to my smart tv

 

Reply
Rum37Tmdf
Beginner

on ‎25-11-2024 15h07

628 Views
Message 8 of 16

Re: Replacement Router Hacked Remote Host

external ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0824 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0724 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0724 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0724 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0724 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114
22:57:0724 Nov. Port forwarding rule added via TR069. Protocol: TCPexternal ports: any->61000remote host:internal ports: 7547internal client: 192.168.1.114

Reply
gg30340
Distinguished Sage
Distinguished Sage

on ‎25-11-2024 15h51

738 Views
Message 9 of 16

Re: Replacement Router Hacked Remote Host

Disconnect all your devices from the Internet then carry out a factory reset on all of them and while they are resetting carry out a factory reset on your BT Hub.

If you still have problems after that get your hacker of a son who apparently thinks he is a whiz kid to repair the damage that he has done with his stupid antics and if that doesn't work you will need to employ the services of a computer expert to repair that damage because it really has nothing to do with BT or this forum.

Reply
WSH
Recognised Expert

on ‎25-11-2024 16h44

718 Views
Message 10 of 16

Re: Replacement Router Hacked Remote Host

And when you factory reset the Smart Hub, I wouldn’t use the password on the back again.  Use something else, at least 15 characters long, numbers, upper/lower case and symbols.

Reply