Be careful when your ADSL cat is hacked

With the popularization of networks, network security has become more and more important. Today, we will introduce a very rare case. I hope you can improve your security awareness!

Everyone should know that many cats now have the automatic dialing function. We can put the account in the dialing software of ADSL cat, so that every time the computer starts, ADSL cat can automatically dial, you can access the Internet as soon as you open your computer. The above work is completed through the following steps:

1. Enter the default address of the cat in the browser, such as http: // 192.168.1.1. A dialog box will pop up. Generally, the default account and password are root when entering the ADSL cat ., or admin, or the ID and password are not required at all, and the problem lies in this. Why?

Ii. You should know the principles of ADSL! When we dial, the Telecommunications Board will randomly assign you an IP address. This IP address is a regular IP address. A region corresponds to an IP address. For example, the IP address allocated on our side is 61. *. *. *. You can use the IPCONFIG/ALL command to view your current IP address.

3. For example, the IP address obtained by my ADSL instance is 61.138.4.2. In this case, the last digit of the IP address may be the IP address that another user is using. In the browser, we enter 61.138.4.3 to 61.138.4.254. If an ADSL cat Login Dialog Box is displayed, it means that we have connected to the other's ADSL cat, and then try to enter several accounts and passwords. How are you going in! Any of the above parameters can be changed. Once we see who is upset, we can break the other's cat, and the other party may think that their cat is broken.

Today, I did an experiment. The success was 80%, because our Telecommunications Bureau did not seem to be aware of this problem, and almost all ADSL cats did not change their passwords. The ADSL modem models used by China Telecom to install ADSL are similar, while the default passwords of the same type of ADSL modem are the same, which greatly increases the possibility of guessing the password.

If you can log on to your modem, you will not be very concerned, but it will log on to your modem. If you change the modem's NAT settings, You can further access your computer on the Intranet, at this time, if the computer itself is not well protected, then you are in danger.

I don't believe what I said above, but this is my personal experience. My computer was hacked once like this. At that time, I was surfing the Internet, installing a firewall, and suddenly saw a firewall warning, the source address is 192.168.1.1. What port is the connection to my computer? I did not pay attention to it. I will continue surfing the Internet. After the next boot, I will not be able to enter again. No matter what the status is, it will always restart. In addition, I cannot change the settings of the cat. Each time I had to use the pencil head to hold down the back point reset to solve the problem. At that time, I thought someone was using an Internet IP address to remotely access my cat. People may wonder that telecom people will not know such a big problem. I have also asked Telecom friends about this problem. In fact, they are also solving this problem, several emergency measures are provided. If your telecommunications department is not aware of this problem. You can do this:

1. Set ADSL to Prohibit Internet WEB login. You can only log on to the local lan web.

2. Change the default password.

3. It is what I think, and it is also the most absolute. You can also change the WEB login port of ADSL to another port. Many of the methods I use now are the most poisonous method to map port 80 to my computer, then, I changed my IIS default page to a page with attack code. For example, I can make a page with the drive code and warning code of the other party. I made a page with JAVA!

Now that we know how the cat is HACK, you don't have to worry about it. If your ADSL Cat hasn't changed its password, change it as soon as possible!