Reply

RBR40/RBK43S mesh system

Johanne9501
Follower

RBR40/RBK43S mesh system

My Internet service provider is warning me that my Orbi device is trying to access malicious sites. I am also seeing an increase is blocked spam attempts from both the orbi system and my internet service provider. The orbi app shows me what other devices are trying to access. But of course it doesn't show me what is going on with the orbi. I'm afraid I've been hacked and I don't know what to.
Message 1 of 4
plemans
Guru

Re: RBR40/RBK43S mesh system

it isn't the orbi accessing it but usually an device using the orbi and sending through malicious connections. 

Have you tried doing a malware/antivirus scan on your devices connected to orbi?

Current setup: CAX80->Trendnet TEG-S380->GS716T-> RBK752->pi-hole
1.4gig download/50mbps upload
We’re members of the public helping out on our own time.
Message 2 of 4
FURRYe38
Guru

Re: RBR40/RBK43S mesh system

What Firmware version is currently loaded?
What is the Mfr and model# of the Internet Service Providers modem/ONT the NG router is connected too?


@Johanne9501 wrote:
My Internet service provider is warning me that my Orbi device is trying to access malicious sites. I am also seeing an increase is blocked spam attempts from both the orbi system and my internet service provider. The orbi app shows me what other devices are trying to access. But of course it doesn't show me what is going on with the orbi. I'm afraid I've been hacked and I don't know what to.

 

My Setup ISP SparkLight | Internet Cable 1000↓/50↑ CM2000 Modem | Wifi Router RAXE50 and R7960P(v.88) Router Mode and RBK752(v.2) AP mode | Switches NG GS105/8 | 

Additional NG HW: C7800/CM1100/CM1200/CM2000, Orbi: CBK40, CBK752, RBK50, RBK853, RBK752, RBK953, SXK30 | NightHawk: R7000, R7800, R7960P, R8000, R8500, RAXE500, RAX50, XR450, EX7500/EX7700, GS308v3

Message 3 of 4
CrimpOn
Sensei

Re: RBR40/RBK43S mesh system


@plemans wrote:

it isn't the orbi accessing it but usually an device using the orbi and sending through malicious connections. 

Have you tried doing a malware/antivirus scan on your devices connected to orbi?


The source is almost certainly a device that opens web pages (computer, laptop, tablet, smartphone), not any of your Internet of Things (IoT) devices.  This report claims Throtle.com violates their Ethical Design Creiteia in two ways: https://better.fyi/trackers/thrtle.com/ both of which involve web pages.

 

Eliminating the tracker on Windows is pretty easy (CCleaner and MalwareBytes will both root it out.)  Macs, iPhones, and Android phones may have similar capabilities.

 

Another method might be to recall what was happening at the times mentioned in the AT&T report.  If some devices were definitely idle at that time, they could be lower on the investigation list.

I love my Orbi.
Message 4 of 4
Top Contributors
Discussion stats
  • 3 replies
  • 231 views
  • 1 kudo
  • 4 in conversation
Announcements

Orbi WiFi 6E