abusive_isps

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
Next revisionBoth sides next revision
abusive_isps [2017-11-03T02:18:51Z] – Adding AT&T DNS resolver NXDOMAIN hijacking fuslabusive_isps [2019-01-27T17:34:25Z] fusl
Line 32: Line 32:
 This list is very incomplete. If you are certain that your ISP is hijacking DNS or is involved in other questionable practices, please add it below. This list is very incomplete. If you are certain that your ISP is hijacking DNS or is involved in other questionable practices, please add it below.
  
-^ Country       ^ ISP         ^ Reported ^ Reporter                   ^ Notes ^ +^ Country        ^ ISP            ^ Reported   Source                     ^ DPI ^ Level                            ^ Notes ^ 
-| United States | AT&       | 2017     | //news//                   No UDP/53 interception but redirects NXDOMAIN on their own DNS resolvers to a search engine landing page: http://www.att.net/dnserrorassist/about/ ({{:abusive_isps:att1.png?linkonly|screenshot}}), https://forums.att.com/t5/AT-T-Internet-Features/ATT-DNS-Assist-Page/td-p/5108480 ({{ :abusive_isps:att2.png?linkonly|screenshot}}) | +| Taiwan         | HiNet          | 2019-01-16 | [[user:fusl]]              | no  | blocking of selective domains    | Returns NXDOMAIN for some very specific domains, hijacking common public DNS resolvers like Google, OpenDNS and CloudFlare, Quad9 seems to be unaffected | 
-| United States | CenturyLink 2017     | //some user// on #opennic  Reproduced by [[:user:fusl|Fusl]], no UDP/53 interception but redirects NXDOMAIN on their own DNS resolvers to ''198.105.244.23'' and ''198.105.245.23'' which redirects to ''http://webhelper.centurylink.com/index.php?origURL=xxx&r=&bc='' |  +| Austria        | 3 / drei.at    | 2018-01-28 | [[user:fusl]]              | no  | NXDOMAIN search engine redir     | NXDOMAIN redirect to ''213.94.80.190'', {{:abusive_isps:h3gat.txt|proof}} | 
-Peru          Bitel       2017     Tedel on #opennic          http://xor.meo.ws/paste/1498255178451615185/cd64eb34-eac1-4eeb-bcc8-50c5a756b866.txt +| -              | Vultr/Choopa   | 2017-11-03 | [[user:fusl]]              | yes | blocking of selective domains    | [[https://en.wikipedia.org/wiki/Deep_packet_inspection|DPI]] on UDP/53, blocks any DNS request containing the text ''minexmr.com.'' in the query name ({{:abusive_isps:vultr.png?linkonly|proof}}) | 
-| United States | Comcast     | 2009     | //news//                   | http://www.theregister.co.uk/2009/07/28/comcast_dns_hijacker/+| United States  | CenturyLink    | 2017-08-28 | //some user// on #opennic  | no  | NXDOMAIN search engine redir     | Reproduced by [[:user:fusl]] - NXDOOMAIN redirect to ''198.105.244.23'' and ''198.105.245.23'' which redirects to ''http://webhelper.centurylink.com/index.php?origURL=opennic&r=&bc='' |  
-Canada        | Rogers      2007     | //news//                   | http://www.dslreports.com/shownews/Rogers-Uses-Deep-Packet-Inspection-for-DNS-Redirection-96239 |+| Peru           | Bitel          | 2017-06-23 | Tedel on #opennic          | ?   | ?                                | {{:abusive_isps:bitel.txt|IRC conversation log}} | 
 +| United States  | AT&          | 2017-03-27 | //news//                   no  | NXDOMAIN search engine redir     http://www.att.net/dnserrorassist/about/ ({{:abusive_isps:att1.png?linkonly|screenshot}}), https://forums.att.com/t5/AT-T-Internet-Features/ATT-DNS-Assist-Page/td-p/5108480 ({{:abusive_isps:att2.png?linkonly|screenshot}}) | 
 +| United States  T-Mobile US    2015-07-20 | thefinn93 on reddit        | no  | NXDOMAIN search engine redir     | https://www.reddit.com/r/tmobile/comments/3dyk1h/how_do_i_turn_of_nxdomain_hijacking/
 +| Indonesia      | Telkom         | 2015-04-27 | //blog post//              | ?   | ?                                | https://www.katyarina.com/artikel/item/36-bagaimana-internet-positif-telkom-bekerja.html | 
 +| United States  | Sprint         | 2014-09-05 | sanityvampire on reddit    | no  NXDOMAIN search engine redir     | https://www.reddit.com/r/Sprint/comments/2fl6pk/are_sprint_3g_and_4g_towers_hijacking_nxdomain/
 +| United States  | CenturyLink    | 2011-12-21 | DSLReports Forums user     | no  | NXDOMAIN search engine redir     [[https://www.dslreports.com/forum/r26682725-|other report]] |  
 +| Spain          | ONO            | 2010-05-10 | //blog post//              | no  | NXDOMAIN search engine redir     | Allowed cross-site-scripting attackshttp://www.iniqua.com/2010/05/10/nxdomain-redirect-xss/
 +| Australia      | Telstra        | 2009-11-20 | //news//, CRN Australia    | no  | NXDOMAIN search engine redir     | [[https://www.crn.com.au/news/bigpond-redirects-typos-to-unethical-branded-search-page-160923|news article]] | 
 +| United States  | RCN            | 2009-10-13 | //blog post//              | no  | NXDOMAIN search engine redir     | https://infiniteedge.blogspot.com/2009/10/who-stole-my-web-browser.html | 
 +| United States  | Mediacom       | 2009-09-25 | YourName on reddit         | no  | redirection of selective domains | Redirects ''search.live.com'' to own search engine, https://web.archive.org/web/20100303205850/http://www.reddit.com:80/r/programming/comments/9o3as/want_a_real_world_example_of_why_we_need_network 
 +Canada         Bell Internet  2009-08-04 timothy on Slashdot        no  | NXDOMAIN search engine redir     | https://tech.slashdot.org/story/09/08/04/1512248/Bell-Starts-Hijacking-NX-Domain-Queries 
 +| United States  | Comcast        | 2009-07-28 | //news//                   | no  | search engine redir              | http://www.theregister.co.uk/2009/07/28/comcast_dns_hijacker/, [[http://corporate.comcast.com/comcast-voices/comcast-domain-helper-shuts-down|disabled in August 2009]] 
 +Germany        | T-Online       | 2009-04-09 | -                          | no  | search engine redir              | https://telekomhilft.telekom.de/t5/Browser/Neues-Leistungsmerkmal-Navigationshilfe/m-p/568909#M1622 | 
 +| United States  | Optimum Online | 2008-09-25 | -                          | no  | search engine redir              | [[https://web.archive.org/web/20090813095417/http://www.optimum.net/Article/DNS|Optimum Online - DNS Assistance]] | 
 +| Canada         | Rogers         2008-07-20 | //news//                   | no  | ad content injection             | http://www.dslreports.com/shownews/Rogers-Uses-Deep-Packet-Inspection-for-DNS-Redirection-96239 
 +| Australia      | Telstra        | 2008-03-15 | //blog post//              | no  | dns redirection                  | https://archive.is/20101210140523/http://jeffturner.net/2008/03/road-runner-dns-hijack-causing-slow-web-pages/
 +| United States  | Verizon        | 2007-06-21 | -                          | no  | search engine redir              | https://www.verizon.com/support/residential/internet/home-network/settings/opt-out-of-dns-assist | 
 +| United Kingdom | TalkTalk       | FIXME      | -                          | no  | search engine redir              | http://error.talktalk.co.uk/main?FailureMode=14&LinkType=1 |
  • /wiki/data/pages/abusive_isps.txt
  • Last modified: 5 years ago
  • by fusl