| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision |
| abusive_isps [2017-11-03T02:28:51Z] – [Abusive ISP List] fusl | abusive_isps [2019-01-27T17:34:25Z] – fusl |
|---|
| This list is very incomplete. If you are certain that your ISP is hijacking DNS or is involved in other questionable practices, please add it below. | This list is very incomplete. If you are certain that your ISP is hijacking DNS or is involved in other questionable practices, please add it below. |
| |
| ^ Country ^ ISP ^ Reported ^ Reporter ^ Notes ^ | ^ Country ^ ISP ^ Reported ^ Source ^ DPI ^ Level ^ Notes ^ |
| | - | Vultr/Choopa | 2017 | [[user:fusl]] | [[https://en.wikipedia.org/wiki/Deep_packet_inspection|DPI]] on UDP/53, blocks any DNS request containing the text ''minexmr.com.'' in the query name ({{:abusive_isps:vultr.png?linkonly|proof}}) | | | Taiwan | HiNet | 2019-01-16 | [[user:fusl]] | no | blocking of selective domains | Returns NXDOMAIN for some very specific domains, hijacking common public DNS resolvers like Google, OpenDNS and CloudFlare, Quad9 seems to be unaffected | |
| | United States | AT&T | 2017 | //news// | No UDP/53 interception but redirects NXDOMAIN on their own DNS resolvers to a search engine landing page: http://www.att.net/dnserrorassist/about/ ({{:abusive_isps:att1.png?linkonly|screenshot}}), https://forums.att.com/t5/AT-T-Internet-Features/ATT-DNS-Assist-Page/td-p/5108480 ({{:abusive_isps:att2.png?linkonly|screenshot}}) | | | Austria | 3 / drei.at | 2018-01-28 | [[user:fusl]] | no | NXDOMAIN search engine redir | NXDOMAIN redirect to ''213.94.80.190'', {{:abusive_isps:h3gat.txt|proof}} | |
| | United States | CenturyLink | 2017 | //some user// on #opennic | Reproduced by [[:user:fusl|Fusl]], no UDP/53 interception but redirects NXDOMAIN on their own DNS resolvers to ''198.105.244.23'' and ''198.105.245.23'' which redirects to ''http://webhelper.centurylink.com/index.php?origURL=xxx&r=&bc='' | | | - | Vultr/Choopa | 2017-11-03 | [[user:fusl]] | yes | blocking of selective domains | [[https://en.wikipedia.org/wiki/Deep_packet_inspection|DPI]] on UDP/53, blocks any DNS request containing the text ''minexmr.com.'' in the query name ({{:abusive_isps:vultr.png?linkonly|proof}}) | |
| | Peru | Bitel | 2017 | Tedel on #opennic | http://xor.meo.ws/paste/1498255178451615185/cd64eb34-eac1-4eeb-bcc8-50c5a756b866.txt | | | United States | CenturyLink | 2017-08-28 | //some user// on #opennic | no | NXDOMAIN search engine redir | Reproduced by [[:user:fusl]] - NXDOOMAIN redirect to ''198.105.244.23'' and ''198.105.245.23'' which redirects to ''http://webhelper.centurylink.com/index.php?origURL=opennic&r=&bc='' | |
| | United States | Comcast | 2009 | //news// | http://www.theregister.co.uk/2009/07/28/comcast_dns_hijacker/ | | | Peru | Bitel | 2017-06-23 | Tedel on #opennic | ? | ? | {{:abusive_isps:bitel.txt|IRC conversation log}} | |
| | Canada | Rogers | 2007 | //news// | http://www.dslreports.com/shownews/Rogers-Uses-Deep-Packet-Inspection-for-DNS-Redirection-96239 | | | United States | AT&T | 2017-03-27 | //news// | no | NXDOMAIN search engine redir | http://www.att.net/dnserrorassist/about/ ({{:abusive_isps:att1.png?linkonly|screenshot}}), https://forums.att.com/t5/AT-T-Internet-Features/ATT-DNS-Assist-Page/td-p/5108480 ({{:abusive_isps:att2.png?linkonly|screenshot}}) | |
| | | United States | T-Mobile US | 2015-07-20 | thefinn93 on reddit | no | NXDOMAIN search engine redir | https://www.reddit.com/r/tmobile/comments/3dyk1h/how_do_i_turn_of_nxdomain_hijacking/ | |
| | | Indonesia | Telkom | 2015-04-27 | //blog post// | ? | ? | https://www.katyarina.com/artikel/item/36-bagaimana-internet-positif-telkom-bekerja.html | |
| | | United States | Sprint | 2014-09-05 | sanityvampire on reddit | no | NXDOMAIN search engine redir | https://www.reddit.com/r/Sprint/comments/2fl6pk/are_sprint_3g_and_4g_towers_hijacking_nxdomain/ | |
| | | United States | CenturyLink | 2011-12-21 | DSLReports Forums user | no | NXDOMAIN search engine redir | [[https://www.dslreports.com/forum/r26682725-|other report]] | |
| | | Spain | ONO | 2010-05-10 | //blog post// | no | NXDOMAIN search engine redir | Allowed cross-site-scripting attacks, http://www.iniqua.com/2010/05/10/nxdomain-redirect-xss/ | |
| | | Australia | Telstra | 2009-11-20 | //news//, CRN Australia | no | NXDOMAIN search engine redir | [[https://www.crn.com.au/news/bigpond-redirects-typos-to-unethical-branded-search-page-160923|news article]] | |
| | | United States | RCN | 2009-10-13 | //blog post// | no | NXDOMAIN search engine redir | https://infiniteedge.blogspot.com/2009/10/who-stole-my-web-browser.html | |
| | | United States | Mediacom | 2009-09-25 | YourName on reddit | no | redirection of selective domains | Redirects ''search.live.com'' to own search engine, https://web.archive.org/web/20100303205850/http://www.reddit.com:80/r/programming/comments/9o3as/want_a_real_world_example_of_why_we_need_network | |
| | | Canada | Bell Internet | 2009-08-04 | timothy on Slashdot | no | NXDOMAIN search engine redir | https://tech.slashdot.org/story/09/08/04/1512248/Bell-Starts-Hijacking-NX-Domain-Queries | |
| | | United States | Comcast | 2009-07-28 | //news// | no | search engine redir | http://www.theregister.co.uk/2009/07/28/comcast_dns_hijacker/, [[http://corporate.comcast.com/comcast-voices/comcast-domain-helper-shuts-down|disabled in August 2009]] | |
| | | Germany | T-Online | 2009-04-09 | - | no | search engine redir | https://telekomhilft.telekom.de/t5/Browser/Neues-Leistungsmerkmal-Navigationshilfe/m-p/568909#M1622 | |
| | | United States | Optimum Online | 2008-09-25 | - | no | search engine redir | [[https://web.archive.org/web/20090813095417/http://www.optimum.net/Article/DNS|Optimum Online - DNS Assistance]] | |
| | | Canada | Rogers | 2008-07-20 | //news// | no | ad content injection | http://www.dslreports.com/shownews/Rogers-Uses-Deep-Packet-Inspection-for-DNS-Redirection-96239 | |
| | | Australia | Telstra | 2008-03-15 | //blog post// | no | dns redirection | https://archive.is/20101210140523/http://jeffturner.net/2008/03/road-runner-dns-hijack-causing-slow-web-pages/ | |
| | | United States | Verizon | 2007-06-21 | - | no | search engine redir | https://www.verizon.com/support/residential/internet/home-network/settings/opt-out-of-dns-assist | |
| | | United Kingdom | TalkTalk | FIXME | - | no | search engine redir | http://error.talktalk.co.uk/main?FailureMode=14&LinkType=1 | |