WNDR3700V1 hacked and installed OpenWrt

mike30858489 · February 12, 2019, 4:16pm

Continuation from Twitter "OpenWrt-Help".

My Netgear WNDR3700 router rebooted on Saturday. I assume it is V1. Come to find out it now has OpenWrt on it. Was using stock Netgear firmware. No problem except I cannot access the GUI at 192.168.1.1. It is broadcasting only on 2GHz with SSID "OpenWrt". The DHCP server address says 192.168.99.1. I use mostly iOS devices but also have a Window 7 Home, SP1 desktop. Any suggestions how I can regain control over my router would be appreciated. It is offline and am using a backup travel router for now.

lleachii · February 12, 2019, 4:24pm

???

Did you flash OpenWrt???
Are you saying your device failed-over to the backup partition, and that partition had OpenWrt installed?
If so, I surmise you bought your router used?

CAN or CAN'T???

Are you trolling us???

tmomas · February 12, 2019, 4:26pm

https://openwrt.org/toh/netgear/wndr3700#recovery_flash_in_failsafe_mode

mike30858489 · February 12, 2019, 4:28pm

I did not try to flash openwrt. Been running the stock netgear firmware for years. I’m ok with trying openwrt if I can regain control and secure my router.

lleachii · February 12, 2019, 4:31pm

You're not making any sense and truly sound paranoid. Please explain what you mean - how did your router get unsecure and out of your control???

Otherwise, I suggest just flashing your router twice with stock, if you desire to run that firmware.
If you prefer OpenWrt, flash a known-good firmware from http://downloads.openwrt.org

mike30858489 · February 12, 2019, 4:36pm

Cannot access GUI at …

Sorry for my confusing post. I edited the original reflecting cannot.

Hegabo · February 12, 2019, 4:39pm

Could it be that a friend or someone who has access to your Wi-Fi is messing with you?

lleachii · February 12, 2019, 4:39pm

Please use a single post to respond to multiple questions, this will save on the new user posting limit
You have not told me if your router was purchased used
Did you have guests that could access the Linksys web GUI?

Try http://192.168.99.1 then.

Calm down and clearly answer the questions posters will ask in order to assist you.

mike30858489 · February 12, 2019, 4:42pm

Tried accessing GUI at 192.168.99.1. Nothing shows up.

Hegabo · February 12, 2019, 4:43pm

Can you ping 192.168.99.1?

mike30858489 · February 12, 2019, 4:43pm

Yes I can ping 192.168.99.1

Hegabo · February 12, 2019, 4:45pm

Try a different browser then. or try openwrt.lan from the browser.

And be careful of the new user daily limit here on the forum.

mike30858489 · February 12, 2019, 4:53pm

I tried both suggestions. Nothing returns.

Hegabo · February 12, 2019, 5:01pm

It could be that you have OpenWrt without GUI then.

See if you can access the router from SSH. PuTTy or Bitvise SSH client are good tools for SSH access form Windows
https://putty.org/
https://www.bitvise.com/

Download one of them t your PC and use it to access 192.168.99.1 using root as username and empty password. If you have question about how to use an SSH client then check the documents.

If you can't find SSH server at this address, hen you could try an IP scanner http://www.advanced-ip-scanner.com/ to see if you can find the router (not sure how i wouldn't be at that IP though)

If SSH server is there but incorrect password, then your best bet would be to just recover the router.

lleachii · February 12, 2019, 5:02pm

Interesting:

https://twitter.com/OpenwrtH

Try using the Terminal (on Mac) or PuTTY (on Windows) to try SSHing to 192.168.1.1 and/or 192.168.99.1?.

The WiFi is disabled by default in OpenWrt, this is why I asked if you purchased this router used. If this is the cause, you may have to use fail-safe procedures, as noted in Post No. 3.

hnyman · February 12, 2019, 5:16pm

Use the well-functioning TFTP recovery flash mode in WNDR3700 and flash the Netgear stock firmware back into the router. You need to use wired LAN for that.

The recovery mode is documented in wiki and works well. I have used it a dozen time with my WNDR3700 v1 (and v2 and WNDR3800)

tmomas already gave a link to the wiki article about the TFTP mode, but I am repeating it here
https://openwrt.org/toh/netgear/wndr3700#recovery_flash_in_failsafe_mode.

That recovery flash routine is based on the u-boot bootloader, so your current OpenWrt has no role in that process. (so, any possible "hacking" has no effect in the outcome)

Ps.

WNDR3700 is a Netgear router and has no dual backup partition, so there is no need to flash twice.

hnyman · February 12, 2019, 5:26pm

If you are adventurous, you can use the TFTP flash mode to flash the 18.06 version of my WNDR3700 community build (which has been available since 2011).

But I suggest that you return to the Netgear stock firmware that you are familiar with.

h8red · February 12, 2019, 5:34pm

First make sure you are connecting to your own router.
Disconnect both WNDR3700 and your travel router power adapters. See if you still can see Openwrt SSID

mj5030 · February 12, 2019, 5:43pm

Possibly local machine compromised with UPnP on the router or Wireless insecure or abused by a user followed by TelnetEnable to view the nvram.

Good explanation of a security flaw on some Netgear routers when having access to the local LAN:

mike30858489 · February 12, 2019, 6:45pm

Problem solved. I was able to tftp the stock firmware and restore my router. Now I can study OpenWrt and decide to install when I’m ready. Than you all that participated in guiding me through this process. It was a lesson learned!