“My hub 3 rebooted this morning when I switched it on red lights flashing.” Sorry I don’t understand. Was the hub powered off overnight and you switched it on? Is so the LEDs will flash while it synchronises with the CMTS. 

There is a possibility when the hub was turned on it did a firmware update.

Dates of 1970 are when the hub is power cycled and it has not yet gotten the current date/time from the Internet.

jbrennand

Thanks for the help, I have managed to reset the hub and changed all the relevant passwords.

The settings password change took a few attempts and I had the notice again "someone else is logged in", I think the password is accepted but the settings page fails to appear, and logs it as a failed login preventing another attempt unless you wait for a while.

This may be some type of firmware issue looking at older posts of similar events.

The auto reboot  of the hub  this morning (red lights flashing) that occurred was  unusual and may have caused the issue but the logs show nothing except  for the strange critical 1970 date which usually means something went wrong, but  the hub was not on default settings.

The reset signal sent from virgin may have corrected some issues, as there was a "fault found" but it required a pin reset as well for me to be able to log into the settings page and to amend all the settings.

I will continue to monitor the settings page to ensure that this does not happen again, it may be a problem with the settings page. I have no apps so that was not a conflict unless the issue is caused by using 2 different laptops and browsers or not logging out, but the settings web page does usually time out but perhaps it has remained logged in for some reason causing the issue and a power down did not resolve this either .I will use the same laptop and ensure I Iog out of the settings page each time.

As the issue happened after  the hub 3 red lights were flashing, I suspected the hub may have been rebooted by virgin or an attack on the hub or some type of maintenance from virgin, but now solved for the time being, I have had the same thing happen before and it will be in my posts.

The pin reset works by resetting to default all the settings, so they then need editing for passwords ssid etc,

alf28

UPDATE ON HUB ISSUES

The settings page works OK now following the pin reset and password changes, however a lot of work to change passwords on 3 computers, 2 printers, v6 and now box. My hp printer still refusing to work.

LAPTOP ISSUE-open ports found using the router-check app on my tablet.

Following a router check which shows all connected devices, one laptop had a few open ports that should not be there.

Ports-135,139,445, 5357 all open so I have closed them.

135-epmap Microsoft rpc service dce endpoint reso (can be used for hacking tool edump)

139-netbios session service NetBIOS -SSN  (can be used for file sharing) may be my epson printer updates but not open on my other laptop

445-smb directly over ip microsoft-ds   (can be used for file sharing) may be my epson printer updates but not open on other laptop

5357-web services for devices wsdapi (network discovery was turned on-can be used for malicious activity on public network should be off)

I reset the firewall and switched off network discovery, and no open ports are showing now.

The only recent change to my computer was the software download  iobit free driver booster, may remove this, but it did show a lot of out of date drivers but have not updated anything.

Not sure if any of this is related to my recent hub issue when it auto rebooted, and I lost access to the web settings page.

As I do have sensitive files on my laptop, banking etc I hope they are safe? I will remove them to USB stick now and hope no passwords have leaked with the open ports.

I am still unsure what happened, or if any unauthorized access or hacking occurred and virgin (150) could not confirm anything, just said there was a "fault" identified by their reset signal which was corrected.

My epson printer has 6 open ports showing, but can not do anything about that.

My other hp printer has died at the moment, will use a usb cable.

alf28

UPDATE ON HUB ISSUES-antivirus checks

My other laptop had issues with antivirus Malwarebytes which seemed to have updated then disappeared from my computer, may have been corrupted so I had to re-install by downloading a fresh copy.

Also at the same time windows decided to update,  so not sure what was going on, but the antivirus is working now.

I have quick scanned for malware on both my laptops and both were  clean,  but will do further full scans soon.

This issue has taken me days to sort out- something unexplained and events like open ports and antivirus corrupted may be unrelated or possible the hub was corrupted or hacked, I will never know but hope it is solved now. Also got 2 weird emails, one  from Tesco rewards but was a USA  American engineering company and it came via moscow, usa, and germany, the other from windows secuity- Ossisto365 active directory security and health assessment.  These strange spam emails  arrived  yesterday the same day as the hub issue so could be linked.

alf28

UPDATE ON HUB ISSUES-"CONCLUSIONS"- password failed but now solved.

Having spoken to 2 local experts who are computer professionals, they both confirmed the  virgin hub does the job and no need for your own router, it would not be any more secure except more settings perhaps available, and they require fiddling with to make them work. One has a virgin hub in his own local  shop.

They advised me to always contact the  hub provider in the event of a hub/password problem, which I did, ringing 150 for help and advice.

The only 2 possibilities with my hub is that it was either faulty and lost the stored password for some reason or was hacked and the password changed  by somebody else which was indicated as it said my recorded password was incorrect, and I am careful always to record my passwords and test them often, it worked until Wednesday and the hub red lights started flashing and locked the hub, Virgin has no explanation themselves, other than do the pin reset which worked, and  the virgin remote reset found an unknown fault which indicated that the hub had issues.

I will monitor the hub setting page daily from now on, (and it does time out after a few minutes). If the hub is faulty, it may do this again where the password fails, and it says someone else logged in, then the password fails, and the only remedy is the long-winded hub pin reset and change all passwords. The virgin rep advised that if this happens again, contact virgin to get a hub replacement. I had the same problem last year, so it is not an isolated event and the hub 3 was replaced already once a few years back when it was faulty and kept loosing settings etc and poor connection.

alf28

“and no need for your own router, it would not be any more secure” totally disagree. Since 00:01 this morning I have had 48 stopped intrusions into my systems, none of which would have been trapped by the VM hub. Boy, am I glad my bank does not rely on such a low level of security.

Thanks for reply Tudor

HUB 3 INTRUSION- low level of security?

"Since 00:01 this morning I have had 48 stopped intrusions into my systems, none of which would have been trapped by the VM hub"

How are you detecting these intrusions and can you block them, I used to use bullguard  security, which did  flagged intrusions and block them but I have tried  Wireshark but was too complex for a novice like myself.

Should we be  concerned regarding such a high level of intrusions getting through the hub firewall as there are approx. 4.8 million virgin media cable customers.

Hackers are attacking all the time, so the system needs to be robust with strong passwords. My antivirus Malwarebytes has no firewall. Basically the virgin hub is the entry point my network but has no firewall settings such as low/medium high as most firewalls do have. The incoming ports to the virgin hub are closed/shielded so how can hackers get through  unless it is via virgin media  themselves?. I recently found a bunch of open ports on my computer which I have closed resetting the windows defender firewall.

My recent hub issues have me wondering, since  my settings password was changed by somebody, does the hub 3 security  requires additional measures or equipment or software such as own router that is compatible with modem mode and actually works, and intrusion detection blocking using software firewall on computer (or is windows defender good enough) I am not sure if my hub3 was corrupted, hacked or a hardware/network issue but as the hub has no firewall logs it is not easy to investigate so the pin reset was used to get my password restored. I am concerned as I do banking online like many do now.

My network log is not refreshing but the last records on the day it lost the password as follows- (no logs for 8/7/21 or today 9/7/21)

Also getting occasional pixelation watching films on v6 box, but upstream and downsteam logs look normal

Time Priority Description

I would be interested to improve security and any recomendtions would be helpful. Which router do you use and is it easy to set up and is it costly?

alf28

router security

see

3 Ways Hackers Can Attack Your Home Routers - Make Tech Easier

5 most common router attack on a network - Puffin Solutions

alf28