Airtel Xstream Nokia G2425 - Root access

  • Thread starter Thread starter ddpanda
  • Start date Start date
  • Replies Replies 72
  • Views Views 29,347
@Superstar did you manage to login in the web gui with mxxv op id? Or are you still locked out of there?

Also just a little note. I followed Max's instructions but I didn't really have to do all the config tampering. I am not sure why others have to but I'm guessing it's for those who are potentially on an older firmware and cannot activate the telnet normally.
All I did was log in to the GUI, look for telnet option in there, enable and save it. And I had telnet access instantly. Then follow the rest of the steps.

I also had the question is the WPA code the same for each device on reset/default config? Or is it dependant upon the isp/operator id?
 
Last edited:
Dyrokg said:
Guys i think i bricked my router 😬 i set the operator I'd to XXXX for generic SFU and now i can't find the admin page for the router HELLLPP!!!!
Click to expand...
It's 192.168.1.254 user and pass to webgui seems to be adminadmin:ALC#FGU
Apparently it doesn't have any options at all. But don't use it, because it's just a SFU (definition from Google seems to be kind of a dumb onu for internet access only)

It doesn't even have blasted configuration option so I'm stuck with unable to restore it. Since telnet seems to be disabled and without the config don't know what to do.

Edit: SSH is enabled but I can't seem to find the ssh password (even the blasted ONTUSER:SUGAR2A041 combo doesn't work either). Does anyone have any idea? @Superstar @Maxx_369 @qwertypop

Nvm, my bad. Apprently the web gui or telnet account works for ssh. I was able to get ssh using adminadmin#ALC#FGU
ONTUSER:SUGAR2A041 this backdoor user and password vulnerability has been fixed in recent firmware. So if the device is on newer firmware they might not be able to use that backdoor.

Edit: Also tried X000. So far only thing I got is the wifi which is 87654321. Locked out of telnet and webgui, no combo of user n pass work.
 
Last edited:
alexb said:
@Superstar did you manage to login in the web gui with mxxv op id? Or are you still locked out of there?

Also just a little note. I followed Max's instructions but I didn't really have to do all the config tampering. I am not sure why others have to but I'm guessing it's for those who are potentially on an older firmware and cannot activate the telnet normally.
All I did was log in to the GUI, look for telnet option in there, enable and save it. And I had telnet access instantly. Then follow the rest of the steps.

I also had the question is the WPA code the same for each device on reset/default config? Or is it dependant upon the isp/operator id?
Click to expand...
I am still out!
Also turning on the telnet using gui works! But which password combination worked?
 
Well from what I gathered different ISP (operator IDs) have different logins. At this point all you can try is a couple combinations. You can also check out the preconfig XML file from here g/nokia-keygen

Just search for telnet username and try out the combo and pass from there. You can also try out the username and pass from webgui logins. Just search for username and see what all you find. You can also try admin:admin and admin: password and some of the common combos you can think of. You can also try out the ONTUSER:SUGAR2A041 in case your firmware is old (this vulnerability has been fixed in newer firmwares)

Since you can't really get the config file out that's all you can do. Webgui login might have been an option but well apparently that's what you need to know. The only other thing I can suggest you is to open the router, study it well, look what flash memory of is using and check out the datasheet. Invest in a programmer and get another router which is working. And flash the firmware out of there and flash it on your one. That's my modus operandi as a last resort.
 
alexb said:
Is there ftp access to the router? Not for just the usb I mean the router's own storage.
Enabling ftp for the usb and then logging to it I can only see the usb drive and I can't access the rest of the storage. It directly gives access to the mount point itself. If there's no drive then it's an empty directory. Any got any ideas or ftp to the router is not possible?
@qwertypop did you use ssh to access the files or ftp? On that note I am also unable to ssh into it. Can't find the pass for it.
Click to expand...
I used scp to copy files
 
alexb said:
It's 192.168.1.254 user and pass to webgui seems to be adminadmin:ALC#FGU
Apparently it doesn't have any options at all. But don't use it, because it's just a SFU (definition from Google seems to be kind of a dumb onu for internet access only)

It doesn't even have blasted configuration option so I'm stuck with unable to restore it. Since telnet seems to be disabled and without the config don't know what to do.

Edit: SSH is enabled but I can't seem to find the ssh password (even the blasted ONTUSER:SUGAR2A041 combo doesn't work either). Does anyone have any idea? @Superstar @Maxx_369 @qwertypop

Nvm, my bad. Apprently the web gui or telnet account works for ssh. I was able to get ssh using adminadmin#ALC#FGU
ONTUSER:SUGAR2A041 this backdoor user and password vulnerability has been fixed in recent firmware. So if the device is on newer firmware they might not be able to use that backdoor.

Edit: Also tried X000. So far only thing I got is the wifi which is 87654321. Locked out of telnet and webgui, no combo of user n pass work.
Click to expand...
Nope not that... I have tried it all but nothing seems to work...
 
@Dyrokg If ipconfig shows a blank gateway address or no address for the ethernet adapter, that means your adapter is unable to fetch an IP for the device hence is not connecting properly. You'll have to do so yourself. Look on google how to set a static IP on router from windows, or from Network Adapters check the properties for the ethernet adapter and then check the IPv4 config. Assign an IP and gateway manually. Make sure to use 192.168.1.254 if you were able to set ALCL previously, if it's still on Airtel locked, then use 192.168.1.1 as the gateway. Choose an Ip address manually for it.
 
@Superstar I know you said it worked for you somehow via WPS (but doesn't WPS need to be enabled internally in the modem first?). I have the same situation where my Wifi SSID has completely changed after that last step of Factory Reset to something like ALHN-4CC9 and I don't know it's password. Have banged my head for last 17hrs but nothing works!

Could you PLEASE help share the exact detailed steps (in layman words since I'm a noob in the router world) so that I can fix this and get inside the modem to config my other Broadband provider?

Also, if you happen to know how to configure a Broadband (Alliance net in Kolkata), that would be super helpful and appreciative as well! Looking forward to your response.
 
I got root access by following steps in the beginning. After that I was able to change settings. After that router restarted and everything went to spanish just like what @Superstar said.. couldnt do anything after that... stuck...
 

Similar threads

B
HELP! Nokia G-2425G-A invalid shell password (to gain root access)
Replies
6
Views
8,250
paduchuri8777
Maxx_369
  • Featured
  • Article Article
Nokia G-2425G-A - Unlock/Root ~ Step by Step detailed guide
14 15 16 17 18
Replies
256
Views
166,359
tr1k0N4
T
Shell access via telnet or ssh to Nokia G-2425 possible?
2 3 4
Replies
52
Views
32,324
tr1k0N4
Top