We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Chinese hacker
Options
Comments
-
I can't see any method of blocking specific ip addresses in my TT super router, unlike my previous ADSL netgear router - but I have reset the ip lease period from 1 week to 1 day - so, at least, they should not be able to follow me again....0
-
somersethillbilly wrote: »Where was your router manufactured? China? The good folks in the picture were probably just doing a "helpful" firmware update
:rotfl: :rotfl: :rotfl:... DaveHappily retired and enjoying my 14th year of leisureI am cleverly disguised as a responsible adult.Bring me sunshine in your smile0 -
I can't see any method of blocking specific ip addresses in my TT super router, unlike my previous ADSL netgear router - but I have reset the ip lease period from 1 week to 1 day - so, at least, they should not be able to follow me again....
Ah, the TalkTalk Not-So-Super Router then.
Are you sure that's your Router's ISP IP Lease Period you've reset. These are often not negotiable between you and your ISP ... in this case TalkTalk.
Far more likely all you've done is reset the DCHP lease time for items attached to the router, i.e your computer and other peripherals.... DaveHappily retired and enjoying my 14th year of leisureI am cleverly disguised as a responsible adult.Bring me sunshine in your smile0 -
Surely not if the attempted access is incoming?
Otherwise they are 'phoning' themselves!
No, they phone home to say "hey i'm here, what should I do?" then "home" sends data back on an incoming port.“I may not agree with you, but I will defend to the death your right to make an a** of yourself.”
<><><><><><><><><<><><><><><><><><><><><><> Don't forget to like and subscribe \/ \/ \/0 -
Ah, the TalkTalk Not-So-Super Router then.
Are you sure that's your Router's ISP IP Lease Period you've reset. These are often not negotiable between you and your ISP ... in this case TalkTalk.
Far more likely all you've done is reset the DCHP lease time for items attached to the router, i.e your computer and other peripherals.
It does say "obtain DNS automatically" - and it is under the DHCP server - so I am assuming that I am correct......
I may be wrong though !!0 -
The ISP DHCP server will set the lease time not you. I too think all you've done is alter the lease time for your local network.
You arecorrect in thinking it is an IP used to probe for open ports though from the look of this - http://whatismyipaddress.com/ip/218.77.79.43User Comments
218.77.79.43:35659 tryed to scan port 25 - 2014-07-01
Block this IP, it constantly trying to get to my FTP. - 2014-07-14
Scanning and trying to use FTP, SMTP, and URL's. - 2014-07-15
Please ban the user with IP address 218.77.79.43. Connected to 218.77.79.43 (local address 0.0.0.0, port 21) - 2014-07-23
This said ip was doing same thing as people above described scanning an trying to use FTP,SMTP,TCP,UDP. This person(s) using this ip needs there internet shutdown. - 2014-08-16
This IP (218.77.79.43) is constantly trying to access my router via TELNET (Port 23). - 2014-09-03
This said ip (218.77.79.43) keeps scanning my computer on various ports. An doing what one person said using FTP,SMTP,TCP,UDP,and ICMP. This person needs their internet shutdown ASAP. - 2014-09-15
Scanning all ports on my router as well - 2014-12-17
Netgear N600 ive got. [LAN access from remote] from 218.77.79.43:59815 to 192.168.0.65:443 Sunday, Jan 11,2015 12:37:52 - 2015-01-11
tied to hack ftp 21 - 2015-01-21
Didn't try to hack my FTP. Is currently on it. - 2015-02-23
Tried to scan me ! BLOCK this IP - 2015-03-03
If you have not opened any ports then you have nothing to fear.0 -
I look after the network etc for my company (i still have to get my hands dirty sometimes) Our logs show users from mainly israel and russia trying to scan for open ports and weaknesses every 2.5 seconds 24/7, all different IP's. Not surprising considering we're a private co hosting govt related sites and services. Don't think they've got in yet. Hopefully they've never seen Spaceballs so won't guess the password.
Still made a little bit of poo come out the first time i saw the logs.0 -
I've been getting the same intrusion detections over the last few days. They are also from China located IP addys. Just like the OP my talktalk router appears to have no facility for blocking individual IPs.
Interestingly the router is made by Huawei. I recall reading a news story a few months back about possible backdoors etc found in their hardware.
Changing my IP did not help and it should also be noted my antivirus stopped one of those nasty ransomware viruses just yesterday. System restored my way out of one of those not so long ago.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.8K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.8K Work, Benefits & Business
- 598.7K Mortgages, Homes & Bills
- 176.8K Life & Family
- 257.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards