Found out by accident (plenty of “accident”s happening with me recently) that one of the home computers has been connecting out to some weird China IP amongst others, all of which are blacklisted according to robtex…
Starting to get quite concerned, since there was a lot of stuff that was previously installed, like those that you “need” to install in order to view online videos.
Will start to do some verbose logging to gather more info, but this isn’t looking good so far. How this came up was because of the way the computer tried to connect to the site, apparently it tried to make too many connections at the same time, causing the router to think that there’s a SYN flood attack going on lol.
Culprit #1 – 18.104.22.168 [robtex report]