Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Route print table shows an unknown network...am I being hacked?!?

Posted on 2008-06-10
7
551 Views
Last Modified: 2013-12-04
I am currently doing a little experimentation with the ROUTE ADD command and used ROUTE PRINT to view if the command worked. A completely unknown IP address is listed here and is in no way whatsoever connected with me, the company or anything else as its way out of any scope I know of.
I will not list the IP for obvious reasons but it is pingable and when I put it into internet explorer I get an ADSL router home page where I logged in with default credentials!

Should I be worried about this because I have a feeling someone is using my work computer as a zombie or whatever they are called!

The only other explanation I could have had is that I am currently using a torrent tracker (to download Linux stuff...honestly!), I have looked at the peer connections and some IP's are similar but not the same.
0
Comment
Question by:PVUK
  • 4
  • 3
7 Comments
 
LVL 4

Expert Comment

by:albuitra
ID: 21752306
If the subnet is something like 169.254, is normal
It is the default when a DHCP client can't get a response
0
 

Author Comment

by:PVUK
ID: 21752360
No I know that IP address, as an example our internal network here is 172.16.6.xxx. This ip address is 59.99.xx.xx netmask is 255.255.255.255 and the gateway is our firewall
0
 
LVL 4

Accepted Solution

by:
albuitra earned 500 total points
ID: 21752510
use netstat -n
find the IP and verify the remote port, and the local port
0
Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

 

Author Comment

by:PVUK
ID: 21757751
I left work at 5pm last night so before I left I deleted the route. So the results of the netstat -n command do not show the IP address.

I will go and check the firewall logs to see if its listed anywhere.
0
 
LVL 4

Expert Comment

by:albuitra
ID: 21761693
Is the torrent tracker active ?
Try with some torrents, then verify the netstat -n
0
 

Author Comment

by:PVUK
ID: 21767408
The IP address has not reappeared and nothing else suspicious either. I find it strange that only 1 IP would be logged in my route table when I was downloading several different files, each with lots of peers.
0
 

Author Closing Comment

by:PVUK
ID: 31472704
Thanks everyone, I forgot the netstat -n command as I dont do much network stuff here. The dodgy IP address never came back so I have been unable to go any further.
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
What are the Scan to network folder ports? 7 111
Password recovery software 4 33
Limit traffic to specific Cisco port? 12 54
desktop security assessment (windows devices). 2 41
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question