Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsVodafone New Zealand[TelstraClear] Is this anything to worry about? Zonealarm Request


232 posts

Master Geek
+1 received by user: 1


Topic # 29802 20-Jan-2009 08:13
Send private message


Morning all,

I blocked a svchost request this morning from a strange dns. (i didn;t recognise)

I then checked the hacker info in Zone alarm & the request looks like it came from Telstraclear.

Is this legit/safe/something?

Whois Information
% [whois.apnic.net node-2] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html inetnum: 203.96.144.0 - 203.96.159.255 netname: TELSTRACLEAR-NZ descr: TelstraClear Ltd country: NZ admin-c: TAC3-AP tech-c: TTC7-AP mnt-by: APNIC-HM mnt-lower: MAINT-NZ-TELSTRACLEAR notify: apnic.changes@team.telstraclear.co.nz status: ALLOCATED PORTABLE changed: hm-changed@apnic.net 19951215 changed: hm-changed@apnic.net 20041214 source: APNIC role: TelstraClear Administrative Contact address: TelstraClear Limited address: Network Planning address: Private Bag 92143 address: Auckland country: NZ e-mail: apnic.changes@team.telstraclear.co.nz phone: +64 9 912 5205 trouble: For network abuse contact: trouble: list.admin@team.telstraclear.co.nz trouble: +64 9 912 5161 trouble: For 24/7 after-hours NOC contact: trouble: +64 9 912 4482 notify: apnic.changes@team.telstraclear.co.nz tech-c: TTC7-AP admin-c: TAC3-AP nic-hdl: TAC3-AP mnt-by: MAINT-NZ-TELSTRACLEAR changed: hm-changed@apnic.net 20041125 source: APNIC role: TelstraClear Technical Contact address: TelstraClear Limited address: Customer Help address: Private Bag 92143 address: Auckland country: NZ e-mail: list.admin@team.telstraclear.co.nz phone: +64 9 912 5161 trouble: For network abuse contact: trouble: list.admin@team.telstraclear.co.nz trouble: +64 9 912 5161 trouble: For 24/7 after-hours NOC contact: trouble: +64 9 912 4482 notify: apnic.changes@team.telstraclear.co.nz tech-c: TTC7-AP admin-c: TAC3-AP nic-hdl: TTC7-AP mnt-by: MAINT-NZ-TELSTRACLEAR changed: hm-changed@apnic.net 20041125 source: APNIC

Create new topic
BDFL - Memuneh
62071 posts

Uber Geek
+1 received by user: 12682

Administrator
Trusted
Geekzone
Lifetime subscriber

Reply # 190700 20-Jan-2009 08:38
Send private message

What port was used? Was is it on the cable modem network? There are lot of normal background noise/activity on a cable modem network - and broadcasts are not uncommon - ARP for example.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund



232 posts

Master Geek
+1 received by user: 1


  Reply # 190705 20-Jan-2009 09:00
Send private message

I am on the TCL cable network.

I will have to check the port when I get back home.

 
 
 
 




232 posts

Master Geek
+1 received by user: 1


  Reply # 190847 20-Jan-2009 17:20
Send private message

Port 53

xpd

Chief Trash Bandit
9225 posts

Uber Geek
+1 received by user: 1483

Mod Emeritus
Trusted
Lifetime subscriber

  Reply # 190875 20-Jan-2009 18:45
Send private message

Thats DNS.

So dont block it or you'll find youve blocked yourself from the net (apart from using IP addresses)




XPD / Gavin / DemiseNZ

 

Server : i3-3240 @ 3.40GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  16GB RAM  Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, geeks, and more.    

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Geekzone Live »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.