Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Alert

Intruder Server in Australia being used by local server (?)

Jun 3, 2017 8:27AM PDT

I do a lot of video chatting and am wary of local IP intrusions in for the sole reason there is no reason whatsoever. The site server is either in the US or Holland.

For this, I have a VPN setup for Encryption and Anonymity for my security and privacy.

I use Chrome browser and using Spy Monitor app I discovered a local IP connection in Makati City (Manila) that was very suspicious. Sometimes, there were two IP connections but from the same range of IPs registered to APNIC.net with a local server connection. Very troubling indeed.

a. 122.2.129.168:443
b. 122.2.129.172:443
and more...

All local IP connections came from a whole range of IPs that were APNIC.net

1. How do I avoid or block such intrusions ?

2. As I stated above, I use a VPN connection for Encryption and Anonymity. How then can I add a firewall in this equation when only one VPN connection is allowed in my Android phone ?

2. What's more troubling is that these intruding connections when not found in Chrome connections would be found in other apps like Connections Stabilizer app, and even in Spy Monitor app, and com. google. uid. share, a system app that Spy Monitor app always includes in the list apps together with other apps with IP connections to your device at the time of checking.

3. Can someone help me as I'm stumped as to what's happening with all these intrusions of IPs controlled by APNIC.net.

4. How can I deal with such instrusions with regards to my online security and privacy?

Thanks in advance !

Sincerely

sieteocho

Discussion is locked

- Collapse -
https or port 443 is secure.
Jun 3, 2017 8:32AM PDT

Chrome opens a lot of connections to do a lot of things. This is NOT an intrusion attempt but there are folk that wear tin foil hats and they can't be helped.

Since you like VPN, did you try Opera's VPN? I use it and find it's number of connections to be much lower than Chrome.

This is not an offer to duplicate prior discussions about Google Chrome and all those connections. I consider that discussion done and done.

- Collapse -
Thanks for replying...
Jun 8, 2017 11:53PM PDT

I get it and good point. Though I can't see why the local connection to appear every time I go on a video chat. My friends and I (during these video chats) would even discuss this "uncomfortable attention" we're getting from all these "extra" IP connections from Germany/ Michigan, US/ Philippines, Essex, France, aside from the usual Mountain View, CA (Google of course) and Amsterdam, NL (the video chat site server), my friends are all staying in one flat in London while I'm in Philippines.

Though I can see from SpyMonitor the DL/UL as either 0/0 or 1/0. I wonder if "they" can "see". But as you said, 443 is secure, but with all these other connections also being 443, I tend to wonder...why all these varied IP connections from all these exotic locations (I couldn't help but exaggerate here

- Collapse -
You would have to open the code to Chrome to learn why.
Jun 9, 2017 9:18AM PDT

But I won't do that. Instead I'll reveal that in some apps I wrote I opened ports on localhost so I could do some command, control, debugging. Many apps today send crash reports and I would be guessing the programmer opened the port ahead of time since on a crash it may not be possible to open the port so do it first to get ready to send the crash report.

As I noted, nothing sounds wrong and there are plenty of priors.

Did you try Opera?