fairmarketvalue
Occasional Visitor
New member looking for some help.
I use Spectrum's 200 Ultimate Internet service via a privately owned Arris SurfBoard 6183 Cable Modem connected to an Asus RT-AC3100 Router running TrendMicro's (AiProtection) antivirus software and firewall. I keep getting multiple External Attacks on my home network that the TrendMicro software identifies as either "EXPLOIT Remote Command Execution via Shell Script -2" or "EXPLOIT Netcore Router Backdoor Access". Luckily, for now, the AiProtection software has been able to block these External Attacks, but they seem to be getting more frequent, and I'm worried a breach could occur at some point in the future. Although the attacks are coming through Spectrum's internet service, Spectrum technical support has essentially washed their hands of this issue, and suggested that I retain a "cybersecurity consultant" to harden my system.
There are two DNS addresses that consistently come up in these attacks: 46.101.47.221 and 159.65.87.101. Reverse DNS Lookup indicates both addresses come through Digital Ocean hosting service, but can't be resolved any further. I haven't found any information from Asus as to how to block these specific DNS's using my router's software. Is there anyone who can tell me how to do so? BTW, if it makes any difference, I am using the CloudFlare 1.1.1.1 and 1.0.0.1 DNS Servers for my network. Could they be causing this issue? Any assistance would be most appreciated! Thanks!
I use Spectrum's 200 Ultimate Internet service via a privately owned Arris SurfBoard 6183 Cable Modem connected to an Asus RT-AC3100 Router running TrendMicro's (AiProtection) antivirus software and firewall. I keep getting multiple External Attacks on my home network that the TrendMicro software identifies as either "EXPLOIT Remote Command Execution via Shell Script -2" or "EXPLOIT Netcore Router Backdoor Access". Luckily, for now, the AiProtection software has been able to block these External Attacks, but they seem to be getting more frequent, and I'm worried a breach could occur at some point in the future. Although the attacks are coming through Spectrum's internet service, Spectrum technical support has essentially washed their hands of this issue, and suggested that I retain a "cybersecurity consultant" to harden my system.
There are two DNS addresses that consistently come up in these attacks: 46.101.47.221 and 159.65.87.101. Reverse DNS Lookup indicates both addresses come through Digital Ocean hosting service, but can't be resolved any further. I haven't found any information from Asus as to how to block these specific DNS's using my router's software. Is there anyone who can tell me how to do so? BTW, if it makes any difference, I am using the CloudFlare 1.1.1.1 and 1.0.0.1 DNS Servers for my network. Could they be causing this issue? Any assistance would be most appreciated! Thanks!
) and Google/Chrome is easily removed and replaced from Android phones and all other devices.
