torstein
Senior Member
I need some help to understand what is going on. Also I'm sorry, I'm sure you get tons of these posts, but this is worrying me.
TL;DR
Skynet blocks outbound connections to certain IPs in asia. These IPs don't show up in the firewall network monitor app I'm using on the mac to find out which app / process is phoning home to asia . Why can I not see the skynet blocked IP in the network monitor?
DETAILED DESCRIPTION:
Skynet has blocked these two outbound connections: 136.169.169.164 (Alienvault link) and 103.136.72.6 (Alienvault link). One from russia and one from india.
Indian IP blocked:
Alienvault has tags such as honeypot, malicious ip, botnet etc
WHOIS says it is a company called Navkar Netsol Private Ltd. I'm not sure what it does, it has something to do with industrial stuff, but its not very clear.
Russian IP blocked:
Alienvault has no tags
WHOIS says its UFAnet.ru which seems to be an ISP, but im not sure.
I've seen many weird IPs blocked from my mac mini which serves only as a media server through smb to my apple tv, and time machine bakups and backblaze cloud backup. That's it. No other software running on it. I decided to install Radio Silence firewall for mac to monitor which app or system process that is phoning home. I reset Skynet, and started monitoring. 1 hour later the two mentioned IP addresses show up in Skynet under blocked outbound IP from the mac mini, but the IPs don't show up in Radio Silence.
TL;DR
Skynet blocks outbound connections to certain IPs in asia. These IPs don't show up in the firewall network monitor app I'm using on the mac to find out which app / process is phoning home to asia . Why can I not see the skynet blocked IP in the network monitor?
DETAILED DESCRIPTION:
Skynet has blocked these two outbound connections: 136.169.169.164 (Alienvault link) and 103.136.72.6 (Alienvault link). One from russia and one from india.
Indian IP blocked:
Alienvault has tags such as honeypot, malicious ip, botnet etc
WHOIS says it is a company called Navkar Netsol Private Ltd. I'm not sure what it does, it has something to do with industrial stuff, but its not very clear.
Russian IP blocked:
Alienvault has no tags
WHOIS says its UFAnet.ru which seems to be an ISP, but im not sure.
I've seen many weird IPs blocked from my mac mini which serves only as a media server through smb to my apple tv, and time machine bakups and backblaze cloud backup. That's it. No other software running on it. I decided to install Radio Silence firewall for mac to monitor which app or system process that is phoning home. I reset Skynet, and started monitoring. 1 hour later the two mentioned IP addresses show up in Skynet under blocked outbound IP from the mac mini, but the IPs don't show up in Radio Silence.
- Why is my mac mini time machine and media server phoning home to a russian ISP and an indian industrial company that is marked as botnet and honeypot, and why can't Radio Silence firewall see them, only Skynet?
- Is skynet blocking them before the firewall can see them, and what can I do about it?
- AiProtect reports zero blocks
- Is my mac mini part of a botnet?
- I've seen random outbound blocks to norhtern asia and central asia, some even to alibaba ltd which makes no sense, as I've never visited the alibaba webpage (asian amazon.com alternative). And its only my mac mini media / backup server that's getting blocked by Skynet.
- Is the mac mini hacked?
Last edited:
