on 13-04-2022 00:50
Hello, I ask for some advice, assurance or explanation as to why there is an unknown router which (I think) is connected to my network.
I have / am still suffering privacy and fraud issues and I know that digging for answers combined with my lack of computer/ network knowledge may result in me worrying about something that is normal, hence my post on here to conclude my worries.
my router would not login as usual. It was trying a 169.254.105.50 IP address and not connecting
So….. I input the normal 192.168 IP’s and o connected to the internet.
I did a scan on network Analyzer app of the home network. Not sure why but I increased the search range from only 192.168 addresses to 192.168 to 194.8.255.255
the dns server for virgin is 194.168.8.100 so my thoughts were to include that for some reason.
the results were as follows
The blue w on the right of the circled address means it has a web interface . I followed this ….
It lead me to this login page
then 5 min later I followed it and it lead me to this log in screen
is this normal?
is this secure?
Am I exposed?
can the location of this router be traced?
I look forward to your advice
thanks ever so much
Johan
on 13-04-2022 01:33
A 169.x.x.x address is because the station isn't able to communicate with the DHCP server, something called Automatic Private IP Addressing (APIPA) kicks in.
You need to check the settings in your router and make sure the VM hub is in modem mode.
on 13-04-2022 02:23
Thanks for the reply
I logged in and hub is on router mode.
hopefully once the screenshots are visible/ validated you can assist further
thanks
Johan
on 13-04-2022 02:28
There are 2 web interfaces now showing
13-04-2022 09:11 - edited 13-04-2022 09:18
The host at http://194.168.255.124/ appears to be a device within or connected to the VM network - I can reach it from here - it's a brand I would associate with Video and security cameras. A virgin customers security camera?
194.168.255.98 is a Draytek Router - also on the VM network - likely a customers router.
These appear to be public fixed IP addresses assigned to VM customers with devices on.
You are scanning part of the public internet - not just your own network - not surprising you will find hosts on it.
It is not that your network has been compromised.