A traffic analyzer tells me that a client named 133.206.7.85.dynamic.wline.res.cust.swisscom.ch is installed on my network and that it makes thousands of requests on the net to sites that I don’t know or use it (consciously..).
What is it about? Is this a client installed by swisscom? For example in the router? Or is it malware or a virus?
Is anyone facing the same problem?
xxx.xxx.xx.xx.dynamic.wline.res.cust.swisscom.ch this is the associated host name
search for its public IP address
- either on the router, internet-box or other, see network connection
- either on the various sites available on the Internet, for example
My public IP address is: xxx.x.xxx.xxx
My associated hostname: xxx.xxx.x.xx.dynamic.wline.res.cust.swisscom.ch
Port Used: xxxxx
Your Local IP: to discover
then with the command prompt under windows execute the command:
tracert [its public IP address]
Determining the route to xxx.xxx.xx.xx.dynamic.wline.res.cust.swisscom.ch [its public IP address]
with a maximum of xx jumps:
1 <1 ms <1 ms <1 ms xxx.xxx.xxx.xx.dynamic.wline.res.cust.swisscom.ch [its public IP address]
Determined route.
for more information if necessary consult Microsoft support help:
How to use TRACERT to troubleshoot TCP/IP issues in Windows
[https://support.microsoft.com/fr-ch/help/314868/how-to-use-tracert-to-troubleshoot-tcp-ip-problems-in-windows](https://support.microsoft. com/fr-ch/help/314868/how-to-use-tracert-to-troubleshoot-tcp-ip-problems-in-windows)
perform a search with the keyword: dynamic.wline.res.cust.swisscom.ch
posts on the Swisscom Community have already addressed this subject to see among others
[/t5/Archiv-Internet/Acc%C3%A8s-NAS-depuis-l-ext%C3%A9rieur/td-p/455562](https://community.swisscom.ch/t5/Archiv-Internet/Acc %C3%A8s-NAS-from-the-ext%C3%A9rieur/td-p/455562)
[/t5/Internet-g%C3%A9n%C3%A9ralit%C3%A9s/for-3-weeks-I-no-longer-have-access-to-VPN-swisscom/m-p/615449](https:/ /commuted nity.swisscom.ch/t5/Internet-g%C3%A9n%C3%A9ralit%C3%A9s/since-3-weeks-I-no-longer-access-to-VPN-swisscom/m-p/615449)
[/t5/Internet-g%C3%A9n%C3%A9ralit%C3%A9s/Ping-tr%C3%A8s-%C3%A9lev%C3%A9/m-p/513527](https://commu nity.swisscom.ch/t5/Internet-g%C3%A9n%C3%A9ralit%C3%A9s/Ping-tr%C3%A8s-%C3%A9lev%C3%A9/m-p/513527)
“On apprend parfois plus d'une défaite que d'une victoire” — José Raúl Capablanca
THANKS. Now I know that 133.206.7.85…. corresponds in reverse to my external address 85.7.206.133.
But I still have no answer concerning this client 133.206.7.85.dynamic.wline.res.cust.swisscom.ch for which the Pi-hole ad blocker (which I installed in a raspberry -pi on my LAN) detects thousands of requests to sites I don’t know.
Is this a program located in the internet-box 3 router (given the relationship with the external address)? And what is the goal? Or is it malware located on one of my systems?
Does anyone in the community possibly have any experiences with pi-hole? And made observations similar to mine?
The url 133.206.7.85.dynamic.wline.res.cust.swisscom.ch is an address that belongs to the swisscom.ch domain (right?). And this address produces hundreds of requests on my LAN. So Swisscom probably has something to do with it (injected from WAN into LAN? or produced directly independently by the IB3 router?).
My reference to pi-hole was just to know if anyone with the same ad blocker has experienced similar events on a Swisscom configuration (internet and router).
Today September 3rd from 00:00 to 17:00 18,000 requests were registered on the LAN by pi-hole. 17,000 of these were created by the client 133.206.7.85.dynamic.wline.res.cust.swisscom.ch! (??)
I would be happy for any explanation of the phenomenon.
