So I checked my router logs, and found a particular IP address is trying to ping me. They're trying to connect via 3389 (RDP). RDP is disabled on my computer, and they aren't able to get through. I've also checked local logs etc. It's coming from 188.8.131.52 A bit of recon... Continent: Asia (AS) Country: China (CN) Capital: Beijing State: Shanghai City Location: Shanghai ISP: Anchnet Organization: Shanghai Anchang Network Security Technology Co.,L AS Number: AS58879 Shanghai Anchang Network Security Technology Co.,Ltd. Nmap scan report for 184.108.40.206 Host is up (0.47s latency). Not shown: 991 closed ports PORT STATE SERVICE 21/tcp open ftp 80/tcp open http 135/tcp open msrpc 445/tcp open microsoft-ds 1026/tcp open LSA-or-nterm 1040/tcp open netsaint 1041/tcp open danf-ak2 3306/tcp open mysql 3389/tcp open ms-wbt-server can even get a RDP session on a 2003 server from it. Any wizards out there able to find out more/assist. I've put a further blacklist on it now.