Netgear DOS attack logs

Toggle sidebar Toggle sidebar
D

Danny96

Honorable
Jul 18, 2013
13
0
10,520
Hi when looking at my netgear routers logs I keep seeing these DOS Attacks happening:

[DOS Attack] : 17 [STORM] packets detected in last 20 seconds, source ip [192.168.0.12]
Thursday, Jan 16,2014 10:25:44


[DOS Attack] : 27 [STORM] packets detected in last 20 seconds, source ip [192.168.0.12]
Thursday, Jan 16,2014 10:26:05

I know they are being detected but are they actually doing anything?
How can i stop these?

Thanks in advance
 
Solution
N
well, best i can figure is identifying the port being used, and blocking it via firewall settings both client side and router side.

If that doesn't fix it, maybe a clean install of Windows 7 would fix it?
Sort by date Sort by votes
Hi im really stumped, I've ran kaspersky pure 3.0 antivirus scan and that returned 8 trojans, deleted them and that put them into quarantine. Then restarted the computer and im still get DOS attacks. The pc has no malicious software as its only a week old and barley any software on it only google chrome, microsoft office etc.
its really bugging me is there anything else I should do?
 
Upvote 0 Downvote
well, best i can figure is identifying the port being used, and blocking it via firewall settings both client side and router side.

If that doesn't fix it, maybe a clean install of Windows 7 would fix it?
 
Upvote 0 Downvote
Solution

LOL, i can tell you exactly what would happen then, it stops O.O, JK, i'm tired and bored, losing interest in a CPU war in CPU section.


But, Danny, you should keep an eye on it, if the DOS attacks start back up then the port changed which means its active and a reformat would have to be done, i recommend you install Zone Alarm Free Firewall on a fresh install of Windows and all other PCs in the network to lock out unwanted access.
 
Upvote 0 Downvote
lol, well that's one way to stop it.

Dirty systems can infect an entire network in no time. It's best to isolate them completely by using advance routing tables or another router if you plan to keep them connected without a complete and isolated rebuilt. (ie, don't connect it to the Internet at all during the reformat.)

It's because of constant issues like this that I trashed all our computers at the office and put in thin clients. Download all the viruses you want! I'll reboot and they'll be gone. 😀
 
Upvote 0 Downvote


by "Thin Clients" do you mean "Sandboxed"? cuz that is quite extreme, additionally, if you did the method i suggested for reformatting, and your network was infected still, then the infected files were not on that system directly, maybe the infected file was on a NAS server on the network, but the computer you reformatted was NOT patient zero. So, though you didn't find success from my method stated above, i wouldn't consider it unsafe as i do this all the time in my network. Highspeed Gigabit is no joke when it comes to data health.

However "Sandboxing" a computer only protects from so much, in fact, a serious enough infection would infect the "Sandbox" program which would become seriously dangerous for network attached clients. Additionally, Sandboxing, would make it difficult to game on.
 
Upvote 0 Downvote


filesharing and torrents can do that, good thinking, i have had this issue before, on a netgear router.
 
Upvote 0 Downvote
Its your torrent client installed on that system thats why you are getting these dos attacks messages. Shut off (exit ) the torrent client on your system. You will stop getting these dos attacks.
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom