ARP cache poisoning attack

D

DextrousDave

New member
Member
VIP
Local time
12:26 AM
Messages
135
Hi All

ESET Nod32 is picking up an ARP cache poisoning attack as well as a Port scanning attack(daily) from one of the other Windows PC's on my home LAN. The other PC, like mine is a Windows 7 PC, both Home Premium.

Is that possibly malware or a virus on the other PC that is doing this? Does this affect my internet speeds, cause I've been really getting slow internet speeds since these message started appearing first.

Any suggestion on how I should handle this?

Thanks
 

My Computer

Computer Manufacturer/Model Number
MSI
OS
Windows 7 Ultimate x32
CPU
Intel Core 2 Quad Q9400 @ 2.66GHz
Motherboard
MSI
Memory
2048MB
Graphics Card(s)
NVIDIA GeForce GTX 275
Monitor(s) Displays
Generic PnP Monitor
Hard Drives
2x HDD Drives (ATA Devices) 140GB and 368GB
Cooling
Fans
DextrousDave said:
Hi All
~~~
Any suggestion on how I should handle this?

Thanks
Click to expand...
You could stick to one thread ;-)

Try running ESET's online scanner on the other computer.

Edit: Below is what you might see the first time you use that online scanner on IE8 or IE9. Subsequent scans are quicker. If desired, the online scanning tool can be uninstalled via the web interface after the scan completes or via the normal OS interface for uninstalling apps.

ESET's online scanner seems to get along with most other anti-virus tools.

(You may need to view in the full screen mode and at 480p)


 

My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
You might want to try ARPCache Viewer (freeware)

Registry information for Add/Remove (Programs and Features)
Freeware - ARPCache Viewer
ARPCache is a secret, undocumented section of the registry used to store
information for Add/Remove Program items in the latest versions of Windows.
If you open Add/Remove Programs in the newer versions of Windows, you will
notice that certain information has been added, such as, size, frequency of
use, and last used on. This data is kept in binary files in the ARPCache of
the registry, which means that even if you know where it is in the registry,
you probably will not be able to read it. ARPCache Viewer deciphers the
binary files and shows you what is in each entry
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Thank you for the answers. Appreciated.
@Jacee. Why would the other computer poison my ARP cache and what implications does it hold should the poisoning attack be successful?
 

My Computer

Computer Manufacturer/Model Number
MSI
OS
Windows 7 Ultimate x32
CPU
Intel Core 2 Quad Q9400 @ 2.66GHz
Motherboard
MSI
Memory
2048MB
Graphics Card(s)
NVIDIA GeForce GTX 275
Monitor(s) Displays
Generic PnP Monitor
Hard Drives
2x HDD Drives (ATA Devices) 140GB and 368GB
Cooling
Fans
Not to answer for Jacee, but here is more than you ever wanted to know about ARP cache poisoning.

Did the other computer get scanned by ESET?
 

My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Employer provided Dell Latitude
OS
W7 Pro SP1 64bit
CPU
i7
Memory
8GB
Graphics Card(s)
Intel HD Graphics
Hard Drives
crappy SSD
Antivirus
Employer mandated Symantec Endpoint Protection
Browser
Pale Moon 64bit, IE11 64bit & Chrome 64bit
You must log in or register to reply here.
Back
Top