Chrisddd 0 Posted June 15, 2021 Share Posted June 15, 2021 Hello everyone, A few months ago my computer was hacked because i downloaded an unsafe application to my computer. I was not using any antivirus back then other than windows defender. After realizing it i changed all my passwords, reset the windows 10 using USB, flushed DNS and reset my router. I also changed my router's password and remote control was closed all the time. I downloaded ESET internet security and till this day i am getting notifications on arp cache attacks, duplicate IP addresses on network and most of them are from my router. Is there a chance for my router to be still hacked? What should i do further? Kindly advice me. Link to comment Share on other sites More sharing options...
itman 1,756 Posted June 15, 2021 Share Posted June 15, 2021 (edited) You're receiving the ARP Poisoning alert due to the duplicate IP addresses on your network. Refer to this article: https://support.eset.com/en/kb3430-identical-ip-addresses-detected-in-network . Also refer to this article: https://support.eset.com/en/kb2933-arp-icmp-or-dns-cache-poisoning-attack-in-eset-home-products-for-windows The easiest way to eliminate the port 1900 incoming SSDP blocking is to disable the Win SSDP service. You don't need it. The incoming port 138 NetBIOS UDP traffic is a bit of a mystery. Might be related to those duplicate IP addresses on your network. Edited June 15, 2021 by itman Link to comment Share on other sites More sharing options...
Recommended Posts