How JustAnswer Works:
  • Ask an Expert
    Experts are full of valuable knowledge and are ready to help with any question. Credentials confirmed by a Fortune 500 verification firm.
  • Get a Professional Answer
    Via email, text message, or notification as you wait on our site. Ask follow up questions if you need to.
  • 100% Satisfaction Guarantee
    Rate the answer you receive.
Ask Kris R Your Own Question
Kris R
Kris R, CCIE
Category: Networking
Satisfied Customers: 2840
Experience:  IT Manager at Wood Group PSN
94743361
Type Your Networking Question Here...
Kris R is online now
A new question is answered every 9 seconds

My provider has told me that there are brute force attacks

This answer was rated:

my provider has told me that there are brute force attacks coming from my network. I have used more than a whole months worth of bandwidth in 2 weeks
JA: Can you describe your network setup (devices and cables used)?
Customer: netgear orbi, apple laptops (wifi), qnap nas (wired), directv (wired)
JA: What happened right before this popped up?
Customer: i have been getting messages from comcast that i had a bot on my system on my iPhone according to them it has been going on since around july 4th
JA: What troubleshooting have you tried?
Customer: i scanned all of my computers and removed some trojan and malware files that avast security discovered and I deleted malware that my QNAP antivirus scan found. I check my orbit logs and it shows DOS Attacks in log against port 22 and port 80 every 15 seconds or so
JA: Anything else you want the network expert to know before I connect you?
Customer: not that I can think of

Hi, my name is ***** ***** I’ll do my best to help you today. I may have some follow-up questions to help me better understand your question.

Hi,

The first step would be to check your router logs and see what device internally this is coming from

Kris R and 3 other Networking Specialists are ready to help you
Customer: replied 1 month ago.
Here is log?[admin login] from source 192.168.1.32, Monday, August 21, 2017 14:10:53
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:10:28
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 14:10:24
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:10:23
[admin login] from source 192.168.1.32, Monday, August 21, 2017 14:10:10
[DHCP IP: 192.168.1.51] to MAC address c8:69:cd:53:04:fe, Monday, August 21, 2017 14:10:09
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 14:08:59
[DoS Attack: SYN/ACK Scan] from source: 5.196.83.88, port 8080, Monday, August 21, 2017 14:08:58
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 14:08:56
[DHCP IP: 192.168.1.41] to MAC address 98:fe:94:78:21:04, Monday, August 21, 2017 14:08:37
[DoS Attack: SYN/ACK Scan] from source: 51.255.89.204, port 8080, Monday, August 21, 2017 14:08:34
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:08:23
[DoS Attack: SYN/ACK Scan] from source: 5.196.83.88, port 8080, Monday, August 21, 2017 14:07:55
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:05:43
[DoS Attack: SYN/ACK Scan] from source: 5.196.83.88, port 8080, Monday, August 21, 2017 14:04:45
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:03:43
[DoS Attack: SYN/ACK Scan] from source: 5.196.83.88, port 8080, Monday, August 21, 2017 14:03:40
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:02:18
[DoS Attack: SYN/ACK Scan] from source: 61.160.224.173, port 80, Monday, August 21, 2017 14:02:09
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 14:01:02
[DoS Attack: RST Scan] from source: 167.114.103.101, port 25653, Monday, August 21, 2017 14:01:00
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:58:33
[WLAN access rejected: incorrect security] from MAC address 40:b4:cd:33:de:7b, Monday, August 21, 2017 13:58:23
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:58:23
[WLAN access rejected: incorrect security] from MAC address 40:b4:cd:33:de:7b, Monday, August 21, 2017 13:58:20
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:58:18
[DoS Attack: RST Scan] from source: 107.178.222.206, port 4433, Monday, August 21, 2017 13:58:05
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:56:28
[WLAN access rejected: incorrect security] from MAC address 08:66:98:c8:fa:8a, Monday, August 21, 2017 13:56:23
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:56:23
[WLAN access rejected: incorrect security] from MAC address 08:66:98:c8:fa:8a, Monday, August 21, 2017 13:56:20
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:53:53
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 13:53:44
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:53:43
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 13:53:41
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:51:43
[DoS Attack: SYN/ACK Scan] from source: 139.99.4.50, port 10110, Monday, August 21, 2017 13:51:21
[DHCP IP: 192.168.1.38] to MAC address 10:4f:a8:93:6f:99, Monday, August 21, 2017 13:49:58
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:48:58
[WLAN access rejected: incorrect security] from MAC address 40:b4:cd:33:de:7b, Monday, August 21, 2017 13:48:20
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:42:32
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:42:22
[DHCP IP: 192.168.1.27] to MAC address 84:a1:34:ba:0b:2e, Monday, August 21, 2017 13:42:17
[DHCP IP: 192.168.1.27] to MAC address 84:a1:34:ba:0b:2e, Monday, August 21, 2017 13:42:17
[WLAN access rejected: incorrect security] from MAC address 08:66:98:c8:fa:8a, Monday, August 21, 2017 13:41:15
[DHCP IP: 192.168.1.41] to MAC address 98:fe:94:78:21:04, Monday, August 21, 2017 13:41:14
[WLAN access rejected: incorrect security] from MAC address c8:69:cd:32:78:52, Monday, August 21, 2017 13:40:30
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:34:16
[DHCP IP: 192.168.1.24] to MAC address 90:b0:ed:4e:b1:1d, Monday, August 21, 2017 13:34:05
[DoS Attack: ACK Scan] from source: 78.140.208.4, port 22, Monday, August 21, 2017 13:33:41
[WLAN access rejected: incorrect security] from MAC address 40:b4:cd:33:de:7b, Monday, August 21, 2017 13:33:23
[DoS Attack: ACK Scan] from sou

Am I connecting to a MAC or Windows PC?

Customer: replied 1 month ago.
ok

Am I connecting to a MAC or Windows PC?

Customer: replied 1 month ago.
mac

OK - to allow me to connect to your PC/MAC, you must install remote access software.

https://www.teamviewer.com/en/

Once installed I need the ID and Password ***** displays, i do not need the one you created, I am looking for the one that TeamViewer gives you when you open the program.

Thanks

Kris

Customer: replied 1 month ago.
867 651 507
pqd872

Connected and Resolved.

Customer: replied 1 month ago.
thank you

Anytime.