UDP Flood attack

I've recently switched from a BT homehub (which broke [stopped giving out more that 1 bar of signal]) back to our old Belkin router (model #F5D7632-4)

I can access the internet for about 5 minutes, before I lose it and get "could not connect" type messages from my browser. After investigating further I noticed something interesting in the routers security log, A UDP flood.. I'll put the log below:

Code: 03/31/2010 17:29:33 **UDP Flood to Host** 192.168.2.2, 56853->> 158.43.240.4, 53 (from ATM1 Outbound)03/31/2010 17:29:32 **UDP Flood to Host** 192.168.2.2, 56853->> 194.72.0.98, 53 (from ATM1 Outbound)03/31/2010 17:29:31 **UDP Flood to Host** 192.168.2.2, 56853->> 8.8.8.8, 53 (from ATM1 Outbound)03/31/2010 17:29:22 **SYN Flood to Host** 192.168.2.2, 50549->> 72.21.81.133, 80 (from ATM1 Outbound)03/31/2010 17:29:05 192.168.2.2 login success03/31/2010 17:29:00 NTP Date/Time updated. 08/01/2003 00:00:16 If(ATM1) PPP connection ok !08/01/2003 00:00:15 ATM1 get IP:86.146.56.13608/01/2003 00:00:13 ATM1 start PPP 08/01/2003 00:00:13 ADSL Media Up ! 08/01/2003 00:00:01 sending ACK to 192.168.2.2There's also a SYN flood just before the others.

Anyone have a clue about why this might be happening? Am I at the receiving end of someone just having fun giving me a DDOS attack, or have I got a dodgy configuration somewhere. I've scanned my computer with AVG to no avail.

Oh, also, I can still access the internet wireless, even when the internet is unavailable on the wired computer

EDIT: here's a pingtest result. yes, that is 96% packet loss.

EDIT2: latest security log:
Code: 03/31/2010 19:11:51 **SYN Flood to Host** 192.168.2.2, 51439->> 72.21.81.133, 80 (from ATM1 Outbound)03/31/2010 19:10:02 **UDP Flood to Host** 192.168.2.2, 8080->> 213.229.66.233, 8080 (from ATM1 Outbound)03/31/2010 19:06:31 sending ACK to 192.168.2.403/31/2010 19:06:31 sending OFFER to 192.168.2.403/31/2010 18:51:32 sending ACK to 192.168.2.303/31/2010 18:48:36 **UDP Flood to Host** 192.168.2.2, 59068->> 158.43.240.4, 53 (from ATM1 Outbound)03/31/2010 18:48:35 **UDP Flood to Host** 192.168.2.2, 63235->> 194.72.0.98, 53 (from ATM1 Outbound)03/31/2010 18:48:34 **UDP Flood to Host** 192.168.2.2, 58891->> 8.8.8.8, 53 (from ATM1 Outbound)03/31/2010 18:01:53 sending ACK to 192.168.2.503/31/2010 17:54:14 192.168.2.2 login success 03/31/2010 17:54:10 sending ACK to 192.168.2.503/31/2010 17:53:32 **SYN Flood to Host** 192.168.2.2, 51078->> 72.21.81.133, 80 (from ATM1 Outbound)03/31/2010 17:53:29 sending ACK to 192.168.2.303/31/2010 17:52:54 NTP Date/Time updated. 08/01/2003 00:00:20 If(ATM1) PPP connection ok !08/01/2003 00:00:19 ATM1 get IP:86.128.35.104 08/01/2003 00:00:14 ATM1 start PPP 08/01/2003 00:00:14 ADSL Media Up ! 08/01/2003 00:00:03 sending ACK to 192.168.2.2
View complete forum thread


Related threads

My Router is being UDP flood attacked?!?

UDP Flood - The problem with my interenet?

UDP Flood? Is someone spamming our network?

SYN FLOOD ATTACKS - Please help

best home router for syn flood attacks

UDP Flood

UDP Attack on Gaming Server

Solved: SYN flood attack

why do i keep getting UDP floods when i try to download a torrent?

ICMP flood attack not32?

My antivirus detecting "ICMP Flooding attack" HELP!?

ICMP Flooding Attack

DNS cache poisoning/ICMP flooding attacks

Network under attack

Help: Drop UDP packet from LAN

TCP SYN FLOOD? I need help.

Can't figure it out

Windows 2k3 UDP flood, help please

UDP DoS to internal systems, what actions to be taken ?

How to get the most out of my network?

Is my system under attack?

Server 2003 Firewall logs insane?

Computers loosing internet connection at differnt times

fail2ban is freaking awesome