Hi,
Recently, I have had internet connection troubles from my computer. My internet connection through my router dies and I have to reset the router before I get access again. This happens much more at night then during the day (which I find odd). Also, the lights on my router blink more than it should suggesting quite a bit of traffic even when I am not doing anything.
Digging deeper, I notice that in the Security Logs, I have excessive UDP Floods and SYN Floods. I believe this is what has been causing my disconnection issues in the past few days.
I ran Malwarebytes and seem to have found no infections. Regardless, I was wondering if the people on this forum can help me with my problems.
The Security Logs are like this:
09/28/2011 10:02:33 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 10:02:33 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 10:00:41 **UDP flood** 209.105.216.242, 64698->> 142.151.171.109, 59947 (from WAN Inbound)
09/28/2011 09:51:46 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:51:46 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:51:16 **SYN Flood (per Min)** 58.218.199.227, 12200->> 142.151.171.197, 8118 (from WAN Inbound)
09/28/2011 09:51:16 **SYN Flood** 58.218.199.227, 12200->> 142.151.171.128, 6588 (from WAN Inbound)
09/28/2011 09:37:52 **SYN Flood (per Min) Stop** (from WAN Outbound)
09/28/2011 09:37:52 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:37:21 **SYN Flood** 221.192.199.49, 12200->> 142.151.170.148, 2479 (from WAN Inbound)
09/28/2011 09:37:21 **SYN Flood (per Min)** 221.192.199.49, 12200->> 142.151.171.233, 9415 (from WAN Inbound)
09/28/2011 09:31:52 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:31:51 **SYN Flood (per Min)** 85.226.23.68, 54103->> 142.151.171.77, 42876 (from WAN Inbound)
09/28/2011 09:31:50 **SYN Flood (per Min)** 85.226.23.68, 54101->> 142.151.171.77, 42876 (from WAN Inbound)
09/28/2011 09:31:49 **SYN Flood (per Min)** 74.198.164.35, 55999->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:31:23 **SYN Flood (per Min)** 46.19.141.243, 12200->> 142.151.171.70, 1080 (from WAN Inbound)
09/28/2011 09:22:04 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:22:04 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:22:03 **SYN Flood (per Min)** 77.167.5.59, 54058->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:03 **SYN Flood** 77.167.5.59, 54058->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:02 **SYN Flood (per Min)** 109.255.139.90, 51668->> 142.151.171.201, 24687 (from WAN Inbound)
09/28/2011 09:22:02 **SYN Flood** 109.255.139.90, 51668->> 142.151.171.201, 24687 (from WAN Inbound)
09/28/2011 09:22:01 **SYN Flood (per Min)** 173.19.39.108, 8410->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:01 **SYN Flood** 173.19.39.108, 8410->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood (per Min)** 46.19.141.242, 12200->> 142.151.171.193, 8085 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood** 46.19.141.242, 12200->> 142.151.171.193, 8085 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood (per Min)** 46.19.141.242, 12200->> 142.151.171.12, 8085 (from WAN Inbound)
09/28/2011 09:17:44 **UDP Flood Stop** (from WAN Inbound)
09/28/2011 09:17:42 **UDP flood** 142.151.171.153, 58480->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 24.114.255.3, 20076->> 142.151.170.110, 42054 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 64.13.161.55, 37507->> 142.151.171.170, 12478 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 143.107.94.126, 61324->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:40 **UDP flood** 211.124.40.28, 60000->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:39 **UDP flood** 64.251.130.130, 58461->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:39 **UDP flood** 83.149.21.117, 10302->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:38 **UDP flood** 111.194.97.39, 16001->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:37 **UDP flood** 112.206.102.170, 28393->> 142.151.170.95, 19223 (from WAN Inbound)
09/28/2011 09:17:35 **UDP flood** 84.208.71.167, 10465->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:32 **UDP flood** 124.163.126.137, 58861->> 142.151.170.60, 22475 (from WAN Inbound)
09/28/2011 09:17:31 **UDP flood** 79.129.251.220, 20236->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:31 **UDP flood** 208.44.247.130, 37851->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 65.48.239.158, 41591->> 142.151.171.73, 31738 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 142.151.170.31, 58881->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 218.79.19.84, 16001->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:29 **UDP flood** 71.191.11.106, 33271->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:29 **UDP flood** 123.226.135.98, 50653->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:28 **UDP flood** 14.208.154.180, 25566->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:27 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:27 **UDP flood** 76.111.97.8, 23826->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:26 **UDP flood** 67.187.254.112, 48277->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:25 **UDP flood** 113.224.23.205, 1962->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:25 **UDP flood** 167.83.99.22, 25092->> 142.151.170.170, 35279 (from WAN Inbound)
09/28/2011 09:17:24 **UDP flood** 112.201.27.26, 22324->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:24 **UDP flood** 80.202.201.192, 56997->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 68.149.2.181, 63384->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 95.169.209.40, 25107->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 113.197.234.180, 13195->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 80.213.240.137, 22656->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:22 **UDP flood** 87.253.17.118, 6881->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 109.59.145.177, 10780->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 188.232.131.241, 17265->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 24.84.216.8, 42783->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 98.195.107.176, 39429->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:20 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 09:17:20 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 09:17:20 **UDP flood** 24.83.39.244, 46322->> 142.151.170.209, 12201 (from WAN Inbound)
09/28/2011 09:17:19 **UDP flood** 142.151.170.147, 54149->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:19 **UDP flood** 124.244.15.144, 10172->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 2.50.152.211, 38948->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 61.17.32.91, 55810->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 95.57.16.49, 32284->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 142.151.170.186, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 212.54.218.205, 31100->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:17 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:15 **UDP flood** 68.147.13.251, 44377->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:15 **UDP flood** 142.151.171.232, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:15 **UDP flood** 91.211.228.6, 43002->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 115.86.94.120, 61646->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 124.158.56.148, 20422->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 93.58.165.70, 13750->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 67.181.240.169, 55155->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:13 **UDP flood** 212.123.151.50, 26480->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:13 **UDP flood** 79.52.210.177, 13480->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:12 **UDP flood** 78.87.162.250, 51588->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 71.192.149.237, 38760->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 74.59.102.86, 33352->> 142.151.171.201, 30354 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 50.23.91.68, 15005->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:10 **UDP flood** 89.43.157.242, 1057->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 114.77.94.158, 16299->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 182.177.57.109, 10354->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 82.230.26.227, 16374->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 109.128.165.58, 18064->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 94.21.30.185, 53921->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 41.251.35.90, 55919->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 142.151.170.147, 65285->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:06 **UDP flood** 121.54.46.10, 61403->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 151.40.157.1, 12189->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 122.172.239.116, 42471->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 125.60.134.231, 57429->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 67.187.132.220, 45145->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 217.132.248.72, 61553->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:04 **UDP flood** 96.38.172.164, 49879->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:04 **UDP flood** 195.148.39.51, 5198->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:03 **UDP flood** 94.178.248.138, 42263->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:02 **UDP flood** 121.215.60.130, 59135->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:02 **UDP flood** 186.92.146.226, 56183->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 200.175.44.153, 26067->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 222.127.169.117, 50983->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 151.66.187.170, 1755->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.240, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.203, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.33, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.232, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.127, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.176, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.225, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.23, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.224, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.132, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:59 **UDP flood** 178.177.36.251, 35691->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 199.126.247.197, 60615->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 115.133.12.197, 51985->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 79.160.159.105, 35497->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 24.83.14.188, 63750->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:57 **UDP flood** 78.90.245.86, 26013->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 46.103.41.18, 52260->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 87.91.66.2, 33514->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 186.215.247.184, 43761->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 79.182.13.15, 55016->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 91.82.241.235, 39123->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:16:55 **UDP flood** 217.191.250.224, 48178->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:54 **UDP flood** 109.175.42.242, 6112->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 123.243.134.103, 10796->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 76.253.188.171, 32843->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 91.120.65.88, 51961->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:51 **UDP flood** 222.167.231.96, 16573->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:49 **UDP flood** 158.37.158.215, 43214->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:49 **UDP flood** 99.192.117.76, 1093->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 84.215.157.181, 53155->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 142.151.170.77, 59896->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 213.106.178.154, 43197->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 90.216.106.2, 23493->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:46 **UDP flood** 178.117.224.158, 10471->> 142.151.170.251, 21739 (from WAN Inbound)
09/28/2011 09:16:44 **UDP flood** 1.200.52.206, 49242->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:44 **UDP flood** 78.53.40.226, 31026->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:16:43 **UDP flood** 217.150.19.130, 50625->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:43 **UDP flood** 142.151.170.106, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:42 **UDP flood** 90.184.214.195, 26111->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:41 **UDP flood** 89.72.65.20, 64634->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 123.192.34.194, 24377->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.170.194, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.170.69, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.171.75, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 192.168.10.103, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 114.182.206.239, 14049->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 123.240.34.243, 22293->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 92.82.162.45, 13701->> 142.151.170.110, 53654 (from WAN Inbound)
Below is Malwarebytes log:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 7816
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
28/09/2011 9:57:35 AM
mbam-log-2011-09-28 (09-57-35).txt
Scan type: Quick scan
Objects scanned: 199165
Time elapsed: 30 minute(s), 15 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
HJT:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:41 AM, on 28/09/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files\Logitech\Vid HD\Vid.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\guest1\Application Data\Dropbox\bin\Dropbox.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\DOCUME~1\guest1\LOCALS~1\Temp\{0B7699EB-83BC-48C7-B232-63AC15AB1C18}\Update.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\guest1\Desktop\HijackThis.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\guest1\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Vid HD\Vid.exe" -bootmode
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -update activex
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\guest1\Application Data\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
--
End of file - 10889 bytes
Any ideas on how to fix my problem? My main concern is the internet going out at random times of the day. Thanks.
Recently, I have had internet connection troubles from my computer. My internet connection through my router dies and I have to reset the router before I get access again. This happens much more at night then during the day (which I find odd). Also, the lights on my router blink more than it should suggesting quite a bit of traffic even when I am not doing anything.
Digging deeper, I notice that in the Security Logs, I have excessive UDP Floods and SYN Floods. I believe this is what has been causing my disconnection issues in the past few days.
I ran Malwarebytes and seem to have found no infections. Regardless, I was wondering if the people on this forum can help me with my problems.
The Security Logs are like this:
09/28/2011 10:02:33 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 10:02:33 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 10:00:41 **UDP flood** 209.105.216.242, 64698->> 142.151.171.109, 59947 (from WAN Inbound)
09/28/2011 09:51:46 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:51:46 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:51:16 **SYN Flood (per Min)** 58.218.199.227, 12200->> 142.151.171.197, 8118 (from WAN Inbound)
09/28/2011 09:51:16 **SYN Flood** 58.218.199.227, 12200->> 142.151.171.128, 6588 (from WAN Inbound)
09/28/2011 09:37:52 **SYN Flood (per Min) Stop** (from WAN Outbound)
09/28/2011 09:37:52 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:37:21 **SYN Flood** 221.192.199.49, 12200->> 142.151.170.148, 2479 (from WAN Inbound)
09/28/2011 09:37:21 **SYN Flood (per Min)** 221.192.199.49, 12200->> 142.151.171.233, 9415 (from WAN Inbound)
09/28/2011 09:31:52 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:31:51 **SYN Flood (per Min)** 85.226.23.68, 54103->> 142.151.171.77, 42876 (from WAN Inbound)
09/28/2011 09:31:50 **SYN Flood (per Min)** 85.226.23.68, 54101->> 142.151.171.77, 42876 (from WAN Inbound)
09/28/2011 09:31:49 **SYN Flood (per Min)** 74.198.164.35, 55999->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:31:23 **SYN Flood (per Min)** 46.19.141.243, 12200->> 142.151.171.70, 1080 (from WAN Inbound)
09/28/2011 09:22:04 **SYN Flood Stop** (from WAN Inbound)
09/28/2011 09:22:04 **SYN Flood (per Min) Stop** (from WAN Inbound)
09/28/2011 09:22:03 **SYN Flood (per Min)** 77.167.5.59, 54058->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:03 **SYN Flood** 77.167.5.59, 54058->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:02 **SYN Flood (per Min)** 109.255.139.90, 51668->> 142.151.171.201, 24687 (from WAN Inbound)
09/28/2011 09:22:02 **SYN Flood** 109.255.139.90, 51668->> 142.151.171.201, 24687 (from WAN Inbound)
09/28/2011 09:22:01 **SYN Flood (per Min)** 173.19.39.108, 8410->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:22:01 **SYN Flood** 173.19.39.108, 8410->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood (per Min)** 46.19.141.242, 12200->> 142.151.171.193, 8085 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood** 46.19.141.242, 12200->> 142.151.171.193, 8085 (from WAN Inbound)
09/28/2011 09:21:34 **SYN Flood (per Min)** 46.19.141.242, 12200->> 142.151.171.12, 8085 (from WAN Inbound)
09/28/2011 09:17:44 **UDP Flood Stop** (from WAN Inbound)
09/28/2011 09:17:42 **UDP flood** 142.151.171.153, 58480->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 24.114.255.3, 20076->> 142.151.170.110, 42054 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 64.13.161.55, 37507->> 142.151.171.170, 12478 (from WAN Inbound)
09/28/2011 09:17:41 **UDP flood** 143.107.94.126, 61324->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:40 **UDP flood** 211.124.40.28, 60000->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:39 **UDP flood** 64.251.130.130, 58461->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:39 **UDP flood** 83.149.21.117, 10302->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:38 **UDP flood** 111.194.97.39, 16001->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:37 **UDP flood** 112.206.102.170, 28393->> 142.151.170.95, 19223 (from WAN Inbound)
09/28/2011 09:17:35 **UDP flood** 84.208.71.167, 10465->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:32 **UDP flood** 124.163.126.137, 58861->> 142.151.170.60, 22475 (from WAN Inbound)
09/28/2011 09:17:31 **UDP flood** 79.129.251.220, 20236->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:31 **UDP flood** 208.44.247.130, 37851->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 65.48.239.158, 41591->> 142.151.171.73, 31738 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 142.151.170.31, 58881->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:30 **UDP flood** 218.79.19.84, 16001->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:29 **UDP flood** 71.191.11.106, 33271->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:29 **UDP flood** 123.226.135.98, 50653->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:28 **UDP flood** 14.208.154.180, 25566->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:27 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:27 **UDP flood** 76.111.97.8, 23826->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:26 **UDP flood** 67.187.254.112, 48277->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:25 **UDP flood** 113.224.23.205, 1962->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:25 **UDP flood** 167.83.99.22, 25092->> 142.151.170.170, 35279 (from WAN Inbound)
09/28/2011 09:17:24 **UDP flood** 112.201.27.26, 22324->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:24 **UDP flood** 80.202.201.192, 56997->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 68.149.2.181, 63384->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 95.169.209.40, 25107->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 113.197.234.180, 13195->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:23 **UDP flood** 80.213.240.137, 22656->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:22 **UDP flood** 87.253.17.118, 6881->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 109.59.145.177, 10780->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 188.232.131.241, 17265->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 24.84.216.8, 42783->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:21 **UDP flood** 98.195.107.176, 39429->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:20 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 09:17:20 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 09:17:20 **UDP flood** 24.83.39.244, 46322->> 142.151.170.209, 12201 (from WAN Inbound)
09/28/2011 09:17:19 **UDP flood** 142.151.170.147, 54149->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:19 **UDP flood** 124.244.15.144, 10172->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 2.50.152.211, 38948->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 61.17.32.91, 55810->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 95.57.16.49, 32284->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 142.151.170.186, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:18 **UDP flood** 212.54.218.205, 31100->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:17 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:15 **UDP flood** 68.147.13.251, 44377->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:15 **UDP flood** 142.151.171.232, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:15 **UDP flood** 91.211.228.6, 43002->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 115.86.94.120, 61646->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 124.158.56.148, 20422->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 93.58.165.70, 13750->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:14 **UDP flood** 67.181.240.169, 55155->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:13 **UDP flood** 212.123.151.50, 26480->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:13 **UDP flood** 79.52.210.177, 13480->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:12 **UDP flood** 78.87.162.250, 51588->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 71.192.149.237, 38760->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 74.59.102.86, 33352->> 142.151.171.201, 30354 (from WAN Inbound)
09/28/2011 09:17:11 **UDP flood** 50.23.91.68, 15005->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:10 **UDP flood** 89.43.157.242, 1057->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 114.77.94.158, 16299->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 182.177.57.109, 10354->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 82.230.26.227, 16374->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:09 **UDP flood** 109.128.165.58, 18064->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 94.21.30.185, 53921->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 41.251.35.90, 55919->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:07 **UDP flood** 142.151.170.147, 65285->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 192.168.2.3, 57736->> 192.168.254.5, 161 (from WAN Outbound)
09/28/2011 09:17:06 **UDP flood** 121.54.46.10, 61403->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 151.40.157.1, 12189->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:06 **UDP flood** 122.172.239.116, 42471->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 125.60.134.231, 57429->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 67.187.132.220, 45145->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:05 **UDP flood** 217.132.248.72, 61553->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:04 **UDP flood** 96.38.172.164, 49879->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:04 **UDP flood** 195.148.39.51, 5198->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:17:03 **UDP flood** 94.178.248.138, 42263->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:02 **UDP flood** 121.215.60.130, 59135->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:17:02 **UDP flood** 186.92.146.226, 56183->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 200.175.44.153, 26067->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 222.127.169.117, 50983->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 151.66.187.170, 1755->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.233, 32768->> 128.100.96.34, 53 (from WAN Outbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.233, 32768->> 128.100.56.135, 53 (from WAN Outbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.240, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.203, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.33, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.232, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.127, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.170.176, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:01 **UDP flood** 142.151.171.225, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.23, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.224, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:17:00 **UDP flood** 142.151.170.132, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:59 **UDP flood** 178.177.36.251, 35691->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 199.126.247.197, 60615->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 115.133.12.197, 51985->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 79.160.159.105, 35497->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:58 **UDP flood** 24.83.14.188, 63750->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:57 **UDP flood** 78.90.245.86, 26013->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 46.103.41.18, 52260->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 87.91.66.2, 33514->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 186.215.247.184, 43761->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 79.182.13.15, 55016->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:56 **UDP flood** 91.82.241.235, 39123->> 142.151.171.191, 51366 (from WAN Inbound)
09/28/2011 09:16:55 **UDP flood** 217.191.250.224, 48178->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:54 **UDP flood** 109.175.42.242, 6112->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 123.243.134.103, 10796->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 76.253.188.171, 32843->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:52 **UDP flood** 91.120.65.88, 51961->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:51 **UDP flood** 222.167.231.96, 16573->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:49 **UDP flood** 158.37.158.215, 43214->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:49 **UDP flood** 99.192.117.76, 1093->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 84.215.157.181, 53155->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 142.151.170.77, 59896->> 224.0.0.252, 5355 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 213.106.178.154, 43197->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:48 **UDP flood** 90.216.106.2, 23493->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:46 **UDP flood** 178.117.224.158, 10471->> 142.151.170.251, 21739 (from WAN Inbound)
09/28/2011 09:16:44 **UDP flood** 1.200.52.206, 49242->> 142.151.171.85, 14637 (from WAN Inbound)
09/28/2011 09:16:44 **UDP flood** 78.53.40.226, 31026->> 142.151.170.110, 53654 (from WAN Inbound)
09/28/2011 09:16:43 **UDP flood** 217.150.19.130, 50625->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:43 **UDP flood** 142.151.170.106, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:42 **UDP flood** 90.184.214.195, 26111->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:41 **UDP flood** 89.72.65.20, 64634->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 123.192.34.194, 24377->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.170.194, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.170.69, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 142.151.171.75, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 192.168.10.103, 5353->> 224.0.0.251, 5353 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 114.182.206.239, 14049->> 142.151.170.177, 44510 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 123.240.34.243, 22293->> 142.151.170.117, 51182 (from WAN Inbound)
09/28/2011 09:16:40 **UDP flood** 92.82.162.45, 13701->> 142.151.170.110, 53654 (from WAN Inbound)
Below is Malwarebytes log:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Database version: 7816
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
28/09/2011 9:57:35 AM
mbam-log-2011-09-28 (09-57-35).txt
Scan type: Quick scan
Objects scanned: 199165
Time elapsed: 30 minute(s), 15 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
HJT:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:41 AM, on 28/09/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files\Logitech\Vid HD\Vid.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\guest1\Application Data\Dropbox\bin\Dropbox.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\DOCUME~1\guest1\LOCALS~1\Temp\{0B7699EB-83BC-48C7-B232-63AC15AB1C18}\Update.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\guest1\Desktop\HijackThis.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\guest1\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Vid HD\Vid.exe" -bootmode
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -update activex
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\guest1\Application Data\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
--
End of file - 10889 bytes
Any ideas on how to fix my problem? My main concern is the internet going out at random times of the day. Thanks.