|What I see when I type netstat -a at the prompt in the cmd window is nothing like what you're getting.|
I don't have any whatnow anything or most of the things you're seeing.
Do you have a problem you're trying to troubleshoot?
Apparently you're using server software - you'd probably be better off making a new topic in the Specialty - Windows Server 2003 or 2008 forum on this site, and copying this info there.
I took a stab at at....
regarding whatnow - see this:
You're using DDE server software
search for whatnow in this:
120-85.reserver.ru, 20-86.reserver.ru are sites in Russia
I have no idea what the reverse before them is for, or why you have Russian addresses.
However, a lot of the current attacks people are getting of fake symptoms of malware infecting their computer are being made by Russian authors. It's stuff loaded by you merely visting contaminated web sites, made by authors of so called "rogue" anti-virus, or anti-spyware or anti-malware software, generically, in attempt to get you to buy their legitimate anti-malware software, which may or may not be better than other anti-malware software.
(By the way, I have found the ones of these I have encountered cannot fully install their symptoms on a 98SE system. You merely close IE, or use Task Manager to close IE, or reboot your system.)
If you ARE getting fake symptoms of malware having infected your computer, most common anti-malware software (e.g. AVG, many others) people use does NOT find it, or if it does, it can't completely get rid of the faked symptoms (e.g. SpyBot) . However, you could try searching for and downloading and installing Malwarebytes and Smitfraudfix, and updating and running Malwarebytes, in Safe mode if you can, and then running Smitfraudfix in Safe mode - those two get rid of most "rogue" anti-malware faked symptoms.
The version you download is free of both, Smitfraudfix is continuously being updated and is freeware, but the free version of Malwarebytes has no resident scanner and you must update it before you use it. Apparently, many are buying Malwarebytes in order to be protected from "rogue" anti-malware faked symtoms all the time by it's resident scanner - it can co-exist with most other anti-malware software.
126.96.36.199 is an Apache server software test page
188.8.131.52:18031 is probably a TCP port on an Apache server
When I search using: .internetserviceteam.com
there are some "hits".
Other than that, I have no idea.
I have no idea
- xxxx being many possible numbers
Probably a TCP port via your router