A ton of ports open on my computer

February 7, 2015 at 17:37:23
Specs: Windows 7
There are way way too many ports open on my computer and I'm fairly certain at least half of them are from malware. How do I close these ports after finding them?

(The ports open on my computer)

1/tcp unknown tcpmux
3/tcp unknown compressnet
4/tcp unknown unknown
6/tcp unknown unknown
7/tcp unknown echo
9/tcp unknown discard
13/tcp unknown daytime
17/tcp unknown qotd
19/tcp unknown chargen
20/tcp unknown ftp-data
21/tcp unknown ftp
22/tcp unknown ssh
23/tcp unknown telnet
24/tcp unknown priv-mail
25/tcp unknown smtp
26/tcp unknown rsftp
30/tcp unknown unknown
32/tcp unknown unknown
33/tcp unknown dsp
37/tcp unknown time
42/tcp unknown nameserver
43/tcp unknown whois
49/tcp unknown tacacs
53/tcp unknown domain
70/tcp unknown gopher
79/tcp unknown finger
80/tcp unknown http
81/tcp unknown hosts2-ns
82/tcp unknown xfer
83/tcp unknown mit-ml-dev
84/tcp unknown ctf
85/tcp unknown mit-ml-dev
88/tcp unknown kerberos-sec
89/tcp unknown su-mit-tg
90/tcp unknown dnsix
99/tcp unknown metagram
100/tcp unknown newacct
106/tcp unknown pop3pw
109/tcp unknown pop2
110/tcp unknown pop3
111/tcp unknown rpcbind
113/tcp unknown ident
119/tcp unknown nntp
125/tcp unknown locus-map
135/tcp unknown msrpc
139/tcp unknown netbios-ssn
143/tcp unknown imap
144/tcp unknown news
146/tcp unknown iso-tp0
161/tcp unknown snmp
163/tcp unknown cmip-man
179/tcp unknown bgp
199/tcp unknown smux
211/tcp unknown 914c-g
212/tcp unknown anet
222/tcp unknown rsh-spx
254/tcp unknown unknown
255/tcp unknown unknown
256/tcp unknown fw1-secureremote
259/tcp unknown esro-gen
264/tcp unknown bgmp
280/tcp unknown http-mgmt
301/tcp unknown unknown
306/tcp unknown unknown
311/tcp unknown asip-webadmin
340/tcp unknown unknown
366/tcp unknown odmr
389/tcp unknown ldap
406/tcp unknown imsp
407/tcp unknown timbuktu
416/tcp unknown silverplatter
417/tcp unknown onmux
425/tcp unknown icad-el
427/tcp unknown svrloc
443/tcp unknown https
444/tcp unknown snpp
445/tcp unknown microsoft-ds
458/tcp unknown appleqtc
464/tcp unknown kpasswd5
465/tcp unknown smtps
481/tcp unknown dvs
497/tcp unknown retrospect
500/tcp unknown isakmp
512/tcp unknown exec
513/tcp unknown login
514/tcp unknown shell
515/tcp unknown printer
524/tcp unknown ncp
541/tcp unknown uucp-rlogin
543/tcp unknown klogin
544/tcp unknown kshell
545/tcp unknown ekshell
548/tcp unknown afp
554/tcp unknown rtsp
555/tcp unknown dsf
563/tcp unknown snews
587/tcp unknown submission
593/tcp unknown http-rpc-epmap
616/tcp unknown sco-sysmgr
617/tcp unknown sco-dtmgr
625/tcp unknown apple-xsrvr-admin
631/tcp unknown ipp
636/tcp unknown ldapssl
646/tcp unknown ldp
648/tcp unknown rrp
666/tcp unknown doom
667/tcp unknown disclose
668/tcp unknown mecomm
683/tcp unknown corba-iiop
687/tcp unknown asipregistry
691/tcp unknown resvc
700/tcp unknown epp
705/tcp unknown agentx
711/tcp unknown cisco-tdp
714/tcp unknown iris-xpcs
720/tcp unknown unknown
722/tcp unknown unknown
726/tcp unknown unknown
749/tcp unknown kerberos-adm
765/tcp unknown webster
777/tcp unknown multiling-http
783/tcp unknown spamassassin
787/tcp unknown qsc
800/tcp unknown mdbs_daemon
801/tcp unknown device
808/tcp unknown ccproxy-http
843/tcp unknown unknown
873/tcp unknown rsync
880/tcp unknown unknown
888/tcp unknown accessbuilder
898/tcp unknown sun-manageconsole
900/tcp unknown omginitialrefs
901/tcp unknown samba-swat
902/tcp unknown iss-realsecure
903/tcp unknown iss-console-mgr
911/tcp unknown xact-backup
912/tcp unknown apex-mesh
981/tcp unknown unknown
987/tcp unknown unknown
990/tcp unknown ftps
992/tcp unknown telnets
993/tcp unknown imaps
995/tcp unknown pop3s
999/tcp unknown garcon
1000/tcp unknown cadlock
1001/tcp unknown unknown
1002/tcp unknown windows-icfw
1007/tcp unknown unknown
1009/tcp unknown unknown
1010/tcp unknown surf
1011/tcp unknown unknown
1021/tcp unknown exp1
1022/tcp unknown exp2
1023/tcp unknown netvenuechat
1024/tcp unknown kdm
1025/tcp unknown NFS-or-IIS
1026/tcp unknown LSA-or-nterm
1027/tcp unknown IIS
1028/tcp unknown unknown
1029/tcp unknown ms-lsa
1030/tcp unknown iad1
1031/tcp unknown iad2
1032/tcp unknown iad3
1033/tcp unknown netinfo
1034/tcp unknown zincite-a
1035/tcp unknown multidropper
1036/tcp unknown nsstp
1037/tcp unknown ams
1038/tcp unknown mtqp
1039/tcp unknown sbl
1040/tcp unknown netsaint
1041/tcp unknown danf-ak2
1042/tcp unknown afrog
1043/tcp unknown boinc
1044/tcp unknown dcutility
1045/tcp unknown fpitp
1046/tcp unknown wfremotertm
1047/tcp unknown neod1
1048/tcp unknown neod2
1049/tcp unknown td-postman
1050/tcp unknown java-or-OTGfileshare
1051/tcp unknown optima-vnet
1052/tcp unknown ddt
1053/tcp unknown remote-as
1054/tcp unknown brvread
1055/tcp unknown ansyslmd
1056/tcp unknown vfo
1057/tcp unknown startron
1058/tcp unknown nim
1059/tcp unknown nimreg
1060/tcp unknown polestar
1061/tcp unknown kiosk
1062/tcp unknown veracity
1063/tcp unknown kyoceranetdev
1064/tcp unknown jstel
1065/tcp unknown syscomlan
1066/tcp unknown fpo-fns
1067/tcp unknown instl_boots
1068/tcp unknown instl_bootc
1069/tcp unknown cognex-insight
1070/tcp unknown gmrupdateserv
1071/tcp unknown bsquare-voip
1072/tcp unknown cardax
1073/tcp unknown bridgecontrol
1074/tcp unknown warmspotMgmt
1075/tcp unknown rdrmshc
1076/tcp unknown sns_credit
1077/tcp unknown imgames
1078/tcp unknown avocent-proxy
1079/tcp unknown asprovatalk
1080/tcp unknown socks
1081/tcp unknown pvuniwien
1082/tcp unknown amt-esd-prot
1083/tcp unknown ansoft-lm-1
1084/tcp unknown ansoft-lm-2
1085/tcp unknown webobjects
1086/tcp unknown cplscrambler-lg
1087/tcp unknown cplscrambler-in
1088/tcp unknown cplscrambler-al
1089/tcp unknown ff-annunc
1090/tcp unknown ff-fms
1091/tcp unknown ff-sm
1092/tcp unknown obrpd
1093/tcp unknown proofd
1094/tcp unknown rootd
1095/tcp unknown nicelink
1096/tcp unknown cnrprotocol
1097/tcp unknown sunclustermgr
1098/tcp unknown rmiactivation
1099/tcp unknown rmiregistry
1100/tcp unknown mctp
1102/tcp unknown adobeserver-1
1104/tcp unknown xrl
1105/tcp unknown ftranhc
1106/tcp unknown isoipsigport-1
1107/tcp unknown isoipsigport-2
1108/tcp unknown ratio-adp
1110/tcp unknown nfsd-status
1111/tcp unknown lmsocialserver
1112/tcp unknown msql
1113/tcp unknown ltp-deepspace
1114/tcp unknown mini-sql
1117/tcp unknown ardus-mtrns
1119/tcp unknown bnetgame
1121/tcp unknown rmpp
1122/tcp unknown availant-mgr
1123/tcp unknown murray
1124/tcp unknown hpvmmcontrol
1126/tcp unknown hpvmmdata
1130/tcp unknown casp
1131/tcp unknown caspssl
1132/tcp unknown kvm-via-ip
1137/tcp unknown trim
1138/tcp unknown encrypted_admin
1141/tcp unknown mxomss
1145/tcp unknown x9-icue
1147/tcp unknown capioverlan
1148/tcp unknown elfiq-repl
1149/tcp unknown bvtsonar
1151/tcp unknown unizensus
1152/tcp unknown winpoplanmess
1154/tcp unknown resacommunity
1163/tcp unknown sddp
1164/tcp unknown qsm-proxy
1165/tcp unknown qsm-gui
1166/tcp unknown qsm-remote
1169/tcp unknown tripwire
1174/tcp unknown fnet-remote-ui
1175/tcp unknown dossier
1183/tcp unknown llsurfup-http
1185/tcp unknown catchpole
1186/tcp unknown mysql-cluster
1187/tcp unknown alias
1192/tcp unknown caids-sensor
1198/tcp unknown cajo-discovery
1199/tcp unknown dmidi
1201/tcp unknown nucleus-sand
1213/tcp unknown mpc-lifenet
1216/tcp unknown etebac5
1217/tcp unknown hpss-ndapi
1218/tcp unknown aeroflight-ads
1233/tcp unknown univ-appserver
1234/tcp unknown hotline
1236/tcp unknown bvcontrol
1244/tcp unknown isbconference1
1247/tcp unknown visionpyramid
1248/tcp unknown hermes
1259/tcp unknown opennl-voice
1271/tcp unknown excw
1272/tcp unknown cspmlockmgr
1277/tcp unknown miva-mqs
1287/tcp unknown routematch
1296/tcp unknown dproxy
1300/tcp unknown h323hostcallsc
1301/tcp unknown ci3-software-1
1309/tcp unknown jtag-server
1310/tcp unknown husky
1311/tcp unknown rxmon
1322/tcp unknown novation
1328/tcp unknown ewall
1334/tcp unknown writesrv
1352/tcp unknown lotusnotes
1417/tcp unknown timbuktu-srv1
1433/tcp unknown ms-sql-s
1434/tcp unknown ms-sql-m
1443/tcp unknown ies-lm
1455/tcp unknown esl-lm
1461/tcp unknown ibm_wrless_lan
1494/tcp unknown citrix-ica
1500/tcp unknown vlsi-lm
1501/tcp unknown sas-3
1503/tcp unknown imtc-mcs
1521/tcp unknown oracle
1524/tcp unknown ingreslock
1533/tcp unknown virtual-places
1556/tcp unknown veritas_pbx
1580/tcp unknown tn-tl-r1
1583/tcp unknown simbaexpress
1594/tcp unknown sixtrak
1600/tcp unknown issd
1641/tcp unknown invision
1658/tcp unknown sixnetudr
1666/tcp unknown netview-aix-6
1687/tcp unknown nsjtp-ctrl
1688/tcp unknown nsjtp-data
1700/tcp unknown mps-raft
1717/tcp unknown fj-hdnet
1718/tcp unknown h323gatedisc
1719/tcp unknown h323gatestat
1720/tcp unknown H.323/Q.931
1721/tcp unknown caicci
1723/tcp unknown pptp
1755/tcp unknown wms
1761/tcp unknown landesk-rc
1782/tcp unknown hp-hcip
1783/tcp unknown unknown
1801/tcp unknown msmq
1805/tcp unknown enl-name
1812/tcp unknown radius
1839/tcp unknown netopia-vo1
1840/tcp unknown netopia-vo2
1862/tcp unknown mysql-cm-agent
1863/tcp unknown msnp
1864/tcp unknown paradym-31
1875/tcp unknown westell-stats
1900/tcp unknown upnp
1914/tcp unknown elm-momentum
1935/tcp unknown rtmp
1947/tcp unknown sentinelsrm
1971/tcp unknown netop-school
1972/tcp unknown intersys-cache
1974/tcp unknown drp
1984/tcp unknown bigbrother
1998/tcp unknown x25-svc-port
1999/tcp unknown tcp-id-port
2000/tcp unknown cisco-sccp
2001/tcp unknown dc
2002/tcp unknown globe
2003/tcp unknown finger
2004/tcp unknown mailbox
2005/tcp unknown deslogin
2006/tcp unknown invokator
2007/tcp unknown dectalk
2008/tcp unknown conf
2009/tcp unknown news
2010/tcp unknown search
2013/tcp unknown raid-am
2020/tcp unknown xinupageserver
2021/tcp unknown servexec
2022/tcp unknown down
2030/tcp unknown device2
2033/tcp unknown glogger
2034/tcp unknown scoremgr
2035/tcp unknown imsldoc
2038/tcp unknown objectmanager
2040/tcp unknown lam
2041/tcp unknown interbase
2042/tcp unknown isis
2043/tcp unknown isis-bcast
2045/tcp unknown cdfunc
2046/tcp unknown sdfunc
2047/tcp unknown dls
2048/tcp unknown dls-monitor
2049/tcp unknown nfs
2065/tcp unknown dlsrpn
2068/tcp unknown advocentkvm
2099/tcp unknown h2250-annex-g
2100/tcp unknown amiganetfs
2103/tcp unknown zephyr-clt
2105/tcp unknown eklogin
2106/tcp unknown ekshell
2107/tcp unknown msmq-mgmt
2111/tcp unknown kx
2119/tcp unknown gsigatekeeper
2121/tcp unknown ccproxy-ftp
2126/tcp unknown pktcable-cops
2135/tcp unknown gris
2144/tcp unknown lv-ffx
2160/tcp unknown apc-2160
2161/tcp unknown apc-agent
2170/tcp unknown eyetv
2179/tcp unknown vmrdp
2190/tcp unknown tivoconnect
2191/tcp unknown tvbus
2196/tcp unknown unknown
2200/tcp unknown ici
2222/tcp unknown EtherNet/IP-1
2251/tcp unknown dif-port
2260/tcp unknown apc-2260
2288/tcp unknown netml
2301/tcp unknown compaqdiag
2323/tcp unknown 3d-nfsd
2366/tcp unknown qip-login
2381/tcp unknown compaq-https
2382/tcp unknown ms-olap3
2383/tcp unknown ms-olap4
2393/tcp unknown ms-olap1
2394/tcp unknown ms-olap2
2399/tcp unknown fmpro-fdal
2401/tcp unknown cvspserver
2492/tcp unknown groove
2500/tcp unknown rtsserv
2522/tcp unknown windb
2525/tcp unknown ms-v-worlds
2557/tcp unknown nicetec-mgmt
2601/tcp unknown zebra
2602/tcp unknown ripd
2604/tcp unknown ospfd
2605/tcp unknown bgpd
2607/tcp unknown connection
2608/tcp unknown wag-service
2638/tcp unknown sybase
2701/tcp unknown sms-rcinfo
2702/tcp unknown sms-xfer
2710/tcp unknown sso-service
2717/tcp unknown pn-requester
2718/tcp unknown pn-requester2
2725/tcp unknown msolap-ptp2
2800/tcp unknown acc-raid
2809/tcp unknown corbaloc
2811/tcp unknown gsiftp
2869/tcp unknown icslap
2875/tcp unknown dxmessagebase2
2909/tcp unknown funk-dialout
2910/tcp unknown tdaccess
2920/tcp unknown roboeda
2967/tcp unknown symantec-av
2968/tcp unknown enpp
2998/tcp unknown iss-realsec
3000/tcp unknown ppp
3001/tcp unknown nessus
3003/tcp unknown cgm
3005/tcp unknown deslogin
3006/tcp unknown deslogind
3007/tcp unknown lotusmtap
3011/tcp unknown trusted-web
3013/tcp unknown gilatskysurfer
3017/tcp unknown event_listener
3030/tcp unknown arepa-cas
3031/tcp unknown eppc
3052/tcp unknown powerchute
3071/tcp unknown csd-mgmt-port
3077/tcp unknown orbix-loc-ssl
3128/tcp unknown squid-https
3168/tcp unknown poweronnu
3211/tcp unknown avsecuremgmt
3221/tcp unknown xnm-clear-text
3260/tcp unknown iscsi
3261/tcp unknown winshadow
3268/tcp unknown globalcatLDAP
3269/tcp unknown globalcatLDAPssl
3283/tcp unknown netassistant
3300/tcp unknown unknown
3301/tcp unknown unknown
3306/tcp unknown mysql
3322/tcp unknown active-net
3323/tcp unknown active-net
3324/tcp unknown active-net
3325/tcp unknown active-net
3333/tcp unknown dec-notes
3351/tcp unknown btrieve
3367/tcp unknown satvid-datalnk
3369/tcp unknown satvid-datalnk
3370/tcp unknown satvid-datalnk
3371/tcp unknown satvid-datalnk
3372/tcp unknown msdtc
3389/tcp unknown ms-wbt-server
3390/tcp unknown dsc
3404/tcp unknown unknown
3476/tcp unknown nppmp
3493/tcp unknown nu
3517/tcp unknown 802-11-iapp
3527/tcp unknown beserver-msg-q
3546/tcp unknown unknown
3551/tcp unknown apcupsd
3580/tcp unknown nati-svrloc
3659/tcp unknown apple-sasl
3689/tcp unknown rendezvous
3690/tcp unknown svn
3703/tcp unknown adobeserver-3
3737/tcp unknown xpanel
3766/tcp unknown unknown
3784/tcp unknown bfd-control
3800/tcp unknown pwgpsi
3801/tcp unknown ibm-mgr
3809/tcp unknown apocd
3814/tcp unknown neto-dcs
3826/tcp unknown wormux
3827/tcp unknown netmpi
3828/tcp unknown neteh
3851/tcp unknown spectraport
3869/tcp unknown ovsam-mgmt
3871/tcp unknown avocent-adsap
3878/tcp unknown fotogcad
3880/tcp unknown igrs
3889/tcp unknown dandv-tester
3905/tcp unknown mupdate
3914/tcp unknown listcrt-port-2
3918/tcp unknown pktcablemmcops
3920/tcp unknown exasoftport1
3945/tcp unknown emcads
3971/tcp unknown lanrevserver
3986/tcp unknown mapper-ws_ethd
3995/tcp unknown iss-mgmt-ssl
3998/tcp unknown dnx
4000/tcp unknown remoteanything
4001/tcp unknown newoak
4002/tcp unknown mlchat-proxy
4003/tcp unknown pxc-splr-ft
4004/tcp unknown pxc-roid
4005/tcp unknown pxc-pin
4006/tcp unknown pxc-spvr
4045/tcp unknown lockd
4111/tcp unknown xgrid
4125/tcp unknown rww
4126/tcp unknown ddrepl
4129/tcp unknown nuauth
4224/tcp unknown xtell
4242/tcp unknown vrml-multi-use
4279/tcp unknown vrml-multi-use
4321/tcp unknown rwhois
4343/tcp unknown unicall
4443/tcp unknown pharos
4444/tcp unknown krb524
4445/tcp unknown upnotifyp
4446/tcp unknown n1-fwp
4449/tcp unknown privatewire
4550/tcp unknown gds-adppiw-db
4567/tcp unknown tram
4662/tcp unknown edonkey
4848/tcp unknown appserv-http
4899/tcp unknown radmin
4900/tcp unknown hfcs
4998/tcp unknown maybe-veritas
5000/tcp unknown upnp
5001/tcp unknown commplex-link
5002/tcp unknown rfe
5003/tcp unknown filemaker
5004/tcp unknown avt-profile-1
5009/tcp unknown airport-admin
5030/tcp unknown surfpass
5033/tcp unknown unknown
5050/tcp unknown mmcc
5051/tcp unknown ida-agent
5054/tcp unknown rlm-admin
5060/tcp unknown sip
5061/tcp unknown sip-tls
5080/tcp unknown onscreen
5087/tcp unknown unknown
5100/tcp unknown admd
5101/tcp unknown admdog
5102/tcp unknown admeng
5120/tcp unknown unknown
5190/tcp unknown aol
5200/tcp unknown targus-getdata
5214/tcp unknown unknown
5221/tcp unknown 3exmp
5222/tcp unknown xmpp-client
5225/tcp unknown hp-server
5226/tcp unknown hp-status
5269/tcp unknown xmpp-server
5280/tcp unknown xmpp-bosh
5298/tcp unknown presence
5357/tcp unknown wsdapi
5405/tcp unknown pcduo
5414/tcp unknown statusd
5431/tcp unknown park-agent
5432/tcp unknown postgresql
5440/tcp unknown unknown
5500/tcp unknown hotline
5510/tcp unknown secureidprop
5544/tcp unknown unknown
5550/tcp unknown sdadmind
5555/tcp unknown freeciv
5560/tcp unknown isqlplus
5566/tcp unknown westec-connect
5631/tcp unknown pcanywheredata
5633/tcp unknown beorl
5666/tcp unknown nrpe
5678/tcp unknown rrac
5679/tcp unknown activesync
5718/tcp unknown dpm
5730/tcp unknown unieng
5800/tcp unknown vnc-http
5801/tcp unknown vnc-http-1
5802/tcp unknown vnc-http-2
5810/tcp unknown unknown
5811/tcp unknown unknown
5815/tcp unknown unknown
5822/tcp unknown unknown
5825/tcp unknown unknown
5850/tcp unknown unknown
5859/tcp unknown wherehoo
5862/tcp unknown unknown
5877/tcp unknown unknown
5900/tcp unknown vnc
5901/tcp unknown vnc-1
5902/tcp unknown vnc-2
5903/tcp unknown vnc-3
5904/tcp unknown unknown
5906/tcp unknown unknown
5907/tcp unknown unknown
5910/tcp unknown cm
5911/tcp unknown cpdlc
5915/tcp unknown unknown
5922/tcp unknown unknown
5925/tcp unknown unknown
5950/tcp unknown unknown
5952/tcp unknown unknown
5959/tcp unknown unknown
5960/tcp unknown unknown
5961/tcp unknown unknown
5962/tcp unknown unknown
5963/tcp unknown indy
5987/tcp unknown wbem-rmi
5988/tcp unknown wbem-http
5989/tcp unknown wbem-https
5998/tcp unknown ncd-diag
5999/tcp unknown ncd-conf
6000/tcp unknown X11
6001/tcp unknown X11:1
6002/tcp unknown X11:2
6003/tcp unknown X11:3
6004/tcp unknown X11:4
6005/tcp unknown X11:5
6006/tcp unknown X11:6
6007/tcp unknown X11:7
6009/tcp unknown X11:9
6025/tcp unknown x11
6059/tcp unknown X11:59
6100/tcp unknown synchronet-db
6101/tcp unknown backupexec
6106/tcp unknown isdninfo
6112/tcp unknown dtspc
6123/tcp unknown backup-express
6129/tcp unknown unknown
6156/tcp unknown unknown
6346/tcp unknown gnutella
6389/tcp unknown clariion-evr01
6502/tcp unknown netop-rc
6510/tcp unknown mcer-port
6543/tcp unknown mythtv
6547/tcp unknown powerchuteplus
6565/tcp unknown unknown
6566/tcp unknown sane-port
6567/tcp unknown esp
6580/tcp unknown parsec-master
6646/tcp unknown unknown
6666/tcp unknown irc
6667/tcp unknown irc
6668/tcp unknown irc
6669/tcp unknown irc
6689/tcp unknown tsa
6692/tcp unknown unknown
6699/tcp unknown napster
6779/tcp unknown unknown
6788/tcp unknown smc-http
6789/tcp unknown ibm-db2-admin
6792/tcp unknown unknown
6839/tcp unknown unknown
6881/tcp unknown bittorrent-tracker
6901/tcp unknown jetstream
6969/tcp unknown acmsoda
7000/tcp unknown afs3-fileserver
7001/tcp unknown afs3-callback
7002/tcp unknown afs3-prserver
7004/tcp unknown afs3-kaserver
7007/tcp unknown afs3-bos
7019/tcp unknown unknown
7025/tcp unknown vmsvc-2
7070/tcp unknown realserver
7100/tcp unknown font-service
7103/tcp unknown unknown
7106/tcp unknown unknown
7200/tcp unknown fodms
7201/tcp unknown dlip
7402/tcp unknown rtps-dd-mt
7435/tcp unknown unknown
7443/tcp unknown oracleas-http
7496/tcp unknown unknown
7512/tcp unknown unknown
7625/tcp unknown unknown
7627/tcp unknown soap-http
7676/tcp unknown imqbrokerd
7741/tcp unknown scriptview
7777/tcp unknown cbt
7778/tcp unknown interwise
7800/tcp unknown asr
7911/tcp unknown unknown
7920/tcp unknown unknown
7921/tcp unknown unknown
7937/tcp unknown nsrexec
7938/tcp unknown lgtomapper
7999/tcp unknown irdmi2
8000/tcp unknown http-alt
8001/tcp unknown vcom-tunnel
8002/tcp unknown teradataordbms
8007/tcp unknown ajp12
8008/tcp unknown http
8009/tcp unknown ajp13
8010/tcp unknown xmpp
8011/tcp unknown unknown
8021/tcp unknown ftp-proxy
8022/tcp unknown oa-system
8031/tcp unknown unknown
8042/tcp unknown fs-agent
8045/tcp unknown unknown
8080/tcp unknown http-proxy
8081/tcp unknown blackice-icecap
8082/tcp unknown blackice-alerts
8083/tcp unknown us-srv
8084/tcp unknown unknown
8085/tcp unknown unknown
8086/tcp unknown d-s-n
8087/tcp unknown simplifymedia
8088/tcp unknown radan-http
8089/tcp unknown unknown
8090/tcp unknown unknown
8093/tcp unknown unknown
8099/tcp unknown unknown
8100/tcp unknown xprint-server
8180/tcp unknown unknown
8181/tcp unknown unknown
8192/tcp unknown sopho
8193/tcp unknown sophos
8194/tcp unknown sophos
8200/tcp unknown trivnet1
8222/tcp unknown unknown
8254/tcp unknown unknown
8290/tcp unknown unknown
8291/tcp unknown unknown
8292/tcp unknown blp3
8300/tcp unknown tmi
8333/tcp unknown unknown
8383/tcp unknown m2mservices
8400/tcp unknown cvd
8402/tcp unknown abarsd
8443/tcp unknown https-alt
8500/tcp unknown fmtp
8600/tcp unknown asterix
8649/tcp unknown unknown
8651/tcp unknown unknown
8652/tcp unknown unknown
8654/tcp unknown unknown
8701/tcp unknown unknown
8800/tcp unknown sunwebadmin
8873/tcp unknown dxspider
8888/tcp unknown sun-answerbook
8899/tcp unknown ospf-lite
8994/tcp unknown unknown
9000/tcp unknown cslistener
9001/tcp unknown tor-orport
9002/tcp unknown dynamid
9003/tcp unknown unknown
9009/tcp unknown pichat
9010/tcp unknown sdr
9011/tcp unknown unknown
9040/tcp unknown tor-trans
9050/tcp unknown tor-socks
9071/tcp unknown unknown
9080/tcp unknown glrpc
9081/tcp unknown unknown
9090/tcp unknown zeus-admin
9091/tcp unknown xmltec-xmlmail
9099/tcp unknown unknown
9100/tcp unknown jetdirect
9101/tcp unknown jetdirect
9102/tcp unknown jetdirect
9103/tcp unknown jetdirect
9110/tcp unknown unknown
9111/tcp unknown DragonIDSConsole
9200/tcp unknown wap-wsp
9207/tcp unknown wap-vcal-s
9220/tcp unknown unknown
9290/tcp unknown unknown
9415/tcp unknown unknown
9418/tcp unknown git
9485/tcp unknown unknown
9500/tcp unknown ismserver
9502/tcp unknown unknown
9503/tcp unknown unknown
9535/tcp unknown man
9575/tcp unknown unknown
9593/tcp unknown cba8
9594/tcp unknown msgsys
9595/tcp unknown pds
9618/tcp unknown condor
9666/tcp unknown unknown
9876/tcp unknown sd
9877/tcp unknown unknown
9878/tcp unknown unknown
9898/tcp unknown monkeycom
9900/tcp unknown iua
9917/tcp unknown unknown
9929/tcp unknown nping-echo
9943/tcp unknown unknown
9944/tcp unknown unknown
9968/tcp unknown unknown
9998/tcp unknown distinct32
9999/tcp unknown abyss
10000/tcp unknown snet-sensor-mgmt
10001/tcp unknown scp-config
10002/tcp unknown documentum
10003/tcp unknown documentum_s
10004/tcp unknown emcrmirccd
10009/tcp unknown swdtp-sv
10010/tcp unknown rxapi
10012/tcp unknown unknown
10024/tcp unknown unknown
10025/tcp unknown unknown
10082/tcp unknown amandaidx
10180/tcp unknown unknown
10215/tcp unknown unknown
10243/tcp unknown unknown
10566/tcp unknown unknown
10616/tcp unknown unknown
10617/tcp unknown unknown
10621/tcp unknown unknown
10626/tcp unknown unknown
10628/tcp unknown unknown
10629/tcp unknown unknown
10778/tcp unknown unknown
11110/tcp unknown unknown
11111/tcp unknown vce
11967/tcp unknown sysinfo-sp
12000/tcp unknown cce4x
12174/tcp unknown unknown
12265/tcp unknown unknown
12345/tcp unknown netbus
13456/tcp unknown unknown
13722/tcp unknown netbackup
13782/tcp unknown netbackup
13783/tcp unknown netbackup
14000/tcp unknown scotty-ft
14238/tcp unknown unknown
14441/tcp unknown unknown
14442/tcp unknown unknown
15000/tcp unknown hydap
15002/tcp unknown unknown
15003/tcp unknown unknown
15004/tcp unknown unknown
15660/tcp unknown bex-xr
15742/tcp unknown unknown
16000/tcp unknown fmsas
16001/tcp unknown fmsascon
16012/tcp unknown unknown
16016/tcp unknown unknown
16018/tcp unknown unknown
16080/tcp unknown osxwebadmin
16113/tcp unknown unknown
16992/tcp unknown amt-soap-http
16993/tcp unknown amt-soap-https
17877/tcp unknown unknown
17988/tcp unknown unknown
18040/tcp unknown unknown
18101/tcp unknown unknown
18988/tcp unknown unknown
19101/tcp unknown unknown
19283/tcp unknown keysrv
19315/tcp unknown keyshadow
19350/tcp unknown unknown
19780/tcp unknown unknown
19801/tcp unknown unknown
19842/tcp unknown unknown
20000/tcp unknown dnp
20005/tcp unknown btx
20031/tcp unknown unknown
20221/tcp unknown unknown
20222/tcp unknown ipulse-ics
20828/tcp unknown unknown
21571/tcp unknown unknown
22939/tcp unknown unknown
23502/tcp unknown unknown
24444/tcp unknown unknown
24800/tcp unknown unknown
25734/tcp unknown unknown
25735/tcp unknown unknown
26214/tcp unknown unknown
27000/tcp unknown flexlm0
27352/tcp unknown unknown
27353/tcp unknown unknown
27355/tcp unknown unknown
27356/tcp unknown unknown
27715/tcp unknown unknown
28201/tcp unknown unknown
30000/tcp unknown unknown
30718/tcp unknown unknown
30951/tcp unknown unknown
31038/tcp unknown unknown
31337/tcp unknown Elite
32768/tcp unknown filenet-tms
32769/tcp unknown filenet-rpc
32770/tcp unknown sometimes-rpc3
32771/tcp unknown sometimes-rpc5
32772/tcp unknown sometimes-rpc7
32773/tcp unknown sometimes-rpc9
32774/tcp unknown sometimes-rpc11
32775/tcp unknown sometimes-rpc13
32776/tcp unknown sometimes-rpc15
32777/tcp unknown sometimes-rpc1
32778/tcp unknown sometimes-rpc19
32779/tcp unknown sometimes-rpc21
32780/tcp unknown sometimes-rpc23
32781/tcp unknown unknown
32782/tcp unknown unknown
32783/tcp unknown unknown
32784/tcp unknown unknown
32785/tcp unknown unknown
33354/tcp unknown unknown
33899/tcp unknown unknown
34571/tcp unknown unknown
34572/tcp unknown unknown
34573/tcp unknown unknown
35500/tcp unknown unknown
38292/tcp unknown landesk-cba
40193/tcp unknown unknown
40911/tcp unknown unknown
41511/tcp unknown unknown
42510/tcp unknown caerpc
44176/tcp unknown unknown
44442/tcp unknown coldfusion-auth
44443/tcp unknown coldfusion-auth
44501/tcp unknown unknown
45100/tcp unknown unknown
48080/tcp unknown unknown
49152/tcp unknown unknown
49153/tcp unknown unknown
49154/tcp unknown unknown
49155/tcp unknown unknown
49156/tcp unknown unknown
49157/tcp unknown unknown
49158/tcp unknown unknown
49159/tcp unknown unknown
49160/tcp unknown unknown
49161/tcp unknown unknown
49163/tcp unknown unknown
49165/tcp unknown unknown
49167/tcp unknown unknown
49175/tcp unknown unknown
49176/tcp unknown unknown
49400/tcp unknown compaqdiag
49999/tcp unknown unknown
50000/tcp unknown ibm-db2
50001/tcp unknown unknown
50002/tcp unknown iiimsf
50003/tcp unknown unknown
50006/tcp unknown unknown
50300/tcp unknown unknown
50389/tcp unknown unknown
50500/tcp unknown unknown
50636/tcp unknown unknown
50800/tcp unknown unknown
51103/tcp unknown unknown
51493/tcp unknown unknown
52673/tcp unknown unknown
52822/tcp unknown unknown
52848/tcp unknown unknown
52869/tcp unknown unknown
54045/tcp unknown unknown
54328/tcp unknown unknown
55055/tcp unknown unknown
55056/tcp unknown unknown
55555/tcp unknown unknown
55600/tcp unknown unknown
56737/tcp unknown unknown
56738/tcp unknown unknown
57294/tcp unknown unknown
57797/tcp unknown unknown
58080/tcp unknown unknown
60020/tcp unknown unknown
60443/tcp unknown unknown
61532/tcp unknown unknown
61900/tcp unknown unknown
62078/tcp unknown iphone-sync
63331/tcp unknown unknown
64623/tcp unknown unknown
64680/tcp unknown unknown
65000/tcp unknown unknown
65129/tcp unknown unknown
65389/tcp unknown unknown

message edited by deend


See More: A ton of ports open on my computer

Report •

#1
February 7, 2015 at 17:50:16
What program did you use to detect these 'open Ports'??

Report •

#2
February 7, 2015 at 17:59:47
I used Zenmap. A friend also used some CMDish looking thing when one of my ports broke.

Report •

#3
February 7, 2015 at 18:18:50
"and I'm fairly certain at least half of them are from malware"

Run RogueKiller
http://www.softpedia.com/get/Securi...
http://majorgeeks.com/RogueKiller_d...
http://www.geekstogo.com/forum/file...
http://tigzy.geekstogo.com/roguekil...
http://www.sur-la-toile.com/RogueKi...
User Guide
http://www.adlice.com/softwares/rog...
Official tutorial
http://www.adlice.com/softwares/rog...
How to Temporarily Disable your Anti-virus
http://www.bleepingcomputer.com/for...
http://www.techsupportforum.com/for...
If RogueKiller won't run, open IE & turn off SmartScreen Filter.
http://windows.microsoft.com/en-AU/...
Download & SAVE to your Desktop. If your default download location is not the Desktop, drag it out of it's location onto the Desktop.
Quit all programs that you may have started.
Shutdown your antivirus to avoid any conflicts.
Please disconnect any USB or external drives from the computer before you run this scan!
For Vista or Windows 7/8, right-click and select "Run as Administrator to start"

For Windows XP, double-click to start.
Wait until Prescan has finished ...
Then Click on "Scan" button
Wait until the Status box shows "Scan Finished"
Click on "Delete"
Wait until the Status box shows "Deleting Finished"
Click on "Report" and Copy & Paste the content of the Notepad into your next reply.
The log should be found in RKreport[1].txt on your Desktop.
Exit/Close RogueKiller.
When completed make sure to re-enable your antivirus.


Report •

Related Solutions

#4
February 7, 2015 at 18:34:31
Yea, didn't quite realize how many there were when I wrote that

Report •

#5
February 7, 2015 at 18:43:36
RogueKiller V10.2.0.0 [Jan 19 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/rog...
Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : justin [Administrator]
Mode : Delete -- Date : 02/07/2015 21:43:08

¤¤¤ Processes : 1 ¤¤¤
[Suspicious.Path] RTFTrack.exe(5232) -- C:\Windows\RTFTrack.exe[7] -> Killed [TermProc]

¤¤¤ Registry : 9 ¤¤¤
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} -> Not selected
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Verifies and fixes application compatibility issues (C:\Users\Default\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe) -> Not selected
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\yewimmxqbs64 (C:\Program Files\002\yewimmxqbs64.exe run options=01100010020000000000000000000000 sourceguid=77BBCAD6-8F11-4B2B-9781-44917F1430F9) -> Not selected
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Verifies and fixes application compatibility issues (C:\Users\Default\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe) -> Not selected
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\yewimmxqbs64 (C:\Program Files\002\yewimmxqbs64.exe run options=01100010020000000000000000000000 sourceguid=77BBCAD6-8F11-4B2B-9781-44917F1430F9) -> Not selected
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Not selected
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Not selected
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Not selected
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Not selected

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 1 ¤¤¤
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 d3oxij66pru1i3.cloudfront.net

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] a9720b2ac1b170dd538b209b3b9d76f2
[BSP] 93de86bd95726940a76cf87d7d42bdc3 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_02072015_213916.log - RKreport_DEL_02072015_213944.log - RKreport_DEL_02072015_213953.log - RKreport_DEL_02072015_213955.log
RKreport_DEL_02072015_213955.log - RKreport_DEL_02072015_213956.log - RKreport_SCN_02072015_214300.log


Report •

#6
February 7, 2015 at 18:52:10
Thanks.

Run these in this order.

Step 1: Run AdwCleaner
http://www.softpedia.com/get/Antivi...
http://www.raymond.cc/blog/adwclean...
http://www.bleepingcomputer.com/dow...
Author's site
http://general-changelog-team.fr/en...
Tutorial
http://general-changelog-team.fr/en...
Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click on Clean.
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please Copy & Paste the contents of that logfile with your next answer.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

Run Junkware Removal Tool
http://www.softpedia.com/get/Securi...
http://www.bleepingcomputer.com/dow...
http://thisisudax.blogspot.com.au/2...
Download Junkware Removal Tool onto your Desktop. If your default download location is not the Desktop, drag it out of it's location onto the Desktop.
Warning! Once the scan is complete JRT will shut down your browser with NO warning.
Shut down your protection software now to avoid potential conflicts.
Temporarily disable your antivirus and any antispyware real time protection before performing a scan.
Click this link to see a list of security programs that should be disabled and how to disable them.
http://www.bleepingcomputer.com/for...
http://www.techsupportforum.com/for...
Run the tool by double-clicking it. If you are using Windows Vista or Windows 7/8, right-click JRT and select Run as Administrator.
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved onto your Desktop and will automatically open.
Copy and Paste the contents of the JRT.txt log please.


Report •

#7
February 7, 2015 at 19:12:54
After restarting for adwcleaner Google wouldn't open, unspecified error,(eventually opened) Internet DQ's every 5 minutes or so

# AdwCleaner v4.110 - Logfile created 07/02/2015 at 22:02:03
# Updated 05/02/2015 by Xplode
# Database : 2015-02-05.2 [Server]
# Operating system : Windows 8.1 (x64)
# Username : justin - JUSTINS_LAPTOP
# Running from : C:\Users\justin\Downloads\adwcleaner_4.110.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : yewimmxqbs64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
Folder Deleted : C:\Program Files (x86)\Amazon\ABB
Folder Deleted : C:\Program Files (x86)\Consumer Input
Folder Deleted : C:\Program Files\002
Folder Deleted : C:\Program Files\RrFilter
Folder Deleted : C:\Users\justin\AppData\Local\CrashRpt
Folder Deleted : C:\Users\justin\AppData\Local\Consumer Input
Folder Deleted : C:\Users\justin\AppData\Roaming\Systweak
Folder Deleted : C:\Users\justin\AppData\Roaming\Compatibility Verifier
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\WINDOWS\System32\sasnative64.exe

***** [ Scheduled tasks ] *****

Task Deleted : RegClean Pro

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{62E4A254-50BC-4884-833E-AE3068E649C4}
Key Deleted : HKCU\Software\SearchProtectINT
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\AppDataLow\Software\Rr Savings
Key Deleted : HKLM\SOFTWARE\CompeteInc
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\YourFileDownloader
Key Deleted : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : [x64] HKLM\SOFTWARE\RrSavings
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>;192.168.*.*

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v40.0.2214.111


*************************

AdwCleaner[R0].txt - [3113 bytes] - [07/02/2015 21:59:16]
AdwCleaner[S0].txt - [2843 bytes] - [07/02/2015 22:02:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2902 bytes] ##########


Report •

#8
February 7, 2015 at 19:16:36
"After restarting for adwcleaner Google wouldn't open"
Anything can happen during the cleanup process. We shall dismantle the nasties bit by bit & deal with the side effects if necessary.

Report •

#9
February 7, 2015 at 19:18:08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 8.1 x64
Ran by justin on Sat 02/07/2015 at 22:14:00.75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 02/07/2015 at 22:15:55.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Report •

#10
February 7, 2015 at 19:21:08
Update & Run Malwarebytes' Anti-Malware ( MBAM ) Free Version. Use Quick scan ( now called Threat Scan )
Malwarebytes' Anti-Malware
http://www.softpedia.com/get/Antivi...
http://www.malwarebytes.org/free/
Make sure you uncheck > Enable free trial < at the END of the install.
http://i.imgur.com/tUFCbYz.gif
Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box to Scan for rootkits.
http://i.imgur.com/dZgt1g2.gif
Copy and Paste the contents of the log, in your reply please.

If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
If your MBAM log indicates "No action taken". That's usually a result of NOT clicking the Apply Actions button after the scan. In most cases, a restart will be required.
If you misplace your log, here are ways to find.
http://i.imgur.com/U9IqcVj.gif
http://i.imgur.com/zHMG6J9.gif
http://i.imgur.com/ZZ1trsv.gif
http://i.imgur.com/LL0K3qs.gif
Or,
(Export log to save as txt)
After the restart once you are back at your desktop, open MBAM once more.
Click on the History tab > Application Logs.
Double click on the scan log which shows the Date and time of the scan just performed.
Click 'Export'.
Click 'Text file (*.txt)'
In the Save File dialog box which appears, click on Desktop.
In the File name: box type a name for your scan log.
A message box named 'File Saved' should appear stating "Your file has been successfully exported".
Click Ok
http://i.imgur.com/LNl3Sgw.gif
http://i.imgur.com/xGJgawB.gif


Report •

#11
February 7, 2015 at 19:50:16
Had to restart computer twice, something about a driver error. Internet unavailable, troubleshooter fixed; (Wifi-adapter may be disabled) (Just putting this stuff here so ya know everything thats going on in case its relevant)

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2/7/2015
Scan Time: 10:24:01 PM
Logfile: logg.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.11.20.06
Rootkit Database: v2014.11.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: justin

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 405225
Time Elapsed: 9 min, 39 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.InstallIQ, C:\Users\justin\AppData\Roaming\IDM2\OfferBrokerage_14339.exe, , [7cc37cc1601c6cca0a6d57d54fb1837d],
PUP.Optional.Wajam.A, C:\Users\justin\AppData\Roaming\IDM2\wajam_download.exe, , [b48b112c0775a294988e2e190000be42],

Physical Sectors: 0
(No malicious items detected)


(end)


Report •

#12
February 7, 2015 at 19:57:08
"(Just putting this stuff here so ya know everything thats going on in case its relevant)"
Thanks, time will tell.

"Files: 2
PUP.Optional.InstallIQ, C:\Users\justin\AppData\Roaming\IDM2\OfferBrokerage_14339.exe, , [7cc37cc1601c6cca0a6d57d54fb1837d],
PUP.Optional.Wajam.A, C:\Users\justin\AppData\Roaming\IDM2\wajam_download.exe, , [b48b112c0775a294988e2e190000be42],"
Did you quarantine these?


Report •

#13
February 7, 2015 at 20:08:49
yes, I quarantined them

Report •

#14
February 7, 2015 at 20:16:08
Please download Farbar Recovery Scan Tool and save it onto your Desktop. If your default download location is not the Desktop, drag it out of it's location onto the Desktop.
http://www.bleepingcomputer.com/dow...
If we have to run Farbar more than once, refer this SS.
http://i.imgur.com/yUxNw0j.gif
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) on the Desktop.
The first time the tool is run, it makes also another log (Addition.txt).
The logs are large, upload them using this, or upload to a site of your choosing. No account needed. Give us the links please.
http://www.zippyshare.com/
Instructions on how to use ZippyShare.
http://i.imgur.com/naG6t2T.gif
http://i.imgur.com/Vi9ZdIh.gif
http://i.imgur.com/1IZu5kP.gif

Report •

#15
February 7, 2015 at 21:04:58
Beside the possible malware/virus infection;

I presume you tried the scan the computer where you run the program from?!
It doesn't work from on a windows machine as it warns you in the scan report.
The "unknown" means it cannot determine the port state. It just runs a number of standard port scan from a script and that is wat you see in the report.

Run the application from another computer or a VM. It will display the ports that are "Open".

Success with the malware fix.


Report •

#16
February 7, 2015 at 23:02:07
It is normal for many ports to be open or "listening" by default. Most of the ports you have listed are normal, though some could be related to malware installs. The solution is to download something like Comodo's free standalone firewall (they have other combo software as well, I prefer just the firewall) or Zonelabs firewall, and "stealth" your ports. If a port needs opened it will give you the opportunity to allow or deny it. Very happy with Comodo. Stealth mode is not the default set up, but is easily done by clicking the "Stealth my computer" thingy in tasks under firewall settings. You can then go test the ports at GRC research, using "Shields up" test. Also VERY important, when testing ports and firewalls if you are using a router, it will be testing your routers security as well. So if the WAN PING is allowed in the router settings and you get a Failed status on the stealth test, it is not because said newly installed firewall did not stealth your ports on your computer, it will be a setting in router. Links below for comodo and grc "shields up test"

https://www.comodo.com/home/interne...

https://www.grc.com/x/ne.dll?bh0bkyd2

To err is human but to really screw things up, you need a computer!

message edited by HopperRox


Report •

#17
February 8, 2015 at 17:20:26
Going to wipe my computer and reinstall it

Report •

#18
February 8, 2015 at 17:30:20
Make sure when you reinstall, you delete ALL partitions & format.
W7 - Click on > Drive options (advanced) Then highlight each partition & hit > Delete.
http://www.blackviper.com/os-instal...
http://www.blackviper.com/os-instal...

Here are some examples of why you delete all partitions.
http://forums.spybot.info/showthrea...
http://forums.whatthetech.com/index...
http://blog.eset.com/2011/10/18/tdl...

Don't make the same mistakes.

As you can see from your logs, you had a lot of stuff installed, that you do not know, how it got installed.
A lot of programs, now give you the choice to install toolbars & other during the install. Either uncheck these items during install, or use Custom install. No more click, click during an install, you have to read after each click.

WARNING: CNET Download.com downloads now come bundled with opt-out crapware and toolbars ( Same applies to Softonic & Brothersoft )
http://www.groovypost.com/unplugged...

I use Softpedia & FreewareFiles.com, down the bottom of the page, they make you aware what Ad-supported programs the author of the program has included.
http://www.freewarefiles.com/new_fi...
Sample pages
http://www.softpedia.com/get/CD-DVD...
First and foremost, extra attention needs to be paid during installation as ImgBurn offers to create desktop shortcuts to third-party apps, as well as install a browser toolbar onto the host computer, which are not required to ensure the smooth running of the app.
SS of above.
http://i.imgur.com/jgGYNsP.gif
This is what ImgBurn tries to install.
http://i.imgur.com/ms4DzE9.gif
http://i.imgur.com/vVkd39a.gif
http://i.imgur.com/rqFVaHs.gif
http://i.imgur.com/sm1T7h6.gif
http://i.imgur.com/vhkKLYo.gif

Use Unchecky to help prevent these third party installs. Nothing is perfect, the badies are always ahead of the goodies, so be vigilant.
http://www.softpedia.com/get/System...
http://unchecky.com/
A reliable application that aims to protect your computer against third-party components often offered during software installations.


message edited by Johnw


Report •

#19
February 8, 2015 at 18:46:52
Indeed wiping solves all.

To err is human but to really screw things up, you need a computer!


Report •

Ask Question