Many open ports, very slow machine

Hopefully this is in the correct forum... Recently, my machine has slowed significantly. After googling some, I found out that I seem to have a large number of ports open and there are IPs that I don't recognize that are signed on to my network. I've run everything on the malware page except the 2 you can run with vista. I've attached logs, as well as a screen shot of arp -a and netstat -an. Thanks

 

And, I have 14.5K "hosts", some so which are associated with an IP I dont' recognize

 

Is this the same PC that has the "Paragon, boots only with the USB key installed"?

I'd like to see a TaskManager screenshot to check your running processes against these ports, set it to show processes from all users, please.

Malwarebytes ought to be run on full not quick scan mode if you suspect something malicious.

Do you have any software like SpywareBlaster, Spybot S&D or anything else that would write to your Hosts file? Are the entries in the Hosts file all set to local 127.0.0.1 (ie. blocked)?

 

Network is encrypted

 

Yes, one in the same and another symptom I forgot to mention was my screen saver all of a sudden stopped working (it comes on, but as soon as I move my mouse, I get an error msg that ribbon screen saver has stopped working).
Screenshot attached
I did run a previous full malwarebytes scan 2 days ago and it found nothing
I have spybot, but as instructed her, so not have teatimer on. And, yes, it appears that most hosts were put on by spybot and are set to 127.0.0.1.

198.168.1.xxx is my IP. What I don't know is there supposed to be .101, .100 and .255. The IPs I don't recognize are 224.0.0.242, 224.0.0.22, 239.255.255.250 and I believe the last one is standard (for what I don't remember now) 255.255.255.255.

 

If MBAM gave you a clean bill of health, you're probably ok

I'm not impressed with the amount of processes running on your PC, I'd look stopping some of those from starting with Windows, if you need any of them later, they can be started manually.

As it's a restricted address, it should be safe.


239.255.255.250 is related to UPnP, SSDP so probably Windows Media Player looking around your PC for a network-attached media streamer or similar. I'd turn off UPnP in Windows Services (and disable all of Media Centre), if you need it for something, you'd soon see a complaint

Overall, your PC needs a few tweaks to slim down the running processes is all I see.

How much free space do you have on your hard drive?

Re the screensaver, that may just be a bug, could be a driver issues, hard to say without scanning through System logs looking for clues.



EDIT: I guess 101 is your router/switch, 107 is this PC and 255 is just an 'end of range' marker for networking. Did I miss anything else?

 

I have 340 GB, which is 76% free.

 

It appears that the issue may be Bitdefender Internet security. Seems there is a known bug (known from 2009, btw) that vsserv takes up massive resources. They have yet to correct the issue. Right now it's using 1.5million bytes of virtual memory and about 30% of cpu.

Thanks for all the help.

 

Ok, that would explain the slowness you reported, I couldn't see any reason for it, the machine looks ok from the details posted here.