ping.exe

[Ivan2563]

As it was an incoming it may well have been a random ping on the offchance of finding an usecured computer

Could you monitor it for a bit and let me know if it happens again

Yep, definitely more incoming and outgoing. Protection log included...

[essexboy]

OK lets have another look with OTL - I wish MBAM would say where it is generating from

Download OTL  to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Select All Users
  
• Under the Custom Scan box paste this in

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
C:\Windows\assembly\tmp\U\*.* /s
CREATERESTOREPOINT

• Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    
  • Post both logs

[Ivan2563]

OTL log and Extras attached.

[essexboy]

OK lets close the open ports to see if that resolves it - Are you learning Chinese ?

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  

  :Reg
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  "6546:TCP"=-
  "6545:TCP"=-
  "5565:TCP"=-
  "1021:TCP"=-
  "10021:TCP"=-
  "10021:UDP"=-
  
  :Files
  ipconfig /flushdns /c
  
  :Commands
  [purity]
  [resethosts]
  [emptytemp]
  [CREATERESTOREPOINT]
  [Reboot]
• Then click the Run Fix button at the top
  
• Let the program run unhindered, reboot the PC when it is done
• Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

[Ivan2563]

This may sound silly, but I just realized  utorrent was running in the background and it was hidden in my tray while seeding some stuff. Could that be the cause of the incoming/outgoing traffic?

I closed it and no warnings have popped up since.

OTL has been non-responsive for about 10 minutes and I'll wait a bit longer before doing anything.

[essexboy]

Yes that would explain the variety of addressses


Stop OTL and reboot it is probably stuck on reseting hosts (it does that sometimes)

[Hiro9921]

Not to bother but I've also had this problem lately.  But I had got infected with something called AV Security 2012 before it started.  Do I have to make a separate topic aside from this one?

[Asyn]

Do I have to make a separate topic aside from this one?

Yes, please do so.