Greetings, Recently my firewall (agnitum) detected nuke attack, after I got a lot of icmp and netbios traffic. ThenI pull the plug, checked pc with the latest antivir, anti-trojan, find and destroy. Nothing.. So I applied gibson applet to block access to the potentially dangerous raw sockets. After I went back online. Netbios was blocked, ICMP not. I restart my pc again, this time waiting for firewall to kick in before switching cable modem on. This time both icmp and outbond netbios traffic was blocked by firewall. This is a connections that gets blocked everytime I go online: Application n/a remote host all-routers.mcast.net type 10/0 outbond Blocked netbios traffic ip x.x.x.225 Look║s like it║s belong to my internet provider network)) Netbios -dgm Outbond UDP Netbios - NS Outbond UDP And then I get a lot of icmp echo type traffic from the provider network . Plus there is a netbous connection listening and firewall don║t block it at all. On top of all I canˇt use IE to access internet, even ping donˇt work, Firewall is blocking legit traffic somehow. I did try to use internet without internet for a few sec, forked fine. However afterwards I saw the was three more ports open in my system. The ports that are open are: 135, 445, 1025, 3001, 3002, 3003 and few more ports. Any ideas why itˇs happening? Your, OsirisEU.