Strange Network and Virus Issues

[Neodude1123201]

Ok,First of all when i surf the internet ,occasionally i'll get a page resdirect to http://truconv.com/?a=157&s=3 and fire fox will give me this warning;

Reported Attack Site!


This web site at truconv.com has been reported as an attack site and has been blocked based on your security preferences.




Attack sites try to install programs that steal private information, use your computer to attack others, or damage your system.

Some attack sites intentionally distribute harmful software, but many are compromised without the knowledge or permission of their owners.

And then when i was in my Routers logs i noticed:

Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3,45618 Destination:220.253.185.71,1025 - [DOS]
Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3,44232 Destination:220.253.185.71,58 - [DOS]
Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3,44407 Destination:220.253.185.71,1027 - [DOS]
Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3,43104 Destination:220.253.185.71,8000 - [DOS]
Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:31 - TCP Packet - Source:85.190.0.3,51500 Destination:220.253.185.71,1025 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3,44232 Destination:220.253.185.71,58 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3,39518 Destination:220.253.185.71,2280 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3,44407 Destination:220.253.185.71,1027 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3,56700 Destination:220.253.185.71,559 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3,57914 Destination:220.253.185.71,559 - [DOS]
Sun, 2009-05-03 09:09:34 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3,56072 Destination:220.253.185.71,1202 - [DOS]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3,45047 Destination:220.253.185.71,80 - [DOS]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3,39528 Destination:220.253.185.71,8090 - [DOS]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3,36275 Destination:220.253.185.71,63000 - [DOS]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3 Destination:220.253.185.71 - [PORT SCAN]
Sun, 2009-05-03 09:09:40 - TCP Packet - Source:85.190.0.3,43147 Destination:220.253.185.71,1098 - [DOS]

And Lastly,I keep on getting Trojan Horse BHO.IIJ and Trojan BHO.IIK?? I Have AVG With everything on and working,what the hell is going on? Im going to do some scanning using some other tools and report what happends.

 

[setishock]

BHO means Browser Helper Object. That is an add on to your browser that is making the redirects. In IE go look at the objects and files, For FF check the skins and add ons you're using.
You should also close all ports on your router and go completely dark. My systems will not respond to a port scan. Nada, Zippo, totally unresponsive. As far as a ping, it dies in the two routers. You see all the ports standing open? You need to close all of them off.

 

[Neodude1123201]

Well the things is i have the routers firewall up and running?

Also im getting redirected here aswell:

http://www.abcjmp.com/jump1/?affiliate=maxxx&subid=3154100004&terms=abcjump&sid=Z347044396%40%40QMfJDMwIDO081MxUTMfRzMfhTMx8VN1gjMwcTM0ITM&a=znkkk&mr=1&rc=0

I Went through my addons on IE and FF and still have the same issue,i havnt installed any addons for both since my last re-install which was 2 months ago and i have only had this problem for about 1 week.

 

[Celegorm]

Run NOD32's online scanner. Also get Malwarebytes and run that.

THen I would try running combofix and see where all that gets you.