Posted 05 February 2012 - 01:59 AM
While you bring up some interesting points, you have to realize that 0.0.0.0 is a pointer to all IPs on the local machine (loopback) and that 127.0.0.1 is THE loopback (your own machine) address. So in essence, your machine is listening to traffic from itself (which is perfectly normal since that's how hardware/software communicates with the various buses on the motherboard).
A computer cannot access the internet without a network card (WiFi or wired), ever, period. A computer does need to be able to speak to itself, which is why by default, every computer has an IP address, regardless of whether they have an active connection or not. So I'm not sure what your netstat comment was about, because what you mentioned is perfectly normal for a Windows machine and not necessarily the sign of an infection. If you want to prevent unauthorized access, you should read up on how networks actually function (the difference between local and remote addresses, and the importance of ports specifically) and get a decent firewall you can tweak to your hearts desire.
While Mebromi is real and does infect BIOS (Award BIOSes specifically), it isn't necessarily to blame for every apparent unexplained behavior. I fail to see the evidence to back up any of the things you've said.
I cemna prestar aen. Han mathon ne nen. Han mathon ne chae. A han noston ne 'wilith. - Galadriel
'The avatar is changed; I can feel it in the water, I can feel it in the earth, I can smell it in the air.' Phear teh ceiling cat, for he is roofkittehd! - Basement CatI'm a Bleeping Folder, are you?
- Join BC in the fight against diseases - Click here
Become a BleepingComputer fan: Facebook