McAfee firewall blocking UDP/TCP ports

Hi Experts,
   I'm having an problem on one of my office computers. I have McAfee Small Business Edition installed on 8 computers there and following is what I've been experience on one of them. The McAfee firewall that comes with this small business edition is enable and on some days I can't access the internet, I have to disable the firewall and then I can access the net. I logged in to the security center here https://www.mcafeeasap.com/ , click on Reports and on Inbound events blocked by firewall I see the that computer has 100 events as follow:
Attack Type                     Event Count
UDPNOTINUSE                      89
BLOCKEDUDPPORT              8
BLOCKEDTCPPORT              3

I have called McAfee tech support but to be honest it's terrible. They had me uninstalled and reinstalled the firewall and with no solution.

To get around this I have to disable the McAfee firewall and enable the windows firewall and everything works fine. So, I know for a fact that it has to do with the McAfee firewall. Any help will be greatly appriciated.
frankbustosAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jeff PerkinsOwnerCommented:
Have you scanned this particular machine for malware?  
Perhaps there is something spyware related on this machine which is triggering the firewall and causing this.
If you would like some tips on malware scanning, just holler, but that would be the first place I would look.
0
frankbustosAuthor Commented:
Hi riteheer,

  I did think of that, but didn't take any action towards it. I would like some tips on malware scanning please. I have XOFTSPY which seems to works pretty good any other you recommend would be great.
0
Jeff PerkinsOwnerCommented:
Not familiar enough with xoftspy to recommend one way or the other.  
My usual attack method is:
1. Adaware SE   get it here: www.lavasoft.com
2. Spybot S&D  get it here:
3. Hijackthis  get it here: http://hijackthis.de   (direct download link it top right corner)   You can also evaluate the log on that same page, if you need help with that, just save the log and there is a button at the bottom of that window 'analyze', after you run the analysis, copy the link back here and I'll have a look.
4. online scan:  http://security.symantec.com  

If you need help with any of this, just holler... going to bed now, but will check it tomorrow....
Gnite and gluck
Jappo
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
frankbustosAuthor Commented:
Hi riteheer,

   It appear to be malware/spyware. It was very stranged it was causing network resources to be unvailable via map drives but yet you can access them through the unc path \\server\......It all appears to be normal for now.
0
Jeff PerkinsOwnerCommented:
  If it persists or comes back, let me know, some of them can be a real pain.  There is a smitfraud fix which is used when you get annoying little popups in the systray near the clock.
   If I can be of any further help, just holler.
Thank you for the points and even more for the grade!
Jappo
Those who've flown with me, enjoyed it... Those who've flown against me, learned what it means to sweat.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows XP

From novice to tech pro — start learning today.