also cmd 'netstat -n' is similar to 'arp -r' and also gives ports... hope all this helps not only you but others that are having problems with people using packet and ping floods exploits.

Dos

I agree Tiny Personal FW
old version. I got it on disc if its not around.
I like it because it shows every connection request weather its tcpip
netbios tcmp udp or other that it doesnt understand and gives the ip
of the request.
most FW I tried did not show all the others just the tcp ones.
its a bit of a pita to create a ruleset for every connection but after you get it set up it just ignores flood requests .
Highly recommended.
NIDS are much more work and alot of maintenance I wouldn't go that route unless it was more than a household.

How do you get rid of these pesky critters? I found a lot after I checked netstat -n

first verify that it is an unknown ip, if it is on port 80, it is normally a webpage you have open, depending on the port and ip, most of the ip's listed will be for a program that uses internet access, like yahoo, or web browser and false alarms etc...but If it looks suspicious first check the ip with a whois look up, you can do that from a webpage like WHOIS at DomainTools.com - Domain Availability and Registration Search then like everybody has suggested use a personal software firewall like tiny personal firewall, zone alarm, eset nod32, outpost, kaspersky, mcafee, norton, etc.. the list goes on.. then put the ip in the banned ip list. on those firewalls. Best bet would be to run super antispyware remover SUPERAntiSpyware.com | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware! to get rid of any possible spyware; trojans, rootkits, etc that an attacker can connect to your computer with..<- it is free; then run a antivirus check. avast is good, but most firewall software comes with antivirus included.. you dont want to install multiple antivirus and/or multiple firewalls they can conflict one another.