Slow internet after formatting

I've juz did an reformat for my PC and reinstalled everything.
Currently using Windows XP SP1

before reformat, everything was smooth and alright
but after the format, my internet become slow and lag.
sometimes it do no even load or display the "Page not found" error..which i have to f5 few times to get it loading...

i did a netstat in cmd and found:


Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.


C:\Documents and Settings\Dyles>netstat

Active Connections

Proto Local Address Foreign Address State
TCP pc1:auth campusnacks.propagation.net:1287 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3119 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3152 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3301 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3539 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3798 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:3990 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:4077 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:4514 CLOSE_WAIT
TCP pc1:auth campusnacks.propagation.net:4759 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41621 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41623 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41628 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41640 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41641 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41649 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41651 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41652 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41654 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41655 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41662 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41663 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41664 CLOSE_WAIT
TCP pc1:auth gunner.singnet.com.sg:41670 CLOSE_WAIT
TCP pc1:auth lightning.singnet.com.sg:35891 CLOSE_WAIT
TCP pc1:epmap bb220-255-139-124.singnet.com.sg:4521 ESTABLISH
ED
TCP pc1:1086 campusnacks.propagation.net:8067 ESTABLISHED
TCP pc1:1626 lightning1.singnet.com.sg:6668 ESTABLISHED
TCP pc1:2036 baym-cs332.msgr.hotmail.com:1863 ESTABLISHED
TCP pc1:2242 rad.msn.com:http ESTABLISHED
TCP pc1:2453 202.172.233.93:http TIME_WAIT
TCP pc1:2457 202.172.233.93:http TIME_WAIT
TCP pc1:2461 202.172.233.96:http TIME_WAIT
TCP pc1:2465 202.172.233.93:http TIME_WAIT
TCP pc1:2590 202.172.233.93:http TIME_WAIT
TCP pc1:2707 202.172.233.93:http TIME_WAIT
TCP pc1:2708 202.172.233.93:http TIME_WAIT
TCP pc1:3986 gfx2.hotmail.com:http ESTABLISHED
TCP pc1:3987 gfx2.hotmail.com:http SYN_SENT
TCP pc1:3988 rad.msn.com:http ESTABLISHED
TCP pc1:3992 h.msn.com:http ESTABLISHED
TCP pc1:4025 202.79.124.37:http ESTABLISHED
TCP pc1:4125 202.79.124.37:http ESTABLISHED
TCP pc1:4153 10.0.37.31:epmap SYN_SENT
TCP pc1:4154 10.0.166.15:epmap SYN_SENT
TCP pc1:4155 10.0.196.238:epmap SYN_SENT
TCP pc1:4156 10.0.136.177:epmap SYN_SENT
TCP pc1:4157 10.0.106.83:epmap SYN_SENT
TCP pc1:4158 10.0.67.254:epmap SYN_SENT
TCP pc1:4159 10.0.7.193:epmap SYN_SENT
TCP pc1:4160 10.0.233.98:epmap SYN_SENT
TCP pc1:4161 10.0.164.46:epmap SYN_SENT
TCP pc1:4162 10.0.134.208:epmap SYN_SENT
TCP pc1:4163 10.0.194.13:epmap SYN_SENT
TCP pc1:4164 10.0.65.29:epmap SYN_SENT
TCP pc1:4165 10.0.35.62:epmap SYN_SENT
TCP pc1:4166 10.0.192.44:epmap SYN_SENT
TCP pc1:4167 10.0.5.224:epmap SYN_SENT
TCP pc1:4168 10.0.231.129:epmap SYN_SENT
TCP pc1:4169 10.0.132.239:epmap SYN_SENT
TCP pc1:4170 10.0.162.77:epmap SYN_SENT
TCP pc1:4171 10.0.3.255:epmap SYN_SENT
TCP pc1:4172 10.0.102.17:epmap SYN_SENT
TCP pc1:4173 10.0.63.60:epmap SYN_SENT
TCP pc1:4174 10.0.160.108:epmap SYN_SENT
TCP pc1:4175 10.0.190.74:epmap SYN_SENT
TCP pc1:4176 10.0.229.31:epmap SYN_SENT
TCP pc1:4177 10.0.33.93:epmap SYN_SENT
TCP pc1:4178 10.0.31.124:epmap SYN_SENT
TCP pc1:4179 10.0.130.14:epmap SYN_SENT
TCP pc1:4180 10.0.1.30:epmap SYN_SENT
TCP pc1:4181 10.0.100.47:epmap SYN_SENT
TCP pc1:4182 10.0.227.62:epmap SYN_SENT
TCP pc1:4183 10.0.59.121:epmap SYN_SENT
TCP pc1:4184 10.0.188.105:epmap SYN_SENT
TCP pc1:4185 10.0.158.139:epmap SYN_SENT
TCP pc1:4186 10.0.128.45:epmap SYN_SENT
TCP pc1:4187 10.0.98.78:epmap SYN_SENT
TCP pc1:4188 10.0.255.60:epmap SYN_SENT
TCP pc1:4189 10.0.186.136:epmap SYN_SENT
TCP pc1:4190 10.0.29.155:epmap SYN_SENT
TCP pc1:4191 10.0.225.93:epmap SYN_SENT
TCP pc1:4192 10.0.156.170:epmap SYN_SENT
TCP pc1:4193 10.0.126.76:epmap SYN_SENT
TCP pc1:4194 10.0.57.152:epmap SYN_SENT
TCP pc1:4195 10.0.96.109:epmap SYN_SENT
TCP pc1:4196 10.0.27.186:epmap SYN_SENT
TCP pc1:4197 10.0.253.91:epmap SYN_SENT
TCP pc1:4198 10.0.223.124:epmap SYN_SENT
TCP pc1:4199 10.0.184.167:epmap SYN_SENT
TCP pc1:4200 10.0.55.183:epmap SYN_SENT
TCP pc1:4201 10.0.94.140:epmap SYN_SENT
TCP pc1:4202 10.0.124.106:epmap SYN_SENT
TCP pc1:4203 10.0.25.217:epmap SYN_SENT
TCP pc1:4204 10.0.251.121:epmap SYN_SENT
TCP pc1:4205 10.0.154.201:epmap SYN_SENT
TCP pc1:4206 10.0.249.152:epmap SYN_SENT
TCP pc1:4207 10.0.23.248:epmap SYN_SENT
TCP pc1:4208 10.0.122.137:epmap SYN_SENT
TCP pc1:4209 10.0.219.186:epmap SYN_SENT
TCP pc1:4210 10.0.221.155:epmap SYN_SENT
TCP pc1:4211 10.0.182.70:epmap SYN_SENT
TCP pc1:4212 10.0.53.86:epmap SYN_SENT
TCP pc1:4213 10.0.152.232:epmap SYN_SENT
TCP pc1:4214 10.0.180.101:epmap SYN_SENT
TCP pc1:4215 10.0.90.202:epmap SYN_SENT
TCP pc1:4216 10.0.92.171:epmap SYN_SENT
TCP pc1:4217 10.0.51.117:epmap SYN_SENT
TCP pc1:4218 10.0.21.23:epmap SYN_SENT
TCP pc1:4219 10.0.247.183:epmap SYN_SENT
TCP pc1:4220 10.0.150.7:epmap SYN_SENT
TCP pc1:4221 10.0.217.217:epmap SYN_SENT
TCP pc1:4222 10.0.120.168:epmap SYN_SENT
TCP pc1:4223 10.0.178.132:epmap SYN_SENT
TCP pc1:4224 10.0.118.199:epmap SYN_SENT
TCP pc1:4225 10.0.148.38:epmap SYN_SENT
TCP pc1:4226 10.0.16.53:epmap SYN_SENT
TCP pc1:4227 10.0.2.239:epmap SYN_SENT



DO this have anything to do with the lag? is it some spyware/trojans?
I've scanned with Ad-aware, Spybot and trendmico housecall online scan but yet to find any errors..

Can you guys pls help me in solving this laging issue?
Thanks!

 

Why did you reformat?

Do you have all the hot fixes / security patches loaded?

Were you looking for something specific when you ran the netstat? The CLOSE_WAIT items (TCP; remote endpoint has shut down; the kernel is waiting for the application to close the socket) might have vanished in a few more seconds and another netstat run. The SYN_SENT (TCP; session has been requested by us; waiting for reply from remote endpoint) means you are still waiting on responses from a bunch of places but all of them seem to be on your campus/business/private network.

Basically, a single netstat dump and especially when you don't know what you are trying to find is pretty well useless.

It might be helpful if you downloaded the latest version of Hijackthis (1.98.2) and placed it in a folder other than a temp or the desktop, ran a scan and generated a log file then posted that here. That information along with answers to the questions above could offer some ideas about why your browsing is so slow.

 

Thanks for the reply.

I reformatted due to some windows corruption happened when i tried to upgrade to SP1. I don't noe why it failed to load and keep hanging during the update. However, i've successfully updated SP1 now.

Yea i had patch all the security patches in microsoft websites.

well, i posted those netstat log cause normally there shdn't be so mani unknown connection which i didn't start. at that time of taking the netstat log, i'm only running irc and some browser. I didn't noe why there are so many connecctions shown. This is strange as it wasn;t the case before the format..I didn't noe what to do hence i left it with the log =(

I've downloaded the hijack!this and scanned..

Log is provided below:

Logfile of HijackThis v1.98.2
Scan saved at 11:00:00 AM, on 10/19/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe
D:\PROGRA~1\PESTPA~1\PPControl.exe
D:\PROGRA~1\PESTPA~1\PPMemCheck.exe
D:\PROGRA~1\PESTPA~1\CookiePatrol.exe
D:\Program Files\Winamp\winampa.exe
C:\WINDOWS\System32\RUNDLL32.EXE
D:\Program Files\Mirc\mirc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\NMSSvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\unzipped\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.twins-alliance.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.singnet.com.sg:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 10.0.0.138;<local>
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PestPatrol Control Center] D:\PROGRA~1\PESTPA~1\PPControl.exe
O4 - HKLM\..\Run: [PPMemCheck] D:\PROGRA~1\PESTPA~1\PPMemCheck.exe
O4 - HKLM\..\Run: [CookiePatrol] D:\PROGRA~1\PESTPA~1\CookiePatrol.exe
O4 - HKLM\..\Run: [WinampAgent] D:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\RunServices: [Microsoft Server Applacations] visual.exe
O4 - HKLM\..\RunServices: [Microsoft Update Machine] upd.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - Startup: Mirc.lnk = D:\Program Files\Mirc\mirc.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2B866353-E598-4403-8E4D-B871AB30DC55} (Speed Class) - http://www.singnet.com.sg/technical/helptools/media/SpeedCtrl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097989104765
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab


Can any1 advise me on this matter?

P.S.: I've delete a registry autostart process "visual.exe" which i found out to be the cause of the lagness. Its supposed to be some microsoft process but i tried to find in microsoft site and it wasn't (Its not microsoft visual but some unknown proram). Just trying to ensure that i'm totally safe now =)

 

Why no Anti virus program ?

I suggest two free onlines, then install. update and a full system scan with an av program.

get preferably two free onlines

BitDefender AntiVirus Free Scan, check all box's except [ ]auto clean !!,
then have it delete the file if it cannot clean/repair/cure it,
turn off any PopupBlockers before accessing the site:
http://www.bitdefender.com/scan/licence.php
Panda ActiveScan-Free online scanner,
http://www.pandasoftware.com/activescan/com/activescan_principal.htm

If there are any problems Copy there report's back here please.

Install atleast a free anti virus and firewall program
Dont make the common mistake of installing more than one anti virus or firewall
Computer Associates offers a free one year subscription for all Microsoft users for EZTrust Armor, it's an antivirus and firewall utility. eTrust EZ Armor Security Suite http://my-etrust.com/microsoft/index.cfm?
AVG Anti-Virus-Free: http://www.grisoft.com/us/us_dwnl_free.php
AntiVir Personal Edition: http://www.free-av.com/
avast! 4 Home - Free antivirus software :
http://www.asw.cz/eng/free_virus_protectio.html

ZoneAlarm
They also provide a free version http://www.zonelabs.com/
Kerio Personal Firewall
For home users, Kerio Personal Firewall 4 is available in two flavors -
the full edition and the limited free edition.
http://www.kerio.com/us/kpf_download.html
Sygate free for personal/home http://soho.sygate.com/products/spf_standard.htm

After that post a new log