The internet has been running extremely sluggishly lately. I have tried soft and hard resets of the router, rebooting my computer, deleting the temporary internet cache, defragging, disk cleanup, etc. Nothing resolves it. One thing I must report, which may be contributing to some of the strange findings, is two weeks ago I downloaded and installed TOR to randomize my IP address when connecting to the internet through firefox.
I also have a problem where my 'public' folder, which of course includes all personal folders; the 'users' directory; and media streaming through Windows 7 turned 'enabled' or were set to 'shared' on their own when I specifically disabled them after reformatting last week.
Also, I was wondering if there were ways to view a log (if one exists) of people or systems who have, at any point in time, accessed my computer through the home network, accessed your shared folders, or streamed media or library content from my computer. I know there's the Computer Management information from Administrative Tools (abstracted for you below), but that only shows current connections.
Please interpret the following and give me your thoughts: ipconfig results; netstat results; netstat -n results; computer management, shares information.
Microsoft Windows [Version 6.1.7600]
Copyright © 2009 Microsoft Corporation. All rights reserved.
C:\Users\[USERNAME]>ipconfig
Windows IP Configuration
Wireless LAN adapter Wireless Network Connection:
Connection-specific DNS Suffix . : domain.actdsltmp
Link-local IPv6 Address . . . . . : fe80::359a:dcf0:31d4:d7f8%13
IPv4 Address. . . . . . . . . . . : 192.168.0.3
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
Ethernet adapter Local Area Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : domain.actdsltmp
Tunnel adapter Local Area Connection* 11:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.domain.actdsltmp:
Connection-specific DNS Suffix . : domain.actdsltmp
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.3%15
Default Gateway . . . . . . . . . :
Tunnel adapter Teredo Tunneling Pseudo-Interface:
Connection-specific DNS Suffix . :
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:288b:1299:51e1:7d5d
Link-local IPv6 Address . . . . . : fe80::288b:1299:51e1:7d5d%16
Default Gateway . . . . . . . . . : ::
C:\Users\Red Letter Year>netstat
Active Connections
Proto Local Address Foreign Address State
TCP 127.0.0.1:9051 RedLetterYear:52838 ESTABLISHED
TCP 127.0.0.1:51367 RedLetterYear:51368 ESTABLISHED
TCP 127.0.0.1:51368 RedLetterYear:51367 ESTABLISHED
TCP 127.0.0.1:52833 RedLetterYear:52834 ESTABLISHED
TCP 127.0.0.1:52834 RedLetterYear:52833 ESTABLISHED
TCP 127.0.0.1:52838 RedLetterYear:9051 ESTABLISHED
TCP 127.0.0.1:62103 RedLetterYear:62104 ESTABLISHED
TCP 127.0.0.1:62104 RedLetterYear:62103 ESTABLISHED
TCP 127.0.0.1:62220 RedLetterYear:62221 ESTABLISHED
TCP 127.0.0.1:62221 RedLetterYear:62220 ESTABLISHED
TCP 192.168.0.3:2869 192.168.0.1:1520 TIME_WAIT
TCP 192.168.0.3:2869 192.168.0.1:1521 TIME_WAIT
TCP 192.168.0.3:2869 192.168.0.1:1522 TIME_WAIT
TCP 192.168.0.3:55035 iy-in-f104:https CLOSE_WAIT
TCP 192.168.0.3:55090 iy-in-f104:https CLOSE_WAIT
TCP 192.168.0.3:62059 74.201.34.2:3158 ESTABLISHED
TCP 192.168.0.3:62210 vip1:http CLOSE_WAIT
TCP 192.168.0.3:62222 download:http CLOSE_WAIT
TCP 192.168.0.3:62349 images:http CLOSE_WAIT
TCP 192.168.0.3:62369 cs214p3:5050 ESTABLISHED
TCP 192.168.0.3:62424 93.93.53.194:http TIME_WAIT
TCP 192.168.0.3:62425 iy-in-f139:http ESTABLISHED
TCP 192.168.0.3:62431 173:8124 SYN_SENT
C:\Users\Red Letter Year>netstat -n
Active Connections
Proto Local Address Foreign Address State
TCP 127.0.0.1:9051 127.0.0.1:52838 ESTABLISHED
TCP 127.0.0.1:51367 127.0.0.1:51368 ESTABLISHED
TCP 127.0.0.1:51368 127.0.0.1:51367 ESTABLISHED
TCP 127.0.0.1:52833 127.0.0.1:52834 ESTABLISHED
TCP 127.0.0.1:52834 127.0.0.1:52833 ESTABLISHED
TCP 127.0.0.1:52838 127.0.0.1:9051 ESTABLISHED
TCP 127.0.0.1:62103 127.0.0.1:62104 ESTABLISHED
TCP 127.0.0.1:62104 127.0.0.1:62103 ESTABLISHED
TCP 127.0.0.1:62220 127.0.0.1:62221 ESTABLISHED
TCP 127.0.0.1:62221 127.0.0.1:62220 ESTABLISHED
TCP 192.168.0.3:2869 192.168.0.1:1523 TIME_WAIT
TCP 192.168.0.3:2869 192.168.0.1:1524 TIME_WAIT
TCP 192.168.0.3:2869 192.168.0.1:1525 TIME_WAIT
TCP 192.168.0.3:55035 209.85.225.104:443 CLOSE_WAIT
TCP 192.168.0.3:55090 209.85.225.104:443 CLOSE_WAIT
TCP 192.168.0.3:62059 74.201.34.2:3158 ESTABLISHED
TCP 192.168.0.3:62210 205.234.175.175:80 CLOSE_WAIT
TCP 192.168.0.3:62222 91.199.212.171:80 CLOSE_WAIT
TCP 192.168.0.3:62369 98.136.48.124:5050 ESTABLISHED
TCP 192.168.0.3:62425 209.85.225.139:80 ESTABLISHED
TCP 192.168.0.3:62441 208.100.47.52:80 TIME_WAIT
C:\Users\Red Letter Year>
Wireless Router -- Routing Table
Valid Destination Netmask Gateway
YES 75.160.240.215 255.255.255.255 0.0.0.0
YES 192.168.0.0 255.255.255.0 0.0.0.0
YES 239.0.0.0 255.0.0.0 0.0.0.0
YES 0.0.0.0 0.0.0.0 75.160.240.215
Administrative Tools > Computer Management > Shares (abstracted)
Name Description # of Connections
ADMIN$ Remote Admin 0
C$ Default Share 0
D$ Default Share 0
E$ Default Share 0
IPC$ Remote IPC 0
Users 0
(This IPC$ appeared today. It was not there yesterday when I was checking for connections. What is it; is it a default setting or feature; and can/should it be disabled?)
Thanks for all your help!!!!!
Sign In
Create Account
