netstat question

[SiDiuS]

everytime I log onto my computer I have the normal connections through netstat (ftp, aim) and then the longer my computer stays on the slower my connection gets, So I did netstat again and all this came up. I copied about half of what came up on netstat. Whats going on?? This happens everytime I turn my computer on. I've ran adaware but it hasn't seemed to help at all.








TCP sidius:4308 mx1.megamailservers.com:smtp TIME_WAIT
TCP sidius:4315 mail.entelchile.net:smtp TIME_WAIT
TCP sidius:4316 gateway.worldnet.att.net:smtp FIN_WAIT_2
TCP sidius:4326 gateway.worldnet.att.net:smtp FIN_WAIT_2
TCP sidius:4328 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4334 ns1.esphinx1.net:smtp ESTABLISHED
TCP sidius:4336 mx-4.csfb.com:smtp ESTABLISHED
TCP sidius:4338 mailrelay3-win.server.ntli.net:smtp ESTABLISHED

TCP sidius:4341 mc2.bay6.hotmail.com:smtp ESTABLISHED
TCP sidius:4343 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4345 mx4.oct.nac.net:smtp ESTABLISHED
TCP sidius:4348 spf4.us4.outblaze.com:smtp ESTABLISHED
TCP sidius:4349 192.168.0.1:smtp SYN_SENT
TCP sidius:4354 chi6-1.relay.mail.uu.net:smtp SYN_SENT
TCP sidius:4359 smtp-in-tm.x-mailer.co.uk:smtp ESTABLISHED
TCP sidius:4365 gateway.worldnet.att.net:smtp FIN_WAIT_2
TCP sidius:4366 relay3.lanka.net:smtp ESTABLISHED
TCP sidius:4371 angel-mta6.whowhere.com:smtp SYN_SENT
TCP sidius:4374 nc.mx.aol.com:smtp TIME_WAIT
TCP sidius:4375 telepath2.isomedia.com:smtp SYN_SENT
TCP sidius:4376 mta-v21.level3.mail.yahoo.com:smtp SYN_SENT
TCP sidius:4378 xmxpita.excite.com:smtp ESTABLISHED
TCP sidius:4387 209.153.112.254:smtp SYN_SENT
TCP sidius:4391 ip-64-139-11-141.dsl.sca.megapath.net:smtp ESTA
BLISHED
TCP sidius:4397 spf5-3.us4.outblaze.com:smtp SYN_SENT
TCP sidius:4398 titanium.hkabc.net:smtp SYN_SENT
TCP sidius:4400 host162.repairpcb.com:smtp TIME_WAIT
TCP sidius:4403 mc3.bay6.hotmail.com:smtp ESTABLISHED
TCP sidius:4404 miles.rstel.net:smtp SYN_SENT
TCP sidius:4406 *.mail3.psmtp.com:smtp SYN_SENT
TCP sidius:4409 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4410 mail.idg.fr:smtp ESTABLISHED
TCP sidius:4412 xmxpita.excite.com:smtp ESTABLISHED
TCP sidius:4414 64.80.9.187:smtp SYN_SENT
TCP sidius:4418 mc8.law1.hotmail.com:smtp SYN_SENT
TCP sidius:4419 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4420 mail.creativesolutions.com:smtp ESTABLISHED
TCP sidius:4421 smtpin-3001.bay.webtv.net:smtp ESTABLISHED
TCP sidius:4425 mx.force10networks.com:smtp LAST_ACK
TCP sidius:4426 mta-v23.level3.mail.yahoo.com:smtp SYN_SENT
TCP sidius:4427 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4430 correo.ctcinternet.cl:smtp ESTABLISHED
TCP sidius:4431 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4437 *.mail7.psmtp.com:smtp SYN_SENT
TCP sidius:4438 server051.cybrhost.com:smtp LAST_ACK
TCP sidius:4439 mxr01.1199nbf.org:smtp ESTABLISHED
TCP sidius:4440 chi6-1.relay.mail.uu.net:smtp SYN_SENT
TCP sidius:4441 205-158-62-200.outblaze.com:smtp SYN_SENT
TCP sidius:4443 mc1.bay6.hotmail.com:smtp ESTABLISHED
TCP sidius:4445 66.194.67.101:http CLOSE_WAIT
TCP sidius:4449 ns1.aaaonlinux.com:smtp ESTABLISHED
TCP sidius:4450 mailhub1.rjf.com:smtp ESTABLISHED
TCP sidius:4451 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4453 slb-smtpin-01.boeing.com:smtp ESTABLISHED
TCP sidius:4456 mail003.readyhosting.com:smtp ESTABLISHED
TCP sidius:4457 233-192-113-209.oem.net:smtp ESTABLISHED
TCP sidius:4458 mail.a-topmail.at:smtp ESTABLISHED
TCP sidius:4461 iris1.directnic.com:smtp ESTABLISHED
TCP sidius:4465 mc8.law1.hotmail.com:smtp SYN_SENT
TCP sidius:4466 supermail.globaldialog.com:smtp SYN_SENT
TCP sidius:4467 thebe.your-site.com:smtp ESTABLISHED
TCP sidius:4469 mc12.bay6.hotmail.com:smtp ESTABLISHED
TCP sidius:4470 nyc-mail.nyc.com:smtp SYN_SENT
TCP sidius:4471 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4472 mta-v20.level3.mail.yahoo.com:smtp SYN_SENT
TCP sidius:4473 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4474 *.mail3.psmtp.com:smtp SYN_SENT
TCP sidius:4475 motgate4.mot.com:smtp SYN_SENT
TCP sidius:4476 gateway.worldnet.att.net:smtp ESTABLISHED
TCP sidius:4477 mta-v20.level3.mail.yahoo.com:smtp LAST_ACK
TCP sidius:4478 mail.imrm.com:smtp ESTABLISHED
TCP sidius:4479 mx2.bit10.net:smtp ESTABLISHED
TCP sidius:4480 mc12.bay6.hotmail.com:smtp ESTABLISHED
TCP sidius:4481 mta-v21.level3.mail.yahoo.com:smtp SYN_SENT
TCP sidius:4482 mx15.comingsoon.pool.com:smtp ESTABLISHED
TCP sidius:4483 yj.mx.aol.com:smtp ESTABLISHED
TCP sidius:4484 mpls-vmail-02.inet.qwest.net:smtp ESTABLISHED
TCP sidius:4485 na.mx.aol.com:smtp ESTABLISHED
TCP sidius:4486 mta-v24.mail.yahoo.com:smtp ESTABLISHED
TCP sidius:4487 mail.pulse3d.com:smtp SYN_SENT
TCP sidius:4488 gateway.worldnet.att.net:smtp SYN_SENT
TCP sidius:5648 64.201.104.74:1105 ESTABLISHED
TCP sidius:5648 64.201.104.74:1233 TIME_WAIT
TCP sidius:5648 64.201.104.74:1426 ESTABLISHED
TCP sidius:5648 64.201.104.74:4511 TIME_WAIT
TCP sidius:5648 64.201.104.74:4711 TIME_WAIT
TCP sidius:5648 64.201.104.74:4749 TIME_WAIT
TCP sidius:5648 64.201.104.74:4874 TIME_WAIT
TCP sidius:5648 64.201.104.74:4974 ESTABLISHED
TCP sidius:5648 64.201.104.78:1571 TIME_WAIT
TCP sidius:5648 64.201.104.78:2875 ESTABLISHED
TCP sidius:5648 64.201.104.78:3086 TIME_WAIT
TCP sidius:5648 64.201.104.78:3331 ESTABLISHED
TCP sidius:5648 64.201.104.78:4614 TIME_WAIT
TCP sidius:5648 64.201.104.254:1446 SYN_RECEIVED
TCP sidius:5648 64.201.104.254:2637 TIME_WAIT
TCP sidius:5648 64.201.104.254:2773 TIME_WAIT
TCP sidius:5648 64.201.104.254:2876 TIME_WAIT
TCP sidius:5648 64.201.104.254:4649 TIME_WAIT
TCP sidius:5648 64.201.105.74:1457 TIME_WAIT
TCP sidius:5648 64.201.105.74:2145 TIME_WAIT
TCP sidius:5648 64.201.105.74:4915 TIME_WAIT
TCP sidius:5648 64.201.105.134:4418 ESTABLISHED
TCP sidius:5648 64.201.105.138:1229 TIME_WAIT
TCP sidius:5648 64.201.105.138:1588 TIME_WAIT
TCP sidius:5648 64.201.105.138:1777 ESTABLISHED
TCP sidius:5648 64.201.105.138:1932 ESTABLISHED
TCP sidius:5648 64.201.105.138:2993 TIME_WAIT
TCP sidius:5648 64.201.105.138:3037 FIN_WAIT_1
TCP sidius:5648 64.201.105.138:3180 ESTABLISHED
TCP sidius:5648 64.201.105.138:3250 LAST_ACK
TCP sidius:5648 64.201.105.138:3492 TIME_WAIT
TCP sidius:5648 64.201.105.138:3578 LAST_ACK
TCP sidius:5648 64.201.105.138:3833 TIME_WAIT
TCP sidius:5648 64.201.105.138:3932 TIME_WAIT
TCP sidius:5648 64.201.105.138:3980 ESTABLISHED
TCP sidius:5648 64.201.105.138:4003 ESTABLISHED
TCP sidius:5648 64.201.105.138:4122 TIME_WAIT
TCP sidius:5648 64.201.105.138:4124 ESTABLISHED
TCP sidius:5648 64.201.105.138:4133 TIME_WAIT
TCP sidius:5648 64.201.105.138:4164 TIME_WAIT
TCP sidius:5648 64.201.105.138:4218 ESTABLISHED
TCP sidius:5648 64.201.105.138:4497 ESTABLISHED
TCP sidius:5648 64.201.105.138:4556 ESTABLISHED
TCP sidius:5648 64.201.105.146:1680 TIME_WAIT
TCP sidius:5648 64.201.105.146:4909 TIME_WAIT
TCP sidius:5648 sls-ce10p5.dca2.superb.net:1055 TIME_WAIT
TCP sidius:5648 sls-ce10p5.dca2.superb.net:1125 ESTABLISHED
TCP sidius:5648 sls-ce10p5.dca2.superb.net:1958 TIME_WAIT
TCP sidius:5648 sls-ce10p5.dca2.superb.net:2850 ESTABLISHED
TCP sidius:5648 sls-ce10p5.dca2.superb.net:2927 TIME_WAIT
TCP sidius:5648 sls-ce10p5.dca2.superb.net:3027 TIME_WAIT
TCP sidius:5648 sls-ce10p5.dca2.superb.net:3095 ESTABLISHED
TCP sidius:5648 sls-ce10p5.dca2.superb.net:3342 TIME_WAIT
TCP sidius:5648 sls-db2p2.dca2.superb.net:3477 SYN_RECEIVED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:1673 TIME_WAIT
TCP sidius:5648 sls-ce8p18.dca2.superb.net:1780 TIME_WAIT
TCP sidius:5648 sls-ce8p18.dca2.superb.net:2082 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:2139 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:2568 TIME_WAIT
TCP sidius:5648 sls-ce8p18.dca2.superb.net:3322 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:3372 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:3380 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:3787 LAST_ACK
TCP sidius:5648 sls-ce8p18.dca2.superb.net:3989 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:4014 SYN_RECEIVED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:4040 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:4048 ESTABLISHED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:4227 SYN_RECEIVED
TCP sidius:5648 sls-ce8p18.dca2.superb.net:4498 ESTABLISHED
TCP sidius:5648 66-36-240-206.orbital.synhost.net:3718 ESTABLIS
HED
TCP sidius:5648 66-36-240-206.orbital.synhost.net:4051 ESTABLIS
HED
TCP sidius:5648 69-56-204-226.theplanet.com:1842 TIME_WAIT
TCP sidius:5648 69-56-204-226.theplanet.com:2874 ESTABLISHED
TCP sidius:5648 69-56-204-226.theplanet.com:2973 ESTABLISHED
TCP sidius:5648 69-56-204-226.theplanet.com:3141 SYN_RECEIVED
TCP sidius:5648 69-56-204-234.theplanet.com:2341 ESTABLISHED
TCP sidius:5648 69-56-204-234.theplanet.com:2839 TIME_WAIT
TCP sidius:5648 69-56-204-234.theplanet.com:2896 TIME_WAIT
TCP sidius:5648 69-56-204-234.theplanet.com:4111 ESTABLISHED
TCP sidius:5648 69-56-204-234.theplanet.com:4934 ESTABLISHED
TCP sidius:5648 srv14.128secure.com:1899 ESTABLISHED
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:1502 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:1675 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:1881 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:1946 ESTABLIS
HED
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:4230 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:4327 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:4603 TIME_WAI
T
TCP sidius:5648 18.69-93-33.reverse.theplanet.com:4759 TIME_WAI
T
TCP sidius:5648 26.69-93-33.reverse.theplanet.com:2928 ESTABLIS
HED
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:1107 TIME_W
AIT
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:1179 ESTABL
ISHED
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:4380 TIME_W
AIT
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:4559 TIME_W
AIT
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:4623 TIME_W
AIT
TCP sidius:5648 32.Red-80-37-22.pooles.rima-tde.net:4859 TIME_W
AIT
TCP sidius:5648 210.52.223.17:1639 TIME_WAIT
TCP sidius:5648 210.52.223.17:3860 ESTABLISHED
TCP sidius:6413 63.247.78.226:2366 SYN_RECEIVED
TCP sidius:6413 63.247.78.226:4257 ESTABLISHED
TCP sidius:6413 63.247.78.226:4773 TIME_WAIT
TCP sidius:6413 65.77.81.101:1455 ESTABLISHED
TCP sidius:6413 65.77.81.101:2026 ESTABLISHED
TCP sidius:6413 65.77.81.101:2619 ESTABLISHED
TCP sidius:6413 65.77.81.101:3455 ESTABLISHED
TCP sidius:6413 65.77.81.101:4248 CLOSING
TCP sidius:6413 65.77.81.101:4430 ESTABLISHED
TCP sidius:6413 65.77.81.101:4833 ESTABLISHED
TCP sidius:6413 65.77.217.199:1481 ESTABLISHED
TCP sidius:6413 65.77.217.199:3274 ESTABLISHED
TCP sidius:6413 65.77.217.199:3626 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:1120 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:1147 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:1479 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:1984 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:2468 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:2573 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:2727 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:2827 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:2959 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:3535 SYN_RECEIVED
TCP sidius:6413 db5p6.dca2.superb.net:3652 ESTABLISHED
TCP sidius:6413 db5p6.dca2.superb.net:4782 ESTABLISHED
TCP sidius:6413 66.103.153.200:1528 ESTABLISHED
TCP sidius:6413 br-bb05cn.privatedns.com:1084 TIME_WAIT
TCP sidius:6413 br-bb05cn.privatedns.com:2529 FIN_WAIT_1
TCP sidius:6413 br-bb05cn.privatedns.com:3101 TIME_WAIT
TCP sidius:6413 br-bb05cn.privatedns.com:4565 TIME_WAIT
TCP sidius:6413 br-bb05cn.privatedns.com:4583 ESTABLISHED
TCP sidius:6413 br-bb05cn.privatedns.com:4791 TIME_WAIT
TCP sidius:6413 66.220.27.181:4164 ESTABLISHED
TCP sidius:6413 67.17.16.46:3276 ESTABLISHED
TCP sidius:6413 67.17.16.46:3924 TIME_WAIT
TCP sidius:6413 67.17.16.46:4068 SYN_RECEIVED
TCP sidius:6413 69-41-227-130.theplanet.com:1276 ESTABLISHED
TCP sidius:6413 69-41-227-130.theplanet.com:2430 ESTABLISHED
TCP sidius:6413 69-41-227-130.theplanet.com:3048 TIME_WAIT
TCP sidius:6413 69-41-227-130.theplanet.com:4826 ESTABLISHED
TCP sidius:6413 69-41-227-130.theplanet.com:4916 TIME_WAIT
TCP sidius:6413 120.69-41-241.reverse.theplanet.com:4247 ESTABL
ISHED
TCP sidius:6413 server1.badalona.es:1233 TIME_WAIT
TCP sidius:6413 server1.badalona.es:2316 ESTABLISHED
TCP sidius:6413 wr4.gagadali.nl:1859 TIME_WAIT
TCP sidius:6413 wr4.gagadali.nl:4119 SYN_RECEIVED
TCP sidius:6413 wr4.gagadali.nl:4619 CLOSING
TCP sidius:6413 po1.gmi.de:3325 ESTABLISHED
TCP sidius:6413 pi1.sutedol.nl:1403 ESTABLISHED
TCP sidius:6413 pi1.sutedol.nl:1430 ESTABLISHED
TCP sidius:6413 pi1.sutedol.nl:3599 TIME_WAIT
TCP sidius:6413 ns1.igohouse.co.il:2190 TIME_WAIT
TCP sidius:6413 ns1.igohouse.co.il:3404 ESTABLISHED
TCP sidius:6413 ns2.thevortex.de:1629 ESTABLISHED
TCP sidius:6413 lp3.sandora.es:2027 ESTABLISHED
TCP sidius:6413 po1.visser.nl:3871 TIME_WAIT
TCP sidius:6413 po1.visser.nl:4188 ESTABLISHED
TCP sidius:6413 et3.perfectauto.de:1776 TIME_WAIT
TCP sidius:6413 et3.perfectauto.de:1878 ESTABLISHED
TCP sidius:6413 ns1.taxtaburun.it:2855 ESTABLISHED
TCP sidius:6413 ns2.taxtaburun.it:4368 TIME_WAIT
TCP sidius:6413 ns3.taxtaburun.it:1570 TIME_WAIT
TCP sidius:6413 ns3.taxtaburun.it:2197 ESTABLISHED
TCP sidius:6413 ns3.taxtaburun.it:4222 ESTABLISHED
TCP sidius:6413 mr3.kotash.es:2462 TIME_WAIT
TCP sidius:6413 mr3.kotash.es:2683 TIME_WAIT
TCP sidius:6413 lo2.pinti.co.uk:2674 TIME_WAIT
TCP sidius:6413 ev2.firtig.de:4736 ESTABLISHED
TCP sidius:6413 69-56-180-170.theplanet.com:3459 TIME_WAIT
TCP sidius:6413 69-56-180-170.theplanet.com:4092 TIME_WAIT
TCP sidius:6413 69-56-180-170.theplanet.com:4335 ESTABLISHED
TCP sidius:6413 69-56-180-170.theplanet.com:4344 TIME_WAIT
TCP sidius:6413 69-56-180-170.theplanet.com:4420 TIME_WAIT
TCP sidius:6413 69-56-182-219.theplanet.com:2106 TIME_WAIT
TCP sidius:6413 69-56-182-219.theplanet.com:2154 SYN_RECEIVED
TCP sidius:6413 69-56-182-219.theplanet.com:4854 ESTABLISHED
TCP sidius:6413 138.69-93-39.reverse.theplanet.com:1317 TIME_WA
IT
TCP sidius:6413 138.69-93-39.reverse.theplanet.com:3583 TIME_WA
IT
TCP sidius:6413 138.69-93-39.reverse.theplanet.com:4151 ESTABLI
SHED
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:2737 TIME_WA
IT
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:3186 TIME_WA
IT
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:3295 FIN_WAI
T_1
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:3879 ESTABLI
SHED
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:4553 ESTABLI
SHED
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:4762 ESTABLI
SHED
TCP sidius:6413 202.69-93-53.reverse.theplanet.com:4785 ESTABLI
SHED
TCP sidius:6413 160.Red-80-36-192.pooles.rima-tde.net:4100 ESTA
BLISHED
TCP sidius:6413 216.180.241.162:2970 TIME_WAIT

C:\Documents and Settings\Chad>

 

[Private Citizen]

Damn, how many instances do you have running? Anyway when I do a "netstat" or even further "netstat -aon" I will close out all IE, and messenger programs to see if there is anything connecting to the net in the background=i.e. trojan, spyware and etc. Try that if that was your intention that way you don't have to wade through all that. Then open messenger, ftp one at a time and check what goes to where. I am sure some of these net pro's here can just look at that log and be able to give you more detail that I can about some of the origins.

 

[SJConsultant]

Run an *up to date* antivirus software as it appears you may have a mass mailing worm on your computer or you have a trojan horse that someone else is using to relay email off of your computer.

 

[SiDiuS]

Ok, after running live update on norton I have found the problem to be backdoor.jeem.virus.
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.jeem.html

 

[Gertrude]

Holy smtp connections


Now I know who has been sending me all that spam..