Internet Connection Freezes Up
I hope that this is the correct place to start this thread. But anyways, here's the deal.
For some reason or another, my internet connection just freezes up rendering my ability to game/surf/download off the internet impossible for about 30-60 seconds. After this freeze up, I can once again surf/download/game until the next time it occurs.
This has never happened until this past week, so I immediately think its something to do with trojans or what not so I then go on to use the spybot tool to search and destroy countless stuff. The only exception being the malware called command service. Using the instructions given in the dlee1964 thread (posted 2006-07-27, 15:27), I was able to eliminate it. So now when I run s&d it finds nothing critical (I forgot the extact phrase it states). However, the problem of my internet connection freezing up still exsists.
At this point, I truely don't know what it may be and hope that someone out there may know what it is, cuz I have run outta ideas.
look2me-destroyer.txt contents
Look2Me-Destroyer V1.0.12
Scanning for infected files.....
Scan started at 10/08/2006 10:58:02 AM
Infected! C:\WINDOWS\system32\cZrds.dll
Infected! C:\WINDOWS\system32\cslbact.dll
Infected! C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029427.dll
Infected! C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029428.dll
Attempting to delete infected files...
Attempting to delete: C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029427.dll
C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029427.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029428.dll
C:\System Volume Information\_restore{37016AFA-ACD1-41CE-86B6-62862DAA3D27}\RP393\A0029428.dll Deleted successfully!
Making registry repairs.
Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Media Center
Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RunOnceEx
Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{A5AC6A4F-CAA4-4452-8213-6C739E0B728A}"
HKCR\Clsid\{A5AC6A4F-CAA4-4452-8213-6C739E0B728A}
Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{DBE2D8B1-9A66-4108-870C-AAE5CF7817CC}"
HKCR\Clsid\{DBE2D8B1-9A66-4108-870C-AAE5CF7817CC}
Restoring Windows certificates.
Replaced hosts file with default windows hosts file
Restoring SeDebugPrivilege for Administrators - Succeeded
F-Secure Blacklight txt contents
08/10/06 11:10:52 [Info]: BlackLight Engine 1.0.42 initialized
08/10/06 11:10:52 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/10/06 11:10:52 [Note]: 7019 4
08/10/06 11:10:52 [Note]: 7005 0
08/10/06 11:10:58 [Note]: 7006 0
08/10/06 11:10:58 [Note]: 7011 404
08/10/06 11:10:59 [Note]: 7026 0
08/10/06 11:10:59 [Note]: 7026 0
08/10/06 11:11:05 [Note]: FSRAW library version 1.7.1019
08/10/06 11:13:00 [Note]: 7007 0