3dy
22-10-2006, 18:57
Ciao ragazzi il mio pc alla prima connessione si blocca per 7 minuti. Ci sono programmi sconosciuti che chiedono molta memoria e spazio: wuauclt.exe e svchost.exe
Ho installato il firewall e ho preso nota dei dati:
File Version : 5.1.2600.2180
File Description : Generic Host Process for Win32 Services (svchost.exe)
File Path : C:\WINDOWS\system32\svchost.exe
Process ID : 0x3EC (Heximal) 1004 (Decimal)
Connection origin : local initiated
Protocol : UDP
Local Address : 81.211.236.43
Local Port : 520
Remote Name :
Remote Address : 224.0.0.9
Remote Port : 520 (EFS - extended file name server)
Ethernet packet details:
Ethernet II (Packet Length: 80)
Destination: 01-00-20-00-01-00
Source: 00-00-01-00-00-00
Type: IP (0x0800)
Internet Protocol
Version: 4
Header Length: 20 bytes
Flags:
.0.. = Don't fragment: Not set
..0. = More fragments: Not set
Fragment offset:0
Time to live: 1
Protocol: 0x11 (UDP - User Datagram Protocol)
Header checksum: 0xaa9b (Correct)
Source: 81.211.236.43
Destination: 224.0.0.9
User Datagram Protocol
Source port: 520
Destination port: 520
Length: 8
Checksum: 0x83dc (Correct)
Data (32 Bytes)
Binary dump of the packet:
0000: 01 00 20 00 01 00 00 00 : 01 00 00 00 08 00 45 00 | .. ...........E.
0010: 00 34 00 07 00 00 01 11 : 9B AA 51 D3 EC 2B E0 00 | .4........Q..+..
0020: 00 09 02 08 02 08 00 20 : DC 83 01 02 00 00 00 00 | ....... ........
0030: 00 00 00 00 00 00 00 00 : 00 00 00 00 00 00 00 00 | ................
0040: 00 10 41 43 41 43 41 43 : 41 43 41 43 41 43 41 43 | ..ACACACACACACAC
File Version : 5.1.2600.2975
File Description : IPv6 driver (tcpip6.sys)
File Path : C:\WINDOWS\system32\DRIVERS\tcpip6.sys
Connection origin : local initiated
Protocol : Raw Ethernet
Local Address : 0.0.0.0
Local Port : 0
Remote Name :
Remote Address : 0.0.0.0
Remote Port : 0
Ethernet packet details:
Ethernet II (Packet Length: 78)
Destination: 60-00-00-00-00-18
Source: 3a-ff-fe-80-00-00
Protocol: IEEE 802.3 Frame - Length (0x000)
Data (64 Bytes)
Binary dump of the packet:
0000: 60 00 00 00 00 18 3A FF : FE 80 00 00 00 00 00 00 | `.....:.........
0010: 00 00 FF FF FF FF FF FD : FF 02 00 00 00 00 00 00 | ................
0020: 00 00 00 00 00 00 00 02 : 85 00 7C 27 00 00 00 00 | ..........|'....
0030: 01 02 00 00 00 00 00 00 : FF FF FF FF FF FF FF FF | ................
0040: 42 46 41 43 41 43 41 43 : 41 43 41 43 41 43 | BFACACACACACAC
Cosa devo fare?
Il computer ha fatto la scansione con 3 antivirus e 8 spyware diversi ma nn sono riuscito a risolvere il problema.
Potete aiutarmi?
3dy
Ho installato il firewall e ho preso nota dei dati:
File Version : 5.1.2600.2180
File Description : Generic Host Process for Win32 Services (svchost.exe)
File Path : C:\WINDOWS\system32\svchost.exe
Process ID : 0x3EC (Heximal) 1004 (Decimal)
Connection origin : local initiated
Protocol : UDP
Local Address : 81.211.236.43
Local Port : 520
Remote Name :
Remote Address : 224.0.0.9
Remote Port : 520 (EFS - extended file name server)
Ethernet packet details:
Ethernet II (Packet Length: 80)
Destination: 01-00-20-00-01-00
Source: 00-00-01-00-00-00
Type: IP (0x0800)
Internet Protocol
Version: 4
Header Length: 20 bytes
Flags:
.0.. = Don't fragment: Not set
..0. = More fragments: Not set
Fragment offset:0
Time to live: 1
Protocol: 0x11 (UDP - User Datagram Protocol)
Header checksum: 0xaa9b (Correct)
Source: 81.211.236.43
Destination: 224.0.0.9
User Datagram Protocol
Source port: 520
Destination port: 520
Length: 8
Checksum: 0x83dc (Correct)
Data (32 Bytes)
Binary dump of the packet:
0000: 01 00 20 00 01 00 00 00 : 01 00 00 00 08 00 45 00 | .. ...........E.
0010: 00 34 00 07 00 00 01 11 : 9B AA 51 D3 EC 2B E0 00 | .4........Q..+..
0020: 00 09 02 08 02 08 00 20 : DC 83 01 02 00 00 00 00 | ....... ........
0030: 00 00 00 00 00 00 00 00 : 00 00 00 00 00 00 00 00 | ................
0040: 00 10 41 43 41 43 41 43 : 41 43 41 43 41 43 41 43 | ..ACACACACACACAC
File Version : 5.1.2600.2975
File Description : IPv6 driver (tcpip6.sys)
File Path : C:\WINDOWS\system32\DRIVERS\tcpip6.sys
Connection origin : local initiated
Protocol : Raw Ethernet
Local Address : 0.0.0.0
Local Port : 0
Remote Name :
Remote Address : 0.0.0.0
Remote Port : 0
Ethernet packet details:
Ethernet II (Packet Length: 78)
Destination: 60-00-00-00-00-18
Source: 3a-ff-fe-80-00-00
Protocol: IEEE 802.3 Frame - Length (0x000)
Data (64 Bytes)
Binary dump of the packet:
0000: 60 00 00 00 00 18 3A FF : FE 80 00 00 00 00 00 00 | `.....:.........
0010: 00 00 FF FF FF FF FF FD : FF 02 00 00 00 00 00 00 | ................
0020: 00 00 00 00 00 00 00 02 : 85 00 7C 27 00 00 00 00 | ..........|'....
0030: 01 02 00 00 00 00 00 00 : FF FF FF FF FF FF FF FF | ................
0040: 42 46 41 43 41 43 41 43 : 41 43 41 43 41 43 | BFACACACACACAC
Cosa devo fare?
Il computer ha fatto la scansione con 3 antivirus e 8 spyware diversi ma nn sono riuscito a risolvere il problema.
Potete aiutarmi?
3dy