Ho appena installato win2000 professional sul mio pc, e l'ho patchato con la sp4 e gli aggiornamenti di windows update.

Tuttavia noto che l'icona del trasferimento dati è attiva, ma il task manager non mi segnala nessun processo strano attivo....


P.s: antivirus AntiVir + adaware.

installa sygate ;) (se no un altro firewall)

così vedi il traffico ;)

~§~ Sempre E Solo Lei ~§~

File Version : 5.0.2134.1
File Description : Generic Host Process for Win32 Services (svchost.exe)
File Path : C:\WINDOWS\SYSTEM32\svchost.exe
Process ID : 0x1C4 (Heximal) 452 (Decimal)

Connection origin : remote initiated
Protocol : TCP
Local Address : xx.xx.xx.xxx
Local Port : 135 (EPMAP - Location service - Dynamically assign ports for RPC)
Remote Name :
Remote Address : 82.48.xxx.xxx
Remote Port : 4814

Ethernet packet details:
Ethernet II (Packet Length: 62)
Destination: 00-00-01-00-00-00
Source: 04-3a-20-00-01-00
Type: IP (0x0800)
Internet Protocol
Version: 4
Header Length: 20 bytes
Flags:
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset:0
Time to live: 123
Protocol: 0x6 (TCP - Transmission Control Protocol)
Header checksum: 0x4494 (Correct)
Source: 82.48.130.197
Destination: 82.48.15.187
Transmission Control Protocol (TCP)
Source port: 4814
Destination port: 135
Sequence number: 3516277398
Acknowledgment number: 0
Header length: 28
Flags:
0... .... = Congestion Window Reduce (CWR): Not set
.0.. .... = ECN-Echo: Not set
..0. .... = Urgent: Not set
...0 .... = Acknowledgment: Not set
.... 0... = Push: Not set
.... .0.. = Reset: Not set
.... ..1. = Syn: Set
.... ...0 = Fin: Not set
Checksum: 0xbd04 (Correct)
Data (0 Bytes)

Binary dump of the packet:
0000: 00 00 01 00 00 00 04 3A : 20 00 01 00 08 00 45 00 | .......: .....E.
0010: 00 30 34 A3 40 00 7B 06 : 94 44 52 30 82 C5 52 30 | .04.@.{..DR0..R0
0020: 0F BB 12 CE 00 87 D1 96 : 22 96 00 00 00 00 70 02 | ........".....p.
0030: 40 00 04 BD 00 00 02 04 : 05 B4 01 01 04 02 | @.............

File Version :
File Description : C:\WINDOWS\system32\Sygate.exe
File Path : C:\WINDOWS\system32\Sygate.exe
Process ID : 0x400 (Heximal) 1024 (Decimal)

Connection origin : remote initiated
Protocol : TCP
Local Address : xx.xx.xx.xxx
Local Port : 1058 (NIM - nim)
Remote Name :
Remote Address : 200.203.xx.xxx
Remote Port : 6667

Ethernet packet details:
Ethernet II (Packet Length: 116)
Destination: 00-00-01-00-00-00
Source: 04-3a-20-00-01-00
Type: IP (0x0800)
Internet Protocol
Version: 4
Header Length: 20 bytes
Flags:
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset:0
Time to live: 48
Protocol: 0x6 (TCP - Transmission Control Protocol)
Header checksum: 0x5ba1 (Correct)
Source: 200.203.54.213
Destination: 82.48.15.187
Transmission Control Protocol (TCP)
Source port: 6667
Destination port: 1058
Sequence number: 2764482380
Acknowledgment number: 1733889075
Header length: 20
Flags:
0... .... = Congestion Window Reduce (CWR): Not set
.0.. .... = ECN-Echo: Not set
..0. .... = Urgent: Not set
...1 .... = Acknowledgment: Set
.... 1... = Push: Set
.... .0.. = Reset: Not set
.... ..0. = Syn: Not set
.... ...0 = Fin: Not set
Checksum: 0xcf38 (Correct)
Data (62 Bytes)

Binary dump of the packet:
0000: 00 00 01 00 00 00 04 3A : 20 00 01 00 08 00 45 00 | .......: .....E.
0010: 00 66 47 AB 40 00 30 06 : A1 5B C8 CB 36 D5 52 30 | [email protected]..[..6.R0
0020: 0F BB 1A 0B 04 22 A4 C6 : A7 4C 67 59 0C 33 50 18 | ....."...LgY.3P.
0030: 16 D0 38 CF 00 00 3A 49 : 54 41 7C 38 32 38 32 34 | ..8...:ITA|82824
0040: 36 21 74 6D 67 72 63 74 : 40 35 31 44 36 34 36 36 | 6!tmgrct@51D6466
0050: 33 2E 39 32 41 31 38 44 : 33 46 2E 36 46 41 35 31 | 3.92A18D3F.6FA51
0060: 32 41 30 2E 49 50 20 4A : 4F 49 4E 20 3A 23 72 30 | 2A0.IP JOIN :#r0
0070: 78 78 0D 0A : | xx..

up :cry: