Mystisk aktivitet.

Discussion:

Mystisk aktivitet.

(too old to reply)

Terje Henriksen

2016-02-04 02:15:26 UTC

For spesielt interesserte så er dette et øyeblikksbilde over hva som
foregår av Internett-kommunikasjon på PC'en min. Her er det nok mye, mye
mer enn det burde være. Det har vært mye PC-frysing den siste tiden som
kanskje kan skyldes noe av dette. Programmene er kanskje legitime
program, men jeg tror at hackere bruke legitime programmer i
virksomheten sin. DE avslører seg imidlertid på mengden.

http_ss_win_pro.exe:5064 UDP 0.0.0.0 64646 N/A 0 Listening
C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
Nsauditor.exe:35308 TCP 192.168.1.230 22979 193.0.6.135 43 Close
Waiting whois.ripe.net Netherlands C nicname who is, nicname, usually
to sri-nic C:\Program Files (x86)\Nsauditor\Nsauditor.exe
CoreSync.exe:8560 TCP 192.168.1.230 22977 52.48.208.58 443
Established ec2-52-48-208-58.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
explorer.exe:5772 TCP 192.168.1.230 22973 23.43.134.135 80
Established a23-43-134-135.deploy.static.akamaitechnologies.com United
States A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22972 91.135.34.42 80 Established
91-135-34-42.static.customer.pronea.no Norway A http hypertext transfer
protocol, world wide web http C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22971 91.135.34.42 80 Established
91-135-34-42.static.customer.pronea.no Norway A http hypertext transfer
protocol, world wide web http C:\Windows\explorer.exe
chrome.exe:22932 TCP 192.168.1.230 22966 178.74.30.46 443 Established
cache.google.com Norway B https secure http (ssl), http protocol over
tls/ssl C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
SkypeHost.exe:10164 TCP 192.168.1.230 56552 N/A 0 Listening
Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

CoreSync.exe:8560 TCP 192.168.1.230 22951 54.235.208.205 443
Established ec2-54-235-208-205.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
chrome.exe:22932 TCP 192.168.1.230 22724 192.168.1.51 8008
Established Chromecast http-alt http alternate C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22706 192.168.1.51 8009
Established Chromecast ajp13 Apache JServ Protocol 1.3 C:\Program
Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22674 64.233.162.188 5228
Established li-in-f188.1e100.net United States A Unknown C:\Program
Files (x86)\Google\Chrome\Application\chrome.exe
Adobe Desktop Service.exe:5032 TCP 192.168.1.230 18224 54.225.77.38
443 Established ec2-54-225-77-38.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop
Service.exe
NS:2992 TCP 192.168.1.230 18206 166.98.7.18 80 Established 166.98.7.18
United States B http hypertext transfer protocol, world wide web http NS
explorer.exe:5772 TCP 192.168.1.230 18194 191.232.139.57 443
Established msnbot-191-232-139-57.search.msn.com https secure http
(ssl), http protocol over tls/ssl C:\Windows\explorer.exe
avgsvca.exe:2768 TCP 192.168.1.230 12566 193.85.216.230 443
Established 193.85.216.230 Czech Republic C https secure http (ssl),
http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
HPNetworkCommunicatorCom.exe:7472 TCP 192.168.1.230 11486
192.168.1.6 8080 Established HP54EFB0 http-alt common http
proxy/second web server port, http alternate (see port 80) C:\Program
Files\HP\HP Officejet Pro 276dw MFP\Bin\HPNetworkCommunicatorCom.exe
chrome.exe:22932 TCP 192.168.1.230 5556 N/A 0 Listening BO-Facil BO
Facil C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:10784 TCP 192.168.1.230 3146 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3145 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3144 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3143 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3142 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3141 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3140 46.137.156.171 443 Close
Waiting ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3139 46.137.156.171 443 Close
Waiting ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3138 46.137.156.171 443 Close
Waiting ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3137 23.223.20.64 443 Close
Waiting a23-223-20-64.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3136 23.223.20.64 443 Close
Waiting a23-223-20-64.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3135 23.223.20.64 443 Close
Waiting a23-223-20-64.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3134 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3133 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3132 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3131 23.223.21.154 443 Close
Waiting a23-223-21-154.deploy.static.akamaitechnologies.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3130 46.137.156.171 443 Close
Waiting ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3129 46.137.156.171 443 Close
Waiting ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3127 176.34.121.101 443 Close
Waiting ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3126 176.34.121.101 443 Close
Waiting ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3125 176.34.121.101 443 Close
Waiting ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
System:4 TCP 192.168.1.230 139 N/A 0 Listening netbios-ssn netbios
session service System
SDTray.exe:8644 TCP 127.0.0.1 21327 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21323 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21322 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3256 TCP 127.0.0.1 21321 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21320 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
Adobe Desktop Service.exe:5032 TCP 127.0.0.1 15292 N/A 0 Listening
Unknown C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop
Common\ADS\Adobe Desktop Service.exe
node.exe:14704 TCP 127.0.0.1 14212 N/A 0 Listening Unknown
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
chrome.exe:22932 TCP 127.0.0.1 5938 N/A 0 Listening Unknown
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 127.0.0.1 5556 N/A 0 Listening BO-Facil BO
Facil C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:4764 TCP 127.0.0.1 1663 N/A 0 Listening netview-aix-3
netview-aix-3 C:\Program Files (x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5064 TCP 0.0.0.0 53235 N/A 0 Listening Unknown
C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0 Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0 Listening Unknown System
PCTel.exe:8536 TCP 0.0.0.0 9084 N/A 0 Listening Unknown C:\Program
Files (x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3004 TCP 0.0.0.0 8231 N/A 0 Listening
Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0 Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0 Listening icslap icslap System
NS:2992 TCP 0.0.0.0 1711 N/A 0 Listening pptconference pptconference NS
NS:2992 TCP 0.0.0.0 1710 N/A 0 Listening impera impera NS
lsass.exe:848 TCP 0.0.0.0 1653 N/A 0 Listening alphatech-lm
alphatech-lm C:\Windows\System32\lsass.exe
services.exe:840 TCP 0.0.0.0 1573 N/A 0 Listening itscomm-ns
itscomm-ns C:\Windows\System32\services.exe
Spooler:2280 TCP 0.0.0.0 1545 N/A 0 Listening vistium-share
vistium-share Spooler
Schedule:756 TCP 0.0.0.0 1538 N/A 0 Listening 3ds-lm 3ds-lm Schedule
EventLog:1232 TCP 0.0.0.0 1537 N/A 0 Listening sdsc-lm isi-lm EventLog
wininit.exe:764 TCP 0.0.0.0 1536 N/A 0 Listening ampr-inter
ampr-inter C:\Windows\System32\wininit.exe
WMPNetworkSvc:9276 TCP 0.0.0.0 554 N/A 0 Listening rtsp real time
stream control protocol WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0 Listening microsoft-ds microsoft-ds
System
RpcSs:124 TCP 0.0.0.0 135 N/A 0 Listening epmap dce endpoint
resolution, location service, ncs local location broker RpcSs
simptcp:2560 TCP 0.0.0.0 19 N/A 0 Listening chargen ttytst source
character generator, character generator simptcp
simptcp:2560 TCP 0.0.0.0 17 N/A 0 Listening qotd quote of the day
simptcp
simptcp:2560 TCP 0.0.0.0 13 N/A 0 Listening daytime daytime (rfc
867) simptcp
simptcp:2560 TCP 0.0.0.0 9 N/A 0 Listening discard sink null,
discard simptcp
simptcp:2560 TCP 0.0.0.0 7 N/A 0 Listening echo echo simptcp
SSDPSRV:1324 UDP 192.168.1.230 62796 N/A 0 Listening SSDPSRV
SkypeHost.exe:10164 UDP 192.168.1.230 56552 N/A 0 Listening
C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

SSDPSRV:1324 UDP 192.168.1.230 1900 N/A 0 Listening ssdp Simple
Service Discovery Protocol SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0 Listening netbios-dgm netbios
datagram service System
System:4 UDP 192.168.1.230 137 N/A 0 Listening netbios-ns netbios
name service System
SSDPSRV:1324 UDP 127.0.0.1 62797 N/A 0 Listening SSDPSRV
SSDPSRV:1324 UDP 127.0.0.1 1900 N/A 0 Listening ssdp Simple Service
Discovery Protocol SSDPSRV
netprofm:1404 UDP 0.0.0.0 62798 N/A 0 Listening netprofm
SDFSSvc.exe:3076 UDP 0.0.0.0 55684 N/A 0 Listening C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
FDResPub:1324 UDP 0.0.0.0 54141 N/A 0 Listening FDResPub
Nsauditor.exe:35308 UDP 0.0.0.0 52118 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52116 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52115 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52114 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
dasHost.exe:2084 UDP 0.0.0.0 51440 N/A 0 Listening
C:\Windows\System32\dasHost.exe
AutoBackup.exe:6740 UDP 0.0.0.0 51365 N/A 0 Listening C:\Program
Files (x86)\Samsung\PC Auto Backup\AutoBackup.exe
SDFSSvc.exe:3076 UDP 0.0.0.0 21328 N/A 0 Listening C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PCTel.exe:8536 UDP 0.0.0.0 9084 N/A 0 Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:6740 UDP 0.0.0.0 6175 N/A 0 Listening C:\Program
Files (x86)\Samsung\PC Auto Backup\AutoBackup.exe
Dnscache:1492 UDP 0.0.0.0 5355 N/A 0 Listening Dnscache
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Dnscache:1492 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
Dnscache
PCTel.exe:8536 UDP 0.0.0.0 5060 N/A 0 Listening sip sip C:\Program
Files (x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:9276 UDP 0.0.0.0 5005 N/A 0 Listening avt-profile-2
avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:9276 UDP 0.0.0.0 5004 N/A 0 Listening avt-profile-1
avt-profile-1 WMPNetworkSvc
IKEEXT:756 UDP 0.0.0.0 4500 N/A 0 Listening sae-urn sae-urn IKEEXT
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
netprofm:1404 UDP 0.0.0.0 3702 N/A 0 Listening netprofm
netprofm:1404 UDP 0.0.0.0 3702 N/A 0 Listening netprofm
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0 Listening FDResPub
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0 Listening FDResPub
IKEEXT:756 UDP 0.0.0.0 500 N/A 0 Listening isakmp isakmp key
management, isakmp IKEEXT
W32Time:1404 UDP 0.0.0.0 123 N/A 0 Listening ntp network W32Time
simptcp:2560 UDP 0.0.0.0 19 N/A 0 Listening chargen ttytst source
character generator, character generator simptcp
simptcp:2560 UDP 0.0.0.0 17 N/A 0 Listening qotd quote of the day
simptcp
simptcp:2560 UDP 0.0.0.0 13 N/A 0 Listening daytime daytime (rfc
867) simptcp
simptcp:2560 UDP 0.0.0.0 9 N/A 0 Listening discard sink null,
discard simptcp
simptcp:2560 UDP 0.0.0.0 7 N/A 0 Listening echo echo simptcp

--
Terje Henriksen
Kirkenes

Terje Henriksen

2016-02-06 04:04:13 UTC

Permalink

Post by Terje Henriksen
For spesielt interesserte så er dette et øyeblikksbilde over hva som
foregår av Internett-kommunikasjon på PC'en min. Her er det nok mye, mye
mer enn det burde være. Det har vært mye PC-frysing den siste tiden som
kanskje kan skyldes noe av dette. Programmene er kanskje legitime
program, men jeg tror at hackere bruke legitime programmer i
virksomheten sin. DE avslører seg imidlertid på mengden.
http_ss_win_pro.exe:5064 UDP 0.0.0.0 64646 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
Nsauditor.exe:35308 TCP 192.168.1.230 22979 193.0.6.135
43 Close Waiting whois.ripe.net Netherlands C nicname
who is, nicname, usually to sri-nic C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
CoreSync.exe:8560 TCP 192.168.1.230 22977 52.48.208.58
443 Established ec2-52-48-208-58.eu-west-1.compute.amazonaws.com
United States A https secure http (ssl), http protocol over
tls/ssl C:\Program Files (x86)\Adobe\Adobe Creative
Cloud\CoreSync\CoreSync.exe
explorer.exe:5772 TCP 192.168.1.230 22973 23.43.134.135
80 Established a23-43-134-135.deploy.static.akamaitechnologies.com
United States A http hypertext transfer protocol, world wide
web http C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22972 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22971 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
chrome.exe:22932 TCP 192.168.1.230 22966 178.74.30.46
443 Established cache.google.com Norway B https secure
http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
SkypeHost.exe:10164 TCP 192.168.1.230 56552 N/A 0
Listening Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
CoreSync.exe:8560 TCP 192.168.1.230 22951 54.235.208.205
443 Established ec2-54-235-208-205.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
chrome.exe:22932 TCP 192.168.1.230 22724 192.168.1.51
8008 Established Chromecast http-alt http alternate
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22706 192.168.1.51
8009 Established Chromecast ajp13 Apache JServ Protocol
1.3 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22674 64.233.162.188
5228 Established li-in-f188.1e100.net United States A
Unknown C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Adobe Desktop Service.exe:5032 TCP 192.168.1.230 18224
54.225.77.38 443 Established
ec2-54-225-77-38.compute-1.amazonaws.com United States A
https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop
Service.exe
NS:2992 TCP 192.168.1.230 18206 166.98.7.18 80
Established 166.98.7.18 United States B http hypertext
transfer protocol, world wide web http NS
explorer.exe:5772 TCP 192.168.1.230 18194 191.232.139.57
443 Established msnbot-191-232-139-57.search.msn.com
https secure http (ssl), http protocol over tls/ssl
C:\Windows\explorer.exe
avgsvca.exe:2768 TCP 192.168.1.230 12566 193.85.216.230
443 Established 193.85.216.230 Czech Republic C https
secure http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
HPNetworkCommunicatorCom.exe:7472 TCP 192.168.1.230 11486
192.168.1.6 8080 Established HP54EFB0 http-alt
common http proxy/second web server port, http alternate (see port
80) C:\Program Files\HP\HP Officejet Pro 276dw
MFP\Bin\HPNetworkCommunicatorCom.exe
chrome.exe:22932 TCP 192.168.1.230 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:10784 TCP 192.168.1.230 3146 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3145 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3144 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3143 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3142 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3141 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3140 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3139 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3138 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3137 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3136 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3135 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3134 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3133 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3132 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3131 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3130 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3129 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3127 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3126 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3125 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
System:4 TCP 192.168.1.230 139 N/A 0
Listening netbios-ssn netbios session service System
SDTray.exe:8644 TCP 127.0.0.1 21327 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDTray.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21323 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21322 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3256 TCP 127.0.0.1 21321 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21320 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
Adobe Desktop Service.exe:5032 TCP 127.0.0.1 15292 N/A
0 Listening Unknown C:\Program Files (x86)\Common
Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
node.exe:14704 TCP 127.0.0.1 14212 N/A 0
Listening Unknown C:\Program Files (x86)\Adobe\Adobe
Creative Cloud\CCLibrary\libs\node.exe
chrome.exe:22932 TCP 127.0.0.1 5938 N/A 0
Listening Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 127.0.0.1 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:4764 TCP 127.0.0.1 1663 N/A 0
Listening netview-aix-3 netview-aix-3 C:\Program Files
(x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5064 TCP 0.0.0.0 53235 N/A 0
Listening Unknown C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0
Listening Unknown System
PCTel.exe:8536 TCP 0.0.0.0 9084 N/A 0
Listening Unknown C:\Program Files
(x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3004 TCP 0.0.0.0 8231 N/A
0 Listening Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0
Listening icslap icslap System
NS:2992 TCP 0.0.0.0 1711 N/A 0
Listening pptconference pptconference NS
NS:2992 TCP 0.0.0.0 1710 N/A 0
Listening impera impera NS
lsass.exe:848 TCP 0.0.0.0 1653 N/A 0
Listening alphatech-lm alphatech-lm
C:\Windows\System32\lsass.exe
services.exe:840 TCP 0.0.0.0 1573 N/A 0
Listening itscomm-ns itscomm-ns
C:\Windows\System32\services.exe
Spooler:2280 TCP 0.0.0.0 1545 N/A 0
Listening vistium-share vistium-share Spooler
Schedule:756 TCP 0.0.0.0 1538 N/A 0
Listening 3ds-lm 3ds-lm Schedule
EventLog:1232 TCP 0.0.0.0 1537 N/A 0
Listening sdsc-lm isi-lm EventLog
wininit.exe:764 TCP 0.0.0.0 1536 N/A 0
Listening ampr-inter ampr-inter
C:\Windows\System32\wininit.exe
WMPNetworkSvc:9276 TCP 0.0.0.0 554 N/A 0
Listening rtsp real time stream control protocol
WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0
Listening microsoft-ds microsoft-ds System
RpcSs:124 TCP 0.0.0.0 135 N/A 0
Listening epmap dce endpoint resolution, location
service, ncs local location broker RpcSs
simptcp:2560 TCP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 TCP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 TCP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 TCP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 TCP 0.0.0.0 7 N/A 0
Listening echo echo simptcp
SSDPSRV:1324 UDP 192.168.1.230 62796 N/A 0
Listening SSDPSRV
SkypeHost.exe:10164 UDP 192.168.1.230 56552 N/A 0
Listening C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SSDPSRV:1324 UDP 192.168.1.230 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0
Listening netbios-dgm netbios datagram service System
System:4 UDP 192.168.1.230 137 N/A 0
Listening netbios-ns netbios name service System
SSDPSRV:1324 UDP 127.0.0.1 62797 N/A 0
Listening SSDPSRV
SSDPSRV:1324 UDP 127.0.0.1 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
netprofm:1404 UDP 0.0.0.0 62798 N/A 0
Listening netprofm
SDFSSvc.exe:3076 UDP 0.0.0.0 55684 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
FDResPub:1324 UDP 0.0.0.0 54141 N/A 0
Listening FDResPub
Nsauditor.exe:35308 UDP 0.0.0.0 52118 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52116 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52115 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52114 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
dasHost.exe:2084 UDP 0.0.0.0 51440 N/A 0 Listening
C:\Windows\System32\dasHost.exe
AutoBackup.exe:6740 UDP 0.0.0.0 51365 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
SDFSSvc.exe:3076 UDP 0.0.0.0 21328 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
PCTel.exe:8536 UDP 0.0.0.0 9084 N/A 0
Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:6740 UDP 0.0.0.0 6175 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
Dnscache:1492 UDP 0.0.0.0 5355 N/A 0
Listening Dnscache
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Dnscache:1492 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS Dnscache
PCTel.exe:8536 UDP 0.0.0.0 5060 N/A 0
Listening sip sip C:\Program Files
(x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:9276 UDP 0.0.0.0 5005 N/A 0
Listening avt-profile-2 avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:9276 UDP 0.0.0.0 5004 N/A 0
Listening avt-profile-1 avt-profile-1 WMPNetworkSvc
IKEEXT:756 UDP 0.0.0.0 4500 N/A 0
Listening sae-urn sae-urn IKEEXT
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
IKEEXT:756 UDP 0.0.0.0 500 N/A 0
Listening isakmp isakmp key management, isakmp IKEEXT
W32Time:1404 UDP 0.0.0.0 123 N/A 0
Listening ntp network W32Time
simptcp:2560 UDP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 UDP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 UDP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 UDP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 UDP 0.0.0.0 7 N/A 0
Listening echo echo simptcp

Her er nattens aktivitet i et øyeblikk. Mye PC heng som gir seg etter
omtrent et halvt minutt:

http_ss_win_pro.exe:5328 UDP 0.0.0.0 61647 N/A 0 Listening
C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
[System Process]:0 TCP 192.168.1.230 6296 204.193.144.124 80 Time
Wait 204.193.144.124 United States C http hypertext transfer protocol,
world wide web http
[System Process]:0 TCP 192.168.1.230 6295 204.193.144.124 80 Time
Wait 204.193.144.124 United States C http hypertext transfer protocol,
world wide web http
SkypeHost.exe:7760 TCP 192.168.1.230 56552 N/A 0 Listening Unknown
C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

[System Process]:0 TCP 192.168.1.230 6283 213.239.209.88 119 Time
Wait news.eternal-september.org Germany C nntp usenet news transfer
protocol, network news transfer, network news transfer protocol
[System Process]:0 TCP 192.168.1.230 6265 184.86.48.235 80 Time Wait
a184-86-48-235.deploy.static.akamaitechnologies.com United States B
http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6264 184.86.48.235 80 Time Wait
a184-86-48-235.deploy.static.akamaitechnologies.com United States B
http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6263 184.86.48.235 80 Time Wait
a184-86-48-235.deploy.static.akamaitechnologies.com United States B
http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6262 184.86.48.235 80 Time Wait
a184-86-48-235.deploy.static.akamaitechnologies.com United States B
http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6227 205.251.219.191 443 Time
Wait server-205-251-219-191.arn1.r.cloudfront.net United States C https
secure http (ssl), http protocol over tls/ssl
[System Process]:0 TCP 192.168.1.230 6225 205.251.219.191 443 Time
Wait server-205-251-219-191.arn1.r.cloudfront.net United States C https
secure http (ssl), http protocol over tls/ssl
SkypeHost.exe:7760 TCP 192.168.1.230 5974 91.190.217.44 12350 Close
Waiting 91.190.217.44 Luxembourg A Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

SkypeHost.exe:7760 TCP 192.168.1.230 5970 157.56.52.47 40018 Close
Waiting 157.56.52.47 United States B Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

chrome.exe:9144 TCP 192.168.1.230 5556 N/A 0 Listening BO-Facil BO
Facil C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 3614 192.168.1.51 8008 Established
Chromecast http-alt http alternate C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 3613 192.168.1.51 8009 Established
Chromecast ajp13 Apache JServ Protocol 1.3 C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 1945 64.233.161.188 5228
Established lh-in-f188.1e100.net United States A dialogic-elmd
dialogic-elmd C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:6344 TCP 192.168.1.230 1843 54.228.203.38 443 Close
Waiting ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1842 54.228.203.38 443 Close
Waiting ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1841 54.228.203.38 443 Close
Waiting ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1840 54.228.203.38 443 Close
Waiting ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1839 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1838 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1837 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1836 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1835 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1834 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1833 95.100.3.72 443 Close Waiting
a95-100-3-72.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1832 23.43.139.27 80 Close Waiting
a23-43-139-27.deploy.static.akamaitechnologies.com United States A http
hypertext transfer protocol, world wide web http
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1831 95.100.3.72 443 Close Waiting
a95-100-3-72.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1830 95.100.3.72 443 Close Waiting
a95-100-3-72.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1829 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1828 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1827 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1826 2.16.67.240 443 Close Waiting
a2-16-67-240.deploy.akamaitechnologies.com EU A https secure http (ssl),
http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1821 54.228.203.38 443 Close
Waiting ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1816 176.34.96.9 443 Close Waiting
ec2-176-34-96-9.eu-west-1.compute.amazonaws.com Ireland B https secure
http (ssl), http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1815 176.34.96.9 443 Close Waiting
ec2-176-34-96-9.eu-west-1.compute.amazonaws.com Ireland B https secure
http (ssl), http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1813 176.34.96.9 443 Close Waiting
ec2-176-34-96-9.eu-west-1.compute.amazonaws.com Ireland B https secure
http (ssl), http protocol over tls/ssl C:\Windows\System32\WWAHost.exe
HPNetworkCommunicatorCom.exe:10156 TCP 192.168.1.230 1706
192.168.1.6 8080 Established HP54EFB0 http-alt common http
proxy/second web server port, http alternate (see port 80) C:\Program
Files\HP\HP Officejet Pro 276dw MFP\Bin\HPNetworkCommunicatorCom.exe
explorer.exe:7608 TCP 192.168.1.230 1697 191.232.139.70 443
Established msnbot-191-232-139-70.search.msn.com https secure http
(ssl), http protocol over tls/ssl C:\Windows\explorer.exe
NS:3500 TCP 192.168.1.230 1616 166.98.7.18 80 Established 166.98.7.18
United States B http hypertext transfer protocol, world wide web http NS
avgsvca.exe:3056 TCP 192.168.1.230 1546 193.85.216.234 443
Established 193.85.216.234 Czech Republic C https secure http (ssl),
http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
System:4 TCP 192.168.1.230 139 N/A 0 Listening netbios-ssn netbios
session service System
SDTray.exe:10448 TCP 127.0.0.1 21327 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21323 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21322 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3296 TCP 127.0.0.1 21321 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21320 N/A 0 Listening Unknown
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
chrome.exe:9144 TCP 127.0.0.1 5938 N/A 0 Listening Unknown
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 127.0.0.1 5556 N/A 0 Listening BO-Facil BO Facil
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:7292 TCP 127.0.0.1 1701 N/A 0 Listening l2f C:\Program
Files (x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5328 TCP 0.0.0.0 53235 N/A 0 Listening Unknown
C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0 Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0 Listening Unknown System
PCTel.exe:11156 TCP 0.0.0.0 9084 N/A 0 Listening Unknown C:\Program
Files (x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3164 TCP 0.0.0.0 8231 N/A 0 Listening
Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0 Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0 Listening icslap icslap System
NS:3500 TCP 0.0.0.0 1661 N/A 0 Listening netview-aix-1 netview-aix-1 NS
NS:3500 TCP 0.0.0.0 1660 N/A 0 Listening skip-mc-gikreq
skip-mc-gikreq NS
lsass.exe:904 TCP 0.0.0.0 1659 N/A 0 Listening sg-lm silicon grail
license manager C:\Windows\System32\lsass.exe
services.exe:896 TCP 0.0.0.0 1568 N/A 0 Listening tsspmap tsspmap
C:\Windows\System32\services.exe
Spooler:2448 TCP 0.0.0.0 1544 N/A 0 Listening aspeclmd aspeclmd Spooler
Schedule:1084 TCP 0.0.0.0 1538 N/A 0 Listening 3ds-lm 3ds-lm Schedule
EventLog:1352 TCP 0.0.0.0 1537 N/A 0 Listening sdsc-lm isi-lm EventLog
wininit.exe:808 TCP 0.0.0.0 1536 N/A 0 Listening ampr-inter
ampr-inter C:\Windows\System32\wininit.exe
WMPNetworkSvc:3284 TCP 0.0.0.0 554 N/A 0 Listening rtsp real time
stream control protocol WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0 Listening microsoft-ds microsoft-ds
System
RpcSs:728 TCP 0.0.0.0 135 N/A 0 Listening epmap dce endpoint
resolution, location service, ncs local location broker RpcSs
simptcp:3572 TCP 0.0.0.0 19 N/A 0 Listening chargen ttytst source
character generator, character generator simptcp
simptcp:3572 TCP 0.0.0.0 17 N/A 0 Listening qotd quote of the day
simptcp
simptcp:3572 TCP 0.0.0.0 13 N/A 0 Listening daytime daytime (rfc
867) simptcp
simptcp:3572 TCP 0.0.0.0 9 N/A 0 Listening discard sink null,
discard simptcp
simptcp:3572 TCP 0.0.0.0 7 N/A 0 Listening echo echo simptcp
SkypeHost.exe:7760 UDP 192.168.1.230 56552 N/A 0 Listening
C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe

SSDPSRV:1360 UDP 192.168.1.230 51852 N/A 0 Listening SSDPSRV
SSDPSRV:1360 UDP 192.168.1.230 1900 N/A 0 Listening ssdp Simple
Service Discovery Protocol SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0 Listening netbios-dgm netbios
datagram service System
System:4 UDP 192.168.1.230 137 N/A 0 Listening netbios-ns netbios
name service System
Skype.exe:10096 UDP 127.0.0.1 64616 N/A 0 Listening C:\Program
Files (x86)\Skype\Phone\Skype.exe
SSDPSRV:1360 UDP 127.0.0.1 51853 N/A 0 Listening SSDPSRV
SSDPSRV:1360 UDP 127.0.0.1 1900 N/A 0 Listening ssdp Simple Service
Discovery Protocol SSDPSRV
netprofm:1536 UDP 0.0.0.0 65070 N/A 0 Listening netprofm
AutoBackup.exe:10284 UDP 0.0.0.0 63451 N/A 0 Listening C:\Program
Files (x86)\Samsung\PC Auto Backup\AutoBackup.exe
FDResPub:1360 UDP 0.0.0.0 53878 N/A 0 Listening FDResPub
SDFSSvc.exe:3304 UDP 0.0.0.0 51857 N/A 0 Listening C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
dasHost.exe:2228 UDP 0.0.0.0 51854 N/A 0 Listening
C:\Windows\System32\dasHost.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51489 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51487 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51486 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51485 N/A 0 Listening C:\Program
Files (x86)\Nsauditor\Nsauditor.exe
SDFSSvc.exe:3304 UDP 0.0.0.0 21328 N/A 0 Listening C:\Program Files
(x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PCTel.exe:11156 UDP 0.0.0.0 9084 N/A 0 Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:10284 UDP 0.0.0.0 6175 N/A 0 Listening C:\Program
Files (x86)\Samsung\PC Auto Backup\AutoBackup.exe
Dnscache:1612 UDP 0.0.0.0 5355 N/A 0 Listening Dnscache
Dnscache:1612 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
Dnscache
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0 Listening mdns Multicast DNS
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PCTel.exe:11156 UDP 0.0.0.0 5060 N/A 0 Listening sip sip C:\Program
Files (x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:3284 UDP 0.0.0.0 5005 N/A 0 Listening avt-profile-2
avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:3284 UDP 0.0.0.0 5004 N/A 0 Listening avt-profile-1
avt-profile-1 WMPNetworkSvc
IKEEXT:1084 UDP 0.0.0.0 4500 N/A 0 Listening sae-urn sae-urn IKEEXT
dasHost.exe:2228 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2228 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
FDResPub:1360 UDP 0.0.0.0 3702 N/A 0 Listening FDResPub
FDResPub:1360 UDP 0.0.0.0 3702 N/A 0 Listening FDResPub
netprofm:1536 UDP 0.0.0.0 3702 N/A 0 Listening netprofm
netprofm:1536 UDP 0.0.0.0 3702 N/A 0 Listening netprofm
IKEEXT:1084 UDP 0.0.0.0 500 N/A 0 Listening isakmp isakmp key
management, isakmp IKEEXT
W32Time:1536 UDP 0.0.0.0 123 N/A 0 Listening ntp network W32Time
simptcp:3572 UDP 0.0.0.0 19 N/A 0 Listening chargen ttytst source
character generator, character generator simptcp
simptcp:3572 UDP 0.0.0.0 17 N/A 0 Listening qotd quote of the day
simptcp
simptcp:3572 UDP 0.0.0.0 13 N/A 0 Listening daytime daytime (rfc
867) simptcp
simptcp:3572 UDP 0.0.0.0 9 N/A 0 Listening discard sink null,
discard simptcp
simptcp:3572 UDP 0.0.0.0 7 N/A 0 Listening echo echo simptcp

--
Terje Henriksen
Kirkenes

Terje Henriksen

2016-02-14 09:35:33 UTC

Permalink

Post by Terje Henriksen

Post by Terje Henriksen
For spesielt interesserte så er dette et øyeblikksbilde over hva som
foregår av Internett-kommunikasjon på PC'en min. Her er det nok mye, mye
mer enn det burde være. Det har vært mye PC-frysing den siste tiden som
kanskje kan skyldes noe av dette. Programmene er kanskje legitime
program, men jeg tror at hackere bruke legitime programmer i
virksomheten sin. DE avslører seg imidlertid på mengden.
http_ss_win_pro.exe:5064 UDP 0.0.0.0 64646 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
Nsauditor.exe:35308 TCP 192.168.1.230 22979 193.0.6.135
43 Close Waiting whois.ripe.net Netherlands C nicname
who is, nicname, usually to sri-nic C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
CoreSync.exe:8560 TCP 192.168.1.230 22977 52.48.208.58
443 Established ec2-52-48-208-58.eu-west-1.compute.amazonaws.com
United States A https secure http (ssl), http protocol over
tls/ssl C:\Program Files (x86)\Adobe\Adobe Creative
Cloud\CoreSync\CoreSync.exe
explorer.exe:5772 TCP 192.168.1.230 22973 23.43.134.135
80 Established a23-43-134-135.deploy.static.akamaitechnologies.com
United States A http hypertext transfer protocol, world wide
web http C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22972 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22971 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
chrome.exe:22932 TCP 192.168.1.230 22966 178.74.30.46
443 Established cache.google.com Norway B https secure
http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
SkypeHost.exe:10164 TCP 192.168.1.230 56552 N/A 0
Listening Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
CoreSync.exe:8560 TCP 192.168.1.230 22951 54.235.208.205
443 Established ec2-54-235-208-205.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
chrome.exe:22932 TCP 192.168.1.230 22724 192.168.1.51
8008 Established Chromecast http-alt http alternate
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22706 192.168.1.51
8009 Established Chromecast ajp13 Apache JServ Protocol
1.3 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22674 64.233.162.188
5228 Established li-in-f188.1e100.net United States A
Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Adobe Desktop Service.exe:5032 TCP 192.168.1.230 18224
54.225.77.38 443 Established
ec2-54-225-77-38.compute-1.amazonaws.com United States A
https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop
Service.exe
NS:2992 TCP 192.168.1.230 18206 166.98.7.18 80
Established 166.98.7.18 United States B http hypertext
transfer protocol, world wide web http NS
explorer.exe:5772 TCP 192.168.1.230 18194 191.232.139.57
443 Established msnbot-191-232-139-57.search.msn.com
https secure http (ssl), http protocol over tls/ssl
C:\Windows\explorer.exe
avgsvca.exe:2768 TCP 192.168.1.230 12566 193.85.216.230
443 Established 193.85.216.230 Czech Republic C https
secure http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
HPNetworkCommunicatorCom.exe:7472 TCP 192.168.1.230 11486
192.168.1.6 8080 Established HP54EFB0 http-alt
common http proxy/second web server port, http alternate (see port
80) C:\Program Files\HP\HP Officejet Pro 276dw
MFP\Bin\HPNetworkCommunicatorCom.exe
chrome.exe:22932 TCP 192.168.1.230 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:10784 TCP 192.168.1.230 3146 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3145 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3144 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3143 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3142 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3141 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3140 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3139 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3138 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3137 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3136 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3135 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3134 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3133 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3132 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3131 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3130 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3129 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3127 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3126 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3125 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
System:4 TCP 192.168.1.230 139 N/A 0
Listening netbios-ssn netbios session service System
SDTray.exe:8644 TCP 127.0.0.1 21327 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDTray.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21323 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21322 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3256 TCP 127.0.0.1 21321 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21320 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
Adobe Desktop Service.exe:5032 TCP 127.0.0.1 15292 N/A
0 Listening Unknown C:\Program Files (x86)\Common
Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
node.exe:14704 TCP 127.0.0.1 14212 N/A 0
Listening Unknown C:\Program Files (x86)\Adobe\Adobe
Creative Cloud\CCLibrary\libs\node.exe
chrome.exe:22932 TCP 127.0.0.1 5938 N/A 0
Listening Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 127.0.0.1 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:4764 TCP 127.0.0.1 1663 N/A 0
Listening netview-aix-3 netview-aix-3 C:\Program Files
(x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5064 TCP 0.0.0.0 53235 N/A 0
Listening Unknown C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0
Listening Unknown System
PCTel.exe:8536 TCP 0.0.0.0 9084 N/A 0
Listening Unknown C:\Program Files
(x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3004 TCP 0.0.0.0 8231 N/A
0 Listening Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0
Listening icslap icslap System
NS:2992 TCP 0.0.0.0 1711 N/A 0
Listening pptconference pptconference NS
NS:2992 TCP 0.0.0.0 1710 N/A 0
Listening impera impera NS
lsass.exe:848 TCP 0.0.0.0 1653 N/A 0
Listening alphatech-lm alphatech-lm
C:\Windows\System32\lsass.exe
services.exe:840 TCP 0.0.0.0 1573 N/A 0
Listening itscomm-ns itscomm-ns
C:\Windows\System32\services.exe
Spooler:2280 TCP 0.0.0.0 1545 N/A 0
Listening vistium-share vistium-share Spooler
Schedule:756 TCP 0.0.0.0 1538 N/A 0
Listening 3ds-lm 3ds-lm Schedule
EventLog:1232 TCP 0.0.0.0 1537 N/A 0
Listening sdsc-lm isi-lm EventLog
wininit.exe:764 TCP 0.0.0.0 1536 N/A 0
Listening ampr-inter ampr-inter
C:\Windows\System32\wininit.exe
WMPNetworkSvc:9276 TCP 0.0.0.0 554 N/A 0
Listening rtsp real time stream control protocol
WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0
Listening microsoft-ds microsoft-ds System
RpcSs:124 TCP 0.0.0.0 135 N/A 0
Listening epmap dce endpoint resolution, location
service, ncs local location broker RpcSs
simptcp:2560 TCP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 TCP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 TCP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 TCP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 TCP 0.0.0.0 7 N/A 0
Listening echo echo simptcp
SSDPSRV:1324 UDP 192.168.1.230 62796 N/A 0
Listening SSDPSRV
SkypeHost.exe:10164 UDP 192.168.1.230 56552 N/A 0
Listening C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SSDPSRV:1324 UDP 192.168.1.230 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0
Listening netbios-dgm netbios datagram service
System
System:4 UDP 192.168.1.230 137 N/A 0
Listening netbios-ns netbios name service System
SSDPSRV:1324 UDP 127.0.0.1 62797 N/A 0
Listening SSDPSRV
SSDPSRV:1324 UDP 127.0.0.1 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
netprofm:1404 UDP 0.0.0.0 62798 N/A 0
Listening netprofm
SDFSSvc.exe:3076 UDP 0.0.0.0 55684 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
FDResPub:1324 UDP 0.0.0.0 54141 N/A 0
Listening FDResPub
Nsauditor.exe:35308 UDP 0.0.0.0 52118 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52116 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52115 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52114 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
dasHost.exe:2084 UDP 0.0.0.0 51440 N/A 0 Listening
C:\Windows\System32\dasHost.exe
AutoBackup.exe:6740 UDP 0.0.0.0 51365 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
SDFSSvc.exe:3076 UDP 0.0.0.0 21328 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
PCTel.exe:8536 UDP 0.0.0.0 9084 N/A 0
Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:6740 UDP 0.0.0.0 6175 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
Dnscache:1492 UDP 0.0.0.0 5355 N/A 0
Listening Dnscache
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Dnscache:1492 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS Dnscache
PCTel.exe:8536 UDP 0.0.0.0 5060 N/A 0
Listening sip sip C:\Program Files
(x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:9276 UDP 0.0.0.0 5005 N/A 0
Listening avt-profile-2 avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:9276 UDP 0.0.0.0 5004 N/A 0
Listening avt-profile-1 avt-profile-1 WMPNetworkSvc
IKEEXT:756 UDP 0.0.0.0 4500 N/A 0
Listening sae-urn sae-urn IKEEXT
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
IKEEXT:756 UDP 0.0.0.0 500 N/A 0
Listening isakmp isakmp key management, isakmp
IKEEXT
W32Time:1404 UDP 0.0.0.0 123 N/A 0
Listening ntp network W32Time
simptcp:2560 UDP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 UDP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 UDP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 UDP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 UDP 0.0.0.0 7 N/A 0
Listening echo echo simptcp

Her er nattens aktivitet i et øyeblikk. Mye PC heng som gir seg etter
http_ss_win_pro.exe:5328 UDP 0.0.0.0 61647 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe
[System Process]:0 TCP 192.168.1.230 6296 204.193.144.124
80 Time Wait 204.193.144.124 United States C http
hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6295 204.193.144.124
80 Time Wait 204.193.144.124 United States C http
hypertext transfer protocol, world wide web http
SkypeHost.exe:7760 TCP 192.168.1.230 56552 N/A 0
Listening Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
[System Process]:0 TCP 192.168.1.230 6283 213.239.209.88
119 Time Wait news.eternal-september.org Germany C
nntp usenet news transfer protocol, network news transfer, network
news transfer protocol
[System Process]:0 TCP 192.168.1.230 6265 184.86.48.235
80 Time Wait a184-86-48-235.deploy.static.akamaitechnologies.com
United States B http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6264 184.86.48.235
80 Time Wait a184-86-48-235.deploy.static.akamaitechnologies.com
United States B http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6263 184.86.48.235
80 Time Wait a184-86-48-235.deploy.static.akamaitechnologies.com
United States B http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6262 184.86.48.235
80 Time Wait a184-86-48-235.deploy.static.akamaitechnologies.com
United States B http hypertext transfer protocol, world wide web http
[System Process]:0 TCP 192.168.1.230 6227 205.251.219.191
443 Time Wait server-205-251-219-191.arn1.r.cloudfront.net
United States C https secure http (ssl), http protocol over tls/ssl
[System Process]:0 TCP 192.168.1.230 6225 205.251.219.191
443 Time Wait server-205-251-219-191.arn1.r.cloudfront.net
United States C https secure http (ssl), http protocol over tls/ssl
SkypeHost.exe:7760 TCP 192.168.1.230 5974 91.190.217.44
12350 Close Waiting 91.190.217.44 Luxembourg A
Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SkypeHost.exe:7760 TCP 192.168.1.230 5970 157.56.52.47
40018 Close Waiting 157.56.52.47 United States B
Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
chrome.exe:9144 TCP 192.168.1.230 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 3614 192.168.1.51
8008 Established Chromecast http-alt http alternate
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 3613 192.168.1.51
8009 Established Chromecast ajp13 Apache JServ Protocol
1.3 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 192.168.1.230 1945 64.233.161.188
5228 Established lh-in-f188.1e100.net United States A
dialogic-elmd dialogic-elmd C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:6344 TCP 192.168.1.230 1843 54.228.203.38
443 Close Waiting
ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1842 54.228.203.38
443 Close Waiting
ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1841 54.228.203.38
443 Close Waiting
ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1840 54.228.203.38
443 Close Waiting
ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1839 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1838 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1837 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1836 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1835 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1834 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1833 95.100.3.72
443 Close Waiting a95-100-3-72.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1832 23.43.139.27
80 Close Waiting
a23-43-139-27.deploy.static.akamaitechnologies.com United States
A http hypertext transfer protocol, world wide web http
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1831 95.100.3.72
443 Close Waiting a95-100-3-72.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1830 95.100.3.72
443 Close Waiting a95-100-3-72.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1829 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1828 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1827 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1826 2.16.67.240
443 Close Waiting a2-16-67-240.deploy.akamaitechnologies.com EU
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1821 54.228.203.38
443 Close Waiting
ec2-54-228-203-38.eu-west-1.compute.amazonaws.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1816 176.34.96.9
443 Close Waiting ec2-176-34-96-9.eu-west-1.compute.amazonaws.com
Ireland B https secure http (ssl), http protocol over
tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1815 176.34.96.9
443 Close Waiting ec2-176-34-96-9.eu-west-1.compute.amazonaws.com
Ireland B https secure http (ssl), http protocol over
tls/ssl C:\Windows\System32\WWAHost.exe
WWAHost.exe:6344 TCP 192.168.1.230 1813 176.34.96.9
443 Close Waiting ec2-176-34-96-9.eu-west-1.compute.amazonaws.com
Ireland B https secure http (ssl), http protocol over
tls/ssl C:\Windows\System32\WWAHost.exe
HPNetworkCommunicatorCom.exe:10156 TCP 192.168.1.230 1706
192.168.1.6 8080 Established HP54EFB0 http-alt
common http proxy/second web server port, http alternate (see port
80) C:\Program Files\HP\HP Officejet Pro 276dw
MFP\Bin\HPNetworkCommunicatorCom.exe
explorer.exe:7608 TCP 192.168.1.230 1697 191.232.139.70
443 Established msnbot-191-232-139-70.search.msn.com
https secure http (ssl), http protocol over tls/ssl
C:\Windows\explorer.exe
NS:3500 TCP 192.168.1.230 1616 166.98.7.18 80
Established 166.98.7.18 United States B http hypertext
transfer protocol, world wide web http NS
avgsvca.exe:3056 TCP 192.168.1.230 1546 193.85.216.234
443 Established 193.85.216.234 Czech Republic C https
secure http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
System:4 TCP 192.168.1.230 139 N/A 0
Listening netbios-ssn netbios session service System
SDTray.exe:10448 TCP 127.0.0.1 21327 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDTray.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21323 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21322 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3296 TCP 127.0.0.1 21321 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3304 TCP 127.0.0.1 21320 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
chrome.exe:9144 TCP 127.0.0.1 5938 N/A 0
Listening Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 TCP 127.0.0.1 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:7292 TCP 127.0.0.1 1701 N/A 0
Listening l2f C:\Program Files (x86)\Nero\Nero
BackItUp\BackItUp.exe
http_ss_win_pro.exe:5328 TCP 0.0.0.0 53235 N/A 0
Listening Unknown C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0
Listening Unknown System
PCTel.exe:11156 TCP 0.0.0.0 9084 N/A 0
Listening Unknown C:\Program Files
(x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3164 TCP 0.0.0.0 8231 N/A
0 Listening Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0
Listening icslap icslap System
NS:3500 TCP 0.0.0.0 1661 N/A 0
Listening netview-aix-1 netview-aix-1 NS
NS:3500 TCP 0.0.0.0 1660 N/A 0
Listening skip-mc-gikreq skip-mc-gikreq NS
lsass.exe:904 TCP 0.0.0.0 1659 N/A 0
Listening sg-lm silicon grail license manager
C:\Windows\System32\lsass.exe
services.exe:896 TCP 0.0.0.0 1568 N/A 0
Listening tsspmap tsspmap
C:\Windows\System32\services.exe
Spooler:2448 TCP 0.0.0.0 1544 N/A 0
Listening aspeclmd aspeclmd Spooler
Schedule:1084 TCP 0.0.0.0 1538 N/A 0
Listening 3ds-lm 3ds-lm Schedule
EventLog:1352 TCP 0.0.0.0 1537 N/A 0
Listening sdsc-lm isi-lm EventLog
wininit.exe:808 TCP 0.0.0.0 1536 N/A 0
Listening ampr-inter ampr-inter
C:\Windows\System32\wininit.exe
WMPNetworkSvc:3284 TCP 0.0.0.0 554 N/A 0
Listening rtsp real time stream control protocol
WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0
Listening microsoft-ds microsoft-ds System
RpcSs:728 TCP 0.0.0.0 135 N/A 0
Listening epmap dce endpoint resolution, location
service, ncs local location broker RpcSs
simptcp:3572 TCP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:3572 TCP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:3572 TCP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:3572 TCP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:3572 TCP 0.0.0.0 7 N/A 0
Listening echo echo simptcp
SkypeHost.exe:7760 UDP 192.168.1.230 56552 N/A 0
Listening C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SSDPSRV:1360 UDP 192.168.1.230 51852 N/A 0
Listening SSDPSRV
SSDPSRV:1360 UDP 192.168.1.230 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0
Listening netbios-dgm netbios datagram service System
System:4 UDP 192.168.1.230 137 N/A 0
Listening netbios-ns netbios name service System
Skype.exe:10096 UDP 127.0.0.1 64616 N/A 0
Listening C:\Program Files
(x86)\Skype\Phone\Skype.exe
SSDPSRV:1360 UDP 127.0.0.1 51853 N/A 0
Listening SSDPSRV
SSDPSRV:1360 UDP 127.0.0.1 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
netprofm:1536 UDP 0.0.0.0 65070 N/A 0
Listening netprofm
AutoBackup.exe:10284 UDP 0.0.0.0 63451 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
FDResPub:1360 UDP 0.0.0.0 53878 N/A 0
Listening FDResPub
SDFSSvc.exe:3304 UDP 0.0.0.0 51857 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
dasHost.exe:2228 UDP 0.0.0.0 51854 N/A 0 Listening
C:\Windows\System32\dasHost.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51489 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51487 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51486 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:9904 UDP 0.0.0.0 51485 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
SDFSSvc.exe:3304 UDP 0.0.0.0 21328 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
PCTel.exe:11156 UDP 0.0.0.0 9084 N/A 0
Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:10284 UDP 0.0.0.0 6175 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
Dnscache:1612 UDP 0.0.0.0 5355 N/A 0
Listening Dnscache
Dnscache:1612 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS Dnscache
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:9144 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
PCTel.exe:11156 UDP 0.0.0.0 5060 N/A 0
Listening sip sip C:\Program Files
(x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:3284 UDP 0.0.0.0 5005 N/A 0
Listening avt-profile-2 avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:3284 UDP 0.0.0.0 5004 N/A 0
Listening avt-profile-1 avt-profile-1 WMPNetworkSvc
IKEEXT:1084 UDP 0.0.0.0 4500 N/A 0
Listening sae-urn sae-urn IKEEXT
dasHost.exe:2228 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2228 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
FDResPub:1360 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
FDResPub:1360 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
netprofm:1536 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
netprofm:1536 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
IKEEXT:1084 UDP 0.0.0.0 500 N/A 0
Listening isakmp isakmp key management, isakmp IKEEXT
W32Time:1536 UDP 0.0.0.0 123 N/A 0
Listening ntp network W32Time
simptcp:3572 UDP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:3572 UDP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:3572 UDP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:3572 UDP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:3572 UDP 0.0.0.0 7 N/A 0
Listening echo echo simptcp

Jeg har nå blokkert disse vertsmaskinene som anropes av noen
PC-programmer. Jeg har også avinstallert WWAHost.exe, uten at det ser ut
til å hjelpe på at PC'en henger seg i en 20-30 sekunder av og til,
spesielt når jeg er innom mail, Usenet og Internett-leseer.

--
Terje Henriksen
Kirkenes

Terje Henriksen

2016-02-21 12:03:06 UTC

Permalink

Nå har jeg blokkert en del gjentagende adresser, og det har plutselig
blitt mindre unormal trafikk. Kun et par forbindelser er oppe nå.

--
Terje Henriksen
Kirkenes

Terje Henriksen

2016-02-23 02:24:57 UTC

Permalink

Post by Terje Henriksen

Post by Terje Henriksen
For spesielt interesserte så er dette et øyeblikksbilde over hva som
foregår av Internett-kommunikasjon på PC'en min. Her er det nok mye, mye
mer enn det burde være. Det har vært mye PC-frysing den siste tiden som
kanskje kan skyldes noe av dette. Programmene er kanskje legitime
program, men jeg tror at hackere bruke legitime programmer i
virksomheten sin. DE avslører seg imidlertid på mengden.
http_ss_win_pro.exe:5064 UDP 0.0.0.0 64646 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
Nsauditor.exe:35308 TCP 192.168.1.230 22979 193.0.6.135
43 Close Waiting whois.ripe.net Netherlands C nicname
who is, nicname, usually to sri-nic C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
CoreSync.exe:8560 TCP 192.168.1.230 22977 52.48.208.58
443 Established ec2-52-48-208-58.eu-west-1.compute.amazonaws.com
United States A https secure http (ssl), http protocol over
tls/ssl C:\Program Files (x86)\Adobe\Adobe Creative
Cloud\CoreSync\CoreSync.exe
explorer.exe:5772 TCP 192.168.1.230 22973 23.43.134.135
80 Established a23-43-134-135.deploy.static.akamaitechnologies.com
United States A http hypertext transfer protocol, world wide
web http C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22972 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22971 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
chrome.exe:22932 TCP 192.168.1.230 22966 178.74.30.46
443 Established cache.google.com Norway B https secure
http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
SkypeHost.exe:10164 TCP 192.168.1.230 56552 N/A 0
Listening Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
CoreSync.exe:8560 TCP 192.168.1.230 22951 54.235.208.205
443 Established ec2-54-235-208-205.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
chrome.exe:22932 TCP 192.168.1.230 22724 192.168.1.51
8008 Established Chromecast http-alt http alternate
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22706 192.168.1.51
8009 Established Chromecast ajp13 Apache JServ Protocol
1.3 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22674 64.233.162.188
5228 Established li-in-f188.1e100.net United States A
Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Adobe Desktop Service.exe:5032 TCP 192.168.1.230 18224
54.225.77.38 443 Established
ec2-54-225-77-38.compute-1.amazonaws.com United States A
https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop
Service.exe
NS:2992 TCP 192.168.1.230 18206 166.98.7.18 80
Established 166.98.7.18 United States B http hypertext
transfer protocol, world wide web http NS
explorer.exe:5772 TCP 192.168.1.230 18194 191.232.139.57
443 Established msnbot-191-232-139-57.search.msn.com
https secure http (ssl), http protocol over tls/ssl
C:\Windows\explorer.exe
avgsvca.exe:2768 TCP 192.168.1.230 12566 193.85.216.230
443 Established 193.85.216.230 Czech Republic C https
secure http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
HPNetworkCommunicatorCom.exe:7472 TCP 192.168.1.230 11486
192.168.1.6 8080 Established HP54EFB0 http-alt
common http proxy/second web server port, http alternate (see port
80) C:\Program Files\HP\HP Officejet Pro 276dw
MFP\Bin\HPNetworkCommunicatorCom.exe
chrome.exe:22932 TCP 192.168.1.230 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:10784 TCP 192.168.1.230 3146 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3145 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3144 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3143 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3142 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3141 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3140 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3139 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3138 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3137 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3136 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3135 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3134 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3133 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3132 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3131 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3130 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3129 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3127 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3126 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3125 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
System:4 TCP 192.168.1.230 139 N/A 0
Listening netbios-ssn netbios session service System
SDTray.exe:8644 TCP 127.0.0.1 21327 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDTray.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21323 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21322 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3256 TCP 127.0.0.1 21321 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21320 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
Adobe Desktop Service.exe:5032 TCP 127.0.0.1 15292 N/A
0 Listening Unknown C:\Program Files (x86)\Common
Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
node.exe:14704 TCP 127.0.0.1 14212 N/A 0
Listening Unknown C:\Program Files (x86)\Adobe\Adobe
Creative Cloud\CCLibrary\libs\node.exe
chrome.exe:22932 TCP 127.0.0.1 5938 N/A 0
Listening Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 127.0.0.1 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:4764 TCP 127.0.0.1 1663 N/A 0
Listening netview-aix-3 netview-aix-3 C:\Program Files
(x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5064 TCP 0.0.0.0 53235 N/A 0
Listening Unknown C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0
Listening Unknown System
PCTel.exe:8536 TCP 0.0.0.0 9084 N/A 0
Listening Unknown C:\Program Files
(x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3004 TCP 0.0.0.0 8231 N/A
0 Listening Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0
Listening icslap icslap System
NS:2992 TCP 0.0.0.0 1711 N/A 0
Listening pptconference pptconference NS
NS:2992 TCP 0.0.0.0 1710 N/A 0
Listening impera impera NS
lsass.exe:848 TCP 0.0.0.0 1653 N/A 0
Listening alphatech-lm alphatech-lm
C:\Windows\System32\lsass.exe
services.exe:840 TCP 0.0.0.0 1573 N/A 0
Listening itscomm-ns itscomm-ns
C:\Windows\System32\services.exe
Spooler:2280 TCP 0.0.0.0 1545 N/A 0
Listening vistium-share vistium-share Spooler
Schedule:756 TCP 0.0.0.0 1538 N/A 0
Listening 3ds-lm 3ds-lm Schedule
EventLog:1232 TCP 0.0.0.0 1537 N/A 0
Listening sdsc-lm isi-lm EventLog
wininit.exe:764 TCP 0.0.0.0 1536 N/A 0
Listening ampr-inter ampr-inter
C:\Windows\System32\wininit.exe
WMPNetworkSvc:9276 TCP 0.0.0.0 554 N/A 0
Listening rtsp real time stream control protocol
WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0
Listening microsoft-ds microsoft-ds System
RpcSs:124 TCP 0.0.0.0 135 N/A 0
Listening epmap dce endpoint resolution, location
service, ncs local location broker RpcSs
simptcp:2560 TCP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 TCP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 TCP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 TCP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 TCP 0.0.0.0 7 N/A 0
Listening echo echo simptcp
SSDPSRV:1324 UDP 192.168.1.230 62796 N/A 0
Listening SSDPSRV
SkypeHost.exe:10164 UDP 192.168.1.230 56552 N/A 0
Listening C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SSDPSRV:1324 UDP 192.168.1.230 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0
Listening netbios-dgm netbios datagram service
System
System:4 UDP 192.168.1.230 137 N/A 0
Listening netbios-ns netbios name service System
SSDPSRV:1324 UDP 127.0.0.1 62797 N/A 0
Listening SSDPSRV
SSDPSRV:1324 UDP 127.0.0.1 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
netprofm:1404 UDP 0.0.0.0 62798 N/A 0
Listening netprofm
SDFSSvc.exe:3076 UDP 0.0.0.0 55684 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
FDResPub:1324 UDP 0.0.0.0 54141 N/A 0
Listening FDResPub
Nsauditor.exe:35308 UDP 0.0.0.0 52118 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52116 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52115 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52114 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
dasHost.exe:2084 UDP 0.0.0.0 51440 N/A 0 Listening
C:\Windows\System32\dasHost.exe
AutoBackup.exe:6740 UDP 0.0.0.0 51365 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
SDFSSvc.exe:3076 UDP 0.0.0.0 21328 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
PCTel.exe:8536 UDP 0.0.0.0 9084 N/A 0
Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:6740 UDP 0.0.0.0 6175 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
Dnscache:1492 UDP 0.0.0.0 5355 N/A 0
Listening Dnscache
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Dnscache:1492 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS Dnscache
PCTel.exe:8536 UDP 0.0.0.0 5060 N/A 0
Listening sip sip C:\Program Files
(x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:9276 UDP 0.0.0.0 5005 N/A 0
Listening avt-profile-2 avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:9276 UDP 0.0.0.0 5004 N/A 0
Listening avt-profile-1 avt-profile-1 WMPNetworkSvc
IKEEXT:756 UDP 0.0.0.0 4500 N/A 0
Listening sae-urn sae-urn IKEEXT
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
IKEEXT:756 UDP 0.0.0.0 500 N/A 0
Listening isakmp isakmp key management, isakmp
IKEEXT
W32Time:1404 UDP 0.0.0.0 123 N/A 0
Listening ntp network W32Time
simptcp:2560 UDP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 UDP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 UDP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 UDP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 UDP 0.0.0.0 7 N/A 0
Listening echo echo simptcp

Nå har jeg blokkert en del gjentagende adresser, og det har plutselig
blitt mindre unormal trafikk. Kun et par forbindelser er oppe nå.

PC'en eller skjermen min har fryst ganske mye i det siste, spesielt når
jeg har skrevet Usenet-meldinger og når jeg har surfet på Internett. I
natt var denne frysinga borte, så "noen" har kanskje stanset aktivieter
som forårsaket frysinga, eller noe har fjernet eller rettet noe som
forårsaket dem?

--
Terje Henriksen
Kirkenes

Terje Henriksen

2016-02-23 02:59:24 UTC

Permalink

Post by Terje Henriksen

Post by Terje Henriksen
For spesielt interesserte så er dette et øyeblikksbilde over hva som
foregår av Internett-kommunikasjon på PC'en min. Her er det nok mye, mye
mer enn det burde være. Det har vært mye PC-frysing den siste tiden som
kanskje kan skyldes noe av dette. Programmene er kanskje legitime
program, men jeg tror at hackere bruke legitime programmer i
virksomheten sin. DE avslører seg imidlertid på mengden.
http_ss_win_pro.exe:5064 UDP 0.0.0.0 64646 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
Nsauditor.exe:35308 TCP 192.168.1.230 22979 193.0.6.135
43 Close Waiting whois.ripe.net Netherlands C nicname
who is, nicname, usually to sri-nic C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
CoreSync.exe:8560 TCP 192.168.1.230 22977 52.48.208.58
443 Established ec2-52-48-208-58.eu-west-1.compute.amazonaws.com
United States A https secure http (ssl), http protocol over
tls/ssl C:\Program Files (x86)\Adobe\Adobe Creative
Cloud\CoreSync\CoreSync.exe
explorer.exe:5772 TCP 192.168.1.230 22973 23.43.134.135
80 Established a23-43-134-135.deploy.static.akamaitechnologies.com
United States A http hypertext transfer protocol, world wide
web http C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22972 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
explorer.exe:5772 TCP 192.168.1.230 22971 91.135.34.42
80 Established 91-135-34-42.static.customer.pronea.no Norway
A http hypertext transfer protocol, world wide web http
C:\Windows\explorer.exe
chrome.exe:22932 TCP 192.168.1.230 22966 178.74.30.46
443 Established cache.google.com Norway B https secure
http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
SkypeHost.exe:10164 TCP 192.168.1.230 56552 N/A 0
Listening Unknown C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
CoreSync.exe:8560 TCP 192.168.1.230 22951 54.235.208.205
443 Established ec2-54-235-208-205.compute-1.amazonaws.com United
States A https secure http (ssl), http protocol over tls/ssl
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
chrome.exe:22932 TCP 192.168.1.230 22724 192.168.1.51
8008 Established Chromecast http-alt http alternate
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22706 192.168.1.51
8009 Established Chromecast ajp13 Apache JServ Protocol
1.3 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 192.168.1.230 22674 64.233.162.188
5228 Established li-in-f188.1e100.net United States A
Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Adobe Desktop Service.exe:5032 TCP 192.168.1.230 18224
54.225.77.38 443 Established
ec2-54-225-77-38.compute-1.amazonaws.com United States A
https secure http (ssl), http protocol over tls/ssl C:\Program
Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop
Service.exe
NS:2992 TCP 192.168.1.230 18206 166.98.7.18 80
Established 166.98.7.18 United States B http hypertext
transfer protocol, world wide web http NS
explorer.exe:5772 TCP 192.168.1.230 18194 191.232.139.57
443 Established msnbot-191-232-139-57.search.msn.com
https secure http (ssl), http protocol over tls/ssl
C:\Windows\explorer.exe
avgsvca.exe:2768 TCP 192.168.1.230 12566 193.85.216.230
443 Established 193.85.216.230 Czech Republic C https
secure http (ssl), http protocol over tls/ssl C:\Program Files
(x86)\AVG\Framework\Common\avgsvca.exe
HPNetworkCommunicatorCom.exe:7472 TCP 192.168.1.230 11486
192.168.1.6 8080 Established HP54EFB0 http-alt
common http proxy/second web server port, http alternate (see port
80) C:\Program Files\HP\HP Officejet Pro 276dw
MFP\Bin\HPNetworkCommunicatorCom.exe
chrome.exe:22932 TCP 192.168.1.230 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
WWAHost.exe:10784 TCP 192.168.1.230 3146 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3145 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3144 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3143 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3142 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3141 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3140 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3139 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3138 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3137 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3136 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3135 23.223.20.64
443 Close Waiting
a23-223-20-64.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3134 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3133 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3132 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3131 23.223.21.154
443 Close Waiting
a23-223-21-154.deploy.static.akamaitechnologies.com United States
A https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3130 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3129 46.137.156.171
443 Close Waiting
ec2-46-137-156-171.eu-west-1.compute.amazonaws.com Ireland A
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3127 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3126 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
WWAHost.exe:10784 TCP 192.168.1.230 3125 176.34.121.101
443 Close Waiting
ec2-176-34-121-101.eu-west-1.compute.amazonaws.com Ireland B
https secure http (ssl), http protocol over tls/ssl
C:\Windows\System32\WWAHost.exe
System:4 TCP 192.168.1.230 139 N/A 0
Listening netbios-ssn netbios session service
System
SDTray.exe:8644 TCP 127.0.0.1 21327 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDTray.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21323 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21322 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
SDUpdSvc.exe:3256 TCP 127.0.0.1 21321 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDUpdSvc.exe
SDFSSvc.exe:3076 TCP 127.0.0.1 21320 N/A 0
Listening Unknown C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
Adobe Desktop Service.exe:5032 TCP 127.0.0.1 15292 N/A
0 Listening Unknown C:\Program Files (x86)\Common
Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
node.exe:14704 TCP 127.0.0.1 14212 N/A 0
Listening Unknown C:\Program Files (x86)\Adobe\Adobe
Creative Cloud\CCLibrary\libs\node.exe
chrome.exe:22932 TCP 127.0.0.1 5938 N/A 0
Listening Unknown C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 TCP 127.0.0.1 5556 N/A 0
Listening BO-Facil BO Facil C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
BackItUp.exe:4764 TCP 127.0.0.1 1663 N/A 0
Listening netview-aix-3 netview-aix-3 C:\Program Files
(x86)\Nero\Nero BackItUp\BackItUp.exe
http_ss_win_pro.exe:5064 TCP 0.0.0.0 53235 N/A 0
Listening Unknown C:\Program Files (x86)\Samsung\PC Auto
Backup\http_ss_win_pro.exe
System:4 TCP 0.0.0.0 26143 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 10243 N/A 0
Listening Unknown System
PCTel.exe:8536 TCP 0.0.0.0 9084 N/A 0
Listening Unknown C:\Program Files
(x86)\PC-Telephone\PCTel.exe
NeroBackItUpBackgroundService:3004 TCP 0.0.0.0 8231 N/A
0 Listening Unknown NeroBackItUpBackgroundService
System:4 TCP 0.0.0.0 5357 N/A 0
Listening Unknown System
System:4 TCP 0.0.0.0 2869 N/A 0
Listening icslap icslap System
NS:2992 TCP 0.0.0.0 1711 N/A 0
Listening pptconference pptconference NS
NS:2992 TCP 0.0.0.0 1710 N/A 0
Listening impera impera NS
lsass.exe:848 TCP 0.0.0.0 1653 N/A 0
Listening alphatech-lm alphatech-lm
C:\Windows\System32\lsass.exe
services.exe:840 TCP 0.0.0.0 1573 N/A 0
Listening itscomm-ns itscomm-ns
C:\Windows\System32\services.exe
Spooler:2280 TCP 0.0.0.0 1545 N/A 0
Listening vistium-share vistium-share Spooler
Schedule:756 TCP 0.0.0.0 1538 N/A 0
Listening 3ds-lm 3ds-lm Schedule
EventLog:1232 TCP 0.0.0.0 1537 N/A 0
Listening sdsc-lm isi-lm EventLog
wininit.exe:764 TCP 0.0.0.0 1536 N/A 0
Listening ampr-inter ampr-inter
C:\Windows\System32\wininit.exe
WMPNetworkSvc:9276 TCP 0.0.0.0 554 N/A 0
Listening rtsp real time stream control protocol
WMPNetworkSvc
System:4 TCP 0.0.0.0 445 N/A 0
Listening microsoft-ds microsoft-ds System
RpcSs:124 TCP 0.0.0.0 135 N/A 0
Listening epmap dce endpoint resolution, location
service, ncs local location broker RpcSs
simptcp:2560 TCP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 TCP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 TCP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 TCP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 TCP 0.0.0.0 7 N/A 0
Listening echo echo simptcp
SSDPSRV:1324 UDP 192.168.1.230 62796 N/A 0
Listening SSDPSRV
SkypeHost.exe:10164 UDP 192.168.1.230 56552 N/A 0
Listening C:\Program
Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
SSDPSRV:1324 UDP 192.168.1.230 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
System:4 UDP 192.168.1.230 138 N/A 0
Listening netbios-dgm netbios datagram service
System
System:4 UDP 192.168.1.230 137 N/A 0
Listening netbios-ns netbios name service System
SSDPSRV:1324 UDP 127.0.0.1 62797 N/A 0
Listening SSDPSRV
SSDPSRV:1324 UDP 127.0.0.1 1900 N/A 0
Listening ssdp Simple Service Discovery Protocol
SSDPSRV
netprofm:1404 UDP 0.0.0.0 62798 N/A 0
Listening netprofm
SDFSSvc.exe:3076 UDP 0.0.0.0 55684 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
FDResPub:1324 UDP 0.0.0.0 54141 N/A 0
Listening FDResPub
Nsauditor.exe:35308 UDP 0.0.0.0 52118 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52116 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52115 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
Nsauditor.exe:35308 UDP 0.0.0.0 52114 N/A 0
Listening C:\Program Files
(x86)\Nsauditor\Nsauditor.exe
dasHost.exe:2084 UDP 0.0.0.0 51440 N/A 0 Listening
C:\Windows\System32\dasHost.exe
AutoBackup.exe:6740 UDP 0.0.0.0 51365 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
SDFSSvc.exe:3076 UDP 0.0.0.0 21328 N/A 0
Listening C:\Program Files (x86)\Spybot - Search
& Destroy 2\SDFSSvc.exe
PCTel.exe:8536 UDP 0.0.0.0 9084 N/A 0
Listening C:\Program Files
(x86)\PC-Telephone\PCTel.exe
AutoBackup.exe:6740 UDP 0.0.0.0 6175 N/A 0
Listening C:\Program Files (x86)\Samsung\PC Auto
Backup\AutoBackup.exe
Dnscache:1492 UDP 0.0.0.0 5355 N/A 0
Listening Dnscache
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
chrome.exe:22932 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
Dnscache:1492 UDP 0.0.0.0 5353 N/A 0
Listening mdns Multicast DNS Dnscache
PCTel.exe:8536 UDP 0.0.0.0 5060 N/A 0
Listening sip sip C:\Program Files
(x86)\PC-Telephone\PCTel.exe
WMPNetworkSvc:9276 UDP 0.0.0.0 5005 N/A 0
Listening avt-profile-2 avt-profile-2 WMPNetworkSvc
WMPNetworkSvc:9276 UDP 0.0.0.0 5004 N/A 0
Listening avt-profile-1 avt-profile-1 WMPNetworkSvc
IKEEXT:756 UDP 0.0.0.0 4500 N/A 0
Listening sae-urn sae-urn IKEEXT
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
dasHost.exe:2084 UDP 0.0.0.0 3702 N/A 0 Listening
C:\Windows\System32\dasHost.exe
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
netprofm:1404 UDP 0.0.0.0 3702 N/A 0
Listening netprofm
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
FDResPub:1324 UDP 0.0.0.0 3702 N/A 0
Listening FDResPub
IKEEXT:756 UDP 0.0.0.0 500 N/A 0
Listening isakmp isakmp key management, isakmp
IKEEXT
W32Time:1404 UDP 0.0.0.0 123 N/A 0
Listening ntp network W32Time
simptcp:2560 UDP 0.0.0.0 19 N/A 0
Listening chargen ttytst source character generator,
character generator simptcp
simptcp:2560 UDP 0.0.0.0 17 N/A 0
Listening qotd quote of the day simptcp
simptcp:2560 UDP 0.0.0.0 13 N/A 0
Listening daytime daytime (rfc 867) simptcp
simptcp:2560 UDP 0.0.0.0 9 N/A 0
Listening discard sink null, discard simptcp
simptcp:2560 UDP 0.0.0.0 7 N/A 0
Listening echo echo simptcp

Nå har jeg blokkert en del gjentagende adresser, og det har plutselig
blitt mindre unormal trafikk. Kun et par forbindelser er oppe nå.

Mens jeg skrev innlegget over, "hørte" og delvis "så" jeg et vettskremt
kvinnfolk på sykehuset som trolig var redd for å bli slått fordi hun
ikke hadde gjort som hun var blitt befalt å gjøre.

--
Terje Henriksen
Kirkenes