Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
Hello all, my Zone alarm is asking me if I will allow the following........"Generic Host Process for Win32 services to accept connections from the internet". IP 204.127.204 .8:DNS; application SVCHost.exe version 5.1.2600.0 (xpclient.010817-1148)
I have tried to find out info on Google, and I can't locate any info on this, so I have not been allowing the (whatever it is) to access the internet. If anyone could direct me to a "look-up" site where I could read up on various things like this, I would be very grateful. Thank You! ~Misty
you have a trojan! just do a search on svchost.exe and google will give you lots of hits. for example : http://www.klake.org/~jt/malware/svchost/
you do have adaware, spybot S&D installed, update & run them weekly?
0 
I don't use ZoneAlarm,but these links might help you,anyway....I'm sure you could get some good suggestions at the ZA forums...And some of the ZA users here.
Microsoft Knowledge Base Article - 314056 / A Description of Svchost.exe in Windows XP
0
Don't be alarmed Misty Generic Host process for win32 services is a legitimate process and NEEDS to connect to the internet.
Most windows XP users have 4-5 svchost.exe running at any one time on their systems.
Although there IS a similar virus which runs under the the name of svchost, the one you are describing is a normal process.If you denied access to generic host process, you wouldn't be able to access some servers. Email access would be disrupted and you'd have other connection probelems, such as losing your internet connection altogther.
Don't be alarmed Misty Generic Host process for win32 services is a legitimate process and NEEDS to connect to the internet.Most windows XP users have 4-5 svchost.exe running at any one time on their systems.
Although there IS a similar virus which runs under the the name of svchost, the one you are describing is a normal process.If you denied access to generic host process, you wouldn't be able to access some servers. Email access would be disrupted and you'd have other connection probelems, such as losing your internet connection altogther.
Hope that Helps.
Kevin.
0
LMAO. :O
Sorry for the duplicate paragraphs, accidently pasted my original message twice. :S
and that 1 typo should read: connection PROBLEMS
OK you can stop laughing now :0
0
Thank you all very much! I didn't think I was infected with a trojan because I faithfully scan with GFI trojanscan, and it always comes up clean. I also use Spybot and Adaware, and keep up with the latest MS critical updates.
Kevin, I'll bet that is why I sometimes receive an error in my Outlook Express, something about an error "port 110 - 0x800ccc0d". I have been denying the SVChost permission to access, so I now wonder if that is why I periodically get those error reports.When I received the errors, I went ahead and ticked the (tools, int. options, advanced) "use TLS 1.0"; in fact, all 3 of them are ticked - do you know if those 3 ticked boxes are correct????
Maybe I should go back and un-tick the TLS 1.0; that was the way it always was. I'll wait untill I hear further - I'll leave all alone for now. Can you please advise me what to do with those 3 check boxes regarding TLS?? Thank you so much for helping me!!!! ~Misty
0
Hi Misty,
That was a good question about whether to allow TLS 1.0 in the advanced tab. I've got mine set to "use SSL 2.0 and use SSL 3.0", however "use TLS 1.0" is UNTICKED. Bear in mind these are the default settings and think that is how it's meant to stay.
I've had mine set like this for ages, no security risks whatsoever, as SSL 2.0 & 3.0 provides Cryptographic security between two parties, which provides very good security.
"The TLS Record Protocol is used for encapsulation of various higher level protocols. One such encapsulated protocol, the TLS Handshake Protocol, allows the server and client to authenticate each other and to negotiate an encryption algorithm and cryptographic keys before the application protocol transmits or receives its first byte of data".
Judging by the above paragraph I think that IS your problem. :D
Hope That Helps.
Kevin.
0
Thank you kevin, so much for the info. I'm going to re-set the setting as to what you mentioned - that is also the way mine was set; I changed it because of those errors I was getting. But I feel confident in putting it back the way it was.
I did e-mail Comcast about the errors I get, but as usual, they don't respond. I'm very disappointed with Comcast - lousy customer service. I do like the high speed internet, but if you ask questions of them, forget it!!
I've gotten so much help on this forum - it is great! If by chance I am able to troubleshoot my 0x800cccod (port 110) error, I'll post here and continue on this thread - maybe it will help someone else too, that's having problems like me. btw... I received the error again this morning when I went to Outlook Express to see if I had mail. Damn thing is frustrating me!!!!! Misty
0
Hey no sweat Misty,
IMHO most ISPs like to avoid technical questions and alot of them refuse to answer any calls or emails at all, but if you call the sales dept, they're very quick to respond lol. I used to call up the sales dept when customer services seemed like it never existed than tell them I wanted to speak to customer services, worked everytime :D
One Solution ISPs give for the 0x800cccod error is to uninstall & re-install TCP/IP.
Uninstall & Re-install TCP/IP
(Scroll down to the appropriate paragraph).The problem has been discussed in various forums, most say the ISP is at fault, others say it indicates there is something wrong with your Outlook Express settings.
"0x800cccod and 0x800CCCOE are the address that Outlook express goes and looks for email, the program it uses to get it and your username and password".To check the settings:
Click on "Tools" and then on "Accounts".
Click on the account that is causing problems and then click on "Properties".
On the "General" tab check that the email address correct.
On the "Servers" tab the incoming mail should read: pop.account.com
The outgoing mail should read: smtp.X.com
(X being your ISP)Tip: mistyping "smtp" as "smpt" is a very common mistake. Well one of mine anyway. :D
HTH.
Kevin.
0
I have a problem with this so called "service" as well, it seems to be giving me trouble. whenever i install a device driver or software such as Direct X 9.0 it performs an error and shuts down (not the computer, just the service). I believe that because of this my computer is not allowing me to install Direct X 9.0b. Because the Generic Host Process for Win32 services thing shuts down i think it cant do the windows logo passing thing. I get an error saying that "this software has not passed logo testing". Keep in mind that this is for Direct X 9, not device driver software. Does anyone know how I can fix this and if I have a virus because of it or spyware ? You can email me (just click on my name on this post to get my email) if you know anything about this. Thank You.
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
