* Home Help Search Login Register  

Welcome, Guest. Please login or register.
Did you miss your activation email?
May 25, 2013, 07:33:50 PM

Login with username, password and session length

664089 Posts
70638 Topics
145267 Members
Latest Member: SebastianJu

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Security Products & Services
| |-+  Comodo Internet Security - CIS
| | |-+  Help - CIS
| | | |-+  Firewall Help - CIS
| | | | |-+  svchost.exe outbound udp to Centregate Research		 « previous next »
Pages: [1] Go Down Print
Author Topic: svchost.exe outbound udp to Centregate Research  (Read 3254 times)
cavehomme
Comodo's Hero
*****
Offline Offline

Posts: 304
« on: October 12, 2010, 04:50:54 AM »
I noticed this morning that svchost.exe is connecting outbound UDP to IP address 156.154.70.22 and it does it every few minutes.

When I lookup this IP address it is assigned to -

156.154.70.22 - Geo Information
IP Address    156.154.70.22
Host    156.154.70.22
Location    US US, United States
City    Sterling, VA 20166
Organization    NEUSTAR
ISP    NEUSTAR
AS Number    AS12008 Centergate Research, LLC.

Can anyone throw any light as to what this connection is all about please, before I get too worried  Shocked
Logged
Windows 7 HP 32
Firewall: Windows
AV: CAV, Hitman Pro
Browser: Comodo IceDragon
Comodo DNS enabled
cavehomme
Comodo's Hero
*****
Offline Offline

Posts: 304
« Reply #1 on: October 12, 2010, 06:22:24 AM »
I think  that I may have answered my own question. According to Wireshark this IP is connecting to downloads.comodo.com

It is a pity that extra tools are needed to investigate these kinds of things and that IP lookups and further details are not available within CIS.
Logged
Windows 7 HP 32
Firewall: Windows
AV: CAV, Hitman Pro
Browser: Comodo IceDragon
Comodo DNS enabled
EricJH
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 16723
« Reply #2 on: October 12, 2010, 06:36:13 PM »
The IP address is one of the two addresses of Secure DNS:
156.154.70.22
156.154.71.22
Logged
Please read: Introduction to the 5.x Sandbox
With CIS v4 my p2p client (uTorrent, e Mule...) is not working properly anymore
cavehomme
Comodo's Hero
*****
Offline Offline

Posts: 304
« Reply #3 on: October 13, 2010, 04:54:04 AM »
OK that makes sense, thanks
Logged
Windows 7 HP 32
Firewall: Windows
AV: CAV, Hitman Pro
Browser: Comodo IceDragon
Comodo DNS enabled
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Certificate Free Virus Removal Firewall
Page created in 0.053 seconds with 23 queries.
Powered by SMF 1.1.18 | SMF © 2006, Simple Machines Design by 7dana.com