SVCHOST.EXE shows 100% in Traffic section (Comodo FWall)

I have some suspicions in file svchost.exe because it shows 100% processing in Comodo Firewalls Traffic section. Is it normal or should I be worried about it? :-\

I have bluetooth and wireless disabled so noone cant get into my computer from there- im a security freak. 88)

I scanned my C: with MalwareBytes AntiMalware and with HijackThis and they didnt found anything. Only that HijackThis did a long LOG file which looks to me like a “alien language”. :-[

I use NOD32 as my anti-virus and Comodo as my firewall. All are UP to DATE! Windows Update was set to check every day, but i changed it to “Check every friday”. My internet went much faster when i SET svchost.exe inbound connection to be blocked!
NOD32 is set to scan very deeply every connection/file! Comodo shows 100% Traffic for this (ekrn.exe) every time when internet is connected. Its normal i guess. Sometimes the ekrn.exe (NOD32) file switches with svchost.exe file so 100% Traffic is shown for this file.

How can I be sure that no-one is watching my computer screen or viewing it remotely somehow…??? Comodo is a cure for that?

I added the HiJackThis log file too for the post. Thanks for reading my problem.

[attachment deleted by admin]

Hello Priito. Welcome to the Forums.

Please check this thread as it may answer your question.

Ive read this post before. Seems that EveryDay Windows Update did the overload in Comodo Traffic section.

I have another problem.
I put my computer on “sleep” mode and it sleeped like about 2 hours, then it did a sound (like when logging on windows) and seemed like it shut down. I tryed to turn it on immediately but i had to wait about 2 minutes when the “Turn ON” button took effect. But computer was still on sleep mode. I checked the Event Viewer and I saved few screenshots to you to understand my problem.

Is someone lurking my computers screen?? What is that WIA and what it does? ???
LAN cable wasnt plugged in- no internet then! And what is IPSec?

[attachment deleted by admin]

WIA, as found on Wikipedia:
“Windows Image Acquisition (WIA; sometimes also called Windows Imaging Architecture) is a Microsoft driver model and application programming interface (API) for Microsoft Windows 2000 and later operating systems that enables graphics software to communicate with imaging hardware such as scanners, digital cameras and Digital Video-equipment. It was first introduced in 2000 as part of Windows Me, and continues to be the standard imaging device and API model through successive Windows versions. It is implemented as an on-demand service in Windows XP and later Windows operating systems[1].”

Also from Wikipedia, IPSec:
"Internet Protocol Security (IPsec) is a suite of protocols for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a data stream. IPsec also includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used to protect data flows between a pair of hosts (e.g. computer users or servers), between a pair of security gateways (e.g. routers or firewalls), or between a security gateway and a host. [1]

IPsec is a dual mode, end-to-end, security scheme operating at the Internet Layer of the Internet Protocol Suite, which is approximately Layer 3 in the OSI model. Some other Internet security systems in widespread use, such as SSL, TLS and SSH, operate in the upper layers of these models. IPsec is more flexible, operating as it does at a lower level in the stack, since it can be used for protecting more traffic (ie, all those above layer 2), because applications need not be designed to use IPsec, whereas the use of TLS/SSL or other higher-layer protocols must be incorporated into the design of applications at that level.

IPsec is a successor of the ISO standard NLSP (Network Layer Security Protocol). The NLSP protocol was based on the SP3 protocol that was published by NIST, but designed by the Secure Data Network System project of the NSA.

‘IPsec’ is officially specified by the Internet Engineering Task Force (IETF), including the capitalization of the term."

Does this help you any?

Well… now when I know what these things do I can think out some ways to block those. I just dont get it… its somekind of security hole or what? Ive read that information about IPSEC before from Windows Help and It gave me nothing… :frowning:
Is this Imaging Device service can be used somehow to monitor user computer over the internet?? Im like worried as s… :-X

How can I (what programs to use) detect monitoring in my computer and how can I block such spyware?

Anyone!!! Heeeelp. ;D

… seriously ???

[attachment deleted by admin]

About your other problem sleep mode have you checked your power settings.
My partners computer goes into hibernation mode approx one hour after sleep mode.

I know thaat! My gfs lap does the same. But i think ts not the proooblem.

I want to know how I can detect if some foreign dude monitors my desktop?? Is it possible to detect it and then block all kind of ways how its working? Ive heard its very easy to monitor someones desktop over the internet if you know his/her IP. Thats why im worried.

:frowning: Is there anyone whod help me with this question?!

And i found something. Comodo wrote down some loggings. (See the PICTURE). Whats going on with that 138 port? In computer management it shows harddrive is shared as “IPC$”. Is it possible that someone is downloading files from my computer over the internet? I added a picture to show this management part.

[attachment deleted by admin]