The whatever it is that wants to contact kernel32.dll turns out to be local host 255.255.255.255 so must be a baddie. SFC says that kernel32.dll has not been modified or corrupted. Who/what ever is doing this is not just taking a poke at my PC. It must be having a go at others. So has anyone else been annoyed by him/it?
This might mean something to the elect. I just dislike the blackhole bit. OrgName: Internet Assigned Numbers Authority OrgID: IANA Address: 4676 Admiralty Way, Suite 330 City: Marina del Rey StateProv: CA PostalCode: 90292-6695 Country: US
NetRange: 10.0.0.0 - 10.255.255.255 CIDR: 10.0.0.0/8 NetName: RESERVED-10 NetHandle: NET-10-0-0-0-1 Parent: NetType: IANA Special Use NameServer: BLACKHOLE-1.IANA.ORG NameServer: BLACKHOLE-2.IANA.ORG Comment: This block is reserved for special purposes. Comment: Please see RFC 1918 for additional information. Comment: RegDate: Updated: 2002-09-12
OrgAbuseHandle: IANA-IP-ARIN OrgAbuseName: Internet Corporation for Assigned
I think Kernel32.dll,looks for netbios browsing,responces/reguests/and sesions so it may be runnibg as part of you firewall blocking procedure for these netbios ports.Just an idea. I know mine listens for those things same OS.
MichelleC thankyou- did dial.exe search result nil. Â ÑÌÇKÑÂMË thankyou too. I'm not well informed enough to know what you mean about kernel32.dll checking netbios ports. I don't really know what these are but when I've checked security it comes up as all stealthed- net bios ports are properly protected. Only thing is why should it suddenly start when it didn't bother before?