The new forums will be named Coin Return (based on the most recent vote)! You can check on the status and timeline of the transition to the new forums here.
The Guiding Principles and New Rules document is now in effect.
So what the hell is svchost/rpcss/epmap...
Ledneh
shinesquawkRegistered User regular
shinesquawkRegistered User regular
...and why the hell is it raping my machine's CPU use?
Well, raping is a pretty strong word. But after my reformat last night I noticed that I'm getting odd burps in my performance. Like max power for 5 seconds, a 1-2 second burp, then repeat. So I watched the task manager for a while, and saw that svchost.exe was rising to 20% CPU infrequently then dropping back down again. Once in a while csrss.exe burps too.
A bit of skullduggery later, I find out that this svchost.exe is responsible for the RPCSS service, whatever that stands for, and I can't turn it off without shutting down windows. This particular one I found out has a connection listening on port "epmap" according to tcpview. I can't figure anything about csrss.exe.
So my questions follow:
1) Have I been haxored? Being behind a firewall and router, and not being stupid with my internet practices, I sort of doubt it, but I've been wrong before.
2) What the hell is epmap? Google was oddly unhelpful for me on this one.
3) Has anyone else run into either of these situations, and knows what to do about it?
Thanks folks.
Well, raping is a pretty strong word. But after my reformat last night I noticed that I'm getting odd burps in my performance. Like max power for 5 seconds, a 1-2 second burp, then repeat. So I watched the task manager for a while, and saw that svchost.exe was rising to 20% CPU infrequently then dropping back down again. Once in a while csrss.exe burps too.
A bit of skullduggery later, I find out that this svchost.exe is responsible for the RPCSS service, whatever that stands for, and I can't turn it off without shutting down windows. This particular one I found out has a connection listening on port "epmap" according to tcpview. I can't figure anything about csrss.exe.
So my questions follow:
1) Have I been haxored? Being behind a firewall and router, and not being stupid with my internet practices, I sort of doubt it, but I've been wrong before.
2) What the hell is epmap? Google was oddly unhelpful for me on this one.
3) Has anyone else run into either of these situations, and knows what to do about it?
Thanks folks.
Ledneh on
0
Posts
hmmmm.
I just figured one part out at least, epmap is another name for port 135. Whatever the hell happens on that port must be causing my issues, but my router/firewall blocks that by default far as I can see. So RPCSS is listening on port 135 for something.
What happens on port 135?
(edit) There's no non-Microsoft services listed that I don't recognize, so no go there
Invaluable to someone with your questions
XBL Michael Spencer || Wii 6007 6812 1605 7315 || PSN MichaelSpencerJr || Steam Michael_Spencer || Ham NOØK
QRZ || My last known GPS coordinates: FindU or APRS.fi (Car antenna feed line busted -- no ham radio for me X__X )
1) how do I disable all bubbles from windows? I don't care that windows firewall is disabled.
2) what can I use to change exactly what starts up? I don't want microsoft messenger starting up.
1)a)Click Start, click Run, type regedit, and then press ENTER.
b)Navigate to the following subkey:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
c)Right-click the right pane, create a new DWORD value, and then name it EnableBalloonTips.
d)Double-click this new entry, and then give it a hexadecimal value of 0.
e)Log off and back on.
Be warned: the registry is a great place to wreck your Windows install, mess with it at your own peril
2)If it's not in your Start Menu "Startup" folder, try going to Start-Run, type in msconfig and hit Enter, then check the Startup tab.
HTH
Edit: IIRC you can stop messenger starting up by going into the program options as well.