?
Solved

Compromised?

Posted on 2009-07-10
1
Medium Priority
?
176 Views
Last Modified: 2013-12-04
Saw the below in my logs. I do have network analyzers on my machine, but they were not running at the time. Is my box hosed?  I am seeing this for lsass.exe and svchost.exe

Its a fully patched xp machine with antivirus software. Is someone sniffing my box?
The Windows Firewall has detected an application listening for incoming traffic.
 
Name: Communicator
Path: C:\Program Files\Microsoft Office Communicator\communicator.exe
Process identifier: 21616
User account: mbrown
User domain: BBS

Open in new window

0
Comment
Question by:WERAracer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 9

Accepted Solution

by:
hmare earned 2000 total points
ID: 24823943
Office communicator is supposed to listen for incoming traffic. Sometimes a firewall needs to be told that certain software is trusted (If you trust it)
0

Featured Post

Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many people tend to confuse the function of a virus with the one of adware, this misunderstanding of the basic of what each software is and how it operates causes users and organizations to take the wrong security measures that would protect them ag…
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…
Suggested Courses
Course of the Month10 days, 20 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question