|
Posted by Malke on January 3, 2006, 7:53 am
If you were Registered and logged in, you could reply and use other advanced thread options
Debbie Kwarta wrote:
>> Windows NT Logon Application is trying to use
>> Generic Host Process for Win32 services to act as a server.
>> Application: winlogon.exe
>> Source IP 0.0.0.0 Port 135
>
> Since this is the first time I've run ZoneAlarm, I'm confused
> as to what this firewall program is trying to tell me when it
> also reports:
>
> ZoneAlarm Security Alert
> Blocked
> Windows NT Logon Application not allowed to use cssauth
> to connect to 127.0.0.1 Port 6060.
> Program: Windows NT Logon Application
>
> Again, I don't find anyone with this particular error when I google.
> Why would I have these alerts that nobody else has?
>
> Are they so common that nobody else bothered to ask?
> Or are they so rare that I got a bug that nobody else got?
>
> If you saw these two alerts on your machine, what would you do?
> I need your advice & help.
>
Do you have an IBM? Googling for "cssauth" brings up several links that
show the file being here:
C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauth.exe
Do a search for cssauth.exe on your machine and post back with the full
path to where it lives.
To be certain your machine is clean, do the normal troubleshooting:
http://www.elephantboycomputers.com/page2.html#Removing_Malware
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
| 
XML site map