a) app: googltalk.exe
parent: explorer.exe
proto: tcp out
dest: 127.0.0.1:4327
Firefox tries to use googletalk through OLE automation which can be sued to jijack other apps.
I didnt inititae such thing? What did?
And laso it suprises me that destination address is 127.0.0.1.
Can you pzl shed some light into it?
b) i see a lot of tcp outgoing echo requets oversized. more than 1472 bytes which i didnt ask for.
Whay this coulkd happen?
Plz expl in detail, thanks!
ps. I posted my box on rootcontest.org for security/vulnerability tesing.