I noticed entries in Norton history yesterday stating that I had made changes to firewall rules (which I hadn’t) and that network resources had been accessed: The following entries appeared

‘you created firewall rules to manage how local security authority process accesses your network resources:

Prog name: local security authority process
Prog path: c:\windows\system32\lsass.exe
default action: no action required
action taken: user configured rule
local computer: 0.0.0.0,49155
traffic destination: inbound TCP port 49155

This is followed by an entry saying ‘you allowed local security authority process to access your network resources (details as above. Local computer ::0, 49155. No action required, action taken: allowed).

There is then another entry saying ‘you created firewall rule to manage how services and controller applications access your network resources.

Prog name: services and controller application
prog path: c:\windows\system32\services.exe
local computer: ::0, 49159
traffic description: inbound tcp, port 49159

And this is again followed by an entry detailing that ‘you allowed services and controller application to access your network resources’. Prog name and path as above, local computer: 0.0.0.0 49159, traffic description as above).

I’m a bit concerned seeing as I didn’t make any changes to Norton’s firewall.  Advice welcome!

NIS 2011. OS: windows 7 home premium service pack 1, 64 bit.