Symantec's CCAPP.EXE contacts Verisign without my asking

Hello,

PE shows that C:\program files\common files\symantec shared\CCAPP.EXE contacts a verisign server (for instance, 64.94.110.11) everytime the computer is on. PID=192. TCP. Local port 3125. Remote port 80. Packets sent and received. I left a voice mail for the operator at Verisign in charge of that server: no response. It has been weeks now.

CCAPP.EXE is important in controlling how Norton Antivirus 2003 runs (and I have NAV 2003's "autoprotect" on). However, I didn't know that my computer was contacting Verisign until I installed PE.

There are many NAV users out there. Do you notice this phenomenon? Does Symantec have a contract with Verisign (both a computer security firm and a Internet registrar) to get CCAPP to exchange information with Verisign?

Pigitus

 

Could it be that Symantec use Verisign servers under contract for updates?

I am sure Symantec users will comment

Pilli

 

Dear Pigitus,
I run Symantec NIS and AV and yes ccapp.exe does connect with ctrl.verisign automatically, I was under the impression it was for auto updating. I did a trace on the address, I believe it was in Holland.
I dont think it is unusual.
Gordon

 

LowWaterMark,

Thanks for your explanation and link. I'm reassured now that there is nothing terribly bad going on through this surreptitious connection that I only found out about through PE. As far as I am concerned, this thread can be closed now.

Pigitus.

 

i don't care so much about what ccApp.exe is doing; i'm just mad as all heck that it and one other app gobble up about 80-85% of my system's resources, mostly cpu, for several minutes after i boot the system!

this is intolerable and didn't happen until a few months ago.

if symantec doesn't do something about this soon, i'm leaving for other virus and internet protection vendors!

plusaf at plusaf dot com.