Hi all, On one of my PC's, when I login to desktop (XP Pro SP2) I receive several (approximately 8 ) outbound traffic - internet alerts from ESS (in interactive mode). This happens everytime I reboot the PC. The request is for an application called "Generic Host Process for Win32 Services" and the publisher is "Microsoft Windows Publisher". The remote port is always 123 (ntp) but the remote computer's host name and IP address vary with each of the 8 to 10 alerts being for different hosts with the same remote computers appearing every time, but sometimes different ones appear as well. I have been denying these requests to be safe. I'm worried that this might be some kind of spyware or malware infection - just thought I'd ask here first. Many thanks in advance for any advice. Cheers, Steve.