If in doubt, always deny first. Under normal circumstances you do not want to permit inbound connections unless you are running a server app of some sort. Are you getting prompts for all unsolicited inbounds? Do you have a block all inbound rule at the end of your rule set? Regards, CrazyM
mon ami... LSASS.EXE shouldnt be connecting anywhere IMO... here's a link... http://www.dnsstuff.com/tools/ptr.ch?ip=83.110.108.144 another link
old thread https://www.wilderssecurity.com/showthread.php?t=3240 other forum http://forums.speedguide.net/showthread.php?t=171785 read what ipgrunt has said.