Hi all, recently I have had some grief with some hackers/script kiddies?. Luckily my nod32 AV dealt with them well. However, one thing that does concern me is that prior to the warnings from nod32, outpost warned me of an application change and I mistakenly allowed it...I know stupid huh! The trouble is, I have difficulty in determining whether to allow or not; generally I allow when I have a launched a new service from an application etc, or when something has been updated. Is there a rule of thumb that I might adhere to, so that I will be better prepared in the future? Also and as a side note, nod32 sprang into action and spotted the trojan trying to enter my computer but ewido did not - ridiculous considering its an anti-trojan program! thanks, WWHG.