There is actually a thread about this but when i wanted to post there, it says "thread is too old, please start a new one", so.. here you go. It is a fresh Windows Vista SP2 install. Using Avira Anti-Virus Premium and Onlina Armor 220.127.116.11 (paid version.) It is a "out of the box" install, changed nothing, except for the "firewall log" entry and unchecked "mail shield", which i don't need. I downloaded leaktest.exe (v.1.2) from GRC site. When i tried to open the leaktest.exe, OA give me the warning about if i allow the program start or not. I clicked allow. (That is because it is a warning about program start, not creating a outbond connection. I expect that i must get another warning about leaktest when it tries to connect the internet. This is why OA has "program shield" and "firewall" options. In another words, if i uncheck the "program shield" and leave only "firewall" checked, i still must get a warning about programs trying to connect somewhere. At least i think this is what a firewall must do.) Anyway, program started. Voila! Some info about updating OASIS database and OA asked me if i allow it to connect internet or not. I clicked "block". And leaktest.exe said to me it succesfully connected to GRC.. Interesting. I repeated the test again. (At first time, i didn't check any of the "remember my decision" boxes.) OA asked again if i allow or not. I clicked yes. Leaktest.exe started. And connected to GRC once again and this time, OA didn't warned me. For the next step, i unchecked "program shield" to see it will make any difference or not and tried the test. As i mentioned, even if the program shield isn't active, i expect a warning about outbond connections, still. Leaktest.exe started, connected to GRC, OA didn't reported anything.. Interesting? I thought there must be something wrong with my installation of OA or Wİndows. Tried to check carefully. Re-formatted Windows one week ago, so no bloaty Windows. Check. Using only Avira Antivirus, no conflicts. Check. Didn't change anything for OA install (except for the two things i mentioned above). Check. So? Something with the OASIS database maybe? I am really confused. Here is my firewall log, if anyone wants to take a look. ( ı changed only my user name.) Type,Date/Time,Action,Description Program Guard,30.05.2009 13:08:12,Blocked,C:\Users\.....\Documents\Downloads\Programs\LeakTest.exe(404 wants to use C:\Windows\system32\svchost.exe(1540) Program Guard,30.05.2009 13:08:06,Allowed,C:\Users\......\Documents\Downloads\Programs\LeakTest.exe Program Guard,30.05.2009 13:06:41,Blocked,C:\Users\......\Documents\Downloads\Programs\LeakTest.exe(518 wants to use C:\Windows\system32\svchost.exe(1540) Program Guard,30.05.2009 13:06:39,Allowed,C:\Users\.....\Documents\Downloads\Programs\LeakTest.exe Program Guard,30.05.2009 13:05:58,Blocked,C:\Users\......\Documents\Downloads\Programs\LeakTest.exe(4116) wants to use C:\Windows\system32\svchost.exe(1540) Firewall: User decision,30.05.2009 13:05:55,Blocked,"C:\Users\.....\Documents\Downloads\Programs\LeakTest.exe, Outgoing ICMP access blocked" Program Guard,30.05.2009 13:05:43,Allowed,C:\Users\.....\Documents\Downloads\Programs\LeakTest.exe And this is the screenshot, you can also see firewall automatically allowed leaktest.exe in the log view. (This can not be seen in the log above, i wanted to take a ss, started the leaktest.exe again, and seen that it has also granted access.) http://img9.imageshack.us/img9/2269/grc1p.jpg So; 1) Is this a bug? 2) Something wrong with my installation? 3) Or, when you allow a program to run in OA, it automatically grant internet access too? If this is the case, i think it is a really bad thing.