For those of you who have properly configured your comodo 3 firewall you may have noticed its allways blocking svchost.exe from accessing the internet. like to IP 22.214.171.124 shown in the below screenie. I think these IPs belong to microsft? The only place svchost.exe needs to connect to is your DNS server via port 53. people using Online Armor will notice that this is set by default that OA only allows svchost.exe to connect to your DNS Anyway my question is this "with windows auto updates turned off" Why is svchost.exe allways trying to connect to microsoft ? What information is svchost.exe trying to send to microsoft ?