I recently installed Norton Personal Firewall 2005 on my computer. Since doing that, randomly throughout the day I have been receiving "Alerts" that indicate that a remote system is attempting to connect to my computer using Windows XP program svchost.exe. The "Alert" then gives me several courses of action, but recommends "Always Permit".
Now the question for the resident experts! I have traced many of the IP addresses shown in the alerts and they lead back to various IP owners, most of which have no known (to me) need to be connecting to my machine. Can someone enlighten me regarding such connection attempts? I presume it must not be considered a significant security risk because of Symantec's "Always Permit" recommendation, but am exceedingly curious about the need and the nature of such connection attempts.
Early on, I responded to one such Alert by indicating "Always Block" and found that to be a big mistake. The Personal Firewall subsequently blocked all of my own Internet connection attempts!
Thanks in advance for any enlightenment that can be offered.
C.