Here is output of "netstat -anbo 1 >> netstat.out2.txt": TCP 192.168.5.96:1213 64.4.241.49:443 TIME_WAIT 0 UDP 0.0.0.0:500 *:* 824 [lsass.exe] 64.4.241.49 is, according to networksolutions.com, registered to paypal.com. I do not use paypal. I have no paypal accounts. Why would lsass.exe make this query to paypal on port 443?! Is it ever acting as a stub resolver? May be I visited a website that had a link apypal, and it had to be resolved? I know for sure I have not visited paypal on this PC probably ever. I did search for lsass.exe - three instances were found: 1. c:\windows\system32 2. c:\windows\system32\dllcache 3. C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e

Hi, This issue may occur if you have visited any website which contains paypal links. If there are no other abnormal activities, we dont need to worry about it. If there is any unwanted process, please let us know more information about it. Its suggested to check your Firewall Rules and scan your system regularly. Thanks. This posting is provided "AS IS" with no warranties, and confers no rights.