My firewall is showing outgoing connections on port 137 to a variety of external IP addresses (about 15 or so) - none that are familiar. This leads me to believe something rogue running, but I've done virus scan, spybot, adaware, defender, etc. and nothing is showing up.
I ran TCPView and the only process that is using that port is "System:4" ... That process is using the other NetBIOS ports 138 and 139 too. I dont believe I have any need for NetBios but before turning it off or blocking this port all together, I'd like to get to the bottom of what is going on.