The Windows XP firewall is pretty good at blocking inbound attacks, but other firewall programs can help you monitor, and stop, programs on your computer 'dialling out' with your info.
As well as Zonealarm there's a few other free ones listed here
http://www.firewallguide.com/freeware.htm