I have V3 with Build 276 on XP Pro 32 bit. Also running Norton Anti Virus and Spysweeper (gelded because CFW does not play nice with it).
Today, on the CFW Summary page, I noted 15 outbound connections. Upon investigation, found the following suspicious activity:
-
1 UDP connection outbound from me to 65.54.227.136.3544. “WHOIS” says thats Microsoft. I terminated the connection. Call me paranoid, but I can’t think why Microsoft needs an outbound connection from me. I am wondering if I should make a rule to block outbound svchost udp to that IP address. Anyone have any idea why I may or may not want to allow that connection?
-
11 outbound TCP connections from me (192.168.0.100. various 4 digit numbers) back to myself at 192.168.0.100.5678. These connectiuon refuse to stay terminated as well. Any one have an idea what this is all about? Should I make a rule to block it?
Thanks in advance.