Last night my good-old Atguard firewall warned me that an outbound session was trying to “leave” my computer towards an (as I found out later) ip-adres in New York.
The application who was trying this was WinMX, Atguard named this port “doom (666)”.
Strangely enough a day earlier the same WinMX was trying to establish an outbound ftp session to another ip-adres (have not traced this one yet)
Should I be worried that my WinMX is infected with a trojan?
