Hi, Since I have installed Kerio Personal Firewall 4.0, I have denied the UDP on port 53 in inbound and outbound. Then, while surfing on the net, I am frequently receiving kerio's alerts (often by block of telling me that Services and Controller App (c:\winnt\system32\services.exe) as been blocked in outbound on various ports (1039, 1799, 1807, 1892, 1926, 1905) but always at the same IP address 184.108.40.206:domain !!! If it is just a backdoor, it's ok, I am blocking it. But if it is a virus, I could eradicate it by erasing the files and/or keys that run this process. But which virus would it be? My AntivirusKitPro12 doesn't detect any virus, but as it is a trial version, i am not sure it is fully reliable and I don't want to change it yet, as I am testing it... What do you think of it? Could it be a virus? If so, which one? Thanks for your help!