That could be bad. It sounds like a firewall was blocking your access to torproject.org. That is common because Tor is considered proxy bypass software. You downloaded the browser bundle from somewhere, but you can't remember where. Most likely it was not from torproject.org. It could have been an old package archived on another site, which is why you kept getting those messages about it being outdated, or it could have been a compromised TBB. You really need to be more careful. You should only download TBB from torproject.org. You should check the signature, which is under the orange download button, at the link titled "sig". Whenever you download a new bundle, you should have a PGP program with you, with Erinn Clark's key in your key chain, so you can verify the signature. Instructions on doing that are here: https://www.torproject.org/docs/verifying-signatures.html.en Those instructions can always be found in the "what is this" link next to the "sig" link. tl;dr A verified signature on your browser bundle signficantly reduces your chances of getting MITM'ed, although the same low probability threat of connecting to malicious relays still applies.