I was just browsing a website which i know is 100% safe and out of the blue I get a message from my firewall saying it has blocked a website.
What site were you browsing and how do you know it is safe? Sites are hacked all the time.
As for the IP blocked;
Much is noted here; http://www.robtex.co...x?q=220.127.116.11
More info incl blocklists; http://www.robtex.co...18.104.22.168.html
Note; No page view was allowed.
GET / HTTP/1.1
User-Agent: Mikey/0.02 [fu] (Win67; X; SK)
Accept-Encoding: gzip, deflate
If-Modified-Since: Mon, 09 Nov 2009 08:38:30 GMT
Connection: keep-aliveBrowser reload detected...
HTTP/1.1 200 OK
Date: Wed, 23 Jun 2010 02:33:39 GMT
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny3 with Suhosin-Patch
Last-Modified: Mon, 09 Nov 2009 08:38:30 GMT
Content-Type: text/htmlBlockList 764: in AdKeys, line 14
Match 764: Banner Blaster (limit text)
Match 764: Kill pop-up windows
Match 764: Stop browser window resizing
<end> 764: Restore pop-ups after a page loads
BlockList 765: in Bypass, line 19
Browser reload detected...
Fiddler Source Capture; http://voiceofthepub...22.214.171.124.txt
I've scanned my computer several times and it's clean
BTW IMO a reactionary scanner that depends on definitions can NOT and NEVER will be able to tell whether your sys is 'clean' or not.
Edited by mikey, 22 June 2010 - 09:22 PM.