I wasn't on that website though, I was on a well-known safe site. Could someone please explain what happened?
Not sure what site you are thinking you weren't on, but can you tell me what was the legitimate site that you were
on? Did you download or try to download a PDF file?
I don't use Norton, but best I can tell it was doing its job and blocked a malicious PDF file download.http://www.symantec.com/business/security_....jsp?asid=23218
However, because they use the word "suspicious", it could also be a false positive. As recommended in the Symanatec article, scan with Norton, and then your other security scanners and see if anything turns up. BTW, ignore their recommendation to turn off System Restore before a scan--it is a ridiculous practice by Norton and other AV companies.
Also go to Adobe's website and make sure you have the latest version of Reader. Older versions are vulnerable to attack so should be kept at the latest version.
The whois for the IP address does not have to be for the particular web page or site you are on. The one you posted resolves to a web hosting company, which is probably where the PDF file is stored and probably was linked to on the site you did visit. Or was somehow redirected there.
Edited by Papakid, 05 October 2009 - 11:03 AM.