Online PC Gaming - IP-Blocked - Infection Concern - IP Trace?

ShadowRaidTech

Honorable
Apr 1, 2013
2
0
10,510
PLEASE READ FULLY
(also if this is in the wrong section, please let me know!)

I was on battlelog (100% necessary for battlefield 3 PC version) browsing the servers section. I did not join one, but I was just looking at their rules/info/etc.

Malwarebytes Pro blocked a 'potentially malicious site'. This is the second time it has happened on battlelog and it seems to be the same IP. Should i be concerned that my PC could be infected? And is there any way to find out where these IPs are from?

Now, with the most recent block, I did click on a server set in germany. I did not join it though. I was just veiwing it's stats, rules, player ammount, etc.

Recent Log:
2013/08/31 01:16:41 -0500 TRANSFORMERX Raiden MESSAGE Executing scheduled update: Daily
2013/08/31 01:16:48 -0500 TRANSFORMERX Raiden MESSAGE Scheduled update executed successfully: database updated from version v2013.08.30.02 to version v2013.08.31.02
2013/08/31 01:16:48 -0500 TRANSFORMERX Raiden MESSAGE Starting database refresh
2013/08/31 01:16:48 -0500 TRANSFORMERX Raiden MESSAGE Stopping IP protection
2013/08/31 01:16:48 -0500 TRANSFORMERX Raiden MESSAGE IP Protection stopped successfully
2013/08/31 01:16:59 -0500 TRANSFORMERX Raiden MESSAGE Database refreshed successfully
2013/08/31 01:16:59 -0500 TRANSFORMERX Raiden MESSAGE Starting IP protection
2013/08/31 01:17:00 -0500 TRANSFORMERX Raiden MESSAGE IP Protection started successfully
2013/08/31 12:40:54 -0500 TRANSFORMERX Raiden IP-BLOCK 83.222.109.20 (Type: outgoing, Port: 8)
2013/08/31 12:41:03 -0500 TRANSFORMERX Raiden IP-BLOCK 83.222.109.20 (Type: outgoing, Port: 8)

Previous log:
2013/08/18 01:22:38 -0500 TRANSFORMERX Raiden MESSAGE Executing scheduled update: Daily
2013/08/18 01:22:45 -0500 TRANSFORMERX Raiden MESSAGE Scheduled update executed successfully: database updated from version v2013.08.16.07 to version v2013.08.17.04
2013/08/18 01:22:45 -0500 TRANSFORMERX Raiden MESSAGE Starting database refresh
2013/08/18 01:22:46 -0500 TRANSFORMERX Raiden MESSAGE Stopping IP protection
2013/08/18 01:22:46 -0500 TRANSFORMERX Raiden MESSAGE IP Protection stopped successfully
2013/08/18 01:22:49 -0500 TRANSFORMERX Raiden MESSAGE Database refreshed successfully
2013/08/18 01:22:49 -0500 TRANSFORMERX Raiden MESSAGE Starting IP protection
2013/08/18 01:22:55 -0500 TRANSFORMERX Raiden MESSAGE IP Protection started successfully
2013/08/18 16:25:24 -0500 TRANSFORMERX Raiden IP-BLOCK 83.222.109.20 (Type: outgoing, Port: 8)
2013/08/18 16:25:24 -0500 TRANSFORMERX Raiden IP-BLOCK 83.222.109.20 (Type: outgoing, Port: 8)
2013/08/18 16:25:24 -0500 TRANSFORMERX Raiden IP-BLOCK 83.222.109.20 (Type: outgoing, Port: 8)

________________

A similar situation happened while on skype and browsing on firefox:

Log for Skype:
2013/07/13 01:12:33 -0500 TRANSFORMERX Raiden MESSAGE Executing scheduled update: Daily
2013/07/13 01:12:40 -0500 TRANSFORMERX Raiden MESSAGE Scheduled update executed successfully: database updated from version v2013.07.12.05 to version v2013.07.13.03
2013/07/13 01:12:40 -0500 TRANSFORMERX Raiden MESSAGE Starting database refresh
2013/07/13 01:12:40 -0500 TRANSFORMERX Raiden MESSAGE Stopping IP protection
2013/07/13 01:12:40 -0500 TRANSFORMERX Raiden MESSAGE IP Protection stopped successfully
2013/07/13 01:13:00 -0500 TRANSFORMERX Raiden MESSAGE Database refreshed successfully
2013/07/13 01:13:00 -0500 TRANSFORMERX Raiden MESSAGE Starting IP protection
2013/07/13 01:13:05 -0500 TRANSFORMERX Raiden MESSAGE IP Protection started successfully
2013/07/13 19:24:07 -0500 TRANSFORMERX Raiden IP-BLOCK 89.28.51.71 (Type: outgoing, Port: 57519, Process: skype.exe)
2013/07/13 19:24:07 -0500 TRANSFORMERX Raiden IP-BLOCK 89.28.51.71 (Type: outgoing, Port: 57520, Process: skype.exe)
2013/07/13 19:24:07 -0500 TRANSFORMERX Raiden IP-BLOCK 89.28.51.71 (Type: outgoing, Port: 57521, Process: skype.exe)
2013/07/13 19:24:07 -0500 TRANSFORMERX Raiden IP-BLOCK 89.28.51.71 (Type: outgoing, Port: 57522, Process: skype.exe)

Log for FireFox:
2013/08/29 01:11:09 -0500 TRANSFORMERX Raiden MESSAGE Executing scheduled update: Daily
2013/08/29 01:11:18 -0500 TRANSFORMERX Raiden MESSAGE Scheduled update executed successfully: database updated from version v2013.08.28.01 to version v2013.08.29.03
2013/08/29 01:11:18 -0500 TRANSFORMERX Raiden MESSAGE Starting database refresh
2013/08/29 01:11:19 -0500 TRANSFORMERX Raiden MESSAGE Stopping IP protection
2013/08/29 01:11:19 -0500 TRANSFORMERX Raiden MESSAGE IP Protection stopped successfully
2013/08/29 01:11:29 -0500 TRANSFORMERX Raiden MESSAGE Database refreshed successfully
2013/08/29 01:11:29 -0500 TRANSFORMERX Raiden MESSAGE Starting IP protection
2013/08/29 01:11:31 -0500 TRANSFORMERX Raiden MESSAGE IP Protection started successfully
2013/08/29 15:10:17 -0500 TRANSFORMERX Raiden IP-BLOCK 117.21.224.31 (Type: outgoing, Port: 49270, Process: firefox.exe)

_____________________

These are the only 4 blocks I've gotten. I have been able to play Battlefield 3 a couple of times with no blocking from Malwarebytes afterwards.

I'm not one to go to random sites. I tend to stick to the same ones I've been going to for years. I also try to avoid downloading from file hosting sites. I mainly get my software from Ninite and Piriform. I've also got adblock plus installed on my browsers.

I'm also concerned about these blocked IPs being "outgoing".

My security/cleaning software is:
Microsoft Security Essentials (Weekly Full Scan)
Malwarebytes Pro (Bi-weekly Full Scan, Monthly Flash Scan)
Spybot Search & Destroy 1.6.2 (last scan: Aug 17th)
CCleaner

Dates of IP blocks:
July 13
August 18
August 29
August 31

I do plan on running scans in safe-mode here after while. I may update with the results.

I do know steps to defend and remove infections. However, I am new to the field and haven't gained much experience outside of my A+ certification. So i'm looking for some veteran/more experienced advice.

I'd also like to know a safe site to trace/reverse track IPs if that's possible.
 
Solution
It seems your program is blocking every outgoing connection to other sites / ip's ..so first I'd suggest to check for it's settings..
Those ips seems to be fine while you are using official services , so it's your program that reads it as some malicious activity.

mx_mp210

Honorable
May 25, 2013
6
0
10,520
It seems your program is blocking every outgoing connection to other sites / ip's ..so first I'd suggest to check for it's settings..
Those ips seems to be fine while you are using official services , so it's your program that reads it as some malicious activity.
 
Solution

ShadowRaidTech

Honorable
Apr 1, 2013
2
0
10,510


Thank you, that puts my mind at ease a bit