Re: ZAP false positive security warnings
Sorry, I was going to address the expert rule, but got sidetracked. Unfortunately an expert rule will not help at all. All it will tell you is your computer tried connecting to the net. It won't tell you what program. But, and I don't know if this will do you any good, is to reset the settings Database and then connect to the internet, and don't do anything to the net, but only approve programs to have access to the net. This will generate a PE entry in the log, and then you could look there. But you would have to monitor the TCP/IP traffic until it tries to go to the site you mention (I think you said its using a couple different IP address's or that its changing). Does that make sense?
My homes are [url=http://spywarehammer.com/simplemachinesforum/index.php][b][color=#000099]SpywareHammer.com[/color][/b][/url] and [url=http://zonealarm.donhoover.net/index.html][b][color=#000099]DonHoover.net[/color][/b][/url] and [url=http://www.bleepingcomputer.com/][b][color=#000099]BleepingComputer.com[/color][/b][/url]
Consumer Security - 2011 & 2012
Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families