I had just typed in
www.google.com in Chrome's address bar and opened google search page (actually it is redirected to
https://www.google.it, but that's fine, as I am in Italy)...
besides I was taking a glance at the SimilarWeb chrome extension I installed recently
https://chrome.google.com/webstore/detail/similarweb-site-traffic-s/hoklmmgfnpapgjgcpechhaamimifchmp (a pop-up showing the ranking of each site and more info)...
then an Avast "Infection Blocked" window popped-up:
Infection Details:
URL: h
XXp://69.28.58.10/favicon.ico
[URL broken so as to avoid accidental exposure, like DavidR suggested]
Infection: URL:Mal
Process: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
An IP Lookup says that 69. 28. 58. 10 belongs with web10. alexiadns. com
Let me add that:
It's the first detection.
I have Hardened mode enabled (Aggressive), UOC set to always, and double check all programs before install with virustotal.com
Also I don't run js on sites I don't trust.
I use opendns.
According to MBAM scan, PC is clean.
Therefore I am inclined to think it was either a FP or the infected favicon was blocked anyway before it could do harm.