unknown connections showing in netstat
I ran 'netstat -n' directly following a clean reboot (msconfig to clear all startup processes, etc.) and found 6 connections, 4 of which begin with 127.0.0.1 so I'm going to assume these are safe since that is localhost as far as I know regardless of port #. (was still strange to see that I can connected to 'myself, can someone explain why?)
I was also connected to 2 foreign IPs, one of which appears to belong to google. Both of these were on port 80. I have all software and extra processes disabled so why would I still have a connection to google even with TIME_WAIT as its state? My web browser was not open at the time.
And Lastly, the most important question i have involves an IP that I was unable to identify via google. 18.104.22.168 on port 80
Putting this in web browser took me to someones website I think? It is a very common format for simply hosting files, I don't know what to call it but.... It says 'Index of /" at the top and then shows a list of files/folders. The applications included things like Mozilla, not a particularly stunning website... So why on earth do I have a connection in the ESTABLISHED state to 22.214.171.124 after a clean reboot with no programs running at all?
edit: Also I was unaware that websites could connect you to other websites without your permission. For example I now have an ESTABLISHED connection to 126.96.36.199 which is facebook but I never use fb! I'm assuming its cause there is an ad for following TSF on facebook in the lower right...