I was on Hotmail today and I received a warning from NIS 2011 that said it had blocked an attempted intrusion by HTTP FakeAV Webpage Request 1.  The attacking computer was identified as 212.124.113.155, the URL was nonsper.com/stats...  I have had these from time to time on Hotmail but this time a whole page opened up in Norton's colors that said that the page I was being directed to was known to be malicious and gave me two choices, either to exit the page or proceed on to the page.  At the same time I got the small warning window at the lower right of the screen that said that Norton had blocked an intrusion attempt.  Previously, I had only gotten the small window on the right of the screen, no full screen page had opened.  My modem has an on/off switch so I switched the modem off and clicked the button that said exit the page at which point the browser moved to a blank page--possibly because I had turned the modem off.  There did not appear to be another way to exit the fullscreen webpage.

My questions:

Is this malicious FakeAV Webpage attack related to ads in the frame of the Hotmail web site?  It only happens sometimes and seems to happen when the ads change--to the extent that I actually notice the ads.

When the full screen page (in Norton's colors and with Norton graphics) opened, is that from Norton (I had never received that before, so is it new with NIS 2011) or was that part of the FakeAV Webpage attack?  If it was malicious does that mean my machine is infected with something that Norton couldn't stop/detect?

How can I stop this from happening in the future?  Is Hotmail failing to protect its customers by insufficiently screening their ads for malicious content?  Should they be notified?  If so, how as  Micrisoft doesn't really seem to want to hear from their customers given how difficult it is to find an e-mail address for them.

Thanks.