Digital-Kaos - Infection detected IP: 174.132.157.30

Try clearing your browsers cache or try another browser.

That IP is located at ThePlanet which is a hosting company that we don't use.

The server security is not flagging up any malware.

I already cleaned cache and all tmp from HDD, deleted all cookies and I tried with Sea Monkey and IE... the same problem, and only at this web.

strange.

Think you may have to dig deeper in your pc with some cleansing/antivirus software..spybot comes to mind?


B

Of course I already scanned with Spyboot - Search & destroy and found nothing.

Any recommendation for other good Anti/virus-spyboot ?

thx

Malwarebytes antimalware.

If you post in the pc section i'm sure somebody will help you with it.

Run a HiJack This Log in safemode and post the results.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:42:33, on 06-08-09
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\APPLIC\FIREBIRD\bin\fbguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\tcpsvcs.exe
C:\APPLIC\FIREBIRD\bin\fbserver.exe
C:\Program Files\DUMeter\DUMeter.exe
C:\Program Files\Power Manager\PM.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\mozilla.org\SeaMonkey\seamonkey.exe
C:\Program Files\wincmd\TOTALCMD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 1001 Online Games - Play Free Online Games
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DUMeter\DUMeter.exe
O4 - HKLM\..\Run: [PowerManager] C:\Program Files\Power Manager\PM.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~2\MICROS~2\INetRepl.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~2\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~2\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\APPLIC\FIREBIRD\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\APPLIC\FIREBIRD\bin\fbserver.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

--
End of file - 3388 bytes

incidently what browser were you using when you got this error and do you get this if you use a different browser...?

It looks like IE is your primary browser, can you try Opera or Firefox 3.5 with the Noscript plugin/addon installed...

My default browser it is SeaMonkey 1.1.17.
I also have IE 6 on laptop... but I not use it.

I seen this error on both browsers ( I specially tested with IE ) and strange error come only to this site, and only from this week.

if you have cleaned out your broswers etc, dont all the routine checks i dont see how youre getting this error... try on another browser?

who knows.... maybe it is a bug in Malwarebytes'.

I get same error when running malware anti on IE8. malicious IP 174.132.157.30 and 218.7.68.210

All our testing show we are clean.

Google Safe Browsing diagnostic page for digital-kaos.co.uk

Not blaming ya DF. I think its a common problem with malware Anti, it does it on most sites I've noticed, so I just turned the IP protection bugger off.

mine only started doing that after l opened a virus last week and clean the system ? lets me view dk tho , just pops up a window now and again


think l know why now

this address is on the same service and this and is blacklisted by malware quantumcontrol.net/ 174.132.157.30 same as here