Hello to all.
I have a browser (ie7 and opera) spyware issue that is caught by Trend Micro firewall but I cannot remove the incident from repeating using spybot, adaware or trend. Trend catches unauthorized access / transmission to the link below. A whois query shows it originates from Switzerland on PRQ INT servers.
Has anyone seen this or knows how to delete the periodic access?
Thank you
Trend firewall detection string:
http://88.80.5.21/check/checkin.php?cid=10...amp;v=9&m=0
A Whois 88.80.5.21 query result:
This is the RIPE Whois query server #1.
% The objects are in RPSL format.
%
% Note: the default output of the RIPE Whois server
% is changed. Your tools may need to be adjusted. See
% http://www.ripe.net/db/news/abuse-proposal-20050331.html
% for more details.
%
% Rights restricted by copyright.
% See http://www.ripe.net/db/copyright.html
% Note: This output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '88.80.2.0 - 88.80.7.255'
inetnum: 88.80.2.0 - 88.80.7.255
netname: PRQ-NET-COLO
descr: prq Inet POP STH3
descr: Co-located customer servers
country: SE
admin-c: pIN7-RIPE
tech-c: pIN7-RIPE
status: ASSIGNED PA
mnt-by: MNT-PRQ
source: RIPE # Filtered
role: prq Inet NOC
address: prq Inet
Box 1206
SE 11479 Stockholm
Sweden
phone: +46 (0)8 50003150
remarks: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
remarks: !! Abuse reports should ONLY be sent to abuse@prq.se !!
remarks: !! Do NOT call unless it's very urgent !!
remarks: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
admin-c: PW1115-RIPE
admin-c: AC9661-RIPE
tech-c: PW1115-RIPE
tech-c: AC9661-RIPE
nic-hdl: pIN7-RIPE
mnt-by: MNT-PRQ
source: RIPE # Filtered
abuse-mailbox: abuse@prq.se
% Information related to '88.80.0.0/19AS33837'
route: 88.80.0.0/19
descr: prq Inet aggregated route
origin: AS33837
mnt-by: MNT-PRQ
source: RIPE # Filtered