Now on two separate computers, the first yesterday afternoon, and the second this morning, I am intermittently getting blocked urls.
The symbols "" (UTF-8 stuff) show up on the page.
Parts of it are as follows: (I replaced the actual url with x's).
Trend Micro OfficeScan Event |
|
|
|
|
|
|
|
|
|
The URL that you are attempting to access is a potential security risk. Trend Micro OfficeScan has blocked this URL in keeping with network security policy. |
|
URL: |
http://www.xxxxx.cfm |
|
Risk Level: |
High |
|
Details: |
For more information about this URL or to report it to Trend Micro for reclassification,visit http://reclassify.wrs.trendmicro.com. |
|
|
|
|
|
|
|
|
|
|
|
Trend Micro OfficeScan 10
|
|
Thing is, I have not installed any Trend Micro products on either of these two systems, Following TrendMicro's steps to uninstall, I cannot find TrendMicro in my Startup area, in Program Files (x86), or in HKLM\Software. DLLs that are supposed to exist in System32 are not there. It is also not listed in Programs and Features.
My virus definitions are up to date. I have run scans using Microsoft Essentials, Microsft Security Scan, malwarebytes freeware, and Symantec and all are clean.
I am suspicious because:
- I have never installed Trend Micro on my machines (that I know of).
- Trend Micro does not appear to be in the appropriate places if it was properly installed.
- The site blocking is intermittent.
I have surfed for some info on this and at least as of the moment, I do not see any reports of this product being made available by my ISP and it does not appear to be installed on my system.
If this is a real TrendMicro product, I do not appreciate them installing it on my machines
a) without my permission, and
b) in a way that cannot be un-installed.
Giving TrendMicro the benefit of the doubt, this has got to be an infection - but why has no one else complained about this yet?
I would appreciate any clarification available.
Thanks,
Bob.