Possible FP?

I got this alert randomly when I opened Chrome. I have Avast! free, Malwarebytes PRO, and Superantispyware, and did quick scans with all 3 and found nothing but the usual cookies.

hxxp://107.191.108.68:22222/favicon.ico
URL:MAL

Is this a FP? I quickly closed out of Chrome, and opened it again but the alert didn’t go off.

I also should say Chrome is not my default browser. Firefox is. I use Chrome occasionally for some things I can’t do on Firefox. According to Avast’s program updater, it’s also out of date. The reason I haven’t updated Chrome yet is because every time I try it from Avast’s program updater, it hangs on “preparing” and the last time this happened, I just waited and Chrome just updated itself one day. So I thought I’d wait it out.

Thank you for looking into this!

URL:Mal means URL or IP is blacklited for whatever reason, there can be many

see instructions here https://forum.avast.com/index.php?topic=53253.0
scroll down to Farbar Recovery Scan Tool … run as instructed and attach the two diagnostic logs

when done a malware removal expert will assist you…there may be some waiting time

Here are the FRST logs…

That generally means one of the icons in your favourites folder for chrome has a little addition to it. Reset all your favourites and see if that cures it

Hi guibin and essexboy,

From the IP and port probe flagged, we can conclude that the following has been going on:

Victim has been in contact with an IP from RAMNODE-9, meaning an Android.Riskware.SMSReg.CS bitcoin malware or banking malware.
Could have been any of the probes for malcode mentioned here: http://www.adminsub.net/tcp-udp-port-finder/22222
My guesses and bets are set on: RUX The TIc.K, as we have seen more of these lately, also victims with this here in the “virus and worms”.

polonus (volunteer website analyzer and error-hunter)