After installing Kaspersky Pure 3.0 last friday, February 7, after upgrading from Kaspersky Internet Security 2013, I find that whenever I browse to a website, there is that constant "establishing secure connection" at the bottom. I feel safer knowing this, but ever since installing Kaspersky Pure 3.0, I have found that whenever I try to log into hotmail, I get the following message below. For any of those familiar with Gyazo, it is a picture sharing site. For those who don't recognize the image sharing site, I have also copy pasted the message I see into the body of the message in addition to a direct screen capture through the prnt scrn function.
The 2 times I did proceed, on both my hotmail accounts, I changed the password immediately, on a site that had a trusted green https icon. Both times, kaspersky received a request from the "East India Trading Company," which I prompty blocked. I have already emailed microsoft on the matter and asked to send the reply to a different email. This never happened on Kaspersky Internet Security. I assume the "secure connection" has a role in this? I tried creating a totally brand new account and I still got the same SSL error, so my account definitely wasn't compromised.
I'm not sure whether hotmail has been compromised, or if Kaspersky Internet Security 2013 simply couldn't detect what Kaspersky Pure 3.0 is detecting? But, chrome is reporting the error, and there is no pop up for Kaspersky warning about a malicious drive-by-download or URL. Any insight into what's going on?
I'm really desperate to figure out just what the heck is going on here.
This is probably not the site you are looking for!
You attempted to reach blu168.mail.live.com, but instead you actually reached a server identifying itself as mail.live.com. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of blu168.mail.live.com.
You should not proceed, especially if you have never seen this warning before for this site.
Proceed anyway Back to safety
Help me understand
When you connect to a secure website, the server hosting that site presents your browser with something called a "certificate" to verify its identity. This certificate contains identity information, such as the address of the website, which is verified by a third party that your computer trusts. By checking that the address in the certificate matches the address of the website, it is possible to verify that you are securely communicating with the website you intended, and not a third party (such as an attacker on your network).
In this case, the address listed in the certificate does not match the address of the website your browser tried to go to. One possible reason for this is that your communications are being intercepted by an attacker who is presenting a certificate for a different website, which would cause a mismatch. Another possible reason is that the server is set up to return the same certificate for multiple websites, including the one you are attempting to visit, even though that certificate is not valid for all of those websites. Google Chrome can say for sure that you reached mail.live.com, but cannot verify that that is the same site as blu168.mail.live.com which you intended to reach. If you proceed, Chrome will not check for any further name mismatches.