Pop-up Message from Avast

[trezomd]

Infection Details
   http://mciupdate.com/mcicidupdate.php?ci...
Process:   C:\Users\Deborah\AppData\Local\Temp\Tray...
Infection:   URL:Mal

I keep getting this message from Avast.  What is it and do I need to do anything?  Thanks.

[essexboy]

Do you have Anti-phishing Domain Advisor on your computer

[trezomd]

I do not.

[essexboy]

Could you follow the inital steps here http://forum.avast.com/index.php?topic=53253.0
Up to and including OTL and then attach the logs in this thread

[Secondmineboy]

Hello,

The Website is blacklisted by Norton. Cause it has an Drive-By-Download on it.

http://sitecheck.sucuri.net/results/mciupdate.com/mcicidupdate.php
http://safeweb.norton.com/report/show?url=mciupdate.com%2Fmcicidupdate.php

The Last one is in German.

[trezomd]

Attached are the first log (S1) AdwCleaner and mbam-log.

[essexboy]

OK the main data will be in the OTL log, are you still getting the alerts ?

[trezomd]

Attached are OTL.Txt and Extras.Txt logs.  I got an alert earlier while I was in the middle of running the scans.

[trezomd]

Do I need to do anything about this post?  Thanks.

The Website is blacklisted by Norton. Cause it has an Drive-By-Download on it.

http://sitecheck.sucuri.net/results/mciupdate.com/mcicidupdate.php

[trezomd]

I just got a message again "URL Blocked"

[essexboy]

Does this occur in all browser or just one ?

Also did you install this programme InboxAce


Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  
  
  

Code: [Select]

:Commands
[CREATERESTOREPOINT]

:OTL
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1257237249-4141612660-2727000358-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1257237249-4141612660-2727000358-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4:64bit: - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AutoLoader] C:\Users\Deborah\AppData\Local\Temp\Traymonitor.exe ()

:Commands
[resethosts]
[emptytemp]
[Reboot]

• Then click the Run Fix button at the top
  
• Let the program run unhindered, reboot the PC when it is done
• Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

[trezomd]

Pop-up occurs in Google and Firefox.

[trezomd]

I have not run InboxAce.  Shall I do that now?  Then OTL again?

[trezomd]

I ran the OTL Run Fix and attached the log.

[essexboy]

No I was just curious as to whether you had installed the programme

Are you still getting the alerts