URL:Mal infections messages everytime computer 'wakes up'

[REDACTED]

Could you please advise me how to eliminate any threats and the detection messages that are very frequently occurring due to a URL:Mal infection  ?

After every resumption of a Windows session from hibernation, and new session, we see a set of detection messages for something called URL:Mal coming from svchost.exe to a variety of addresses.  There don't appear to be any other issues with the computer , but we're concerned that these detections are inidcating a problem that needs to be resolved.  At minimum, the messages are annoying and we'd like to eliminate them.

I have followed the instructions at the "Logs to assist" topic, and attached the files indicated.

Here's an example, we see many of these 6 - 20 every day all at once, and then never again until a session resumes or a new session.
---------------
URL: http://alwaysisobar.com/4141/SystemVisual_142669159165880.dll
Infection: URL:Mal
Process: C:\Windows\System32\svchost.exe
---------------

[TwinHeadedEagle]

Hello,


Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

• Right-click on icon and select Run as Administrator to start the tool.
  
• Wait patiently until the main console will appear, it may take a minute or two.
• In the main box please paste in the following script:

Code: [Select]

createsrpoint;
autoclean;
bitsadmin /reset /allusers;b
emptyalltemp;
ipconfig /flushdns;b

• Make sure that Scan All Users option is checked.
  
• Push Run Script and wait patiently. The scan may take a couple of minutes.
  
• When the scan completes, a zoek-results logfile should open in notepad.
  
• If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.

[REDACTED]

OK.  Ran Zoesk.  PC rebooted.  Notepad displayed zoesk-results file now attached.

Haven't seen any errors yet, but it might be too soon to declare victory.
Please advise if there are any other steps you'd recommend.

[TwinHeadedEagle]

Let me know in few hours if everything is fine.

[REDACTED]

All is good here.  No issues since my last post, so it seems like you've solved it.

Thanks very much for your help.

[TwinHeadedEagle]

Post-cleanup procedures:

Download DelFix by Xplode and save it to your desktop.

• Run the tool by right click on the icon and Run as administrator option.
  
• Make sure that these ones are checked:
• Remove disinfection tools
• Purge system restore
• Reset system settings
• Push Run and wait until the tool completes his work.
  
• All tools we used should be gone. Tool will create an report for you (C:\DelFix.txt)
  

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.