does anyone know what URL:CardStealer is? Avast blocked it three times today and it just keeps happening, so I think its a virus. However, neither Avast nor Windows found anything.
You may misunderstand what an "URL" threat means. It indicates that
a link to a domain is blacklisted as having been found to host some
malware or other threats in the past. As it is often listed by the
domain name and not a specific threat at that domain, you may get
an alert even when you are not actually tying to access an actual
threat (infected file, etc.).
Further, the attempt to access that domain (URL) may be embedded
in the HTML code for some other site that you are visiting. It
is not necessary for you to have explicitly tried to access that
domain yourself.
As an "URL" threat refers to a potential threat at some remote site,
it is usually pointless to go scanning *your* computer looking for
malware related to such an alert.
However, in this case since 0 of 91 security vendors at Virus Total
flag
http://ocspDOTdigicertDOTcom as a threat it may well be a false
positive. Ironic given that digicert is a security service - a
certificate provider AFAIK.