The mbam logs where 100% clean! As was the avast full scan. But all the warnings had one thing in common. The URL was always something to do with yontoo layers. I recently installed the free trial of nd02 (it’s a normal mapping software application) and part of its installation included yontoo layers. I have no idea why as it is my understanding that yontoo layers has to do with facebook.

Anyway, I uninstalled yontoo and the warnings have stopped. I posted a message on both the ndo2 forums and yontoo forums that yontoo is being detected ass malware.

The warning looked like …

url: hxxps://yontoo:layers…
app: …/chrome.exe
??: Al