This problem of being redirected started with a Malware infection. I was browsing the Internet (using Firefox 3.5.6) for game downloads, after following a link to a website my computer took a pretty hard hit. I never clicked on anything to choose a download, and was leaving the site to check out other leads. Windows alerts came up telling me my Firewall had been shut off, and next my antivirus (Symantec Antivirus) was shut off. I was totally taken off guard and had no idea yet what was taking place. The next thing was I see a notice about "downloads completed" and "Media Pass" was being installed on my computer. At this point Symantec is struggling and popping warnings that I have been infected with "Downloader and Trojan.Vundo". The first thing I do is disconnect from the Internet. Symantec wants me to reboot to remove the risk, I do this but keep getting reinfected. I decide to go to "Safe Mode" to work from there. My computer won't go into "Safe Mode", I'm getting a stop error BSOD. I don't know if this is due to the virus or a problem that I had and was unaware of. From this point I leave this computer off the Internet and get on a spare computer looking for answers. I download Malwarebytes and attempt to install but the virus won't let me finish. I find out about using the Malwarebytes with a renamed executable and download that. I also read to use "Rkill" first and do that. Now I have been able to successfully run the Malwarebytes and it picked loads of stuff off of my system. I ran it a couple more times and it found 1 thing each time and finally the next couple scans were clean. Next I ran "Ad-Aware" and that also found 1 thing which it deleted, the next scans were clean. On both of those programs I did choose "Full Complete Scans". The next thing I did was finally hooked into the Internet and I find that both Firefox and Internet Explorer are being redirected to various advertising sites. I decided to try and scan with "Trend Micro House Call". It finds 1 thing and the next 2 scans are clean. I'm still running into the problem of being redirected. One other thing, when running the scan from Trend, Symantec pops up about a couple of Trojans being dumped on me and it Quarantines them. I don't know if this is due to something that Trend uses or an actual Trojan.
I am running Windows XP Media Center Edition with Service Pack 3, my Symantec was up to date with virus definitions 12-25-2009 so was my Ad-Aware, same date. This attack took place on 12-30-2009. I have since updated my virus definitions to 12-31-2009. Any ideas about what might get my computer back to it's former state would be appreciated.
I am editing my post because I found that my "System Restore " has been disabled. The message I get is "System Restore has been turned off by group policy. To turn on System Restore contact your domain Administrator".
While I have been waiting for a response from someone, I have installed and ran SuperAntiSpyware. It found a couple of things, mostly tracking cookies. There is still something lurking in this computer, I'm being swept away into Advertising sites while searching for other things (mostly looking for anything pertaining to my problem).
Edited by needy1977, 02 January 2010 - 11:07 AM.