Posted 24 January 2010 - 02:13 AM
I have two PC's that are surely infected.
I get redirected to unrelated random sites from selecting links in a Google search.
My AVG firewall is telling me that Google and Java Updater and Registry Mechanic are requesting updates from unknown/unregistered IP addresses.
Firefox will not launch.
After a restart I watched, via Process Explorer, Registry Mechanic perform a lengthy unsolicited update. After the update was completed it would no longer launch.
I believe this PC was infected through my home network. I received no pop-ups or redirects as with PC1.
Registry Mechanic will no longer launch on both PC's.
I have run Malwarebytes and SuperAntispyware to no avail.
Both PC's are now disconnected from the network.