Posted 26 June 2010 - 07:41 PM
I got this problem about 2 months ago and tried to fix it pretty actively for a few days, but then had much more important things going on and just stopped using my laptop. I was hoping someone would post a solution in the meantime. unfortunately everytime i google the symptoms all i see is a lot of people asking questions but I have yet to see a posted solution.
Hopefully this time someone will be able to solve it.... I'll give as much detail as i can think of...
I use Windows XP and Mozilla Firefox.
I was watching a streaming TV show, and all of a sudden 8-9 pop ups happened and opened up a number of windows with the c prompt (if i remember correctly).
Then slowly things started being strange, webpages would get redirected once in a while, not all the time and not all pages. then i tried downloading the latest update for Lavasoft adaware and it wouldn't be able to do it. then it kept redirecting me away mostly from any forum where i would want to ask about how to fix the problem. eventually i used my computer at work to look up answers and download the updates and transfer them onto the laptop. I have lavasoft adaware, spybot search and destroy and i newly downloaded malawarebytes. they have all been freshly updated, and run in their full versions both in safe mode and in normal mode. I also ran my antivirus manually (ESET NOD32 Antivirus). some problems were found (not very many and i removed them -- i just looked it up and spybot s&D had found DNSFlush.cws and Win32.FraudLoad and Win32.Agent.ieu all of which i removed), but it still gave me an antivirus error whenever i wanted to do a google search. at some point i also deleted firefox from my computer and put a new version from my work computer on. and installed it. I also at some point deleted all the temp files, all the cookies, and manually deleted everything except the top line in the hosts file.
I just started looking into this again last night . before i did anything i downloaded all the updates for lavasoft adaware, spybot search and destroy and malawarebytes, and ran all three of them first in safe mode then in normal mode. none of them found anything (well, spybot S&D found Microsoft.WindowsSecurityCenter.AntiVirusOverride, which i assumed is because ESET overrides, it so i didnt tell s&d to fix it). I also dissabled a number of startup entries, that s&d told me were not essential.
However, still the same problem...
The last google search where i just searched for random letters: kl
caused my antivirus (ESET NOD32 Antivirus) to pop up with the message:
Address has been blocked.
when i run it again for a search for random letters pa
it gives me just a slightly different pop up:
Any ideas what i could do? What's going on? Any help would be much appreciated!!