Starting a couple weeks ago, I started getting the bad google organic search results that redirected through doubleclick.net when using Mozilla Firefox (and maybe MSIE, can't remember). Opera et al do not have the problem. Flushing my DNS, hosts file and running MBAM seemed to fix the problem, at least for a while, but the same thing would sometimes recur. MBAM and the like generally took care of the problem. I'm not sure if the rest of the nastiness stemmed from the search result redirects or what, but it's been pretty ugly. It's been a long drawn out process, so the order of stuff might be a little out of whack, but I think it's mostly right.
I started getting the fake MS Security Essentials alert thing going on. I knew immediately that it wasn't real since I don't use MSSE for my AV software, so I didn't follow any of the "scan online" business or install any new AV software, etc. (but I did click the "apply actions" and "close" buttons). I'm getting the fake alert so I figure, run MBAM and get rid of it, so I run MBAM and it finds something like 9 bad things between executables and registry entries during the scan. I tell MBAM to clean the bad things and it tries, but it hangs up (probably because the bad stuff is still running) so I end up doing a hard restart.
I think it was at this point that Win XP stopped booting (last thing loaded is giveio.sys; it would have been mup.sys, but speedfan added on giveio.sys). I go into recovery console, run CHKDSK (which finds and repairs errors), system still wont boot into safe or normal mode, but "last good config" boots but is very slow and eventually starts the fake Security Essentials alerts again.
So after going through this whole process that involves a barrage of rkill, MBAM, avast, Spybot S&D, avast and AdAware, CHKDSK, /flushdns, cleaning host files, tdsskiller, etc., all scans seem to be coming up clean and the system appears to be booting into Windows XP ok, but...
After XP boots, it's VERY slow and explorer seems to be unresponsive for 5-10 minutes. After that period, the PC seems to be functioning fine. During this ordeal, I found a thread of someone who had this problem, but now I can't find it. What could be causing this? The scanners seem to think my system is clean. I'm not getting the MSSE alert anymore. Firefox just now did the doubleclick.net redirect thing again though (I've temporarily stopped using FF for now).
What are good next steps? I plan on running the most up to date versions of each of MBAM, S&D, AdAware and Avast! several times each. Should I just do that and hope for the best, or is there something else I should do. I want to get some of my work done and run these scans now, while the PC seems to be working OK, so I haven't restarted again after the latest scans to see if it's still slow.
What is your advice for action to take in either case (still-slow or back-to-normal after reboot)? I want to get some advice now before I go restarting in case something goes south before/during/after the reboot.
Edit to add:
FF doesn't seem to be redirecting me to doubleclick.net at the moment, but search results seem to take a LONG time to come up after clicking on them (if they come up at all). I'm still wary of using google on FF though, since I don't have the little happy certificate icon that says it's genuine plus search suggestions don't pop up when I type a query (which I've notice seems to happen when the redirect thing is going).
Edited by masfonos, 20 October 2010 - 09:30 PM.