In Firefox, some of my Google hits get redirected to random ad sites, as I've seen a few other users here dealing with. In the history, I always get a 188.8.131.52 entry. Now, after searching for this IP, I found a couple threads scattered about that make this out to be somewhat serious. I first noticed this about four or so days ago, but in the past 24 hours it appeared to stop. Once I woke up this morning, I got redirected again, so something is still there. Malwarebytes and Microsoft Security Essentials, the program my college uses to allow each student's PC on their network detect nothing. SuperAntiSpyware only got 10 tracking cookies in the last scan.
Also potentially related, yesterday (when the redirecting stopped, actually) I got hit with a "Vista Home Security" malware scam. This leads me to believe that whatever it is might be downloading things to my computer without me knowing it. Also, I noticed a Java icon in my taskbar that wasn't normally there before I could react and kill the process. I have since uninstalled all the Java I had and reinstalled to make sure I have the most updated version. It was running from a "ckq.exe" file, and after deleting this and running Malwarebytes the problem no longer persists. I do wonder if I managed to clean up everything though.
Also worthy of note is the fact that I've never posted any sort of logs on a site like this to let people check that my computer is 100% clean. Could this be an old problem that's just now causing problems? My ignorance is unfortunately on full display here.
Thanks in advance for everyone's time and help. I kind of hate to start a new topic when there are other redirect threads here, but none of the others mentioned the 184.108.40.206 IP address.
EDIT: I have logged into my gmail account and got the message that "China (220.127.116.11)" had accessed my account about 13 hours ago. I'm currently going around changing any passwords that might be even the slightest bit associated with this account - thankfully not too many. Does this mean this thing is trying to steal my identity? I've seen no other anomalies yet, but it is quite distressing.
Edited by allargando, 15 May 2011 - 05:09 PM.