This one is making me absolutely crazy. Here are the symptoms:
1. I load the google search engine (happens with both google.com or google.ca).
2. I enter a search criteria & it brings up a series of results.
3. Occasionally when I click on one of the SERPs I'm taken to a website in Germany (some are *.de, some are *.com, all are German).
If I hit the back button and click on the link a second time it either takes me to a different German web page or to the actual site referenced in the SERP. On rare occasions it redirects me to google.de using the same search criteria that I started with.
If I don't close the browser I'll get occasional popups, also to sites in Germany.
Incidentally, it is extremely hard to replicate. It happens about one in ten times that I do a google search.
I've run a virus scan (AVG), ad-aware, spybot s&d, spyware blaster, spy sweeper, ewido, hijack this and a couple others and everything comes up clean. I've got multiple PCs using a shared connection and only one is affected by this.
What is the most frustrating about it is that I work in tech support and I deal with these things all the time (including manual removal of some of the nastier ones). But nothing I've done can seem to stop this.
I've read about the google 302 exploit but this sounds decidedly different.
1. I load the google search engine (happens with both google.com or google.ca).
2. I enter a search criteria & it brings up a series of results.
3. Occasionally when I click on one of the SERPs I'm taken to a website in Germany (some are *.de, some are *.com, all are German).
If I hit the back button and click on the link a second time it either takes me to a different German web page or to the actual site referenced in the SERP. On rare occasions it redirects me to google.de using the same search criteria that I started with.
If I don't close the browser I'll get occasional popups, also to sites in Germany.
Incidentally, it is extremely hard to replicate. It happens about one in ten times that I do a google search.
I've run a virus scan (AVG), ad-aware, spybot s&d, spyware blaster, spy sweeper, ewido, hijack this and a couple others and everything comes up clean. I've got multiple PCs using a shared connection and only one is affected by this.
What is the most frustrating about it is that I work in tech support and I deal with these things all the time (including manual removal of some of the nastier ones). But nothing I've done can seem to stop this.
I've read about the google 302 exploit but this sounds decidedly different.
