hi Misuzu,

You’re correct in that the redirect you’re seeing is the result of a hacked site redirect to the actual secondary site that contains or drops malware onto a victim’s system. Most of the time this redirect is invisible to the user. Drive-by attack.

An additional tool to help protect against malicious modifications of any browser you use when surfing: http://www.sandboxie.com/

Essentially, you would be running your browser in a virtualized sandboxed protected environment separated from the rest of your system. Good for other programs as well.

Do tell how MBAM turned out.