Web Browser Opens MSN.COM When Attempting To Use Windows Update
When you attempt to visit Windows Update, or Microsoft Update, either by entering the address in the browser's address bar or using the links within Windows, you are redirected to www.msn.com.
Also, your computer does not download any updates via Automatic Updates, although the service is on and running. Windows Update may report error 80244019.
This may occur if your computer has been infected with a virus or trojan (possibly Zlob, Puper et al), and the system's DNS settings have been set to a malicious third-party.
The DNS addresses are the internet servers which resolve domain names to internet addresses, and it is most usual to use those provided by your ISP. Generally these are automatically configured into your broadband router or dial-up connection. Windows forwards domain-resolution requests via the router.
To resolve, simply reset the DNS settings to the default, which is most likely to be the “Automatic” setting.
In Windows Vista/2008:
In Windows 2000/XP/2003:
For Windows 2000 and greater, this setting change will take effect immediately. For Windows 95/98/NT4, reboot.
There may also be references to third-party DNS servers under the following registry keys:
Some IP addresses that have been observed used in this inappropriate way have been 18.104.22.168, 22.214.171.124, 126.96.36.199 and 188.8.131.52.
Once the DNS settings have been set properly, conduct a virus scan to clean the system.
Then you must change your important passwords. If your system has been using a hostile DNS system, there's no telling which sites you visited were legitimate and which might have been faked or malicious. See Protecting Yourself After Virus Infection, Phish Attack or Theft.