Attack Symptoms: What's the Diagnosis?

OS's used that exhibit these symptoms, XP Pro sp2/3, Vista pre-sp/sp1, Linux-Fedora 12, Ubuntu 9, Debian 5.0.

Attacks involve:

Redirections of visited sites
Alterations of https to http
Browser configurations are not maintained while visiting sites. Example: NoScript whitelist youtube.com and ytimg.com yet youtube image is still blocked. Other ad content continues through NoScript as if Noscript were not present.
Alterations of the OS to a previous state with no rollback options present, Linux or Windows does not matter.
Alterations to powersave features within the OS.

I assume these are all occuring in memory of the system.
I use a Live CD and these functions still occur, minus the rollingback.
I cannot explain it outside of memory modifications.
If it is in memory modifications what can I do in order to prevent such attacks?

Your thoughts appreciated.

 

Using a router? If so, have you changed default password?

I only ask because I recall this thread: https://www.wilderssecurity.com/showthread.php?t=275644

 

I have rectified those issues as well as I can involving defaults of the router.
Also my router does not allow the default information to remain present.
Once you visit the admin console it's data must be updated.
Is an 83 random characters password strong enough?
Is a 60 random characters administration name strong enough?

 

Redirections could lie within your hosts file?

"Alterations of the OS to a previous state" Hmmm, could it be possible that something/someone is auto kicking off System Restore even though I've never heard of it unless it's being remotely controlled somehow.

 

Remote is a possibility.
Linux doesn't have a system restore.
These are not Windows specific symptoms, they occur on both Windows and Linux.
They only occur on the surfing OS.
For instance, Fedora host running VirtualBox with Windows XP Pro SP3 guest. While surfing with the Windows guest it develops the symptoms outlined while the Fedora host is uneffected.
When I discovered that the guest surfing was maligned I would switch to surf with the host to check. It would be normal.

 

@Searching_ _ _

Very strange

I'm clutching at straws as i'm not an expert in these matters but as it hasn't been mentioned, have you tried a different DNS to try and see if it resolves at least some of the issues ?

 

I have switched from OpenDNS to Level3 to GoogleDNS, and 2 others. The song remains the same.
If the router has one set of DNS configured and the computer is using static config with another DNS, who get's priority in the routing?
If using static configurations on the local computers, should the routers DNS be disabled?

Google HTTPS using FireFox, has 1 of 2 ssl verifications missing, Paypal has both and Ixquick has 1 of 2 missing.