Stop search result redirect after scareware

[Ryland]

My computer had gotten infected with Smart Fortress 2012 scareware which I proceeded to cleanup using malwarebytes. I then switched from MSIE to Kaspersky because this is the 3rd machine which had been running MSIE that has gotten infected with scareware. Kaspersky, Malwarebytes and superantispyware all say that this machine is clean yet I still get search redirects in at least FireFox. I have proceeded to run ComboFix, TDSSKiller, verfied my hosts file, checked my proxy and DNS settings but I just cant kill it off. Where else can I look to clean this up?

 

[VirtualLarry]

router infected? Check router DNS settings.

 

[Ryland]

I ended up doing what I should have done in the first place and restored from an Acronis image I made at the end of April. Problem solved in an hour vs the many hours I spent trying to fix it.

 

[makken]

having the same issue; google search results are getting redirected on first click, second click seems to bring up the correct site.

Happening on both Chrome and IE. I'm still trying to figure out how I got infected.

Edit: played around with it a bit more: malwarebytes detected trojan.happili which was removed. Had no effect.
Ran symantec's fixTDSS tool, found nothing.
My master boot record seems to be fine.
Other devices on my network are not getting redirected so I'm assuming its not at the router level.
The redirect only seems to happen on my limited user (win7) account; it doesn't happen when I log in under my admin account.

Ill play around with this a bit more after I get some sleep.

 

[Ryland]

I was originally infected with Smart Fortress 2012 but still had the redirects even after every anti-everything program I could throw at it came up clean plus the computer was randomly locking up (only the mouse would move but not click).

 

[jjsbasmt]

How about clearing your browser cache, and perhaps any cookies, and if that doesn't work, try a System Restore, and clear the browser cache again, or perhaps running those removal tools in Safe Mode if possible. Also it is prudent to read up on all the changes that any trojan or virus makes to your system such as files added and any new registry entries created or changed.