Malware, redirect infection

I am having a time removing the malware. Any assistance you provide is greatly appreciated.

Thank you,
Fred

Hi,

We will preform ‘start’ cleaning via Zoek tool . .

Please download zoek.zip or zoek.rar by smeenk (
http://www.mcshield.net/personal/magna86/Images/Zoek_icon.png
) from here or here and save it to your Desktop.
Unpack the archive…

[*]Close any open browsers
[*] Temporarily disable your AntiVirus program. (If necessary)
If you are unsure how to do this please read this or this Instruction.

[*]Double click on zoek.exe to run the tool .
Please wait while the tool does not start…

[*]Copy the text present inside the code box below and paste it into the large window in the zoek tool:

Uninstall-List;
EmptyCLSID;
C:\USERS\DIANE\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\OU4735C2.DEFAULT\EXTENSIONS\CE85A36C-113A-4928-AA86-88A31BD595E7@AA144F8A-C1F6-481F-991C-18BF0472C970.COM;f
C:\Users\Diane\Documents\Optimizer Pro;fs
C:\Windows\SysNative\drivers\*.tmp;f
AutoClean;
Reboot;

[*] Click on
http://www.mcshield.net/personal/magna86/Images/Run%20Script%20by%20zoek.png
button.
Please wait until a logreport will open (this can be after reboot)

[*]Save notepad to your Desktop and attach here zoek-results.log
Note: It will also create a log in the C:\ directory named “zoek-results.log

AS directed. Thank you

Cool. Now re-run zoek as you did before but with this script:

CHRDefaults;
IEDefaults;
AOL Toolbar;U
EmptyAllTemp;

After zoek ask for reboot post here fresh created zoek log.

Tell me how the thing are going now?

  • Re-check with FRST tool:

Please download Farbar Recovery Scan Tool (
http://www.mcshield.net/personal/magna86/Images/FRST_canned.png
) by Farbar and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
Only one of them will run on your system, that will be the right version.

[*]Double-click to run it. When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
[*]The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Things are going well, I am not getting crap from my browser. Thanks so much.

Hi,

. . and posted logs are clean. :slight_smile:

The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.

Run the tool and check the following boxes below;
[i]
http://www.mcshield.net/personal/magna86/Images/checkmark.png
Remove disinfection tools

http://www.mcshield.net/personal/magna86/Images/checkmark.png
Create registry backup

http://www.mcshield.net/personal/magna86/Images/checkmark.png
Purge System Restore [/i]
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:[b]DelFix.txt[/b])

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.