Browser Redirection

Hey I get redirected to this website a few times a day

I'm browsing the internet, then when I click a button to go to a website. The internet freezes. It appears to lose connectivity and literally hangs for 30 seconds. Then it takes me to this page.

http://us.yhs4.search.yahoo.com/yhs...655_can_0_0_0_1_&p=https://ca.yahoo.com/?p=us

Any idea what it is? I use CCleaner daily, and Superantispyware, they never found anything. I have Comodo Internet security free version for a firewall and antivirus. I use Mozilla Firefox 29.0.1. and I have the Adblock plus Add on.

 

Some logs

 

Finally got MGlog to work it was just freezing halfway through despite UAC being disabled on my PC for 2 years. I can't install TDSSKiller, Comodo firewall doesn't even let me download it. It blocks the website completely, even with the firewall turned off. It must be installed in the browser also.

 

Hey Tim,

Thanks, it's not removing one of the Linkey's. Don't know why. It removed everything else.

I don't want to remove AutoKMS, It's not a Trojan, and I've had this since installing windows 7 years ago never had problems with it and this problem I have is 1 month recent, it's unrelated to AutoKMS.

I won't know if this fixed anything for at least a few days since the problem is intermittent and takes awhile to happen.

Any idea how to remove the last linkey?

 

Thank you TimW.

Yes, I received a success message about the regedit. However, the Linkey is still there unfortunately. It says it's part of Internet Explorer Approved Extensions in the path.

I also deleted the AUTOKWS file just to get rid of it.

I haven't had the redirection problem yet. But it would be nice to have the Linkey removed if it's at all possible. I have some other issues however which are probably not malware related. But it's always good to put all the problems out there they might give some idea of whats happening on my computer.

When I try to run a steam game from the desktop I get the error "Unable to open this Internet Shortcut. The protocol "steam" does not have a registered program."

I tried following their guide to fixing this here.
https://support.steampowered.com/kb_article.php?ref=2087-MZES-9065

However in CMD when I type the command line.
"C:\Program Files (x86)\Steam\bin\SteamService.exe" /repair

I get the error message "Could not set the event message file."

So I then tried to reinstall steam and I did. But the shortcut problem still exists. This all started after hitman did something with my desktop because when it cleared some of its problems after reboot it left two desktop.ini's behind. However there was also a steam update so I'm not sure. Steam always updates though and this never happened before.

Update: Regedit for steam worked, so this is no longer a problem yay.

I also can't update my graphic card software. The installation always fails on the latest update. I don't know why and it's really annoying since all updates before this worked like a charm.

My graphic card is the Geforce GTX 760

Its failing to install NVIDIAA GeForce Experience 2.1 and NVIDIA Update Core 14.6.22.


I also occasionally have a boot problem that likes to pop up from time to time. I have two external drives. When they are plugged in during a computer reboot my computer gives me an error message and won't start windows. Simply unplugging them and shutting the computer on and off works. The computer will boot. I checked the BIOS settings and boot is set to my default drive even when my externals are plugged in. No idea why my computer is doing this.

 

Thanks

Was able to delete the key from the registry.

The steam issue is resolved. And somehow my graphic card updated itself, not even sure what I did. But after 2 days for the steam problem, and 1 month for the graphic issue I'm glad they are resolved.

I still have the boot problem but it's a minor problem and I'll probably figure it out eventually when I devote some time to it.

The redirection is gone, so I guess we can assume it was from Linkey malware. Thank you for your time Hitmanpro is a new software you are using, so I was unaware of it's existence. Glad that I came back here. Internet is always changing and evolving.

I'm still getting that Linkey in
keyword.URL
C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\fbm86nlk.default-1378386316772\prefs.js

It pops up every time I do a scan like it's being renewed? Any idea how to prevent it from coming back? I keep deleting it. Is it java related? It's probably not a big threat or anything and insignificant but it makes me think my browsing is not secure.

 

There is no need to post in software my other issues are gone also. Take care, thank you all here at MajorGeeks for all the wonderful service so for so many years that you do for free.