google search results redirecting

I'd like to ask for some help to remove a google redirect/pop-up issue. Here is the problem. After doing a google search, clicking on any of the search results will open a new window and about nine times out of ten I will be taken to an unrelated page rather than the correct one. (ie google-analytics, info.com, google UK, k-directory.com etc.) Extremely annoying as it affects both Internet Explorer and Firefox browsing. I was first infected/hijacked about a month ago and I successfully removed it with a Kaspersky Labs tdsskiller tool on this page http://support.kaspersky.com/viruses/solutions?qid=208280684. It lasted for about a week and returned. I've tried re-running the Kaspersky Labs tool and it does not find the trojan anymore. I've since tried about ten anti-virus programs and malware removal programs without success.

I've completed all of your read-me-first steps and attached some logs. Note: Root Repeal couldn't finish and asked me to run ckdisk but still created a log. I'm only allowed 4 attached files but I have five so I left out the combofix log. After running all these programs the redirecting problem is still present.

I'm running out of options and heard of others formatting only to have this return. Please help!

Thanks,
Grant.

 

Thanks Tim,

I've attached the completed MGTools log file. This time is appears to have run completely.

 

Hi Tim,

I want to share my solution to the google redirect as I have many hours invested in try to repair this and my solution has been found.

Your suggestion to try other computers on the same router took me down a road that I never would have thought of on my own. My computer is a wireless laptop and I have no other computers on my router. Should I try my laptop on another wireless connection? There was another unsecure wireless connection within my range so I connected to it and Voila! no google redirect. I direct connected to my own cable modem and also no redirecting. So the problem is in my router. I recall reading a thread somewhere while trying to find the answer to my redirecting problem that someone was able to change the DNS setting in their router so I looked at my router settings. I have to say I don't understand much when it comes to routers but there was a primary DNS address set to 213.109.66.19 and a secondary DNS address of 213.109.73.6. I did a reverse IP search on these and found them to be located in Russia. I'm in Canada so I knew this had to be related to my problem. After checking my Windows internet settings and seeing that it was set to acquire the address automatically from my service provider, I simply blanked out the primary and secondary addresses in the router and everything has been working for 24 hours.

What blows me away is I have a D-link DIR615 wireless N router with a secure WPA connection and password that I've created and someone was smart enough to edit/modify my router settings.

Previous to asking this forum for help I ran AVG, Kaspersky, Trend Micro, Windows Security Essentials, Super Antivirus and several other antivirus and malware programs and some found different root kits etc on my machine. I would guess that one of these root kits or trogans was responsible for editting my router DNS addresses.

I believe my system was first infected by downloading a fake torrent movie in avi format. Let this be a warning to anyone that says 'it won't happen to me'. That's what I used to say.

Tim questioned the file on my system C:\uxryypod.sys. I had run a program called GMER that bleeping computer's website said I had to run to get their help. GMER crashed my system and gave the blue screen of death when it encountered this file during a scan. I've since deleted it.

I'll be back if my router settings get editted again. Thank you Tim for looking at my post.