Redirect

First, THANK YOU for this service.
I have followed the steps you have given others to resolve problems in the past but I can't seem to get rid of the stupid virsus(?) that redirects me to Google pages and other junk ad sites.
Can you help? I have attached the Hijack This log.
I thank you in advance for your time.

 

Welcome to MajorGeeks.com!

Please attach the logs from the two online scans and then follow the below.

Please see the below threads on how to install and run Spy Sweeper and Ewido Anti-Malware. After you ran both programs, attach the logs to your next post along with a fresh HJT log from normal mode.

• Running Spy Sweeper...
  
  
• Running Ewido Security Suite ...

 

Herer are the files you requested.
Again, thanks for your help.

 

1. Download and Install CCleaner
   • Note that, when asked to run CCleaner, you should run ONLY the default scan (Windows Tab). Do Not “Scan For Issues”!
   
   
2. Download FixWareout by Lonny and save it to your Desktop.
   
   
   Reboot into Safe Mode and then procede with the rest of this fix!​
   
   
3. Please locate your download of FixWareout and INSTALL it.
   • Be sure that Run fixit is checked.
   • Click Finish to begin the fix.
   • Follow the prompts and Reboot when asked to do so.
   • Upon Reboot, follow the prompts and HijackThis should open.
   
   
4. After HJT opens, Click Scan and then Check the boxes for the following, if they should remain:
   
   O17 - HKLM\System\CCS\Services\Tcpip\..\{1B6D579A-C414-4EB4-937E-55DAF78FC39B}: NameServer = 85.255.115.61,85.255.112.60
   O17 - HKLM\System\CCS\Services\Tcpip\..\{1C52BA74-FE8A-46CE-8AF4-80CC62287BF3}: NameServer = 85.255.115.61,85.255.112.60
   O17 - HKLM\System\CCS\Services\Tcpip\..\{483FA562-3EB2-4F52-8AA0-3D2BA643651B}: NameServer = 85.255.115.61,85.255.112.60
   
   
   
5. Now, run CCleaner, Be sure you only run the Default Scan (Windows Tab) and select Run Cleaner. Do not run any other options from other tabs.
   
   
6. After ALL of the above has been completed, please REBOOT to normal Windows, scan with HijackThis and ATTACH that log. Please save and attach the log found at C:\fixwareout\report.txt as well.

Let me know of any problems you may have encountered with the above instructions and how your computer is running now.

 

Thanks
I am attaching the log files

 

Please look in Add/Remove Programs for the following and uninstall them if found:

Ewido

Spy Sweeper

Now scan with HijackThis and check the boxes for the following entries:
( Make sure ALL browser windows are closed when you click FIX )

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.toshiba.com/search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/ search/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr7/*http://www.yahoo.com

O4 - HKLM\..\Run: [Winspector] C:\WINDOWS\system32\drivers\shellz\winspector.lnk
O4 - HKLM\..\Run: [Winspector_s] C:\WINDOWS\system32\drivers\shellz\sup2.lnk

O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/0.8.0794.44/WinSSWebAgent.CAB

O18 - Filter: text/html - (no CLSID) - (no file)
O18 - Filter: text/plain - (no CLSID) - (no file)

Again, make sure ALL browser windows are closed when you click FIX.

Next, run CCleaner to clean up cookies and temp files.

Run full scans with Ad-Aware SE & Spybot S&D and have both programs fix what they find.
Note: Remember to get all updates before doing the scans.

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:

• Temporary Files
• Temporary Internet Files
• Recycle Bin

And Click OK.

After you complete the above, REBOOT and proceed with the rest of this fix...

Finally, I would like you to flush your System Restore points. Please follow the instructions in the below:

• Disable and Re-enable System Restore
  
  
• Turn OFF System Restore to flush any bad Restore Points.
  
  
• Then, follow the instructions at the bottom of the linked page to Re-enable the Restore Utility which will create a fresh restore point.

After you complete the above reboot once more and then scan with HijackThis and attach the new log.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now.