Firefox Google Searches Getting Redirected? Try GooredFix.exe

Just a quick “note to self” – I had a client that was getting all of her Google searches redirected in Firefox.  I ran the typicalFirefox-Google-Redirection stuff…GMER, Malwarebytes, TDSS Killer and even the Kav Rescue Disc…the box came up clean.  I was stumped for a few minutes.  

I jumped on my box and did some research.  It turns out she had a hidden malicious firefox plugin which analysed the search results page and then redirected her to a malvertised page.  Here’s a little app called GooredFix which gets rid of this malicious firefox plugin.

GooredFix Download

, ,

11 Responses to Firefox Google Searches Getting Redirected? Try GooredFix.exe

  1. erjon September 8, 2011 at 3:43 pm #

    Good to know about this app. I would be more interested in a program for removing all kind of advertisement from the browser (IE , FF, Google Chrome). I mean restoring the browser to default setting. I’m facing this problem at a friends PC with babylon(or smth similiar) getting always redirected. I’ve been looking everywhere: setting addon proxy dns, nothing!, scanned with hitman pro , mbam, sas, nothing. I QUIT!

    • ZOU September 8, 2011 at 7:36 pm #

      I have always relied on HiJackThis for removing unwanted browser apps and toolbars.

  2. ZOU September 8, 2011 at 7:37 pm #

    If you remove something that you want back, simply go to the quarantine. HiJackThis has one.

  3. Michael September 8, 2011 at 9:41 pm #

    Thanks for telling everyone Matt. I will keep this in the back of my mine when I get a friend that is infected. Also Matt, have you ever heard of Disqus? It is a commenting system. It would be nice if it was used on this site, like other WordPress powered sites.

    • Johan September 9, 2011 at 4:11 am #

      Isn’t Disqus that commenting system where you have to login to either Twitter or facebook etc.. to comment?

      I don’t have FB or Twitter so how would I be able to comment?

      The other day I was about to comment on an PCMag article but I couldn’t because I did not have an FB or Twitter or whatever account.

      • Michael September 9, 2011 at 9:17 pm #

        No, you can use your own disqus account, like I have. I don’t have FB or Twitter as well. Go to to learn more. It is a really good commenting system.

        Disqus ID: MHazell

  4. Dan September 9, 2011 at 8:17 pm #

    HiJackThis won’t get rid of re-directions unless they are connected to a startup process.

  5. estechguy September 10, 2011 at 4:22 am #

    Thanks for the info Matt 😀

  6. ZOU September 10, 2011 at 6:40 am #


    Thanks for the pointer.

  7. Ben September 28, 2011 at 3:28 am #

    How do I uninstall Gooredfix when done?

  8. Brad September 29, 2011 at 1:06 am #

    How do you uninstall gooredfix after your clean?

Leave a Reply