Just a quick “note to self” – I had a client that was getting all of her Google searches redirected in Firefox. I ran the typical stuff…GMER, Malwarebytes, TDSS Killer and even the Kav Rescue Disc…the box came up clean. I was stumped for a few minutes.
I jumped on my box and did some research. It turns out she had a hidden malicious firefox plugin which analysed the search results page and then redirected her to a malvertised page. Here’s a little app called GooredFix which gets rid of this malicious firefox plugin.