The error was in the fake DNSapi.dll files that the hijacking malware placed on your system. You can prevent much of this type of hijacking by hardening your browser settings to make your online experience more secure. Check the following for some tips:
https://heimdalsecurity.com/blog/ultimate-guide-secure-online-browsing/Also, please consider emptying your temporary files more often; you had 44+ Gigabytes of data removed on the first FRST fixlist run. That's a lot of old browser data to keep around; it could include bad files and routines just waiting for the proper commands to activate the malware on your system.
One more check for safety sake ....
AdwCleaner by XplodeDownload AdwCleaner from
here or from
here. Save the file to the desktop.
NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.
Close all open windows and browsers.- Vista/7/8 users: Right click the AdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
You will see the following console:
- Click the Scan button and wait for the scan to finish.
- After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: Waiting for action. Please uncheck elements you don't want to remove.
- Click the Clean button.
- Everything checked will be deleted.
- When the program has finished cleaning a report appears.
- Once done it will ask to reboot, allow this
- On reboot a log will be produced; please attach that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[C#].txt
Optional:
NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.
