Fix Uninitiated Google Redirects With GooredFix [Firefox]
Goored is an abbreviation for (malicious) Google Redirects. although redirects have been experienced by users affected by the issue in other search engines like Yahoo as well.
Firefox users who have been hit with a Goored infection will notice that some of their searches are redirected to other websites.
This usually happens when they click on a search result in Google but may also happen without them doing anything (which means pages are opened automatically).
The Google redirect redirects user initiated searches to toher websites, it especially seems to happen often when searching for items that can be bought online like computer equipment, household items and basically anything that is available online.
The cause of this search redirect in Google seems to be a Firefox add-on / plugin that gets installed without the user's consent. What makes this problematic is that the add-on or plugin is not listed when you open the list of installed extensions.
It is not clear how the add-on is installed other than that it is done automatically without the user's consent.
This is also a good indicator if the computer has been infected with Goored. If the redirects stop, it is Goored. If they continue it is something else that is probably not running on the browser level but on the system level. In that case, try this solution to fix Google redirects on the system level.
The easiest way to clean Goored is by using the GooredFix tool that can be downloaded here. This tool should be executed as an administrator and Firefox needs to be closed before it is executed.
To execute the tool as an administrator right-click it and select Run as administrator from the menu.
The program will automatically scan the Firefox directories and the Registry entries of the web browser. It will furthermore clean offending add-ons if they are discovered and write a log file to the computer desktop.
While the tool worked fine during tests, it is highly suggested to create a system backup before you run it.
The developer of GooredFix has provided the following description of the program:
GooredFix deleted the registry entry and folder, and then when Firefox next starts it removes the plugin from its cache and loading point as the registry is no longer there.
[There are also new variants that use] the "XUL Cache" extension to do redirects