Browser Hijack and Cleanup Help

Hi,

I'm not sure if this is the exactly the correct form to post this in, as normally in a PC message board it would go under security or virus removal, but I understand that these are anomalies amongst Mac users.

Nonetheless, yesterday I seem to have somehow picked up what I recognized as a redirect exploit within my browser (Firefox). After doing a Google search I was sent to a different site, this happened three times in a row, and then never again.

Regardless, I went into panic mode and began a cleanout of everything. I deleted all files relating to Firefox (including all plugins), reset Safari, used Lion Cache Cleaner to kill anything available , and went about deleting any Macromedia and Java cache files that might have been left behind. I also downloaded a program I believe was called DNSChanger removal, and it came up negative for that specific Trojan. My host files are also clean.

Reading the few posts made on the subject across various internet forums, most of the people hit by this problem knowingly gave access to a malicious program. This was not the case, as the only thing I authorized in the last few months had been Minecraft (which I installed today, oddly minutes before my first encounter with the redirect).

As I stand now, I have not had an encounter again with the redirect. MacScan came up negative and I am in the process of scanning with ClamXAV. I'm coming from a PC background having to deal with the problems of Spyware and Malware all the time, so I was wondering if I missed any precautions, or if anyone has knowledge to if the redirect exploit could still be lurking somewhere on my Mac.

Hopefully the problem was with a cookie or file that got wiped out, but I would like some feedback as I am unfamiliar with the ways that a redirect of such manipulates the DNS files on a a Mac, an area I've read may be the root of the problem.

Thanks again for any help that can be offered.

(Also: the only symptoms I've experience since is minor slowdown (?), but I'm aware it may be from poor campus wifi connection)

 

Thank you for that lightning fast response. Now, I took a look at your response, and had read about the greyed out DNS selections. I know absolutely nothing about this, and was a bit intimidated by the part of the guide on how to remove these saying that "Be aware that this is a GLOBAL change. If you do this, your machine will not use the DNS servers specified by any DHCP server"

It seems you're knowledgeable about this, so I'll attach an image of exactly what appears on my screen when I go to DNS under network settings. If you could please break this down for me and just confirm that this is the issue, I'd be super grateful.

 

Hello again,

I don't have the power to remove the servers for some reason, so I went through with the guide I had referenced to before, and have gotten a boosted performance, and no problems.

However, the DNS servers in my previous image are still there. I'm not sure technically what exactly I did by following the steps to remove the three integers from the IPConfiguration file, but does that just stop the servers from redirecting me even if they're still there?

Sorry if that wasn't too clear, and thanks again for your help.