Are they ad links in the first place? Like the Google adsense links in searches? Your Java is also outdated and should be updated go here http://java.sun.com/javase/downloads/index.jsp and install the correct version for your system. Choose the offline installation. Another thing that will affect your performance is the amount of items you have at startup. Many are not needed to start with bootup. You probably also need basic maintenance, scandisk for errors and then defragging. Last but not least. Symantec should have found the dialer we are removing now. It's not new, and certainly not a desirable program Run HJT again in scan only and put a check next to this O4 - HKLM\..\Run: [tibs5] C:\WINDOWS\System32\tibs5.exe Reboot to safe mode by tapping the F8 key constantly as soon as you reboot. Using Windows Explorer, locate the following files/folders, and delete them: C:\WINDOWS\System32\tibs5.exe c:\windows\downloaded program files\UGA6P_0001_N120M1710NetInstaller.exe Exit Explorer, and reboot as normal afterwards. If you were unable to find any of the files then please follow these additional instructions: Download Pocket Killbox and unzip it; save it to your Desktop. Run it, and click the radio button that says Delete a file on reboot. For each of the files you could not delete, paste them one at a time into the full path of file to delete box and click the red circle with a white cross in it. The program will ask you if you want to reboot; say No each time until the last one has been pasted in whereupon you should answer Yes. Let the system reboot. Now please follow these instructions: Please download this file: http://downloads.andymanchesta.com/RemovalTools/SDFix.exe' rel="external nofollow"> SDFix.exe * Open the extracted SDFix folder and double click RunThis.bat to start the script. * Type Y to begin the cleanup process. * It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. * Press any Key and it will restart the PC. * When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons. * Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt (Report.txt will also be copied to Clipboard ready for posting back on the forum). * Finally paste the contents of the Report.txt back on the forum. Reboot your system in Normal Mode. Then post the SDFix log and a new HJT log please. Update MBAM again and scan just C this will save you some time no point scanning D. Also please run another Panda scan and post both of these logs. Post back a fresh HijackThis log after all items are removed from the other scans please, and we will take another look. .