being redirected,new windows opening up and non page advertisements

HI,having problems:sad: I have attached adwcleaner log as requested.Please help!

Hello and welcome to GeekPolice.Net My name is Dave. I will be helping you out with your particular problem on your computer.  

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*******************************************************
Please do not attach your logs unless absolutely necessary. Copy and paste them in your reply(ies)
************************************
Please download AdwCleaner by Xplode onto your Desktop.

• Please close all open programs and internet browsers.
  
  
• Double click on adwcleaner.exe to run the tool.
  
  
• Click on Delete.
  
  
• Confirm each time with OK
  
  
• Your computer will be rebooted automatically. A text file will open after the restart.
  
  
• Please post the content of that logfile in your reply.
  
  
• You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.
  
  

********************************************************
Please download Junkware Removal Tool to your desktop.

•Warning! Once the scan is complete JRT will shut down your browser with NO warning.

•Shut down your protection software now to avoid potential conflicts.

•Temporarily disable your Antivirus and any Antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

•Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click JRT and select Run as Administrator

•The tool will open and start scanning your system.

•Please be patient as this can take a while to complete depending on your system's specifications.

•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

•Copy and Paste the JRT.txt log into your next message.
***************************************************
Please download Malwarebytes Anti-Malware from here.
Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
  
• If an update is found, it will download and install the latest version.
  
  
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
  
• The scan may take some time to finish,so please be patient.
  
  
• When the scan is complete, click OK, then Show Results to view the results.
  
  
• Make sure that everything is checked, and click Remove Selected.
  
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  
  
• Please save the log to a location you will remember.
  
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
  
• Copy and paste the entire report in your next reply.
  
  

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
*************************************************
Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

HI and thanks for the response,ok as requested adwcleaner log

# AdwCleaner v2.306 - Logfile created 08/12/2013 at 14:13:56
# Updated 19/07/2013 by Xplode
# Operating system : Windows Vista (TM) Home Basic Service Pack 1 (32 bits)
# User : Darran - DARRAN-PC
# Boot Mode : Normal
# Running from : C:\Users\Darran\Downloads\adwcleaner(2).exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\EbookkBBrowSe
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EbookkBBrowSe
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\safeee saavve
Folder Deleted : C:\ProgramData\safeee saavve
Folder Deleted : C:\Users\Darran\AppData\Local\Google\Chrome\User Data\Default\Extensions\blhmgdgajeeceaggicflaihgcbmdfcko
Folder Deleted : C:\Users\Darran\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlbinibidegpidngjlaemekkkepgflnl
Folder Deleted : C:\Users\Darran\AppData\Local\PackageAware
Folder Deleted : C:\Users\Darran\AppData\LocalLow\EbookkBBrowSe
Folder Deleted : C:\Users\Darran\AppData\LocalLow\safeee saavve
Folder Deleted : C:\Users\Darran\AppData\Roaming\Mozilla\Firefox\Profiles\urjd6bnf.default-1360272701897\extensions\eyy-3os@ouoiyuaezh.net
Folder Deleted : C:\Users\Darran\AppData\Roaming\Mozilla\Firefox\Profiles\urjd6bnf.default-1360272701897\extensions\iuuu_4uaa@oiege-q.org
Folder Deleted : C:\Users\Darran\AppData\Roaming\Mozilla\Firefox\Profiles\urjd6bnf.default-1360272701897\jetpack

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{60FD0270-4F78-9E59-BC3A-A3A1176B1630}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E623350D-C03E-C978-2269-F6B675CDA038}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60FD0270-4F78-9E59-BC3A-A3A1176B1630}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E623350D-C03E-C978-2269-F6B675CDA038}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{60FD0270-4F78-9E59-BC3A-A3A1176B1630}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E623350D-C03E-C978-2269-F6B675CDA038}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{924C3DC2-8E4E-432E-F973-9A2174A39774}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E5B7E1B4-21FC-6765-A3D7-BA0416DC6AF7}

***** [Internet Browsers] *****

-\\ Internet Explorer v7.0.6001.18639

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.fbdownloader.com/?channel=sfuk205 --> hxxp://www.google.com

-\\ Mozilla Firefox v22.0 (en-GB)

File : C:\Users\Darran\AppData\Roaming\Mozilla\Firefox\Profiles\urjd6bnf.default-1360272701897\prefs.js

Deleted : user_pref("browser.search.defaulturl", "hxxp://search.fbdownloader.com/search.php?channel=sfuk205&q=[...]
Deleted : user_pref("extensions.51c354fac7cba.scode", "if(window.self.location.protocol.indexOf('hxxp')>-1 && [...]
Deleted : user_pref("extensions.51c35532f03db.scode", "(function(){try{if(window.opener&&window.self==window.t[...]
Deleted : user_pref("keyword.URL", "hxxp://search.fbdownloader.com/search.php?channel=sfuk205&q=");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Darran\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1945 octets] - [07/02/2013 22:38:13]
AdwCleaner[S2].txt - [4067 octets] - [12/08/2013 14:13:56]

########## EOF - C:\AdwCleaner[S2].txt - [4127 octets] ##########


JRT LOG

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.4 (08.12.2013:1)
OS: Windows Vista (TM) Home Basic x86
Ran by Darran on 13/08/2013 at 14:37:35.08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\scheck
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ssync
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B8E20CD7-BAC2-4820-9AA6-1060B3AF25E2}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Darran\AppData\Roaming\scheck"
Successfully deleted: [Folder] "C:\Users\Darran\AppData\Roaming\ssync"
Successfully deleted: [Folder] "C:\Users\Darran\appdata\locallow\baidu"
Successfully deleted: [Folder] "C:\Program Files\baidu"



~~~ FireFox

Emptied folder: C:\Users\Darran\AppData\Roaming\mozilla\firefox\profiles\urjd6bnf.default-1360272701897\minidumps [59 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13/08/2013 at 14:41:07.69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


MBMAM LOG


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.08.13.03

Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Darran :: DARRAN-PC [administrator]

14/08/2013 18:04:46
mbam-log-2013-08-14 (18-04-46).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 664400
Time elapsed: 8 hour(s), 4 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 9
C:\Users\Darran\AppData\Roaming\Common\LuaRT (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\luasql (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\alien (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\Microsoft.VC80.CRT (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\mime (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\socket (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.

Files Detected: 55
C:\Users\Darran\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OXRC4965\OptimizerPro[1].exe (PUP.Optional.OptimizePro.A) -> Quarantined and deleted successfully.
C:\Users\Darran\Downloads\Bradcot Awnings Brochure pdf.exe (PUP.Optional.Installex) -> Quarantined and deleted successfully.
C:\Users\Darran\Downloads\user manual FORD MONDEO 2847413 pdf.exe (PUP.Optional.Installex) -> Quarantined and deleted successfully.
C:\Users\Darran\Downloads\setup(1).exe (PUP.Optional.InstallCore) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\alien.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\base.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\debug_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\debug_init.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\getopt.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\io_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\lfs.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\list.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\lpeg.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\ltn12.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\lua5.1.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\lua51.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\luacom.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\math_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\mime.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\modules.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\package_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\set.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\socket.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\std.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\strbuf.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\string_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\table_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\tree.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\wlua.exe (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\luasql\sqlite3.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\alien\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\alien\struct.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\util.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\array.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\calls.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\number.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\object.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\others.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\strings.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\decode\util.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\array.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\calls.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\number.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\object.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\others.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\output.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\output_utility.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\json\encode\strings.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\mime\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\socket\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\socket\http.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Darran\AppData\Roaming\Common\LuaRT\socket\url.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.

(end)


SECURITY CHECK LOG

Results of screen317's

Security Check version 0.99.72  
Windows Vista Service Pack 1

x86 (UAC is enabled)  


Out

of date service pack!!


Internet Explorer 7

Out of date!




``````````````Antivirus/Firewal

l Check:``````````````
Windows Firewall Enabled!  
Windows Firewall Disabled!  
Microsoft Security Essentials  
Antivirus up to date!  
`````````Anti-

malware/Other Utilities

Check:`````````
Spybot - Search & Destroy
Malwarebytes Anti-Malware

version 1.75.0.1300  
Java(TM) 6 Update 37  
Java version out

of Date!
Adobe Flash Player

11.7.700.224  
Adobe Reader 9

Adobe Reader out of Date!


Mozilla Firefox 22.0

Firefox out of

Date!  
````````Process Check:

objlist.exe by Laurent````````

 
Microsoft Security Essentials

MSMpEng.exe
Microsoft Security Essentials

msseces.exe
`````````````````System

Health check`````````````````


Total Fragmentation on Drive

C: 5 % Defragment

your hard drive soon! (Do NOT

defrag if SSD!)
````````````````````End

of Log``````````````````````




THANKS FOR YOUR TIME:smile2:

Go to Microsoft Windows Update and get all critical updates including SP2 and the latest Internet Explorer.

Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
*****************************************

Total Fragmentation on Drive C: 5 % Defragment your hard drive soon! (Do NOT defrag if SSD!)

Please defrag your hard drive soon. If you need help doing this, please let me know. (SSD means Solid State Drive.)
By now your redirects should have stopped?

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan

•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.

• Leave the check mark next to Remove found threats.
  

•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt