The GMER log that you left shows a Rootkit.
Please download ComboFix from
Here and save to your Desktop.
[1]. Do NOT rename Combofix unless instructed.
[2].Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
[3].Close any open browsers.
[4]. Double click combofix.exe & follow the prompts to run.- NOTE: Combofix will disconnect your machine from the Internet as soon as it starts. The connection is automatically restored before CF completes its run. If it does not, restart your computer to restore your connection.
[5]. If Combofix asks you to install Recovery Console, please allow it.
[6]. If Combofix asks you to update the program, always allow.
- Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
[7]. A report will be generated after the scan. Please post the C:\ComboFix.txt in next reply.
Note: Do not mouseclick combofix's window while it's running. That may cause it to stall.
Note: Make sure you re-enable your security programs, when you're done with Combofix..
Run Eset NOD32 Online AntiVirus Scanner HERE
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the Active X control to install
- Disable your current Antivirus software. You can usually do this with its Notification Tray icon near the clock.
- Click Start
- Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is checked
- Click Scan
- Wait for the scan to finish
- Re-enable your Antivirus software.
- A logfile is created and located at C:\Program Files\EsetOnlineScanner\log.txt. Please include this on your post.
If you have only had one incident of random audio, it would be difficult to pin that down. So you can see if it recurs as we go.
Please don't run any other cleaning programs or scans while I'm helping you unless I direct you to. Don't run a Registry cleaner or make any changes in the Registry.
I'll finish checking the logs and will have some script for ou to run after Combofix.
EDIT: Some FYIs for you:
1. You need to be thinking seriously of removing whatever you're not using. And that includes the junk that Dell preloads- most of us don't use it. Your hard drive is almost used up:
107 GiB total, 8.008 GiB free.
2. Please uninstall all Java versions except v6u20. The old versions are vulnerabilities. I see:
1_5_0_06, 1_5_0_09, 1_5_0_10, 1_5_0_11, 1.6.0, 1_6_0_01, 1_6_0_02, 1_6_0_03, 1_6_0_07
Some of these are in the add-ons.
3. You have Norton Security Scan running. You might need to use the
Norton Removal Tool
4. Unknown entries:
There are 2 entries of Application data in a file for 'Dad': Do any of these words mean anything to you? I can't ID any of them.
[erudovey] c:\documents and settings\dad\local settings\application data\ljkrtpwrk\pcraprbtssd.exe
[qavpdyfr] c:\documents and settings\dad\local settings\application data\wusiilqsf\ojcbrsjtssd.exe
There is also an entry in the network service that I can't ID:
[sdnebhan] c:\documents and settings\networkservice\local settings\application data\hlagaifrk\bxoyveitssd.exe
These are most likely malware but since this is a global board, I ask.
