Hello,
I'm new to a lot of this personal protection stuff. I have Spybot and Ad-Aware and run these often. At the moment, on occasion, random audio files play on my computer. This happens at random occasions and are not my audio files. There are no new applications which show on my task manager and I do not believe that any new processes are running. I notice that spool is runnning even though I have no printing needs at the moment. Does anyone know about these problems or ways of fixing it?

Bryan

please do the prework in my signature.

Hello, this sounds like the work of malware.
I'll be happy to help you once you have completed the Prework as AMDAthlon64X2 directed.

Ok so these are my logs from those steps. Thanks for the help.

Bryan

Attached Files

	SUPERAntiSpyware Scan Log - 06-25-2007 - 11-38-13.log (6.8 KB, 3 views)
	hijackthis.log (5.1 KB, 3 views)

Well the other log was too large so here is some parts.

Attached Files

	Scan1.txt (51.5 KB, 2 views)
	Scan2.txt (33.1 KB, 2 views)
	Scan3.txt (57.9 KB, 0 views)
	Scan4.txt (43.6 KB, 1 views)

Please run HijackThis and place a checkmark by the following entries:
O2 - BHO: (no name) - {6F481F80-D133-AA9D-4F60-FC8DCC2783E8} - (no file)
O2 - BHO: BHOAd - {85589B5D-D53D-4237-A677-46B82EA275F3} - C:\WINDOWS\xmlhelper2.dll
O2 - BHO: (no name) - {95D9B540-90F9-413B-85D5-646824820D33} - (no file)
O4 - HKLM\..\Run: [SecureWeb] C:\WINDOWS\system32\v2q44o0O.exe
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

If you don't use a proxy, please tick:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = 168.94.74.68:8080


Close all other windows except HijackThis and press "Fix Checked". Then close HijackThis and restart the computer.

Next clear your recycle Bin.


Then download SmitfraudFix (by S!Ri)
Extract the content (a folder named SmitfraudFix) to your Desktop.

Open the SmitfraudFix folder and double-click smitfraudfix.cmd
Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present).
Please attach the content of that report into your next reply, along with a new HijackThis log.

Note : process.exe is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool"; it is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
http://www.beyondlogic.org/consulting/proc...processutil.htm