Hello my new friend,
I apologize that it took me so long to comply with your requests. Although your instructions were clear and easy to follow, the GMER scan took a very long time on my computer. I started it last night and when I went to bed a couple hours later it was still running so I let it run overnight. At some point I believe my computer must have done an automatic restart because when I checked it today there was nothing. I just ran it again, and it took about 4 hours. It is not as long as the one from yesterday, I remember having to scroll down (slightly) to read the entirety of the one from last night in the scanners window, while the one from today fit in the standard box. Other than that I have had no problems. Here are the logs you requested, I also included them as attachments in case that is easier for you.
DDS:
DDS (Ver_10-03-17.01) - NTFSx86
Run by Compaq_Owner at 21:34:16.82 on Tue 05/18/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.383.89 [GMT -7:00]
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Desktop\dds.com
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.yahoo.com/
uSearch Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=presario&pf=desktop
uSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=presario&pf=desktop
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=presario&pf=desktop
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=presario&pf=desktop
uInternet Connection Wizard,ShellNext = hxxp://shop.trendmicro.com/tmasy/eol.html?X=300&Y=300&WIDTH=690&HEIGHT=480
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
mSearchAssistant = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=presario&pf=desktop
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
mRun: [HPBootOp] "c:\program files\hewlett-packard\hp boot optimizer\HPBootOp.exe" /run
mRun: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [HP Software Update] "c:\program files\hewlett-packard\hp software update\HPWuSchd2.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compaq~1.lnk - c:\program files\compaq connections\6750491\program\Compaq Connections.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.0.181\SSScheduler.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\utilit~1.lnk - c:\windows\system32\sistray.exe
IE: &Google Search - c:\program files\google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\google\GoogleToolbar1.dll/cmcache.html
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - c:\program files\google\GoogleToolbar1.dll/cmtrans.html
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
============= SERVICES / DRIVERS ===============
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-4-4 216200]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-4-4 29512]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-4-4 242896]
=============== Created Last 30 ================
==================== Find3M ====================
2010-05-17 02:57:54 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-05-16 21:26:47 194 ----a-w- c:\docume~1\compaq~1.you\applic~1\wklnhst.dat
2010-04-04 07:04:25 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-04-04 07:04:03 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-04-04 04:59:33 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-04-04 01:53:56 1855 --sha-r- c:\windows\system32\drivers\103C_HP_CPC_PX801AA-ABA SR1520NX NA530_YC_0Pres_QCNH524_E53NAheRED2_47_ISalmon_SASUSTek Computer INC._V1.04_B3.12_T050420_WXH2_L409_M384_J160_7AMD_8Sempron_91.81_#090125_N10390900_Z11C1048C_G10396330.MRK
2010-03-04 23:01:09 503808 ----a-w- c:\windows\system32\MSVCP71.DLL
2010-03-04 23:01:09 348160 ----a-w- c:\windows\system32\MSVCR71.DLL
2010-03-04 23:01:09 1060864 ----a-w- c:\windows\system32\MFC71.DLL
2005-09-08 21:34:16 32 --sha-w- c:\windows\sminst\HPCD.SYS
2009-09-18 15:09:09 32768 --sha-w- c:\windows\temp\cookies\index.dat
2009-09-18 15:09:09 16384 --sha-w- c:\windows\temp\history\history.ie5\index.dat
2009-09-18 15:09:09 32768 --sha-w- c:\windows\temp\temporary internet files\content.ie5\index.dat
============= FINISH: 21:36:23.21 ===============
Attach:
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_10-03-17.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 4/3/2010 5:52:01 PM
System Uptime: 5/18/2010 8:16:55 AM (13 hours ago)
Motherboard: ASUSTek Computer INC. | | Salmon
Processor: AMD Sempron Processor 3100+ | Socket 754 | 1808/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 144 GiB total, 64.653 GiB free.
D: is FIXED (FAT32) - 5 GiB total, 0.365 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP1: 4/3/2010 7:02:24 PM - Installed HP Deskjet 3840
RP2: 4/3/2010 7:03:11 PM - Installed HP Software Update
RP3: 4/3/2010 8:44:01 PM - Installed Windows Internet Explorer 8.
RP4: 4/3/2010 9:57:15 PM - Installed Java 6 Update 19
RP5: 4/3/2010 10:08:25 PM - Configured easy Internet sign-up
RP6: 4/3/2010 10:11:45 PM - Removed Microsoft Office Standard Edition 2003
RP7: 4/3/2010 10:17:00 PM - Removed Microsoft Plus! Dancer LE
RP8: 4/3/2010 10:22:25 PM - Removed Norton Security Center
RP9: 4/4/2010 12:00:25 AM - Installed AVG Free 9.0
RP10: 4/4/2010 9:37:58 AM - Avg Update
RP11: 4/5/2010 9:08:42 AM - Avg Update
RP12: 4/5/2010 9:11:43 AM - Avg Update
RP13: 4/6/2010 9:38:46 AM - System Checkpoint
RP14: 4/7/2010 10:38:45 AM - System Checkpoint
RP15: 4/8/2010 11:04:15 AM - System Checkpoint
RP16: 4/8/2010 7:35:15 PM - Avg Update
RP17: 4/9/2010 11:55:46 PM - System Checkpoint
RP18: 4/11/2010 10:00:42 AM - System Checkpoint
RP19: 4/12/2010 10:16:26 AM - System Checkpoint
RP20: 4/13/2010 10:30:35 AM - System Checkpoint
RP21: 4/15/2010 7:00:52 PM - System Checkpoint
RP22: 4/16/2010 7:09:56 PM - System Checkpoint
RP23: 4/17/2010 8:09:35 PM - System Checkpoint
RP24: 4/18/2010 9:34:54 PM - Installed Yu-Gi-Oh! ONLINE 3.
RP25: 4/19/2010 6:59:19 PM - Installed DirectX
RP26: 4/20/2010 9:04:07 AM - Avg Update
RP27: 4/20/2010 9:05:57 AM - Avg Update
RP28: 4/21/2010 12:06:06 PM - System Checkpoint
RP29: 4/22/2010 11:10:19 PM - Removed Yu-Gi-Oh! ONLINE 3.
RP30: 4/23/2010 11:32:19 PM - Installed Windows Media Format Runtime
RP31: 4/23/2010 11:37:53 PM - Installed Windows XP Wudf01000.
RP32: 4/23/2010 11:54:24 PM - Installed Windows XP KB926239.
RP33: 4/25/2010 2:59:49 AM - System Checkpoint
RP34: 4/26/2010 10:51:19 AM - System Checkpoint
RP35: 4/27/2010 11:17:16 AM - System Checkpoint
RP36: 4/28/2010 12:10:43 PM - System Checkpoint
RP37: 4/29/2010 1:10:48 PM - System Checkpoint
RP38: 5/1/2010 1:37:34 AM - System Checkpoint
RP39: 5/2/2010 2:29:51 AM - System Checkpoint
RP40: 5/3/2010 3:04:50 AM - System Checkpoint
RP41: 5/4/2010 8:18:46 AM - System Checkpoint
RP42: 5/5/2010 6:47:20 PM - Avg Update
RP43: 5/6/2010 6:45:07 PM - Installed Windows Internet Explorer 8.
RP44: 5/6/2010 7:30:33 PM - Restore Operation
RP45: 5/6/2010 8:03:22 PM - Avg Update
RP46: 5/8/2010 10:06:44 AM - System Checkpoint
RP47: 5/9/2010 10:54:54 AM - System Checkpoint
RP48: 5/10/2010 8:16:06 PM - System Checkpoint
RP49: 5/12/2010 7:06:08 PM - System Checkpoint
RP50: 5/13/2010 7:39:05 PM - System Checkpoint
RP51: 5/15/2010 3:38:21 PM - System Checkpoint
RP52: 5/16/2010 3:54:53 PM - System Checkpoint
RP53: 5/16/2010 7:28:52 PM - Restore Operation
RP54: 5/16/2010 7:54:55 PM - Avg Update
RP55: 5/16/2010 7:59:13 PM - Avg Update
RP56: 5/17/2010 9:37:03 PM - Installed HiJackThis
==== Installed Programs ======================
Adobe Acrobat - Reader 6.0.2 Update
Adobe Flash Player 10 ActiveX
Adobe Reader 6.0.1
Agere Systems PCI Soft Modem
AVG Free 9.0
Compaq Connections
Compaq Organize
GOM Player
Google Toolbar for Internet Explorer
Help and Support Additions
HiJackThis
HP Boot Optimizer
HP Deskjet 3840
HP Help and Support 4.0
HP Software Update
HpSdpAppCoreApp
InterVideo WinDVD Player
iTunes
J2SE Runtime Environment 5.0
Java Auto Updater
Java 6 Update 19
KBD
LiveUpdate 3.0 (Symantec Corporation)
McAfee Security Scan Plus
Microsoft .NET Framework 1.1
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
PC-Doctor for Windows
PS2
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
QuickTime
RealPlayer
Remove Adobe Photoshop Album 2.0 Starter Edition installer
Remove Microsoft Money 2005 installer
Remove Quicken New User Edition installer
Remove WeatherBug installer
SiS VGA Utilities
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Spybot - Search & Destroy
Symantec Network Drivers Update
WebFldrs XP
Windows Internet Explorer 8
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB883667
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888239
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB891781
==== Event Viewer Messages From Past Week ========
5/16/2010 8:16:29 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000243' while processing the file 'avgcorex.dll' on the volume 'HarddiskVolume2'. It has stopped monitoring the volume.
5/16/2010 7:54:50 PM, error: Service Control Manager [7034] - The McAfee Security Scan Component Host Service service terminated unexpectedly. It has done this 1 time(s).
5/16/2010 7:42:36 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Print Spooler service to connect.
5/16/2010 7:42:36 PM, error: Service Control Manager [7000] - The Print Spooler service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
5/15/2010 8:34:53 PM, error: Service Control Manager [7034] - The PC Tools Security Service service terminated unexpectedly. It has done this 1 time(s).
5/14/2010 6:33:37 PM, error: Ftdisk [49] - Configuring the Page file for crash dump failed. Make sure there is a page file on the boot partition and that is large enough to contain all physical memory.
5/14/2010 6:33:37 PM, error: Ftdisk [45] - The system could not sucessfully load the crash dump driver.
5/13/2010 10:09:10 PM, error: Service Control Manager [7000] - The LiveUpdate service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
5/13/2010 10:09:09 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the LiveUpdate service to connect.
5/13/2010 10:08:30 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service LiveUpdate with arguments "" in order to run the server: {03E0E6C2-363B-11D3-B536-00902771A435}
5/11/2010 7:12:38 PM, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 0013D4102FED. The following error occurred: The semaphore timeout period has expired. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
==== End Of File ===========================
GMER:
GMER 1.0.15.15281 -
http://www.gmer.netRootkit scan 2010-05-19 21:32:45
Windows 5.1.2600 Service Pack 2
Running: tvq4t2ty.exe; Driver: C:\DOCUME~1\COMPAQ~1.YOU\LOCALS~1\Temp\axgdypog.sys
---- System - GMER 1.0.15 ----
SSDT 8288F0C0 ZwConnectPort
---- Kernel code sections - GMER 1.0.15 ----
.rsrc C:\WINDOWS\System32\Drivers\avgldx86.sys entry point in ".rsrc" section [0xB0EFE314]
---- User code sections - GMER 1.0.15 ----
.text C:\WINDOWS\system32\wuauclt.exe[136] ntdll.dll!NtProtectVirtualMemory 7C90DEB6 5 Bytes JMP 0140000A
.text C:\WINDOWS\system32\wuauclt.exe[136] ntdll.dll!NtWriteVirtualMemory 7C90EA32 5 Bytes JMP 0141000A
.text C:\WINDOWS\system32\wuauclt.exe[136] ntdll.dll!KiUserExceptionDispatcher 7C90EAEC 5 Bytes JMP 013F000C
.text C:\WINDOWS\System32\svchost.exe[880] ntdll.dll!NtProtectVirtualMemory 7C90DEB6 5 Bytes JMP 008F000A
.text C:\WINDOWS\System32\svchost.exe[880] ntdll.dll!NtWriteVirtualMemory 7C90EA32 5 Bytes JMP 0090000A
.text C:\WINDOWS\System32\svchost.exe[880] ntdll.dll!KiUserExceptionDispatcher 7C90EAEC 5 Bytes JMP 008E000C
.text C:\WINDOWS\System32\svchost.exe[880] USER32.dll!GetCursorPos 77D4C566 5 Bytes JMP 0322000A
.text C:\WINDOWS\System32\svchost.exe[880] ole32.dll!CoCreateInstance 77526009 5 Bytes JMP 02FD000A
.text C:\WINDOWS\Explorer.EXE[1792] ntdll.dll!NtProtectVirtualMemory 7C90DEB6 5 Bytes JMP 00B9000A
.text C:\WINDOWS\Explorer.EXE[1792] ntdll.dll!NtWriteVirtualMemory 7C90EA32 5 Bytes JMP 00BA000A
.text C:\WINDOWS\Explorer.EXE[1792] ntdll.dll!KiUserExceptionDispatcher 7C90EAEC 5 Bytes JMP 00B8000C
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs SYMEVENT.SYS (Symantec Event Library/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \FileSystem\Fastfat \Fat SYMEVENT.SYS (Symantec Event Library/Symantec Corporation)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
Device -> \Driver\atapi \Device\Harddisk0\DR0 82597EE4
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\System32\Drivers\avgldx86.sys suspicious modification
File C:\WINDOWS\system32\drivers\atapi.sys suspicious modification
---- EOF - GMER 1.0.15 ----
Thank you very much for your help in this matter. You must be a very good person to help people you don't know with no reward other than knowing you are helping people