Recently my boyfriend had a new administrator on his computer. It popped up after being connected to the internet all day while changing analog files from home videos of drum lessons to digital files on his computer. The next day we started his computer and got a new desktop even though the name was the same. At first we thought all his programs and files were gone. Fortunately we disconnected the internet immediately. We found out after going to my computer C:\Documents and Settings there were two administrators listed. The new name was administrator plus the name of the computer. My boyfriends administrator name had his documents and programs still listed. When logging off or shutting and restarting there is no option for another user than the new desktop administrator which uses my boyfriends original administrator name. When checking the new administator's internet history files, we discovered all of the files we had accessed the day before listed. I checked log files and found several which were changed or originated on 11/12/08, and one which was changed on 11/11/08. System Volume 1 is unaccessible. When running AVG antivirus no viruses showed up, but there were several file changes. C:/WINNT/system32/ .....Kernel.32.....wsock32.dll.....user32.dll ntosknl.ex What is going on here?