AVG reporting those files as changed is nothing to be concerned about.
Please do the following.
Please
RogueRemover; Save the file rr-free-setup.exe to your Desktop, do not Run it.
* Double-click on rr-free-setup.exe to install:
# The program should open automatically after installation. If it does not, Double-click on the desktop shortcut (or open C:\Program Files\RogueRemover <=this folder and double-click on RogueRemover.exe) to start the program;
# Select Check for Updates;
# When prompted, select Check for Updates;
# Your firewall may be blocking its check. Just keep clicking Check for Updates until you are prompted with a Download option.
# If prompted again, click Download to receive the latest updates;
# When updating completes, close the update window;
# Finally, select Scan and the program will walk you through the remaining steps.
Then, do this.
Download and install DrWebCureit:
ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe
http://spywareinfo.dk/download/drweb-cureit.exe to your desktop.
Boot into safe mode, under your normal user name(NOT THE ADMINISTRATOR ACCOUNT). See how
HERE.
In Windows Explorer, turn on "Show all files and folders, including hidden and system". See how
HERE.
Doubleclick the "drweb-cureit.exe" and click "ok" in the prompt window that will open , asking "start the express scan now".
It will first make a quick scan of your system, let it clean what it find, and when it says "done"
Click on the green screwdriver-
Actions Tab- Adware-Dialers-Riskware-Hacktools, use dropdown menu and select -Delete
Click on the drive(s) you want to scan . A red dot will mark the selected drive(s) . Then hit the green arrow in lower right corner It will now scan your drive(s), say yes to all
After the scan, in the Dr.Web CureIt menu on top, click file and choose save report list
Save the report to your desktop. The report will be called DrWeb.csv
Close Dr.Web Cureit.
Reboot your computer!! Because it could be possible that files in use will be moved/deleted during reboot.
Attach the DrWeb.csv log
Regards Howard
This thread is for the use of kaushikparsha only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.