Hi
just RECENTLY i saw that ALL my short cuts have some how been changed to some kind of data\resources\ path... its really getting annoying..... the wierd thing about it is that the shortcuts still work... so its like the files have been copied to the data\resources\ directory...

so why is this happening??

this is what it looks like:

http://img187.imageshack.us/img187/7448/firefoxshortcutfw5.png
http://img151.imageshack.us/img151/5745/yahooshortcutvf7.png
http://img46.imageshack.us/img46/6859/palmshortcutnk9.png

and my system specs are in my signature

Thanks
Llama

EDIT::: i just tried something and it turns out that not only the short cuts are modified but EVERY folder in my C:\Program Files\ directory has a \data\resources\ path except ALL of them are hidden... is it a virus or spy ware or what im sooo confusedYour shortcut icons also look a bit strange...or is that how they normally look on your computer?

You've got yourself an odd little problem and I believe it's an infection.  I've seen this once before on another forum.  Unfortunately, the problem was never solved, so I don't have anything to reference.  All I know is that it might be somehow related to the W32.HLLW.Nautic worm.  But we'll do our best here.

Please post a HijackThis log along with a list of all of the protection programs installed on your computer.sorry i was on vacation the day after you posted and I just got back yesterday so I was unable to post..
anyway first off if you're referring to the little shortcut arrow on my icons then ya thats the way my icons are supposed to look.

i used to run AVG Free and Spy Bot but AVG CONSTANTLY gave me op32.exe virus alerts and it kept saying it no matter what button i hit (heal/ignore/delete) then spy bot ...wow the alerts i got from that took up my whole desktop not to mention 50% of my processor... so i dont really care for either of them... plus i think avg is still running because it says so in the process list

(so if you know of any other programs please tell me)

dang have to make this 2 posts because of the max allowed characters.......

EDIT::: nevermind it would have to be 3 or 4 posts so ill just attach it...

[Saving disk space -  old attachment deleted by admin]AVG and SpyBot are two of the best programs out there.  Those alerts simply meant they were doing their job (op32.exe is indeed a trojan).  Often, for an infection to be healed properly, you need to scan in Safe Mode.  I would strongly suggest re-installing them and doing just that.  Meanwhile, I'll take a look at your log.Alrighty, you've got a few baddies in your log, so let's see what we can do.  Once we start, you won't have access to this post anymore, so I recommend that you print out this post or save it to a Notepad file.

I see that you have HijackThis running from your desktop.  You have it in a permanent location, which is good because it makes important backups that you may end up needing.  However, to help you avoid clutter and to help ensure that the backups stay safe, I would like you to move it to a special location.

• Double-click on My Computer to open it and navigate to C:\Program Files.
  
• Right-click on the empty (white) space and go to New > Folder.
  
• Name the folder something like HJT and move HijackThis into that new folder.
  
• If you would still like to run HijackThis from the desktop for convenience, right-click on HijackThis and click on Create Shortcut.  This will create a shortcut to the program; move the shortcut to the desktop.

the ALCMTR.exe which is for my 5.1 realtek sound card so i shouldnt get rid of that, right?

and ive got an idea but what exactly will hijackthis do when i hit the "Fixed Checked" button?
im just a little curious

plus why exactly do i need the CCleaner and what does that do??