[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_Dlls"=avgrsstx.dll
>[2008/11/11 15:17:01 | 00,010,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\system32\avgrsstx.dll
========== (O20) HKLM Winlogon Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"=Explorer.exe
>File not found -- I:\WINDOWS\explorer
"UserInit"=I:\WINDOWS\system32\userinit.exe,
>File not found -- I:\WINDOWS\system32\userinit
"UIHost"=logonui.exe
>File not found -- I:\WINDOWS\system32\logonui
"VMApplet"=rundll32 shell32,Control_RunDLL "sysdm.cpl"
>File not found -- I:\WINDOWS\system32\sysdm
========== IFEO "Debugger" Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\]
Your Image File Name Here without a path:"Debugger" = I:\WINDOWS\system32\ntsd File not found
========== Safeboot Options ==========
"AlternateShell"=cmd.exe
========== CDRom AutoRun Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1
========== Autorun Files on Drives ==========
autorun.inf [[autorun] | open=setup.exe | ]
File not found -- I:\autorun -- [ NTFS ]
========== MountPoints2 ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b19d1a4a-16ed-11dd-b6b5-0014bf74a2b6}\Shell\AutoRun\command]
""=K:\WD_Windows_Tools\Setup.exe -- File not found
========== Files/Folders - Created Within 30 Days ==========
[1 I:\WINDOWS\System32\*.tmp files]
[7 I:\WINDOWS\*.tmp files]
[2008/11/22 13:11:40 | 00,001,734 | ---- | C] () -- I:\Documents and Settings\Lauren\Desktop\HijackThis.lnk
[2008/11/22 13:11:38 | 00,000,000 | ---D | C] -- I:\Program Files\Trend Micro
[2008/11/12 20:23:36 | 00,202,071 | ---- | C] () -- I:\Documents and Settings\Lauren\My Documents\RipIt4Me.zip
[2008/11/11 18:32:02 | 00,455,296 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\mrxsmb.sys
[2008/11/11 18:31:24 | 01,106,944 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\msxml3.dll
[2008/11/11 17:20:32 | 00,000,000 | R--D | C] -- I:\Documents and Settings\Lauren\My Documents\My Music
[2008/11/11 16:33:03 | 00,000,000 | ---D | C] -- I:\Program Files\ThreatExpert Memory Scanner
[2008/11/11 16:26:12 | 00,000,000 | ---D | C] -- I:\WINDOWS\pss
[2008/11/11 15:36:08 | 00,000,000 | -H-D | C] -- I:\$AVG8.VAULT$
[2008/11/11 15:17:02 | 00,001,507 | ---- | C] () -- I:\Documents and Settings\All Users\Desktop\AVG Free 8.0.lnk
[2008/11/11 15:17:01 | 00,076,040 | ---- | C] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgtdix.sys
[2008/11/11 15:17:01 | 00,010,520 | ---- | C] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\avgrsstx.dll
[2008/11/11 15:16:58 | 00,097,928 | ---- | C] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgldx86.sys
[2008/11/11 15:16:56 | 00,026,824 | ---- | C] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgmfx86.sys
[2008/11/11 15:16:53 | 30,281,709 | ---- | C] () -- I:\WINDOWS\System32\drivers\Avg\incavi.avm
[2008/11/11 15:16:53 | 06,061,540 | ---- | C] () -- I:\WINDOWS\System32\drivers\Avg\avi7.avg
[2008/11/11 15:16:53 | 00,334,743 | ---- | C] () -- I:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2008/11/11 15:16:53 | 00,042,274 | ---- | C] () -- I:\WINDOWS\System32\drivers\Avg\microavi.avg
[2008/11/11 15:16:53 | 00,000,000 | ---D | C] -- I:\WINDOWS\System32\drivers\Avg
[2008/11/11 15:16:42 | 00,000,000 | ---D | C] -- I:\Program Files\AVG
[2008/11/11 15:16:42 | 00,000,000 | ---D | C] -- I:\Documents and Settings\All Users\Application Data\avg8
[2008/11/11 15:14:35 | 00,000,000 | ---D | C] -- I:\Documents and Settings\Lauren\My Documents\Roxio
[2008/11/09 18:00:11 | 00,000,000 | ---D | C] -- I:\Documents and Settings\Lauren\Desktop\Pics
[2008/11/08 13:03:03 | 00,000,000 | R--D | C] -- I:\Documents and Settings\Lauren\My Documents\My Pictures
[2008/11/07 16:57:38 | 00,333,824 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\srv.sys
[2008/11/07 16:56:05 | 01,846,400 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\win32k.sys
[2008/11/07 16:55:56 | 02,145,280 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2008/11/07 16:55:55 | 02,189,184 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2008/11/07 16:55:54 | 02,066,048 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2008/11/07 16:55:54 | 02,023,936 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2008/11/07 16:52:07 | 00,337,408 | ---- | C] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\netapi32.dll
[2008/11/07 16:51:19 | 00,000,793 | ---- | C] () -- I:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2008/11/07 16:51:03 | 00,000,000 | ---D | C] -- I:\Program Files\Common Files\Wise Installation Wizard
[2008/11/07 16:42:49 | 00,000,000 | ---D | C] -- I:\Documents and Settings\Lauren\My Documents\Bluetooth
[2008/11/07 16:38:37 | 00,000,000 | ---D | C] -- I:\WINDOWS\Temporary Internet Files
[2008/11/07 16:38:37 | 00,000,000 | ---D | C] -- I:\WINDOWS\System32\COLOR
[2008/11/07 16:38:37 | 00,000,000 | ---D | C] -- I:\WINDOWS\History
[2008/11/07 16:38:37 | 00,000,000 | ---D | C] -- I:\WINDOWS\Cookies
[2008/11/07 16:38:37 | 00,000,000 | ---D | C] -- I:\KPCMS
[2008/11/07 16:34:20 | 00,000,000 | ---D | C] -- I:\drvrtmp
[2008/11/07 16:34:20 | 00,000,000 | ---D | C] -- I:\Config.Msi
[2008/11/07 16:34:18 | 00,000,000 | ---D | C] -- I:\Program Files\LimeWire
[2008/11/07 16:34:06 | 00,000,000 | ---D | C] -- I:\Program Files\ComPlus Applications
[2008/11/07 16:20:48 | 00,000,000 | ---D | C] -- I:\Program Files\Webroot
[2008/11/07 16:20:48 | 00,000,000 | ---D | C] -- I:\Documents and Settings\Lauren\Application Data\Webroot
[2008/11/07 16:20:48 | 00,000,000 | ---D | C] -- I:\Documents and Settings\All Users\Application Data\Webroot
[2008/11/06 21:01:20 | 00,000,000 | ---D | C] -- I:\Documents and Settings\Lauren\My Documents\PcSetup
[2008/11/06 19:08:28 | 00,000,000 | -HSD | C] -- I:\WINDOWS\CSC
[2008/11/06 18:58:48 | 00,000,000 | ---D | C] -- I:\Program Files\Alwil Software
========== Files - Modified Within 30 Days ==========
[1 I:\WINDOWS\System32\*.tmp files]
[7 I:\WINDOWS\*.tmp files]
[2008/11/22 13:21:43 | 00,007,275 | ---- | M] () -- I:\WINDOWS\System32\nvapps.xml
[2008/11/22 13:21:15 | 00,000,006 | -H-- | M] () -- I:\WINDOWS\tasks\SA.DAT
[2008/11/22 13:21:03 | 00,002,048 | --S- | M] () -- I:\WINDOWS\bootstat.dat
[2008/11/22 13:11:41 | 00,001,734 | ---- | M] () -- I:\Documents and Settings\Lauren\Desktop\HijackThis.lnk
[2008/11/22 08:36:41 | 30,281,709 | ---- | M] () -- I:\WINDOWS\System32\drivers\Avg\incavi.avm
[2008/11/20 21:52:05 | 00,042,274 | ---- | M] () -- I:\WINDOWS\System32\drivers\Avg\microavi.avg
[2008/11/20 21:47:43 | 00,002,206 | ---- | M] () -- I:\WINDOWS\System32\wpa.dbl
[2008/11/12 22:06:34 | 03,771,818 | -H-- | M] () -- I:\Documents and Settings\Lauren\Local Settings\Application Data\IconCache.db
[2008/11/12 20:23:38 | 00,202,071 | ---- | M] () -- I:\Documents and Settings\Lauren\My Documents\RipIt4Me.zip
[2008/11/11 18:34:49 | 00,001,393 | ---- | M] () -- I:\WINDOWS\imsins.BAK
[2008/11/11 18:29:00 | 00,000,743 | ---- | M] () -- I:\WINDOWS\win.ini
[2008/11/11 18:29:00 | 00,000,253 | ---- | M] () -- I:\WINDOWS\system.ini
[2008/11/11 15:18:07 | 00,334,743 | ---- | M] () -- I:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2008/11/11 15:17:02 | 00,001,507 | ---- | M] () -- I:\Documents and Settings\All Users\Desktop\AVG Free 8.0.lnk
[2008/11/11 15:17:01 | 00,076,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgtdix.sys
[2008/11/11 15:17:01 | 00,010,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\avgrsstx.dll
[2008/11/11 15:16:58 | 00,097,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgldx86.sys
[2008/11/11 15:16:56 | 00,026,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- I:\WINDOWS\System32\drivers\avgmfx86.sys
[2008/11/11 15:16:53 | 06,061,540 | ---- | M] () -- I:\WINDOWS\System32\drivers\Avg\avi7.avg
[2008/11/08 13:02:20 | 00,009,728 | ---- | M] () -- I:\Documents and Settings\Lauren\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/07 17:05:59 | 00,245,512 | ---- | M] () -- I:\WINDOWS\System32\FNTCACHE.DAT
[2008/11/07 16:51:19 | 00,000,793 | ---- | M] () -- I:\Documents and Settings\All Users\Desktop\Ad-Aware.lnk
[2008/11/07 16:46:26 | 00,462,976 | ---- | M] () -- I:\WINDOWS\System32\perfh009.dat
[2008/11/07 16:46:26 | 00,078,478 | ---- | M] () -- I:\WINDOWS\System32\perfc009.dat
[2008/11/07 16:28:41 | 00,000,734 | ---- | M] () -- I:\WINDOWS\System32\drivers\etc\HOSTS
[2008/11/06 18:59:09 | 00,002,626 | ---- | M] () -- I:\WINDOWS\System32\CONFIG.NT
[2008/11/03 19:10:25 | 17,318,336 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\System32\MRT.exe
[2008/10/24 06:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\System32\drivers\mrxsmb.sys
[2008/10/24 06:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\System32\dllcache\mrxsmb.sys
< End of report >