aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software Run date: 2012-05-04 22:00:27 ----------------------------- 22:00:27.626 OS Version: Windows 5.1.2600 Service Pack 3 22:00:27.626 Number of processors: 1 586 0xE08 22:00:27.626 ComputerName: YOUR-0CDC4F5844 UserName: owner 22:00:40.907 Initialize success 22:15:26.876 AVAST engine defs: 12050401 22:17:34.220 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 22:17:34.267 Disk 0 Vendor: Size: 0MB BusType: 0 22:17:34.298 Disk 0 MBR read successfully 22:17:34.314 Disk 0 MBR scan 22:17:56.798 Disk 0 unknown MBR code 22:17:56.814 Disk 0 MBR hidden 22:17:56.860 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 82435 MB offset 63 22:18:09.485 Disk 0 Partition 2 00 0C FAT32 LBA RECOVERY 11923 MB offset 168843150 22:18:13.204 Disk 0 Partition 3 00 D7 NTFS 1027 MB offset 193261950 22:18:21.876 Disk 0 scanning C:\WINDOWS\system32\drivers 22:24:02.235 Service scanning 22:26:47.892 Modules scanning 22:28:46.470 Disk 0 trace - called modules: 22:28:46.923 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys 22:28:46.923 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x82be5710] 22:28:46.970 3 CLASSPNP.SYS[f8515fd7] -> nt!IofCallDriver -> \Device\00000089[0x82bdd970] 22:28:46.985 5 ACPI.sys[f838c620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x82b8a030] 22:29:43.735 AVAST engine scan C:\WINDOWS 22:37:30.470 AVAST engine scan C:\WINDOWS\system32 22:49:36.798 File: C:\WINDOWS\system32\parport.dll **INFECTED** Win32:Sirefef-SM [Trj] 23:15:47.439 AVAST engine scan C:\WINDOWS\system32\drivers 23:17:33.564 AVAST engine scan C:\Documents and Settings\owner 00:10:08.720 AVAST engine scan C:\Documents and Settings\All Users 00:10:12.939 File: C:\Documents and Settings\All Users\Application Data\5L1BL57C.exe **INFECTED** Win32:IRCBot-EPZ [Trj] 01:06:11.173 Scan finished successfully 08:34:32.220 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\owner\Desktop\MBR.dat" 08:34:32.704 The log file has been saved successfully to "C:\Documents and Settings\owner\Desktop\aswMBR_to_5-5-12.txt"