Performed ASWMBR scan and fix. Log report follows:
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-28 10:20:50
-----------------------------
10:20:50.109 OS Version: Windows 5.1.2600 Service Pack 3
10:20:50.109 Number of processors: 2 586 0xE08
10:20:50.109 ComputerName: DELL UserName: FAR
10:21:09.921 Initialize success
10:21:48.125 AVAST engine defs: 12042800
10:23:53.578 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
10:23:53.578 Disk 0 Vendor: ST98823AS 8.03 Size: 74881MB BusType: 3
10:23:54.875 Disk 0 MBR read successfully
10:23:54.875 Disk 0 MBR scan
10:23:54.875 Disk 0 unknown MBR code
10:23:54.875 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
10:23:54.890 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71751 MB offset 96390
10:23:54.921 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3074 MB offset 147042945
10:23:54.953 Disk 0 scanning sectors +153340425
10:23:54.984 Disk 0 malicious Win32:MBRoot code @ sector 153340428 !
10:23:54.984 Disk 0 PE file @ sector 153340450 !
10:23:55.046 Disk 0 scanning C:\WINDOWS\system32\drivers
10:24:08.546 Service scanning
10:24:24.906 Modules scanning
10:24:54.703 Disk 0 trace - called modules:
10:24:54.781 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
10:24:54.781 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x87175ab8]
10:24:54.781 3 CLASSPNP.SYS[f75d1fd7] -> nt!IofCallDriver -> \Device\00000075[0x87178510]
10:24:54.781 5 ACPI.sys[f7468620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x871d3940]
10:24:55.328 AVAST engine scan C:\WINDOWS
10:25:03.968 AVAST engine scan C:\WINDOWS\system32
10:38:15.671 AVAST engine scan C:\WINDOWS\system32\drivers
10:38:34.937 AVAST engine scan C:\Documents and Settings\FAR
10:40:53.937 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\FAR\Desktop\MBR.dat"
10:40:53.937 The log file has been saved successfully to "C:\Documents and Settings\FAR\Desktop\aswMBR.txt"
10:42:37.171 File: C:\Documents and Settings\FAR\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll **HIDDEN**
10:42:37.468 File: C:\Documents and Settings\FAR\Application Data\Microsoft\Installer\{457791C5-D702-4143-A7B2-2744BE9573F2}\NewShortcut1_5B69D3033CA54B39B5ECE7D051297E77.exe **HIDDEN**
10:42:37.656 File: C:\Documents and Settings\FAR\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe **HIDDEN**
10:42:54.671 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-72568e8b-n\decora-d3d.dll **HIDDEN**
10:42:54.921 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-72568e8b-n\decora-sse.dll **HIDDEN**
10:42:58.156 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-189832fc-n\jmc.dll **HIDDEN**
10:42:58.421 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-189832fc-n\msvcp71.dll **HIDDEN**
10:42:58.750 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-189832fc-n\msvcr71.dll **HIDDEN**
10:42:59.406 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-3fe765a8-n\decora-d3d.dll **HIDDEN**
10:42:59.578 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-3fe765a8-n\decora-sse.dll **HIDDEN**
10:43:00.781 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-231517a0-n\jmc.dll **HIDDEN**
10:43:01.109 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-231517a0-n\msvcp71.dll **HIDDEN**
10:43:01.281 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-231517a0-n\msvcr71.dll **HIDDEN**
10:43:02.734 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\jre1.6.0_22\gtapi.dll **HIDDEN**
10:43:03.062 File: C:\Documents and Settings\FAR\Application Data\Sun\Java\jre1.6.0_22\lzma.dll **HIDDEN**
10:43:05.812 File: C:\Documents and Settings\FAR\Desktop\aswMBR.exe **HIDDEN**
10:43:06.171 File: C:\Documents and Settings\FAR\Desktop\ccsetup317.exe **HIDDEN**
10:43:06.359 File: C:\Documents and Settings\FAR\Desktop\CIT207355-HPCOM-PATCH-v8.exe **HIDDEN**
10:43:06.500 File: C:\Documents and Settings\FAR\Desktop\cnet2_MyDefrag-v4_3_1_exe.exe **HIDDEN**
10:43:06.671 File: C:\Documents and Settings\FAR\Desktop\COL9278.exe **HIDDEN**
10:43:06.812 File: C:\Documents and Settings\FAR\Desktop\dds.com **HIDDEN**
10:43:06.984 File: C:\Documents and Settings\FAR\Desktop\dds.scr **HIDDEN**
10:43:07.218 File: C:\Documents and Settings\FAR\Desktop\Dial-a-fix-v0.60.0.24\Dial-a-fix-v0.60.0.24\Dial-a-fix.exe **HIDDEN**
10:43:07.359 File: C:\Documents and Settings\FAR\Desktop\Dial-a-fix-v0.60.0.24\Dial-a-fix-v0.60.0.24\secedit.exe **HIDDEN**
10:43:07.531 File: C:\Documents and Settings\FAR\Desktop\erunt\AUTOBACK.EXE **HIDDEN**
10:43:07.640 File: C:\Documents and Settings\FAR\Desktop\erunt\ERDNT.E_E **HIDDEN**
10:43:07.828 File: C:\Documents and Settings\FAR\Desktop\erunt\ERUNT.EXE **HIDDEN**
10:43:08.078 File: C:\Documents and Settings\FAR\Desktop\erunt\NTREGOPT.EXE **HIDDEN**
10:43:08.359 File: C:\Documents and Settings\FAR\Desktop\erunt-setup.exe **HIDDEN**
10:43:09.000 File: C:\Documents and Settings\FAR\Desktop\jre-6u31-windows-i586.exe **HIDDEN**
10:43:09.031 File: C:\Documents and Settings\FAR\Desktop\mbam-setup-1.46.exe **HIDDEN**
10:43:09.156 File: C:\Documents and Settings\FAR\Desktop\OnlineArmor_Setup_Free.exe **HIDDEN**
10:43:09.375 File: C:\Documents and Settings\FAR\Desktop\PSISetup.exe **HIDDEN**
10:43:09.421 File: C:\Documents and Settings\FAR\Desktop\QuickTimeInstaller.exe **HIDDEN**
10:43:09.531 File: C:\Documents and Settings\FAR\Desktop\RSIT.exe **HIDDEN**
10:43:09.687 File: C:\Documents and Settings\FAR\Desktop\TFC.exe **HIDDEN**
10:43:09.765 File: C:\Documents and Settings\FAR\Desktop\WindowsXP-KB936929-SP3-x86-ENU.exe **HIDDEN**
10:43:10.031 File: C:\Documents and Settings\FAR\Desktop\WindowsXP-KB942288-v3-x86.exe **HIDDEN**
10:43:10.234 File: C:\Documents and Settings\FAR\Desktop\wlsetup-web.exe **HIDDEN**
10:43:10.421 File: C:\Documents and Settings\FAR\Desktop\wpsetup.exe **HIDDEN**
10:43:44.312 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\ar-EG\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:44.750 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\cs\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:45.156 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\da\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:45.578 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\de\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:45.906 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\Dell.eSupport.DownloadManager.Core.dll **HIDDEN**
10:43:46.281 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\Dell.eSupport.DownloadManager.ISOImage.dll **HIDDEN**
10:43:46.656 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\Dell.eSupport.DownloadManager.Localization.dll **HIDDEN**
10:43:47.046 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\DellDriverDownloadManager.exe **HIDDEN**
10:43:47.718 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\el\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:48.187 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\en-US\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:48.640 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\es\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:49.046 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\fi\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:49.437 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\fr\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:49.906 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\fr-CA\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:50.312 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\he\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:50.703 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\hu\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:51.203 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\Interop.IWshRuntimeLibrary.dll **HIDDEN**
10:43:51.609 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\it\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:52.015 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\ja\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:52.468 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\ko\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:52.828 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\nl\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:53.171 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\no\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:53.515 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\pl\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:53.906 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\pt-BR\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:54.359 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\ro\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:54.781 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\ru\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:55.171 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\stdole.dll **HIDDEN**
10:43:55.625 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\sv\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:56.046 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\tr\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:56.421 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\Xceed.Compression.dll **HIDDEN**
10:43:56.890 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\zh-CN\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:57.343 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell...app_c8a6012355de1b2d_0002.0000_34518a22156bd8d9\zh-TW\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:57.968 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..ager_c8a6012355de1b2d_0004.0050_none_ec66d2575893ec7f\DellDriverDownloadManager.exe **HIDDEN**
10:43:58.171 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..core_c8a6012355de1b2d_0004.0050_none_b1600ccfe933d7dc\Dell.eSupport.DownloadManager.Core.dll **HIDDEN**
10:43:58.359 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..mage_c8a6012355de1b2d_0004.0050_none_2820c010b7539cc3\Dell.eSupport.DownloadManager.ISOImage.dll **HIDDEN**
10:43:58.562 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_ar-eg_a1dd90878fa074ee\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:58.765 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_cs_d170cc65a7eedb5a\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:58.968 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_da_d2a4f22ba713e8ef\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:59.187 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_de_d279b27ba73458b3\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:59.390 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_el_d29f8a35a72420d1\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:59.593 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_en-us_33d2ca03565a4a72\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:43:59.796 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_es_d253dac1a75ce468\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:00.000 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_fi_d3318127a6c2d185\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:00.203 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_fr-ca_cecbe7304e2bb89f\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:00.406 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_fr_d2d031dba70bccfe\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:00.625 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_he_d43fcf33a6106acf\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:00.828 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_hu_d392d073a69229df\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:01.031 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_it_d40f278da6411275\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:01.218 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_ja_d54e1d3fa55e0419\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:01.421 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_ko_d5284585a5868fce\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:01.640 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_nl_d69d4ad3a4934990\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:01.843 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_no_d67cdb0fa4ab9d63\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:02.046 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_pl_d780592fa401529e\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:02.250 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_pt-br_356f0087c30e4811\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:02.453 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_ro_d842f7c7a387af7f\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:02.671 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_ru_d802183fa3b85725\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:02.875 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_sv_d868cf81a377779d\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:03.078 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_tr_d905965fa30e0c60\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:03.265 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_zh-cn_935934713d7c2484\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:03.484 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..rces_c8a6012355de1b2d_0004.0050_zh-tw_975571c73aed00f4\Dell.eSupport.DownloadManager.Localization.resources.dll **HIDDEN**
10:44:03.687 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\dell..tion_c8a6012355de1b2d_0004.0050_none_892ef5fe67b2933f\Dell.eSupport.DownloadManager.Localization.dll **HIDDEN**
10:44:03.890 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\inte..rary_c8a6012355de1b2d_0001.0000_none_9f2fc1421dc4509c\Interop.IWshRuntimeLibrary.dll **HIDDEN**
10:44:09.062 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\stdole_b03f5f7f11d50a3a_0007.0000_none_333059d4a751806f\stdole.dll **HIDDEN**
10:44:09.296 File: C:\Documents and Settings\FAR\Local Settings\Apps\2.0\83YNVNEP.MBH\BERX0W2K.YD4\xcee..sion_ba83ff368b7563c6_0003.0007_none_9c2cb3433c0f3426\Xceed.Compression.dll **HIDDEN**
10:44:10.546 File: C:\Documents and Settings\FAR\Local Settings\Temp\Adobelm_Cleanup.0001 **HIDDEN**
10:44:14.171 File: C:\Documents and Settings\FAR\Local Settings\Temp\is-3PVLS.tmp\is-H8GG1.tmp **HIDDEN**
10:44:14.468 File: C:\Documents and Settings\FAR\Local Settings\Temp\is-TB9UQ.tmp\UNZIP32.EXE **HIDDEN**
10:44:14.734 File: C:\Documents and Settings\FAR\Local Settings\Temp\is-TB9UQ.tmp\_shfoldr.dll **HIDDEN**
10:44:15.718 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\MBR.DAT **HIDDEN**
10:44:16.171 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\PEV.DAT **HIDDEN**
10:44:16.500 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\SED.DAT **HIDDEN**
10:44:16.843 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\SWREG.DAT **HIDDEN**
10:44:17.109 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\System.dll **HIDDEN**
10:44:17.250 File: C:\Documents and Settings\FAR\Local Settings\Temp\nsu8.tmp\UserInfo.dll **HIDDEN**
10:44:17.703 File: C:\Documents and Settings\FAR\Local Settings\Temp\vmpremov.exe **HIDDEN**
10:47:05.093 File: C:\Documents and Settings\FAR\Local Settings\Temporary Internet Files\Content.IE5\NJOOI0TV\dds[1].scr **HIDDEN**
10:47:43.343 File: C:\Documents and Settings\FAR\My Documents\Downloads\esetsmartinstaller_enu.exe **HIDDEN**
10:47:43.703 File: C:\Documents and Settings\FAR\My Documents\Downloads\RealPlayerSPGold(2).exe **HIDDEN**
10:47:44.046 File: C:\Documents and Settings\FAR\My Documents\Downloads\RealPlayerSPGold.exe **HIDDEN**
10:47:53.562 AVAST engine scan C:\Documents and Settings\All Users
10:50:42.953 Scan finished successfully
10:56:27.375 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\FAR\Desktop\MBR.dat"
10:56:27.375 The log file has been saved successfully to "C:\Documents and Settings\FAR\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-30 11:40:32
-----------------------------
11:40:32.953 OS Version: Windows 5.1.2600 Service Pack 3
11:40:32.953 Number of processors: 2 586 0xE08
11:40:32.953 ComputerName: DELL UserName: FAR
11:40:49.750 Initialize success
11:40:54.453 AVAST engine defs: 12043000
11:41:15.453 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
11:41:15.453 Disk 0 Vendor: ST98823AS 8.03 Size: 74881MB BusType: 3
11:41:15.484 Disk 0 MBR read successfully
11:41:15.484 Disk 0 MBR scan
11:41:15.500 Disk 0 unknown MBR code
11:41:15.500 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
11:41:15.515 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71751 MB offset 96390
11:41:15.546 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3074 MB offset 147042945
11:41:15.546 Disk 0 scanning sectors +153340425
11:41:15.562 Disk 0 malicious Win32:MBRoot code @ sector 153340428 !
11:41:15.562 Disk 0 PE file @ sector 153340450 !
11:41:15.625 Disk 0 scanning C:\WINDOWS\system32\drivers
11:41:31.875 Service scanning
11:41:50.187 Modules scanning
11:41:56.546 Disk 0 trace - called modules:
11:41:56.578 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:41:56.578 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8711aab8]
11:41:56.578 3 CLASSPNP.SYS[f75d1fd7] -> nt!IofCallDriver -> \Device\00000075[0x871d4f18]
11:41:56.578 5 ACPI.sys[f7468620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x871d2d98]
11:41:56.890 AVAST engine scan C:\WINDOWS
11:42:05.218 AVAST engine scan C:\WINDOWS\system32
11:44:08.796 AVAST engine scan C:\WINDOWS\system32\drivers
11:44:23.375 AVAST engine scan C:\Documents and Settings\FAR
11:46:44.609 AVAST engine scan C:\Documents and Settings\All Users
11:49:06.781 Scan finished successfully
11:57:23.781 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\FAR\Desktop\MBR.dat"
11:57:23.781 The log file has been saved successfully to "C:\Documents and Settings\FAR\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-05-01 11:57:07
-----------------------------
11:57:07.125 OS Version: Windows 5.1.2600 Service Pack 3
11:57:07.125 Number of processors: 2 586 0xE08
11:57:07.125 ComputerName: DELL UserName: FAR
11:57:50.421 Initialize success
11:57:54.000 AVAST engine defs: 12050100
11:58:47.718 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
11:58:47.718 Disk 0 Vendor: ST98823AS 8.03 Size: 74881MB BusType: 3
11:58:47.796 Disk 0 MBR read successfully
11:58:47.796 Disk 0 MBR scan
11:58:47.796 Disk 0 unknown MBR code
11:58:47.796 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
11:58:47.812 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71751 MB offset 96390
11:58:47.843 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3074 MB offset 147042945
11:58:47.859 Disk 0 scanning sectors +153340425
11:58:47.875 Disk 0 malicious Win32:MBRoot code @ sector 153340428 !
11:58:47.921 Disk 0 scanning C:\WINDOWS\system32\drivers
11:58:57.828 Service scanning
11:59:14.281 Modules scanning
11:59:20.031 Disk 0 trace - called modules:
11:59:20.046 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:59:20.062 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x87116ab8]
11:59:20.062 3 CLASSPNP.SYS[f75d1fd7] -> nt!IofCallDriver -> \Device\00000075[0x871c9510]
11:59:20.062 5 ACPI.sys[f7468620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x87174940]
11:59:20.546 AVAST engine scan C:\WINDOWS
11:59:28.359 AVAST engine scan C:\WINDOWS\system32
12:01:33.156 AVAST engine scan C:\WINDOWS\system32\drivers
12:01:49.000 AVAST engine scan C:\Documents and Settings\FAR
12:04:05.984 AVAST engine scan C:\Documents and Settings\All Users
12:06:18.375 Scan finished successfully
12:10:49.890 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\FAR\Desktop\MBR.dat"
12:10:49.890 The log file has been saved successfully to "C:\Documents and Settings\FAR\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-05-01 18:23:06
-----------------------------
18:23:06.562 OS Version: Windows 5.1.2600 Service Pack 3
18:23:06.562 Number of processors: 2 586 0xE08
18:23:06.562 ComputerName: DELL UserName: FAR
18:23:32.343 Initialize success
18:23:35.906 AVAST engine defs: 12050100
18:24:37.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
18:24:37.609 Disk 0 Vendor: ST98823AS 8.03 Size: 74881MB BusType: 3
18:24:37.687 Disk 0 MBR read successfully
18:24:37.703 Disk 0 MBR scan
18:24:37.703 Disk 0 unknown MBR code
18:24:37.703 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
18:24:37.703 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71751 MB offset 96390
18:24:37.734 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3074 MB offset 147042945
18:24:37.765 Disk 0 scanning sectors +153340425
18:24:37.796 Disk 0 malicious Win32:MBRoot code @ sector 153340428 !
18:24:37.890 Disk 0 scanning C:\WINDOWS\system32\drivers
18:24:48.609 Service scanning
18:25:06.687 Modules scanning
18:25:12.421 Disk 0 trace - called modules:
18:25:12.453 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
18:25:12.453 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x87116ab8]
18:25:12.453 3 CLASSPNP.SYS[f75d1fd7] -> nt!IofCallDriver -> \Device\00000075[0x871c9510]
18:25:12.453 5 ACPI.sys[f7468620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x87174940]
18:25:12.875 AVAST engine scan C:\WINDOWS
18:25:21.125 AVAST engine scan C:\WINDOWS\system32
18:27:39.468 AVAST engine scan C:\WINDOWS\system32\drivers
18:27:55.062 AVAST engine scan C:\Documents and Settings\FAR
18:30:34.859 AVAST engine scan C:\Documents and Settings\All Users
18:32:54.562 Scan finished successfully
18:35:34.546 Disk 0 MBR read successfully
18:35:34.562 Disk 0 scanning sectors +153340425
18:35:34.593 Disk 0 malicious Win32:MBRoot code @ sector 153340428 !
18:35:34.593 Disk 0 sector 153340428 cleaned
18:35:34.593 Verifying disinfection
18:35:45.031 Infection fixed successfully - please reboot ASAP
18:36:44.281 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\FAR\Desktop\MBR.dat"
18:36:44.296 The log file has been saved successfully to "C:\Documents and Settings\FAR\Desktop\aswMBR.txt"