aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-12-14 11:49:43
-----------------------------
11:49:43.390    OS Version: Windows 5.1.2600 Service Pack 3
11:49:43.390    Number of processors: 1 586 0x207
11:49:43.390    ComputerName: CB-SONY-DESKTOP  UserName: Clive
11:49:46.671    Initialize success
11:58:49.421    AVAST engine defs: 11121402
12:00:23.359    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
12:00:23.375    Disk 0 Vendor: WDC_WD5000AAKB-00H8A0 05.04E05 Size: 476940MB BusType: 3
12:00:23.375    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-c
12:00:23.375    Disk 1 Vendor: WDC_WD1200JB-00GVC0 08.02D08 Size: 114473MB BusType: 3
12:00:25.406    Disk 0 MBR read successfully
12:00:25.421    Disk 0 MBR scan
12:00:25.546    Disk 0 Windows XP default MBR code
12:00:25.578    Disk 0 scanning sectors +976768065
12:00:25.718    Disk 0 scanning C:\WINDOWS\system32\drivers
12:00:38.359    File: C:\WINDOWS\system32\drivers\netbt.sys  **INFECTED** Win32:Alureon-AOT [Rtk]
12:00:50.515    Service scanning
12:00:53.109    Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32
12:00:53.875    Modules scanning
12:01:07.890    Module: C:\WINDOWS\System32\DRIVERS\netbt.sys  **SUSPICIOUS**
12:01:18.171    Disk 0 trace - called modules:
12:01:18.187    ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x8671af10]<<
12:01:18.187    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86ec9ab8]
12:01:18.187    3 CLASSPNP.SYS[f765efd7] -> nt!IofCallDriver -> [0x8687df08]
12:01:18.187    \Driver\00004769[0x86b98930] -> IRP_MJ_CREATE -> 0x8671af10
12:01:30.281    AVAST engine scan C:\WINDOWS
12:02:37.328    AVAST engine scan C:\WINDOWS\system32
12:08:17.046    File: C:\WINDOWS\system32\_000005_.tmp.dll **HIDDEN**
12:08:44.625    AVAST engine scan C:\WINDOWS\system32\drivers
12:09:01.578    File: C:\WINDOWS\system32\drivers\netbt.sys  **INFECTED** Win32:Alureon-AOT [Rtk]
12:09:49.609    AVAST engine scan C:\Documents and Settings\Clive
12:11:52.984    File: C:\Documents and Settings\Clive\Application Data\FixZeroAccess\Archive\netbt.sys  **INFECTED** Win32:Alureon-AOT [Rtk]
12:14:49.515    AVAST engine scan C:\Documents and Settings\All Users
12:14:49.531    Scan finished successfully
12:18:21.515    Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Clive\My Documents\Downloads\MBR.dat"
12:18:21.546    The log file has been saved successfully to "C:\Documents and Settings\Clive\My Documents\Downloads\aswMBR.txt"