aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software Run date: 2012-06-29 09:03:30 ----------------------------- 09:03:30.518 OS Version: Windows x64 6.1.7601 Service Pack 1 09:03:30.518 Number of processors: 6 586 0xA00 09:03:30.518 ComputerName: OWNER-PC UserName: Owner 09:03:33.435 Initialize success 09:03:34.387 AVAST engine defs: 12062901 09:03:37.710 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 09:03:37.710 Disk 0 Vendor: ST31000524AS JC45 Size: 953869MB BusType: 3 09:03:37.725 Disk 0 MBR read successfully 09:03:37.725 Disk 0 MBR scan 09:03:38.006 Disk 0 unknown MBR code 09:03:38.022 Disk 0 Partition 1 00 1B Hidd FAT32 NTFS 10024 MB offset 2048 09:03:38.162 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 943843 MB offset 20531200 09:03:38.271 Disk 0 scanning C:\Windows\system32\drivers 09:03:48.926 Service scanning 09:04:03.575 Modules scanning 09:04:03.575 Disk 0 trace - called modules: 09:04:03.621 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys 09:04:03.621 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007a89060] 09:04:04.121 3 CLASSPNP.SYS[fffff88001b9443f] -> nt!IofCallDriver -> [0xfffffa80078e99b0] 09:04:04.121 5 ACPI.sys[fffff88000fb37a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80079cc060] 09:04:05.899 AVAST engine scan C:\Windows 09:04:08.411 AVAST engine scan C:\Windows\system32 09:05:29.586 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk] 09:05:31.558 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk] 09:06:19.842 AVAST engine scan C:\Windows\system32\drivers 09:06:34.817 AVAST engine scan C:\Users\Owner 09:17:24.562 AVAST engine scan C:\ProgramData 09:20:19.878 Scan finished successfully 09:21:59.814 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat" 09:21:59.814 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"