aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software Run date: 2015-12-04 16:22:13 ----------------------------- 16:22:13.584 OS Version: Windows x64 6.1.7601 Service Pack 1 16:22:13.584 Number of processors: 2 586 0x602 16:22:13.585 ComputerName: RICHARD-PC UserName: Richard 16:22:15.343 Initialize success 16:22:15.401 VM: initialized successfully 16:22:15.401 VM: Amd CPU BiosDisabled 16:38:39.486 AVAST engine defs: 15120403 16:40:50.883 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000053 16:40:50.887 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3 16:40:50.999 Disk 0 MBR read successfully 16:40:51.004 Disk 0 MBR scan 16:40:51.205 Disk 0 unknown MBR code 16:40:51.473 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048 16:40:51.478 Disk 0 Boot: NTFS code=1 16:40:51.525 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 599199 MB offset 206848 16:40:51.580 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11179 MB offset 1227366400 16:40:51.778 Disk 0 scanning C:\Windows\system32\drivers 16:41:08.019 Service scanning 16:41:44.828 Modules scanning 16:41:44.832 Disk 0 trace - called modules: 16:41:44.848 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor64.sys 16:41:44.852 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004638060] 16:41:44.856 3 CLASSPNP.SYS[fffff880018d543f] -> nt!IofCallDriver -> [0xfffffa8004029e40] 16:41:44.860 5 ACPI.sys[fffff88000f0f7a1] -> nt!IofCallDriver -> \Device\00000053[0xfffffa80040cc550] 16:41:46.751 AVAST engine scan C:\Windows 16:41:51.519 AVAST engine scan C:\Windows\system32 16:47:01.040 AVAST engine scan C:\Windows\system32\drivers 16:47:17.165 AVAST engine scan C:\Users\Richard 16:47:40.752 File: C:\Users\Richard\AppData\Local\DF69C330-1427531348-11DF-AC14-6C58A2FD8E57\onsfA9C3.tmp **INFECTED** Win32:Adware-gen [Adw] 16:47:46.636 File: C:\Users\Richard\AppData\Local\DF69C330-1427531348-11DF-AC14-6C58A2FD8E57\snsfA9C1.tmp **INFECTED** Win32:Malware-gen 16:56:05.820 File: C:\Users\Richard\AppData\Local\nodo\650648\lidi.dll **INFECTED** Win32:Adware-gen [Adw] 17:07:10.122 File: C:\Users\Richard\AppData\Roaming\DF69C330-1427531357-11DF-AC14-6C58A2FD8E57\vnsvBE5F.tmp **INFECTED** Win32:Dropper-gen [Drp] 17:08:36.627 File: C:\Users\Richard\AppData\Roaming\ymziy2zxmgtkbtl\ymziy2zxmgtkbtl.exe **INFECTED** Win32:Adware-gen [Adw] 17:10:43.937 File: C:\Users\Richard\Downloads\adobe_flash_setup (3).exe **INFECTED** Win32:Malware-gen 17:10:58.131 File: C:\Users\Richard\Downloads\Unconfirmed 18166.crdownload **INFECTED** Win32:Malware-gen 17:11:01.421 File: C:\Users\Richard\Downloads\Unconfirmed 210238.crdownload **INFECTED** Win32:Malware-gen 17:11:04.143 File: C:\Users\Richard\Downloads\Unconfirmed 220205.crdownload **INFECTED** Win32:Malware-gen 17:11:06.961 File: C:\Users\Richard\Downloads\Unconfirmed 24367.crdownload **INFECTED** Win32:Malware-gen 17:11:07.538 File: C:\Users\Richard\Downloads\Unconfirmed 254061.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:11:10.188 File: C:\Users\Richard\Downloads\Unconfirmed 277020.crdownload **INFECTED** Win32:Malware-gen 17:11:12.888 File: C:\Users\Richard\Downloads\Unconfirmed 288303.crdownload **INFECTED** Win32:Malware-gen 17:11:15.538 File: C:\Users\Richard\Downloads\Unconfirmed 288532.crdownload **INFECTED** Win32:Malware-gen 17:11:15.970 File: C:\Users\Richard\Downloads\Unconfirmed 331091.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:11:18.787 File: C:\Users\Richard\Downloads\Unconfirmed 334489.crdownload **INFECTED** Win32:Malware-gen 17:11:29.603 File: C:\Users\Richard\Downloads\Unconfirmed 397685.crdownload **INFECTED** Win32:Malware-gen 17:11:32.256 File: C:\Users\Richard\Downloads\Unconfirmed 408070.crdownload **INFECTED** Win32:Malware-gen 17:11:35.556 File: C:\Users\Richard\Downloads\Unconfirmed 473472.crdownload **INFECTED** Win32:Malware-gen 17:11:38.214 File: C:\Users\Richard\Downloads\Unconfirmed 50190.crdownload **INFECTED** Win32:Malware-gen 17:11:55.546 File: C:\Users\Richard\Downloads\Unconfirmed 522965.crdownload **INFECTED** Win32:Malware-gen 17:11:58.409 File: C:\Users\Richard\Downloads\Unconfirmed 546520.crdownload **INFECTED** Win32:Malware-gen 17:12:01.090 File: C:\Users\Richard\Downloads\Unconfirmed 550194.crdownload **INFECTED** Win32:Malware-gen 17:12:03.807 File: C:\Users\Richard\Downloads\Unconfirmed 575663.crdownload **INFECTED** Win32:Malware-gen 17:12:13.975 File: C:\Users\Richard\Downloads\Unconfirmed 623527.crdownload **INFECTED** Win32:Adware-CUN [Adw] 17:12:14.434 File: C:\Users\Richard\Downloads\Unconfirmed 646891.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:12:16.639 File: C:\Users\Richard\Downloads\Unconfirmed 652241.crdownload **INFECTED** Win32:Malware-gen 17:12:19.463 File: C:\Users\Richard\Downloads\Unconfirmed 684841.crdownload **INFECTED** Win32:Malware-gen 17:12:25.350 File: C:\Users\Richard\Downloads\Unconfirmed 699378.crdownload **INFECTED** Win32:Malware-gen 17:12:28.036 File: C:\Users\Richard\Downloads\Unconfirmed 723495.crdownload **INFECTED** Win32:Malware-gen 17:12:30.716 File: C:\Users\Richard\Downloads\Unconfirmed 727265.crdownload **INFECTED** Win32:Malware-gen 17:12:33.543 File: C:\Users\Richard\Downloads\Unconfirmed 73621.crdownload **INFECTED** Win32:Malware-gen 17:12:36.598 File: C:\Users\Richard\Downloads\Unconfirmed 749854.crdownload **INFECTED** Win32:Malware-gen 17:12:38.797 File: C:\Users\Richard\Downloads\Unconfirmed 757543.crdownload **INFECTED** Win32:Malware-gen 17:12:41.438 File: C:\Users\Richard\Downloads\Unconfirmed 778627.crdownload **INFECTED** Win32:Malware-gen 17:12:43.603 File: C:\Users\Richard\Downloads\Unconfirmed 785725.crdownload **INFECTED** Win32:Malware-gen 17:12:46.251 File: C:\Users\Richard\Downloads\Unconfirmed 786388.crdownload **INFECTED** Win32:Malware-gen 17:12:48.918 File: C:\Users\Richard\Downloads\Unconfirmed 805191.crdownload **INFECTED** Win32:Malware-gen 17:12:49.372 File: C:\Users\Richard\Downloads\Unconfirmed 814859.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:12:52.034 File: C:\Users\Richard\Downloads\Unconfirmed 819570.crdownload **INFECTED** Win32:Malware-gen 17:12:52.461 File: C:\Users\Richard\Downloads\Unconfirmed 824611.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:12:55.148 File: C:\Users\Richard\Downloads\Unconfirmed 82776.crdownload **INFECTED** Win32:Malware-gen 17:12:57.791 File: C:\Users\Richard\Downloads\Unconfirmed 844074.crdownload **INFECTED** Win32:Malware-gen 17:13:00.449 File: C:\Users\Richard\Downloads\Unconfirmed 863728.crdownload **INFECTED** Win32:Malware-gen 17:13:29.817 File: C:\Users\Richard\Downloads\Unconfirmed 908841.crdownload **INFECTED** Win32:Adware-gen [Adw] 17:13:32.487 File: C:\Users\Richard\Downloads\Unconfirmed 91023.crdownload **INFECTED** Win32:Malware-gen 17:13:35.941 File: C:\Users\Richard\Downloads\Unconfirmed 927290.crdownload **INFECTED** Win32:Malware-gen 17:13:45.530 File: C:\Users\Richard\Downloads\Unconfirmed 927478.crdownload **INFECTED** Win32:Adware-CUN [Adw] 17:13:55.365 File: C:\Users\Richard\Downloads\Unconfirmed 956331.crdownload **INFECTED** Win32:Adware-CUN [Adw] 17:13:58.015 File: C:\Users\Richard\Downloads\Unconfirmed 958330.crdownload **INFECTED** Win32:Malware-gen 17:14:00.676 File: C:\Users\Richard\Downloads\Unconfirmed 959059.crdownload **INFECTED** Win32:Malware-gen 17:21:31.601 AVAST engine scan C:\ProgramData 17:21:40.717 File: C:\ProgramData\688bac24d8294ddc9b97a10de5058423\688bac24d8294ddc9b97a10de5058423.exe **INFECTED** Win32:Adware-gen [Adw] 17:25:50.445 File: C:\ProgramData\{C5052DC6-9587-FC40-2401-8CC2F4835F4C}\1.9.3.1\lidi.dll **INFECTED** Win32:Adware-gen [Adw] 17:25:54.465 Disk 0 statistics 4538619/0/0 @ 1.75 MB/s 17:25:54.470 Scan finished successfully 17:30:37.481 File "C:\Users\Richard\Downloads\Unconfirmed 863728.crdownload" has been saved successfully to: 17:30:37.484 "C:\Users\Richard\Desktop\copy_Unconfirmed 863728.crdownload" 17:56:20.042 Disk 0 MBR has been saved successfully to "C:\Users\Richard\Desktop\MBR.dat" 17:56:20.139 The log file has been saved successfully to "C:\Users\Richard\Desktop\aswMBR.txt"