system
5
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-07-08 17:29:17
17:29:17.688 OS Version: Windows x64 6.1.7601 Service Pack 1
17:29:17.688 Number of processors: 1 586 0x170A
17:29:17.688 ComputerName: NATE-PC UserName: Nate
17:29:21.479 Initialize success
17:29:22.665 AVAST engine defs: 13070800
17:29:24.365 Disk 0 (boot) \Device\Harddisk0\DR0 → \Device\Ide\IdeDeviceP0T0L0-0
17:29:24.365 Disk 0 Vendor: ST9250315AS 0005HPM1 Size: 238475MB BusType: 11
17:29:24.490 Disk 0 MBR read successfully
17:29:24.490 Disk 0 MBR scan
17:29:24.490 Disk 0 unknown MBR code
17:29:24.506 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
17:29:24.521 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 226085 MB offset 409600
17:29:24.552 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12189 MB offset 463431680
17:29:24.599 Disk 0 scanning C:\Windows\system32\drivers
17:29:46.954 Service scanning
17:30:21.399 Modules scanning
17:30:21.399 Disk 0 trace - called modules:
17:30:21.430 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
17:30:21.929 1 nt!IofCallDriver → \Device\Harddisk0\DR0[0xfffffa800333e660]
17:30:21.929 3 CLASSPNP.SYS[fffff8800109043f] → nt!IofCallDriver → \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002e74060]
17:30:22.663 AVAST engine scan C:\Windows
17:30:25.798 AVAST engine scan C:\Windows\system32
17:32:29.053 File: C:\Windows\system32\services.exe INFECTED Win32:Sirefef-ZT [Trj]
17:33:30.173 File: C:\Windows\assembly\GAC_32\Desktop.ini INFECTED Win32:Sirefef-PL [Rtk]
17:33:35.321 File: C:\Windows\assembly\GAC_64\Desktop.ini INFECTED Win32:Sirefef-PL [Rtk]
17:35:44.356 AVAST engine scan C:\Windows\system32\drivers
17:36:05.166 AVAST engine scan C:\Users\Nate
17:45:33.723 Disk 0 MBR has been saved successfully to “C:\Users\Nate\Desktop\MBR.dat”
17:45:33.739 The log file has been saved successfully to “C:\Users\Nate\Desktop\aswMBR.txt”