Win32 Sirefef - Can't delete Desktop.ini

[msfeistus]

Avast found two instances of Sirefef on my computer ... both in variations of the C:\Windows\assembly\GAC folder.  I tried repairing them and/or moving them to the chest, but in both cases I was told that access was denied ... which is odd, as I am the sole user/administrator on this machine.  I tried making a shortcut to the folder, right-clicking it, and selecting Run As Administrator so that I could view/modify the folder, but that didn't work, either.

Here's my aswMBR log.  My OTL log files exceed the attachment size limit - what do you suggest I do with them?

aswMBR version 0.9.9.1297 Copyright(c) 2011 AVAST Software
Run date: 2012-01-18 01:33:06
-----------------------------
01:33:06.173    OS Version: Windows x64 6.1.7601 Service Pack 1
01:33:06.174    Number of processors: 2 586 0x603
01:33:06.175    ComputerName: JARVIS  UserName: Ang
01:33:09.201    Initialize success
01:33:12.472    AVAST engine defs: 12011701
01:36:19.340    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005e
01:36:19.348    Disk 0 Vendor: TOSHIBA_ GJ00 Size: 305245MB BusType: 11
01:36:19.366    Disk 0 MBR read successfully
01:36:19.372    Disk 0 MBR scan
01:36:19.380    Disk 0 unknown MBR code
01:36:19.397    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
01:36:19.418    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       287200 MB offset 409600
01:36:19.450    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        17741 MB offset 588595200
01:36:19.476    Disk 0 Partition 4 00     0C    FAT32 LBA MSDOS5.0      103 MB offset 624928768
01:36:19.487    Service scanning
01:36:21.113    Modules scanning
01:36:21.124    Disk 0 trace - called modules:
01:36:21.176    ntoskrnl.exe CLASSPNP.SYS disk.sys amdxata.sys storport.sys hal.dll amdsata.sys
01:36:21.190    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80042d46f0]
01:36:21.202    3 CLASSPNP.SYS[fffff8800198443f] -> nt!IofCallDriver -> [0xfffffa8004260b80]
01:36:21.217    5 amdxata.sys[fffff8800110c7a8] -> nt!IofCallDriver -> \Device\0000005e[0xfffffa800425c120]
01:36:22.709    AVAST engine scan C:\Windows
01:36:26.200    AVAST engine scan C:\Windows\system32
01:38:37.690    AVAST engine scan C:\Windows\system32\drivers
01:38:51.203    AVAST engine scan C:\Users\Ang
01:41:01.835    Disk 0 MBR has been saved successfully to "C:\Users\Ang\Downloads\MBR.dat"
01:41:01.840    The log file has been saved successfully to "C:\Users\Ang\Downloads\aswMBR.txt"

[Pondus]

My OTL log files exceed the attachment size limit - what do you suggest I do with them?

did you save OTL log as ANSI before attaching ?.....if not they are also not readable, look like chinese

see instructions in the guide  http://forum.avast.com/index.php?topic=53253.0


if still to big, upload to www.mediafire.com  and post the download link here

[msfeistus]

Extras.txt - http://www.mediafire.com/?ygwelr5e7uvzc4w
OTL.txt - http://www.mediafire.com/?yyu5ubb355005l1

Also, this morning my computer restarted itself and I had to do a system restore back to 1/3/12 because Windows itself could not restart ... will I need to redo my scans?