TDSSKiller.3.1.0.12-23.11.2016-18.45.35-log.txt

Document joint : FKxr2E25VkP_TDSSKiller.3.1.0.12-23.11.2016-18.45.35-log.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþ18:45:35.0552 0x1060 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
18:45:39.0888 0x1060 ============================================================
18:45:39.0888 0x1060 Current date / time: 2016/11/23 18:45:39.0888
18:45:39.0888 0x1060 SystemInfo:
18:45:39.0888 0x1060
18:45:39.0888 0x1060 OS Version: 6.1.7601 ServicePack: 1.0
18:45:39.0888 0x1060 Product type: Workstation
18:45:39.0888 0x1060 ComputerName: BRUNO-PC
18:45:39.0888 0x1060 UserName: Bruno
18:45:39.0888 0x1060 Windows directory: C:\Windows
18:45:39.0888 0x1060 System windows directory: C:\Windows
18:45:39.0888 0x1060 Running under WOW64
18:45:39.0888 0x1060 Processor architecture: Intel x64
18:45:39.0888 0x1060 Number of processors: 4
18:45:39.0888 0x1060 Page size: 0x1000
18:45:39.0888 0x1060 Boot type: Normal boot
18:45:39.0888 0x1060 CodeIntegrityOptions = 0x00000001
18:45:39.0888 0x1060 ============================================================
18:45:40.0466 0x1060 KLMD registered as C:\Windows\system32\drivers\56524853.sys
18:45:40.0466 0x1060 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23569, osProperties = 0x1
18:45:40.0746 0x1060 System UUID: {4B4A20F5-3B83-FEAB-B068-4FB5CEEDA682}
18:45:41.0090 0x1060 Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:45:41.0105 0x1060 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:45:41.0261 0x1060 ============================================================
18:45:41.0261 0x1060 \Device\Harddisk1\DR1:
18:45:41.0292 0x1060 MBR partitions:
18:45:41.0292 0x1060 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3C356DA
18:45:41.0292 0x1060 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x3C35EE0, BlocksNum 0xA087F61
18:45:41.0308 0x1060 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0xDCBDE87, BlocksNum 0x97DFF3A
18:45:41.0308 0x1060 \Device\Harddisk0\DR0:
18:45:41.0308 0x1060 MBR partitions:
18:45:41.0308 0x1060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x25819F, BlocksNum 0x189D5FAB
18:45:41.0308 0x1060 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18C2E800, BlocksNum 0xC7FEEC1
18:45:41.0308 0x1060 ============================================================
18:45:41.0355 0x1060 C: <-> \Device\Harddisk1\DR1\Partition2
18:45:41.0386 0x1060 D: <-> \Device\Harddisk0\DR0\Partition1
18:45:41.0402 0x1060 E: <-> \Device\Harddisk1\DR1\Partition3
18:45:41.0448 0x1060 F: <-> \Device\Harddisk1\DR1\Partition1
18:45:41.0464 0x1060 I: <-> \Device\Harddisk0\DR0\Partition2
18:45:41.0464 0x1060 ============================================================
18:45:41.0464 0x1060 Initialize success
18:45:41.0464 0x1060 ============================================================
18:45:57.0376 0x1350 KLMD registered as C:\Windows\system32\drivers\12819553.sys
18:45:58.0140 0x1350 Deinitialize success

Signaler le contenu de ce document