18:45:35.0552 0x1060  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
18:45:39.0888 0x1060  ============================================================
18:45:39.0888 0x1060  Current date / time: 2016/11/23 18:45:39.0888
18:45:39.0888 0x1060  SystemInfo:
18:45:39.0888 0x1060  
18:45:39.0888 0x1060  OS Version: 6.1.7601 ServicePack: 1.0
18:45:39.0888 0x1060  Product type: Workstation
18:45:39.0888 0x1060  ComputerName: BRUNO-PC
18:45:39.0888 0x1060  UserName: Bruno
18:45:39.0888 0x1060  Windows directory: C:\Windows
18:45:39.0888 0x1060  System windows directory: C:\Windows
18:45:39.0888 0x1060  Running under WOW64
18:45:39.0888 0x1060  Processor architecture: Intel x64
18:45:39.0888 0x1060  Number of processors: 4
18:45:39.0888 0x1060  Page size: 0x1000
18:45:39.0888 0x1060  Boot type: Normal boot
18:45:39.0888 0x1060  CodeIntegrityOptions = 0x00000001
18:45:39.0888 0x1060  ============================================================
18:45:40.0466 0x1060  KLMD registered as C:\Windows\system32\drivers\56524853.sys
18:45:40.0466 0x1060  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23569, osProperties = 0x1
18:45:40.0746 0x1060  System UUID: {4B4A20F5-3B83-FEAB-B068-4FB5CEEDA682}
18:45:41.0090 0x1060  Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:45:41.0105 0x1060  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:45:41.0261 0x1060  ============================================================
18:45:41.0261 0x1060  \Device\Harddisk1\DR1:
18:45:41.0292 0x1060  MBR partitions:
18:45:41.0292 0x1060  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3C356DA
18:45:41.0292 0x1060  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x3C35EE0, BlocksNum 0xA087F61
18:45:41.0308 0x1060  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0xDCBDE87, BlocksNum 0x97DFF3A
18:45:41.0308 0x1060  \Device\Harddisk0\DR0:
18:45:41.0308 0x1060  MBR partitions:
18:45:41.0308 0x1060  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x25819F, BlocksNum 0x189D5FAB
18:45:41.0308 0x1060  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18C2E800, BlocksNum 0xC7FEEC1
18:45:41.0308 0x1060  ============================================================
18:45:41.0355 0x1060  C: <-> \Device\Harddisk1\DR1\Partition2
18:45:41.0386 0x1060  D: <-> \Device\Harddisk0\DR0\Partition1
18:45:41.0402 0x1060  E: <-> \Device\Harddisk1\DR1\Partition3
18:45:41.0448 0x1060  F: <-> \Device\Harddisk1\DR1\Partition1
18:45:41.0464 0x1060  I: <-> \Device\Harddisk0\DR0\Partition2
18:45:41.0464 0x1060  ============================================================
18:45:41.0464 0x1060  Initialize success
18:45:41.0464 0x1060  ============================================================
18:45:57.0376 0x1350  KLMD registered as C:\Windows\system32\drivers\12819553.sys
18:45:58.0140 0x1350  Deinitialize success