17:24:37.0913 0x0668  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
17:24:37.0913 0x0668  UEFI system
17:24:41.0739 0x0668  ============================================================
17:24:41.0739 0x0668  Current date / time: 2021/02/08 17:24:41.0739
17:24:41.0740 0x0668  SystemInfo:
17:24:41.0740 0x0668  
17:24:41.0740 0x0668  OS Version: 10.0.19042 ServicePack: 0.0
17:24:41.0740 0x0668  Product type: Workstation
17:24:41.0740 0x0668  ComputerName: DESKTOP-C7V7QKB
17:24:41.0740 0x0668  UserName: Ricardo
17:24:41.0740 0x0668  Windows directory: C:\WINDOWS
17:24:41.0740 0x0668  System windows directory: C:\WINDOWS
17:24:41.0740 0x0668  Running under WOW64
17:24:41.0740 0x0668  Processor architecture: Intel x64
17:24:41.0740 0x0668  Number of processors: 4
17:24:41.0740 0x0668  Page size: 0x1000
17:24:41.0740 0x0668  Boot type: Normal boot
17:24:41.0740 0x0668  CodeIntegrityOptions = 0x00000001
17:24:41.0740 0x0668  ============================================================
17:24:41.0762 0x0668  KLMD registered as C:\WINDOWS\system32\drivers\05076897.sys
17:24:41.0763 0x0668  KLMD ARK init status: drvProperties = 0xF0F02, osBuild = 19042.0, osProperties = 0x1D
17:24:41.0888 0x0668  System UUID: {4E7232EB-0F20-CC85-1594-9D0A3BDED056}
17:24:42.0126 0x0668  !crdlk
17:24:42.0132 0x0668  Drive \Device\Harddisk0\DR0 - Size: 0x6FC86D6000 ( 447.13 Gb ), SectorSize: 0x200, Cylinders: 0xE401, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
17:24:56.0682 0x0668  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115E00 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:24:56.0686 0x0668  Drive \Device\Harddisk2\DR2 - Size: 0x15D4EF00000 ( 1397.23 Gb ), SectorSize: 0x200, Cylinders: 0x2C87D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:24:56.0691 0x0668  Drive \Device\Harddisk3\DR3 - Size: 0x1D1C1115800 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:24:56.0692 0x0668  ============================================================
17:24:56.0692 0x0668  \Device\Harddisk0\DR0:
17:24:56.0693 0x0668  GPT partitions:
17:24:56.0693 0x0668  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {AFB0463E-F92E-4117-8B12-1F9E35149C1E}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
17:24:56.0693 0x0668  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {677BC9EA-927E-454B-91C6-C24813A6CA89}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
17:24:56.0693 0x0668  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {EFBD3F13-E848-41B5-839C-67FFD9758194}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x8000
17:24:56.0693 0x0668  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {421B5778-C0E3-45BD-A625-951DDCB74128}, Name: Basic data partition, StartLBA 0x134000, BlocksNum 0x37B6A465
17:24:56.0693 0x0668  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {95B8805E-6FE7-456E-A099-8A1CB485CE5C}, Name: , StartLBA 0x37C9E800, BlocksNum 0x1A4000
17:24:56.0693 0x0668  MBR partitions:
17:24:56.0693 0x0668  \Device\Harddisk1\DR1:
17:24:56.0695 0x0668  MBR partitions:
17:24:56.0695 0x0668  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0xE8E074C1
17:24:56.0695 0x0668  \Device\Harddisk2\DR2:
17:24:56.0695 0x0668  MBR partitions:
17:24:56.0695 0x0668  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA77000
17:24:56.0695 0x0668  \Device\Harddisk3\DR3:
17:24:56.0696 0x0668  MBR partitions:
17:24:56.0697 0x0668  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x32000, BlocksNum 0xE8DD5800
17:24:56.0697 0x0668  ============================================================
17:24:56.0698 0x0668  C: <-> \Device\Harddisk0\DR0\Partition4
17:24:57.0038 0x0668  F: <-> \Device\Harddisk1\DR1\Partition1
17:24:57.0091 0x0668  H: <-> \Device\Harddisk3\DR3\Partition1
17:24:57.0157 0x0668  I: <-> \Device\Harddisk2\DR2\Partition1
17:24:57.0157 0x0668  ============================================================
17:24:57.0158 0x0668  Initialize success
17:24:57.0158 0x0668  ============================================================
17:27:01.0548 0x0ae4  Deinitialize success