|
-
February 14th, 2010, 02:03 PM
#7
17:48:46:687 0172 DetectCureTDL3: DEVICE_OBJECT: 85E34AC8
17:48:46:687 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 85E34AC8
17:48:46:687 0172 KLMD_ReadMem: Trying to ReadMemory 0x85E34AC8[0x38]
17:48:46:687 0172 DetectCureTDL3: DRIVER_OBJECT: 86FC0458
17:48:46:687 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FC0458[0xA8]
17:48:46:687 0172 KLMD_ReadMem: Trying to ReadMemory 0xE1014FE0[0x18]
17:48:46:687 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\Disk, Driver Name: Disk
17:48:46:687 0172 DetectCureTDL3: IrpHandler (0) addr: F7543BB0
17:48:46:687 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (2) addr: F7543BB0
17:48:46:687 0172 DetectCureTDL3: IrpHandler (3) addr: F753DD1F
17:48:46:687 0172 DetectCureTDL3: IrpHandler (4) addr: F753DD1F
17:48:46:687 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (9) addr: F753E2E2
17:48:46:687 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (14) addr: F753E3BB
17:48:46:687 0172 DetectCureTDL3: IrpHandler (15) addr: F7541F28
17:48:46:687 0172 DetectCureTDL3: IrpHandler (16) addr: F753E2E2
17:48:46:687 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (22) addr: F753FC82
17:48:46:687 0172 DetectCureTDL3: IrpHandler (23) addr: F754499E
17:48:46:687 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:687 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:687 0172 TDL3_FileDetect: Processing driver: Disk
17:48:46:687 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:687 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:703 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\disk.sys - Verdict: Clean
17:48:46:703 0172
17:48:46:703 0172 DetectCureTDL3: DEVICE_OBJECT: 85FEBAB8
17:48:46:703 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 85FEBAB8
17:48:46:703 0172 DetectCureTDL3: DEVICE_OBJECT: 86094738
17:48:46:703 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86094738
17:48:46:703 0172 DetectCureTDL3: DEVICE_OBJECT: 86CAFEA0
17:48:46:703 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86CAFEA0
17:48:46:703 0172 KLMD_ReadMem: Trying to ReadMemory 0x86CAFEA0[0x38]
17:48:46:703 0172 DetectCureTDL3: DRIVER_OBJECT: 86E72D58
17:48:46:703 0172 KLMD_ReadMem: Trying to ReadMemory 0x86E72D58[0xA8]
17:48:46:703 0172 KLMD_ReadMem: Trying to ReadMemory 0xE2B0A8C8[0x1E]
17:48:46:703 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR
17:48:46:703 0172 DetectCureTDL3: IrpHandler (0) addr: A80DA218
17:48:46:703 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (2) addr: A80DA218
17:48:46:703 0172 DetectCureTDL3: IrpHandler (3) addr: A80DA23C
17:48:46:703 0172 DetectCureTDL3: IrpHandler (4) addr: A80DA23C
17:48:46:703 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (9) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (14) addr: A80DA180
17:48:46:703 0172 DetectCureTDL3: IrpHandler (15) addr: A80D59E6
17:48:46:703 0172 DetectCureTDL3: IrpHandler (16) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (22) addr: A80D95F0
17:48:46:703 0172 DetectCureTDL3: IrpHandler (23) addr: A80D7A6E
17:48:46:703 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:703 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:703 0172 KLMD_ReadMem: Trying to ReadMemory 0xA80D6F26[0x400]
17:48:46:703 0172 TDL3_StartIoHookDetect: CheckParameters: 0, 00000000, 0
17:48:46:703 0172 TDL3_FileDetect: Processing driver: USBSTOR
17:48:46:703 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:46:703 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:48:46:734 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS - Verdict: Clean
17:48:46:734 0172
17:48:46:734 0172 DetectCureTDL3: DEVICE_OBJECT: 86F7AC68
17:48:46:734 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86F7AC68
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86F7AC68[0x38]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT: 86FC0458
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FC0458[0xA8]
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0xE1014FE0[0x18]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\Disk, Driver Name: Disk
17:48:46:734 0172 DetectCureTDL3: IrpHandler (0) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (2) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (3) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (4) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (9) addr: F753E2E2
17:48:46:734 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (14) addr: F753E3BB
17:48:46:734 0172 DetectCureTDL3: IrpHandler (15) addr: F7541F28
17:48:46:734 0172 DetectCureTDL3: IrpHandler (16) addr: F753E2E2
17:48:46:734 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (22) addr: F753FC82
17:48:46:734 0172 DetectCureTDL3: IrpHandler (23) addr: F754499E
17:48:46:734 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:734 0172 TDL3_FileDetect: Processing driver: Disk
17:48:46:734 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:734 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:734 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\disk.sys - Verdict: Clean
17:48:46:734 0172
17:48:46:734 0172 DetectCureTDL3: DEVICE_OBJECT: 86F56C68
17:48:46:734 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86F56C68
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86F56C68[0x38]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT: 86FC0458
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FC0458[0xA8]
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0xE1014FE0[0x18]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\Disk, Driver Name: Disk
17:48:46:734 0172 DetectCureTDL3: IrpHandler (0) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (2) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (3) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (4) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (9) addr: F753E2E2
17:48:46:734 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (14) addr: F753E3BB
17:48:46:734 0172 DetectCureTDL3: IrpHandler (15) addr: F7541F28
17:48:46:734 0172 DetectCureTDL3: IrpHandler (16) addr: F753E2E2
17:48:46:734 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (22) addr: F753FC82
17:48:46:734 0172 DetectCureTDL3: IrpHandler (23) addr: F754499E
17:48:46:734 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:734 0172 TDL3_FileDetect: Processing driver: Disk
17:48:46:734 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:734 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:734 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\disk.sys - Verdict: Clean
17:48:46:734 0172
17:48:46:734 0172 DetectCureTDL3: DEVICE_OBJECT: 86FD1C68
17:48:46:734 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86FD1C68
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FD1C68[0x38]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT: 86FC0458
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FC0458[0xA8]
17:48:46:734 0172 KLMD_ReadMem: Trying to ReadMemory 0xE1014FE0[0x18]
17:48:46:734 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\Disk, Driver Name: Disk
17:48:46:734 0172 DetectCureTDL3: IrpHandler (0) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (2) addr: F7543BB0
17:48:46:734 0172 DetectCureTDL3: IrpHandler (3) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (4) addr: F753DD1F
17:48:46:734 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (9) addr: F753E2E2
17:48:46:734 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:734 0172 DetectCureTDL3: IrpHandler (14) addr: F753E3BB
17:48:46:734 0172 DetectCureTDL3: IrpHandler (15) addr: F7541F28
17:48:46:734 0172 DetectCureTDL3: IrpHandler (16) addr: F753E2E2
17:48:46:750 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (22) addr: F753FC82
17:48:46:750 0172 DetectCureTDL3: IrpHandler (23) addr: F754499E
17:48:46:750 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:750 0172 TDL3_FileDetect: Processing driver: Disk
17:48:46:750 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:750 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:750 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\disk.sys - Verdict: Clean
17:48:46:750 0172
17:48:46:750 0172 DetectCureTDL3: DEVICE_OBJECT: 86F1EC68
17:48:46:750 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86F1EC68
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0x86F1EC68[0x38]
17:48:46:750 0172 DetectCureTDL3: DRIVER_OBJECT: 86FC0458
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0x86FC0458[0xA8]
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0xE1014FE0[0x18]
17:48:46:750 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\Disk, Driver Name: Disk
17:48:46:750 0172 DetectCureTDL3: IrpHandler (0) addr: F7543BB0
17:48:46:750 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (2) addr: F7543BB0
17:48:46:750 0172 DetectCureTDL3: IrpHandler (3) addr: F753DD1F
17:48:46:750 0172 DetectCureTDL3: IrpHandler (4) addr: F753DD1F
17:48:46:750 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (9) addr: F753E2E2
17:48:46:750 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (14) addr: F753E3BB
17:48:46:750 0172 DetectCureTDL3: IrpHandler (15) addr: F7541F28
17:48:46:750 0172 DetectCureTDL3: IrpHandler (16) addr: F753E2E2
17:48:46:750 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (22) addr: F753FC82
17:48:46:750 0172 DetectCureTDL3: IrpHandler (23) addr: F754499E
17:48:46:750 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:750 0172 TDL3_FileDetect: Processing driver: Disk
17:48:46:750 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:750 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\disk.sys
17:48:46:750 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\disk.sys - Verdict: Clean
17:48:46:750 0172
17:48:46:750 0172 DetectCureTDL3: DEVICE_OBJECT: 86F7BAB8
17:48:46:750 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86F7BAB8
17:48:46:750 0172 DetectCureTDL3: DEVICE_OBJECT: 86FC5348
17:48:46:750 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86FC5348
17:48:46:750 0172 DetectCureTDL3: DEVICE_OBJECT: 86F69940
17:48:46:750 0172 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86F69940
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0x86F69940[0x38]
17:48:46:750 0172 DetectCureTDL3: DRIVER_OBJECT: 86F6A510
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0x86F6A510[0xA8]
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0xE101DD50[0x1A]
17:48:46:750 0172 DetectCureTDL3: DRIVER_OBJECT name: \Driver\atapi, Driver Name: atapi
17:48:46:750 0172 DetectCureTDL3: IrpHandler (0) addr: F736A6F2
17:48:46:750 0172 DetectCureTDL3: IrpHandler (1) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (2) addr: F736A6F2
17:48:46:750 0172 DetectCureTDL3: IrpHandler (3) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (4) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (5) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (6) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (7) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (8) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (9) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (10) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (11) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (12) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (13) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (14) addr: F736A712
17:48:46:750 0172 DetectCureTDL3: IrpHandler (15) addr: F7366852
17:48:46:750 0172 DetectCureTDL3: IrpHandler (16) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (17) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (18) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (19) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (20) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (21) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (22) addr: F736A73C
17:48:46:750 0172 DetectCureTDL3: IrpHandler (23) addr: F7371336
17:48:46:750 0172 DetectCureTDL3: IrpHandler (24) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (25) addr: 804F4562
17:48:46:750 0172 DetectCureTDL3: IrpHandler (26) addr: 804F4562
17:48:46:750 0172 KLMD_ReadMem: Trying to ReadMemory 0xF7367864[0x400]
17:48:46:750 0172 TDL3_StartIoHookDetect: CheckParameters: 0, 00000000, 0
17:48:46:750 0172 TDL3_FileDetect: Processing driver: atapi
17:48:46:750 0172 TDL3_FileDetect: Processing driver file: C:\WINDOWS\system32\DRIVERS\atapi.sys
17:48:46:750 0172 KLMD_CreateFileW: Trying to open file C:\WINDOWS\system32\DRIVERS\atapi.sys
17:48:46:765 0172 TDL3_FileDetect: C:\WINDOWS\system32\DRIVERS\atapi.sys - Verdict: Clean
17:48:46:765 0172
17:48:46:765 0172 Completed
17:48:46:765 0172
17:48:46:765 0172 Results:
17:48:46:765 0172 Memory objects infected / cured / cured on reboot: 0 / 0 / 0
17:48:46:765 0172 Registry objects infected / cured / cured on reboot: 0 / 0 / 0
17:48:46:765 0172 File objects infected / cured / cured on reboot: 0 / 0 / 0
17:48:46:765 0172
17:48:46:765 0172 MyNtCreateFileW: NtCreateFile(\??\C:\WINDOWS\system32\drivers\klmd.sys) returned status 00000000
17:48:46:765 0172 UtilityDeinit: KLMD(ARK) unloaded successfully
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
