|
|||||||
|
|
|
 |
|
|
Strumenti |
14-10-2009, 15:32
|
#261 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
__________________
Try again and you will be luckier.
|
|
|
|
|
03-11-2009, 16:24
|
#262 |
|
Junior Member
Iscritto dal: Oct 2005
Messaggi: 17
|
To impazzendo con gmer!!!
Ciao ragazzi,
qualcuno può darmi una mano? Avendo notato da alcuni giorni un'anomala lentezza di un mio pc su internet (ne ho un altro e va bene) oggi ho effettuato una scansione con gmer. Che mi ha dato i risultati visibili nel log. Adesso il problema è che: 1)sono sotto windows xp64bit, quindi alcuni tool non girano 2)il file infetto dovrebbe essere l'svchost a quanto mi pare di capire ma con gemr non riesco a fare altro 3)ho provato a disabilitare i processi ma non ho risolto molto Chi mi da un'idea? Codice:
GMER 1.0.15.15163 - http://www.gmer.net
Rootkit scan 2009-11-03 17:21:16
Windows 5.2.3790 Service Pack 2
Running: gmer.exe
---- Services - GMER 1.0.15 ----
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] bswxq <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] jaczdzpdo <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] kvoqup <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] ndlvtsr <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] nmssd <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] ogehz <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [DISABLED] porjukqlr <-- ROOTKIT !!!
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x08 0x9B 0x8D 0xE6 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@DisplayName Update Center
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq@Description Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\bswxq\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@DisplayName Boot System
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo@Description Provides DDNS name registration and automatic IPv6 connectivity over an IPv4 network. If this service is stopped, other computers may not be able to reach it by name and the machine will only have IPv6 connectivity if it is connected to a native IPv6 network. If this service is disabled, any other services that explicitly depend on this service will fail to start.
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\jaczdzpdo\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@DisplayName Monitor Universal
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup@Description Maintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\kvoqup\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@DisplayName Server Boot
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr@Description Provides network address translation, addressing, name resolution and/or intrusion prevention services for a home or small office network.
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\ndlvtsr\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@DisplayName Support Server
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd@Description Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\nmssd\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@DisplayName Shell Microsoft
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz@Description Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\ogehz\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@DisplayName Image Windows
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@Type 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@Start 4
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@ObjectName LocalSystem
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr@Description Provides system and desktop level support to the NVIDIA display driver
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr\Parameters
Reg HKLM\SYSTEM\CurrentControlSet\Services\porjukqlr\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x08 0x9B 0x8D 0xE6 ...
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@DisplayName Update Center
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq@Description Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\bswxq\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@DisplayName Boot System
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo@Description Provides DDNS name registration and automatic IPv6 connectivity over an IPv4 network. If this service is stopped, other computers may not be able to reach it by name and the machine will only have IPv6 connectivity if it is connected to a native IPv6 network. If this service is disabled, any other services that explicitly depend on this service will fail to start.
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\jaczdzpdo\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@DisplayName Monitor Universal
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup@Description Maintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\kvoqup\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@DisplayName Server Boot
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr@Description Provides network address translation, addressing, name resolution and/or intrusion prevention services for a home or small office network.
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\ndlvtsr\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@DisplayName Support Server
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd@Description Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\nmssd\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@DisplayName Shell Microsoft
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz@Description Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\ogehz\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@DisplayName Image Windows
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@Type 32
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@Start 4
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@ErrorControl 0
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@ObjectName LocalSystem
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr@Description Provides system and desktop level support to the NVIDIA display driver
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr\Parameters (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\porjukqlr\Parameters@ServiceDll C:\WINDOWS\system32\kbbvsxga.dll
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x08 0x9B 0x8D 0xE6 ...
Reg HKCU\Software\Microsoft\Windows\ShellNoRoam\Bags\7\Shell@WFlags 2
Reg HKCU\Software\Microsoft\Windows\ShellNoRoam\Bags\7\Shell@MinPos1680x1050(1).x -32000
Reg HKCU\Software\Microsoft\Windows\ShellNoRoam\Bags\7\Shell@MinPos1680x1050(1).y -32000
---- Files - GMER 1.0.15 ----
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\06-scorpions-321.mp3 6480632 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\00-scorpions-humanity_hour_i-2007.m3u 408 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\00-scorpions-humanity_hour_i-2007.nfo 1104 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\01-scorpions-hour_i.mp3 5447088 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\02-scorpions-the_game_of_life.mp3 6367881 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\03-scorpions-we_were_born_to_fly.mp3 6665469 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\04-scorpions-the_future_never_dies.mp3 6158485 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\05-scorpions-youre_lovin_me_to_death.mp3 5364197 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\07-scorpions-love_will_keep_us_alive.mp3 7077122 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\08-scorpions-we_will_rise_again.mp3 5995526 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\09-scorpions-your_last_song.mp3 5867634 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\10-scorpions-love_is_war.mp3 6977205 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\11-scorpions-the_cross_(feat._billy_corgan).mp3 7475720 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\1179170090_20070216scorpions[1].gif 32717 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\1179170163_15424_photo.jpg 34056 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\1179170179_flag_germany[1].png 1614 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\12-scorpions-humanity.mp3 8247581 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\15424_photo.jpg 54024 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\20070216-scorpions.gif 32717 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\20070216-scorpions.jpg 11456 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Scorpions - Humanity - Hour 1 [2007] -dademur-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v50\Thumbs.db 30208 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\01-whitesnake-best_years.mp3 9200826 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\02-WHI~1.MP3 8721150 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\03-whitesnake-call_on_me.mp3 8667155 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\04-WHI~1.MP3 9210720 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\05-whitesnake-good_to_be_bad.mp3 9326472 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\06-whitesnake-all_for_love.mp3 9250380 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\07-whitesnake-summer_rain.mp3 9525605 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\08-WHI~1.MP3 9702027 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\09-whitesnake-a_fool_in_love.mp3 9533992 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\10-whitesnake-got_what_you_need.mp3 7523885 bytes
File C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Messenger\fukguerr@hotmail.com\SharingMetadata\scleruccio@hotmail.it\DFSR\ConflictDelete\Whitesnake-Good To Be Bad (2008) [Mp3][www.zonator-{47B91BBF-2FC4-4938-B9EB-6BF7DFF4E1BC}-v52.com]\11-WHI~1.MP3 8406835 bytes
---- EOF - GMER 1.0.15 ----
|
|
|
|
|
03-11-2009, 16:35
|
#263 |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Segui questa Guida http://www.hwupgrade.it/forum/showthread.php?t=1984665
__________________
Try again and you will be luckier.
|
|
|
|
|
03-11-2009, 20:12
|
#264 |
|
Junior Member
Iscritto dal: Oct 2005
Messaggi: 17
|
grazie Chill-out,
ho provato ma nada de nada! ATF cleaner non gira su xp 64 bit BDtools non ha trovato niente Combofix non gira su 64bit Gmer continua a darmi quel log Asquared ha trovato niente altro che tracking cookie e rifacendo la scansione con gmer non è cambiato niente. Sto impazzendo  , anche perchè se non fosse un virus non mi spiegherei come mai la connessione su questo pc è molto più lenta che sull'altro (che per altro come pc è più chiavica di questo).Tra l'altro andando in regedit ho notato che le cartelle a cui fa riferimento gmer sono vuote ma provando a eliminarle manualmente non ci riesco. Le sto provando tutte, ho provato già una marea di software ma nada |
|
|
|
|
03-11-2009, 20:54
|
#265 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
__________________
Try again and you will be luckier.
|
|
|
|
|
|
03-11-2009, 21:12
|
#266 |
|
Junior Member
Iscritto dal: Oct 2005
Messaggi: 17
|
scusami ma non ho capito che log devo allegare se l'unico log è quello di gmer che è restato invariato rispetto a quello già allegato qui sopra.Nel log di bdtools appare solo "No Traces of Downadup Worm were found"
|
|
|
|
|
03-11-2009, 21:18
|
#267 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
Naturalmente provvederai ad allegare quellli che sei riuscito a produrre (bdtools indipendentemente dal messaggio "No Traces of Downadup Worm were found" + quello di a-squared) spero di essere stato chiaro ed esaustivo.
__________________
Try again and you will be luckier.
|
|
|
|
|
|
22-11-2009, 18:41
|
#268 |
|
Junior Member
Iscritto dal: Nov 2008
Messaggi: 28
|
Ho seguito la guida per infetti e ho avviato anche gmer..solo che nn so interpretare i risultati!potreste aiutarmi?ho solo capito ke ho attività rootkit...
 grazie http://wikisend.com/download/457402/gmernew.log |
|
|
|
|
22-11-2009, 20:08
|
#269 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
__________________
Try again and you will be luckier.
|
|
|
|
|
|
22-11-2009, 20:15
|
#270 | |
|
Junior Member
Iscritto dal: Nov 2008
Messaggi: 28
|
Quote:
hai già letto tutti e 2 i miei log?grazie mille! quindi sono affetta da conficker...speriamo di risolvere!grazie ancora |
|
|
|
|
|
22-11-2009, 21:59
|
#271 | |
|
Junior Member
Iscritto dal: Nov 2008
Messaggi: 28
|
Quote:
|
|
|
|
|
|
02-12-2009, 12:29
|
#272 |
|
Senior Member
Iscritto dal: Dec 2008
Messaggi: 3796
|
Salve...mi sapete dire perchè se lancio una scansione con gmer a un certo punto si blocca e mi esce una schermata blue?
 ho vista 32bit |
|
|
|
|
04-12-2009, 11:55
|
#273 | |
|
Senior Member
Iscritto dal: Dec 2008
Messaggi: 3796
|
Quote:
 potete aiutarmi? |
|
|
|
|
|
04-12-2009, 15:51
|
#274 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
__________________
Try again and you will be luckier.
|
|
|
|
|
|
04-12-2009, 16:05
|
#275 | |
|
Senior Member
Iscritto dal: Dec 2008
Messaggi: 3796
|
Quote:
 posso chiederti dove trovo le versioni precedenti? Ho usato anche RootRepeal...funziona bene  ....ho fatto la scansione e mi da delle voci rosse,posso postare il log nel thread specifico?Ciao e grazie |
|
|
|
|
|
04-12-2009, 16:18
|
#276 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
Allegalo nel 3D dedicato
__________________
Try again and you will be luckier.
|
|
|
|
|
|
02-01-2010, 11:38
|
#277 |
|
Senior Member
Iscritto dal: May 2003
Messaggi: 1505
|
Ciao a tutti, ho letto un po di info sui rootkit e mi è venuta un po di paura...ho fatto girare gmer ma quando faccio scan mi dice "c:\Windows\System32\config\SYSTEM impossibile trovare il file specificato" ma il file invece esiste sull'hd.
Se premo ok e imposto la scansione su tutte le unità mi rileva solo 2 voci relative a Comodo e basta.Posso stare sicuro?
__________________
Intel e5450 |-| Dark Knight Xigmatek S1283 |-| Asus P5k SE/EPU |-| OCZ DDR2 PC2-6400 Platinum Revision 2 Dual Channel 4X1024MB 893Mhz |-| Seagate Barracuda 7200.11 500 Gb Sata 300 Buffer 32 Mb 7200 Rpm |-| Sapphire HD 6950 2GB DDR5 |
|
|
|
|
06-01-2010, 18:49
|
#278 |
|
Member
Iscritto dal: Apr 2008
Messaggi: 40
|
ragazzi non riesco a postare il codice..
si blocca sempre
__________________
Do you like fishSticks? |
|
|
|
|
06-01-2010, 19:37
|
#279 | |
|
Moderatore
Iscritto dal: Jun 2007
Città: 127.0.0.1
Messaggi: 25885
|
Quote:
__________________
Try again and you will be luckier.
|
|
|
|
|
|
06-01-2010, 23:00
|
#280 |
|
Member
Iscritto dal: Apr 2008
Messaggi: 40
|
Ok, ora sto sulla partizione di Ubuntu.
Ecco la scansione: Codice:
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-01-06 19:21:48
Windows 5.1.2600 Service Pack 2
Running: wgj2njrs.exe; Driver: C:\DOCUME~1\ALESSIO\IMPOST~1\Temp\kwdoapoc.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0xBADFD58C]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwAssignProcessToJobObject [0xF784F1CC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwClose [0xBADFDE0C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwConnectPort [0xBADFE922]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateEvent [0xBADFEE94]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateFile [0xBADFE0EE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateKey [0xBADFC436]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateMutant [0xBADFED6C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateNamedPipeFile [0xBADFD192]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreatePort [0xBADFEC28]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSection [0xBADFD34E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSemaphore [0xBADFEFC6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSymbolicLinkObject [0xBAE00C08]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwCreateThread [0xF784F206]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateWaitablePort [0xBADFECCA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDebugActiveProcess [0xBAE005FA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteKey [0xBADFC9FA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteValueKey [0xBADFCD88]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeviceIoControlFile [0xBADFE576]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDuplicateObject [0xBAE015CA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateKey [0xBADFCECA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateValueKey [0xBADFCF74]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwFsControlFile [0xBADFE382]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadDriver [0xBAE0068C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey [0xBADFC412]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey2 [0xBADFC424]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwMapViewOfSection [0xBAE00CBC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwNotifyChangeKey [0xBADFD0C0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenEvent [0xBADFEF36]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenFile [0xBADFDE8E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenKey [0xBADFC5DC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenMutant [0xBADFEE04]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwOpenProcess [0xF784F51A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSection [0xBAE00C32]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSemaphore [0xBADFF068]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwOpenThread [0xF784F3F6]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwProtectVirtualMemory [0xF784F292]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryKey [0xBADFD01E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryMultipleValueKey [0xBADFCC46]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQuerySection [0xBAE00FD4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryValueKey [0xBADFC896]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueueApcThread [0xBAE00922]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRenameKey [0xBADFCB0E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplaceKey [0xBADFC2B0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyPort [0xBADFF3F2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0xBADFF2B8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0xBAE0039A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRestoreKey [0xBAE03E2C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwResumeThread [0xBAE014AC]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSaveKey [0xBADFC248]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSecureConnectPort [0xBADFE65C]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwSetContextThread [0xF784F18E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetInformationToken [0xBADFFC4A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSecurityObject [0xBAE00786]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSystemInformation [0xBAE01114]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetValueKey [0xBADFC71E]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendProcess [0xBAE011F8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendThread [0xBAE01320]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSystemDebugControl [0xBAE00526]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwTerminateProcess [0xF784F64E]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwTerminateThread [0xF784F316]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwUnmapViewOfSection [0xBAE00E8A]
SSDT \SystemRoot\System32\drivers\pxrts.sys (Prevx Realtime Security/Prevx) ZwWriteVirtualMemory [0xF784F34E]
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) FsRtlCheckLockForReadAccess
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) IoIsOperationSynchronous
---- Kernel code sections - GMER 1.0.15 ----
.text ntoskrnl.exe!_abnormal_termination + C8 804E2724 4 Bytes JMP A040E208
.text ntoskrnl.exe!_abnormal_termination + 114 804E2770 9 Bytes [4E, D3, DF, BA, C6, EF, DF, ...]
.text ntoskrnl.exe!_abnormal_termination + 11E 804E277A 6 Bytes [E0, BA, 06, F2, 84, F7]
.text ntoskrnl.exe!_abnormal_termination + 1D0 804E282C 12 Bytes [8C, 06, E0, BA, 12, C4, DF, ...] {MOV WORD [ESI], ES; LOOPNZ 0xffffffffffffffbe; ADC AL, AH; FISTP QWORD [EDX-0x45203bdc]}
.text ntoskrnl.exe!_abnormal_termination + 2CC 804E2928 5 Bytes [1E, D0, DF, BA, 46]
.text ...
.text ntoskrnl.exe!IoIsOperationSynchronous 804E8752 5 Bytes JMP BADF28B6 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)
.text ntoskrnl.exe!FsRtlCheckLockForReadAccess 80503C29 5 Bytes JMP BADF24DC \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)
? C:\WINDOWS\system32\drivers\sptd.sys Impossibile accedere al file. Il file è utilizzato da un altro processo.
.text USBPORT.SYS!DllUnload F6B8B62C 5 Bytes JMP 8389C1C8
? System32\Drivers\akpvdk0o.SYS Impossibile trovare il percorso specificato. !
---- User code sections - GMER 1.0.15 ----
? C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] USER32.dll!VRipOutput + FFFA4DE7 7E392A78 4 Bytes [70, 11, 33, 6D]
? C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] USER32.dll!VRipOutput + FFFA4DE7 7E392A78 4 Bytes [70, 11, 33, 6D]
---- Kernel IAT/EAT - GMER 1.0.15 ----
IAT \WINDOWS\System32\Drivers\SCSIPORT.SYS[ntoskrnl.exe!IoConnectInterrupt] [F767B06C] sptd.sys
IAT pci.sys[ntoskrnl.exe!IoDetachDevice] [F767B018] sptd.sys
IAT pci.sys[ntoskrnl.exe!IoAttachDeviceToDeviceStack] [F769D9AE] sptd.sys
IAT atapi.sys[ntoskrnl.exe!IoConnectInterrupt] [F767B06C] sptd.sys
IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [F7664AD4] sptd.sys
IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [F7664C1A] sptd.sys
IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [F7664B9C] sptd.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [F7665748] sptd.sys
IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [F766561E] sptd.sys
IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [F767A29A] sptd.sys
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] [BA733820] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\netbt.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] [BA733820] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\drivers\afd.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\netbios.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\rdbss.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\mrxsmb.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\Fips.SYS[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\ipnat.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\wanarp.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\Cdfs.SYS[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnkipx.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnkipx.sys[TDI.SYS!TdiRegisterDeviceObject] [BA733820] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnknb.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnknb.sys[TDI.SYS!TdiRegisterDeviceObject] [BA733820] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnkspx.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\nwlnkspx.sys[TDI.SYS!TdiRegisterDeviceObject] [BA733820] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\mrxdav.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\ParVdm.SYS[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\system32\DRIVERS\srv.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\Fastfat.SYS[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
IAT \SystemRoot\System32\Drivers\HTTP.sys[ntoskrnl.exe!IoCreateDevice] [BA7336D0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 00360240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 003602B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 00360320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 00360390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00C60860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00C608D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 003605C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00C60940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00C609B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00C60A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C60A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 003606A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 00360710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 00360780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 003607F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00C60B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00C60B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00C60BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 00360860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C60C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00C60CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00C60D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00C60DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00C60E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 003609B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 00360A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 00360A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 00360B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 00360B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00C60E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 00360BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00C60EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!VirtualFree] 00360D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00C60F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 7C900550
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9005C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 7C900630
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 7C9006A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 7C900710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 7C900780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 00360E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 00360EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9007F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 7C900860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 7C9008D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 7C900940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 7C9009B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 7C900A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 00360F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7D1F0390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 7C900F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C70010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00C70080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00C700F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00C70160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00C701D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00C70240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00C702B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 7D1F08D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 7D1F0940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 7D1F09B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 7D1F0A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00C70320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7D1F0C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7D1F0CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7D1F0E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C70470
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00C704E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00C70550
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00C705C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00C70630
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00C706A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00C70710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7D1F0EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00C70780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00C707F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00C70860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 7D1F0F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C708D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00C70940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00C709B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00C70A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00C70A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00C70B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00C70B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00C70BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00C70C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 00370010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 00370080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00C70CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00C70D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00C70DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00C70E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00C70E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00C70EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00C70F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00C80010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 00370320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00C80080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00C800F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00C80160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 00370390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C801D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 00370400
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C80C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00C80CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00C80D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 00C80DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 00C80E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 00C80E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 7D1F0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00C90780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00C907F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00C90860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00C908D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00C90CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00C90D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00C90DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00C90E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00C90E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00C90EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00C90F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00CA0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CA0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7D1F0240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7C900400
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7D1F0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[256] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 00360240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 003602B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 00360320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 00360390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00A80860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00A808D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 003605C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00A80940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00A809B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00A80A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A80A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 003606A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 00360710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 00360780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 003607F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00A80B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00A80B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00A80BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 00360860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A80C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00A80CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00A80D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00A80DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00A80E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 003609B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 00360A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 00360A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 00360B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 00360B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00A80E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 00360BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00A80EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!VirtualFree] 00360D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00A80F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 7C900550
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9005C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 7C900630
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 7C9006A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 7C900710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 7C900780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 00360E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 00360EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9007F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 7C900860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 7C9008D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 7C900940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 7C9009B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 7C900A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 00360F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7D1F0390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 7C900F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A90010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00A90080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00A900F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00A90160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00A901D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00A90240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00A902B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 7D1F08D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 7D1F0940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 7D1F09B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 7D1F0A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00A90320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7D1F0C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7D1F0CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7D1F0E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A90470
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00A904E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00A90550
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00A905C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00A90630
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00A906A0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00A90710
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7D1F0EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00A90780
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00A907F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00A90860
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 7D1F0F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A908D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00A90940
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00A909B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00A90A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00A90A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00A90B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00A90B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00A90BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00A90C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 00370010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 00370080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00A90CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00A90D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00A90DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00A90E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00A90E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00A90EF0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00A90F60
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00AA0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 00370320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00AA0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00AA00F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00AA0160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 00370390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AA01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 00370400
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AA0C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00AA0CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00AA0D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 00AA0DA0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 00AA0E10
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 00AA0E80
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 7D1F0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00AB0470
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00AB04E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00AB0550
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00AB05C0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00AB09B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00AB0A20
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00AB0A90
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00AB0B00
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00AB0B70
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00AB0BE0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00AB0C50
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00AB0CC0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AB0D30
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7D1F0240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7C900400
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7D1F0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!HeapDestroy] 7D1F0240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlFreeHeap] 7D1F0080
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlAllocateHeap] 7D1F0010
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 7C900320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 7C900390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9001D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!CreateThread] 7D1F01D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameA] 7C900160
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] 7C900400
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameW] 7C9001D0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] 7C900390
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetErrorMode] 7C900470
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetProcAddress] 7C900240
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] 7C9002B0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!FreeLibrary] 7C9000F0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9004E0
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!VirtualFree] 7D1F0320
IAT C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1880] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!VirtualAlloc] 7D1F02B0
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs 83B651E8
Device \FileSystem\Fastfat \FatCdrom 833971E8
Device \Driver\NetBT \Device\NetBT_Tcpip_{8631214F-8C6F-4ED0-A24B-4159AFE8032E} 834D2588
AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
Device \Driver\usbehci \Device\USBPDO-0 838795B0
Device \Driver\usbohci \Device\USBPDO-1 8389B1E8
Device \Driver\NetBT \Device\NetBT_Tcpip_{60352F27-FE3D-4A45-88CA-93078C593F92} 834D2588
Device \Driver\usbohci \Device\USBPDO-2 8389B1E8
Device \Driver\usbohci \Device\USBPDO-3 8389B1E8
Device \Driver\PCI_NTPNP1542 \Device\00000061 sptd.sys
AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
Device \Driver\Ftdisk \Device\HarddiskVolume1 83BD41E8
Device \Driver\Ftdisk \Device\HarddiskVolume2 83BD41E8
Device \Driver\Cdrom \Device\CdRom0 838CA1E8
Device \Driver\Cdrom \Device\CdRom1 838CA1E8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 83B661E8
Device \Driver\atapi \Device\Ide\IdePort0 83B661E8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 83B661E8
Device \Driver\atapi \Device\Ide\IdePort1 83B661E8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f 83B661E8
Device \Driver\Cdrom \Device\CdRom2 838CA1E8
Device \Driver\NetBT \Device\NetBt_Wins_Export 834D2588
Device \Driver\NetBT \Device\NetbiosSmb 834D2588
AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab)
Device \Driver\usbohci \Device\USBFDO-0 8389B1E8
Device \Driver\usbohci \Device\USBFDO-1 8389B1E8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 834C5790
Device \Driver\usbohci \Device\USBFDO-2 8389B1E8
Device 834C5790
Device \Driver\usbehci \Device\USBFDO-3 838795B0
Device \Driver\Ftdisk \Device\FtControl 83BD41E8
Device \Driver\akpvdk0o \Device\Scsi\akpvdk0o1Port2Path0Target0Lun0 838681E8
Device \Driver\akpvdk0o \Device\Scsi\akpvdk0o1 838681E8
Device 833971E8
Device Fastfat.SYS (Fast FAT File System Driver/Microsoft Corporation)
AttachedDevice fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
Device \FileSystem\Cdfs \Cdfs 834A41E8
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Programmi\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xAB 0x73 0x07 0x43 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xDC 0x47 0x0F 0x70 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xDA 0x4C 0x0F 0x30 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Programmi\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xAB 0x73 0x07 0x43 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xDC 0x47 0x0F 0x70 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xDA 0x4C 0x0F 0x30 ...
Reg HKLM\SOFTWARE\Classes\.bin\PersistentHandler
Reg HKLM\SOFTWARE\Classes\.bin\PersistentHandler@ {098f2470-bae0-11cd-b579-08002b30bfeb}
Reg HKLM\SOFTWARE\Classes\.hqx\PersistentHandler
Reg HKLM\SOFTWARE\Classes\.hqx\PersistentHandler@ {098f2470-bae0-11cd-b579-08002b30bfeb}
Reg HKLM\SOFTWARE\Classes\MSIDXS@ Microsoft OLE DB Provider for Indexing Service
Reg HKLM\SOFTWARE\Classes\MSIDXS\Clsid
Reg HKLM\SOFTWARE\Classes\MSIDXS\Clsid@ {F9AE8980-7E52-11d0-8964-00C04FD611D7}
Reg HKLM\SOFTWARE\Classes\MSIDXS ErrorLookup@ Microsoft OLE DB Error Lookup for Indexing Service
Reg HKLM\SOFTWARE\Classes\MSIDXS ErrorLookup\Clsid
Reg HKLM\SOFTWARE\Classes\MSIDXS ErrorLookup\Clsid@ {F9AE8981-7E52-11d0-8964-00C04FD611D7}
---- EOF - GMER 1.0.15 ----
__________________
Do you like fishSticks? |
|
|
|
|
|
| Strumenti | |
|
|
Tutti gli orari sono GMT +1. Ora sono le: 03:33.
