| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bekomme Malware nicht los... aktuell wars pdmn2.exeWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.01.2011, 17:11
| #1 |
 |  Bekomme Malware nicht los... aktuell wars pdmn2.exe Hallo zusammen, ich hab mir wohl Ende letzen Jahres was Malware mäßiges eingefangen. Meine erste Aktion war mir Malwarebytes runterzuladen und diese doofen Teile zu bekämpfen... Hier mal der letzte Malwarebytes Log von vorgestern sowie den OTL Log... Die älteren Logs mit allen bis jetzt erkannten Trojanern kann ich bei Bedarf gern auch bereitstellen... Hätt nur gerne meine Kiste mal wieder clean.. AntiVir hat mir nie was angezeigt, erst beim Beheben mit Malwarebytes...  Die Logs habe ich im Anhang dran... Vielen lieben Dank für Eure Hilfe... Claudia Geändert von Claudia78 (30.01.2011 um 17:25 Uhr) |
|
30.01.2011, 21:01
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Bekomme Malware nicht los... aktuell wars pdmn2.exeZitat:
__________________ |
|
02.02.2011, 20:57
| #3 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe So anbei die Logfiles der letzten Malwarebytes-Prüfung... Bin halt nicht sicher ob wirklich alles weg ist. Hab AntiVir alles Virenscanner den ich jetzt zunächst mal auf Kaspersky ändere...
__________________ |
|
02.02.2011, 21:04
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exe Beende alle Programme, starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
O4 - HKLM..\Run: [] File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.04.15 11:39:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{014752e0-5aa5-11de-8811-000e35338916}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{014752e0-5aa5-11de-8811-000e35338916}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{014752e0-5aa5-11de-8811-000e35338916}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
[2010.06.24 20:54:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010.01.02 17:11:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2011.01.28 21:26:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Claudia\Anwendungsdaten\44610
[2011.01.11 06:36:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Claudia\Anwendungsdaten\80272
@Alternate Data Stream - 76 bytes -> C:\Dokumente und Einstellungen\Claudia\Eigene Dateien\Unbenannt1.dmsd:Roxio EMC Stream
:Commands
[purity]
[resethosts]
[emptytemp]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
04.02.2011, 21:33
| #5 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe So, anbei nun das OTL Fix Log... Bin ich das Zeugs jetzt los oder wie? LG Claudia |
|
04.02.2011, 21:55
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exe Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
__________________ --> Bekomme Malware nicht los... aktuell wars pdmn2.exe |
|
05.02.2011, 15:11
| #7 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe Combofix Logfile: Code:
ATTFilter ComboFix 11-01-31.02 - Claudia 05.02.2011 14:46:08.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.49.1031.18.495.159 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Claudia\Eigene Dateien\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((( Dateien erstellt von 2011-01-05 bis 2011-02-05 ))))))))))))))))))))))))))))))
.
2011-02-04 20:21 . 2011-02-04 20:21 -------- d-----w- C:\_OTL
2011-02-04 20:03 . 2011-01-13 08:37 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-04 20:03 . 2011-01-13 08:41 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-04 20:03 . 2011-01-13 08:37 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-04 20:03 . 2011-01-13 08:40 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-04 20:03 . 2011-01-13 08:40 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-02-04 20:03 . 2011-01-13 08:39 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-02-04 20:03 . 2011-01-13 08:37 29392 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-02-04 20:02 . 2011-01-13 08:47 38848 ----a-w- c:\windows\avastSS.scr
2011-02-04 20:02 . 2011-01-13 08:47 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-04 20:02 . 2011-02-04 20:02 -------- d-----w- c:\programme\Alwil Software
2011-02-04 20:02 . 2011-02-04 20:02 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Alwil Software
2011-02-02 19:34 . 2011-02-02 19:34 -------- d-----w- c:\programme\7-Zip
2011-01-30 14:55 . 2011-01-30 14:55 -------- d-----w- c:\programme\CCleaner
2011-01-11 05:39 . 2011-01-11 05:39 -------- d-----r- c:\dokumente und einstellungen\LocalService\Eigene Dateien
2011-01-10 19:14 . 2011-01-10 22:13 -------- d-----w- c:\windows\system32\NtmsData
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-20 17:09 . 2010-12-30 09:50 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-20 17:08 . 2010-12-30 09:50 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-02 03:35 . 2010-12-02 03:35 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-18 18:12 . 2004-04-15 10:37 86016 ----a-w- c:\windows\system32\isign32.dll
2010-11-09 14:51 . 2003-10-27 18:09 249856 ----a-w- c:\windows\system32\odbc32.dll
2007-03-12 16:59 . 2007-03-12 16:59 299008 ----a-w- c:\programme\navigram_register.exe
2004-11-28 19:33 . 2010-01-02 19:32 1208320 ----a-w- c:\programme\IfoEdit.exe
2009-09-25 16:41 . 2009-09-25 16:41 1044480 ----a-w- c:\programme\mozilla firefox\plugins\libdivx.dll
2009-09-25 16:41 . 2009-09-25 16:41 200704 ----a-w- c:\programme\mozilla firefox\plugins\ssldivx.dll
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"="c:\programme\TOSHIBA\TOSCDSPD\toscdspd.exe" [2003-09-15 65536]
"MsnMsgr"="c:\programme\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883840]
"PhonostarAgent"="c:\programme\phonostar\ps_agent.exe" [2009-05-13 98304]
"PhonostarTimer"="c:\programme\phonostar\ps_timer.exe" [2009-05-13 126976]
"Picasa Media Detector"="c:\programme\Picasa2\PicasaMediaDetector.exe" [2008-08-21 443968]
"ICQ"="c:\programme\ICQ6.5\ICQ.exe" [2010-11-16 172856]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
c:\dokumente und einstellungen\Claudia\Startmen\Programme\Autostart\
OpenOffice.org 2.2.lnk - c:\programme\OpenOffice.org 2.2\program\quickstart.exe [2007-2-2 393216]
Yahoo! Widgets.lnk - c:\programme\Yahoo!\Widgets\YahooWidgets.exe [N/A]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Sebring]
2003-12-16 15:49 110592 ----a-w- c:\windows\system32\LgNotify.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programme\\ICQ6.5\\ICQ.exe"=
"c:\\Programme\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programme\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=
"c:\\Programme\\Real\\RealPlayer\\realplay.exe"=
"c:\\Programme\\Nero\\Nero8\\Nero ShowTime\\ShowTime.exe"=
"c:\\Programme\\Bonjour\\mDNSResponder.exe"=
"c:\\Programme\\iTunes\\iTunes.exe"=
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [04.02.2011 21:03 294608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [04.02.2011 21:03 17744]
R2 ICQ Service;ICQ Service;c:\programme\ICQ6Toolbar\ICQ Service.exe [25.11.2008 20:18 222968]
S2 gupdate;Google Update Service (gupdate);c:\programme\Google\Update\GoogleUpdate.exe [08.01.2010 20:28 135664]
S2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\programme\Roxio\Digital Home 10\RoxioUpnpService10.exe [05.03.2008 07:32 362992]
S2 RoxLiveShare10;LiveShare P2P Server 10;c:\programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [05.03.2008 07:32 309744]
S2 RoxWatch10;Roxio Hard Drive Watcher 10;c:\programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe [05.03.2008 07:32 166384]
S2 SessionLauncher;SessionLauncher;c:\dokume~1\Claudia\LOKALE~1\Temp\DX9\SessionLauncher.exe --> c:\dokume~1\Claudia\LOKALE~1\Temp\DX9\SessionLauncher.exe [?]
S3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\programme\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [05.03.2008 07:32 313840]
S3 RoxMediaDB10;RoxMediaDB10;c:\programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [05.03.2008 07:31 1120752]
.
Inhalt des "geplante Tasks" Ordners
2010-12-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programme\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]
2011-02-05 c:\windows\Tasks\Google Software Updater.job
- c:\programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-15 17:10]
2011-02-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programme\Google\Update\GoogleUpdate.exe [2010-01-08 19:28]
2011-02-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programme\Google\Update\GoogleUpdate.exe [2010-01-08 19:28]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://start.icq.com/
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Free YouTube Download - c:\dokumente und einstellungen\Claudia\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubedownload.htm
IE: Free YouTube to Mp3 Converter - c:\dokumente und einstellungen\Claudia\Anwendungsdaten\DVDVideoSoftIEHelpers\youtubetomp3.htm
Trusted Zone: navigram.com\www
FF - ProfilePath - c:\dokumente und einstellungen\Claudia\Anwendungsdaten\Mozilla\Firefox\Profiles\fbd98tx5.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\programme\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Skype extension for Firefox: {B13721C7-F507-4982-B2E5-502A71474FED} - c:\programme\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - c:\programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - c:\programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: DHL Packstation Bestellhelfer: {b8cbd8e0-e642-11dd-ba2f-0800200c9a66} - %profile%\extensions\{b8cbd8e0-e642-11dd-ba2f-0800200c9a66}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\programme\Java\jre6\lib\deploy\jqs\ff
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2011-02-05 14:55
Windows 5.1.2600 Service Pack 3 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostarteinträge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
[HKEY_USERS\S-1-5-21-3075883088-3893027026-3363273818-1006\Software\SecuROM\License information*]
"datasecu"=hex:83,68,c0,0d,1c,87,76,2d,35,7d,74,ce,34,f5,18,90,b8,e0,d8,a7,c0,
85,81,6a,a1,63,8e,01,f6,5f,a7,91,69,dd,c4,1d,06,e9,c7,2c,43,5f,7b,a1,ef,e9,\
"rkeysecu"=hex:b3,a6,db,3c,87,0c,3e,99,24,5e,0d,1c,06,b7,47,de
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
- - - - - - - > 'winlogon.exe'(796)
c:\windows\System32\LgNotify.dll
.
Zeit der Fertigstellung: 2011-02-05 15:01:57
ComboFix-quarantined-files.txt 2011-02-05 14:01
Vor Suchlauf: 13 Verzeichnis(se), 53.776.023.552 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 53.823.041.536 Bytes frei
WindowsXP-KB310994-SP2-Home-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn
- - End Of File - - 1C1BD476219E5FF82B3CD51785513297
So hier jetzt mein Logfile von Combofix. |
|
06.02.2011, 20:18
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exe Ok. Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Downloade Dir danach bitte MBRCheck (by a_d_13) und speichere die Datei auf dem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
09.02.2011, 19:51
| #9 | |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe So, heut bin ich jetzt dazugekommen alles auszuführen und hier sind die logs... GMER GMER Logfile: Code:
ATTFilter GMER 1.0.15.15530 - hxxp://www.gmer.net
Rootkit scan 2011-02-07 22:25:26
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD1200BEVE-00WZT0 rev.01.01A01
Running: ltkq34vm.exe; Driver: C:\DOKUME~1\Claudia\LOKALE~1\Temp\uwncruow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0xEE221558]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwClose [0xEE221E5C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwConnectPort [0xEE222C90]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateEvent [0xEE2231DA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateFile [0xEE222138]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateKey [0xEE2203C8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateMutant [0xEE2230C0]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateNamedPipeFile [0xEE221146]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreatePort [0xEE222F94]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSection [0xEE2212EE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSemaphore [0xEE2232FA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateThread [0xEE221AE4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateWaitablePort [0xEE22302A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDebugActiveProcess [0xEE2249E2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteKey [0xEE2209D2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeleteValueKey [0xEE220D86]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeviceIoControlFile [0xEE2225BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDuplicateObject [0xEE225BEE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateKey [0xEE220ED2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateValueKey [0xEE220F6A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwFsControlFile [0xEE2223C8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadDriver [0xEE224AD4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey [0xEE2203A4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey2 [0xEE2203B6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwMapViewOfSection [0xEE22523C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwNotifyChangeKey [0xEE221096]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenEvent [0xEE223270]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenFile [0xEE221EDE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenKey [0xEE220588]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenMutant [0xEE223150]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenProcess [0xEE221794]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSection [0xEE224FD6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSemaphore [0xEE223390]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenThread [0xEE221686]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryKey [0xEE221002]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryMultipleValueKey [0xEE220C3A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQuerySection [0xEE225576]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryValueKey [0xEE220864]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueueApcThread [0xEE224E68]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRenameKey [0xEE220AF4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplaceKey [0xEE21FDDE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyPort [0xEE2236F4]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0xEE2235BA]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0xEE22477C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRestoreKey [0xEE220156]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwResumeThread [0xEE225A90]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSaveKey [0xEE21FD76]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSecureConnectPort [0xEE2229D6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetContextThread [0xEE221D00]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetInformationToken [0xEE22401C]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSecurityObject [0xEE224C72]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSystemInformation [0xEE2256C6]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetValueKey [0xEE2206DE]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendProcess [0xEE2257B8]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendThread [0xEE2258F2]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSystemDebugControl [0xEE224906]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateProcess [0xEE221930]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateThread [0xEE221890]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwUnmapViewOfSection [0xEE22541A]
SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwWriteVirtualMemory [0xEE221A1A]
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) FsRtlCheckLockForReadAccess
Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) IoIsOperationSynchronous
---- Kernel code sections - GMER 1.0.15 ----
.text ntoskrnl.exe!_abnormal_termination + 1D0 804E283C 12 Bytes [D4, 4A, 22, EE, A4, 03, 22, ...] {AAM 0x4a; AND CH, DH; MOVSB ; ADD ESP, [EDX]; OUT DX, AL ; MOV DH, 0x3; AND CH, DH}
.text ntoskrnl.exe!_abnormal_termination + 34C 804E29B8 16 Bytes [F4, 0A, 22, EE, DE, FD, 21, ...]
.text ntoskrnl.exe!_abnormal_termination + 440 804E2AAC 12 Bytes [B8, 57, 22, EE, F2, 58, 22, ...] {MOV EAX, 0xf2ee2257; POP EAX; AND CH, DH; PUSH ES; DEC ECX; AND CH, DH}
.text ntoskrnl.exe!IoIsOperationSynchronous 804E876A 5 Bytes JMP EE2143C2 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)
.text ntoskrnl.exe!FsRtlCheckLockForReadAccess 80512959 5 Bytes JMP EE213FE6 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab)
---- User code sections - GMER 1.0.15 ----
? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [E0, 13, 46, 6C] {LOOPNZ 0x15; INC ESI; INSB }
? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [E0, 13, 46, 6C] {LOOPNZ 0x15; INC ESI; INSB }
---- Kernel IAT/EAT - GMER 1.0.15 ----
IAT \SystemRoot\System32\DRIVERS\ipsec.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\tcpip.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] [F7135D50] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\netbt.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] [F7135D50] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\drivers\afd.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\netbios.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\rdbss.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\mrxsmb.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\Drivers\Fips.SYS[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\ipnat.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\wanarp.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\Drivers\Cdfs.SYS[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\ndisuio.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\mrxdav.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\system32\drivers\wdmaud.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\system32\drivers\sysaudio.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\DRIVERS\srv.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\System32\Drivers\HTTP.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
IAT \SystemRoot\system32\drivers\kmixer.sys[ntoskrnl.exe!IoCreateDevice] [F7135C00] kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 00BB0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 00BB02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 00BB0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 00BB0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 00D909B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00D90A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00D90A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00D90B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00D90B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00D90BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00D90C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleHandleA] 00D90CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00D90D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 00BB0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapCreate] 00BB09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 00BB0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 00BB0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 00BB0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00D90DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00D90EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00D90F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 00BB0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleHandleW] 7C9E06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 7C9E07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 7C9E0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 7C9E08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 7C9E0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 00BB0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 00BB0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 00BB0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 7C9D0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 7C9E0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 7C9E0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 7C9E0B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 7C9E0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 7C9D05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleHandleW] 7C9E0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 7C9D0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 7C9D06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 7C9D0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 7C9D0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleHandleW] 7C9E0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 7C9E0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 7C9E0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 7C9E0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 7C9D07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7C9D08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleHandleA] 00DA0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapCreate] 7C9D0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7C9D09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7C9D0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DA0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00DA00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00DA0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleHandleW] 00DA01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00DA0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00DA02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00DA0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00DA0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7C9D0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00DA0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00DA0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00DA04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 7C9D0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DA0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 00DA05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 00DA0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 00DA06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 00DA0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 00DA0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7C9D0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleHandleW] 00DA07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00DA0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 7C9D0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00DA08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00DA0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleHandleA] 00DA09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 00DA0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DA0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 00DA0B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 00DA0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 00DA0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 00DA0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 00BC0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 00BC0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DA0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00DA0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00DA0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleHandleA] 00DA0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleHandleW] 00DA0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00DA0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00DA0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00DB0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00DB0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00DB00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00DB0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 00BC00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 00BC0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapCreate] 00BC0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00DB01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00DB0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00DB02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00DB0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleHandleW] 00DB0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00DB0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00DB0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00DB04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00DB0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 00BC0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00DB05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00DB0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00DB06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 00BC04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DB0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 00BC0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00DB0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00DB0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00DB0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00DB0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 00DD0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DD0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 00DD0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 00DD04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 00DD0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 00DD05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7C9D0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00DE04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00DE0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00DE05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00DE0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00DE06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00DE0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00DE0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00DE07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00DE0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7C9D0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapCreate] 7C9D0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7C9D02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1144] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 008E0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 008E02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 008E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 008E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 00BB09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BB0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00BB0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00BB0B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00BB0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00BB0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00BB0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleHandleA] 00BB0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00BB0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 008E0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapCreate] 008E09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 008E0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 008E0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 008E0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00BB0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00BB0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00BB0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 008E0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleHandleW] 7C9E06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 7C9E07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 7C9E0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 7C9E08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 7C9E0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 008E0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 008E0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 008E0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 7C9D0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 7C9E0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 7C9E0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 7C9E0B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 7C9E0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 7C9D05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleHandleW] 7C9E0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 7C9D0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 7C9D06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 7C9D0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 7C9D0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleHandleW] 7C9E0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 7C9E0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 7C9E0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 7C9E0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 7C9D07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7C9D08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleHandleA] 00BC0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapCreate] 7C9D0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7C9D09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7C9D0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BC0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00BC00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00BC0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleHandleW] 00BC01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00BC0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00BC02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00BC0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00BC0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7C9D0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00BC0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00BC0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00BC04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 7C9D0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BC0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 00BC05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 00BC0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 00BC06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 00BC0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 00BC0780
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7C9D0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleHandleW] 00BC07F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00BC0860
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 7C9D0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00BC08D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00BC0940
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleHandleA] 00BC09B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 00BC0A20
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BC0A90
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 00BC0B00
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 00BC0B70
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 00BC0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 00BC0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 008F0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 008F0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BC0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00BC0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00BC0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleHandleA] 00BC0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleHandleW] 00BC0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00BC0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00BC0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00BD0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00BD0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00BD00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00BD0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 008F00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 008F0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapCreate] 008F0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00BD01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00BD0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00BD02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00BD0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleHandleW] 00BD0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00BD0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00BD0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00BD04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00BD0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 008F0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00BD05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00BD0630
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00BD06A0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 008F04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BD0710
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 008F0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00BD0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00BD0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00BD0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00BD0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00BF0BE0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00BF0C50
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00BF0CC0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00BF0D30
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00BF0DA0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00BF0E10
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00BF0E80
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00BF0EF0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00BF0F60
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7C9D0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7C9E04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7C9D0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7C9D0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapCreate] 7C9D0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7C9D02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!HeapCreate] 7C9D0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!HeapDestroy] 7C9D02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlFreeHeap] 7C9D0080
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlAllocateHeap] 7C9D0010
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 7C9E0400
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 7C9E0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!VirtualFree] 7C9D0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!VirtualAlloc] 7C9D0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!CreateThread] 7C9D01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleHandleA] 7C9E0240
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleFileNameA] 7C9E0160
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] 7C9E04E0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleFileNameW] 7C9E01D0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] 7C9E0470
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleHandleW] 7C9E02B0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7C9E05C0
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!SetErrorMode] 7C9E0550
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] 7C9E0320
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] 7C9E0390
IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe[1192] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] 7C9E00F0
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
Device \FileSystem\Cdfs \Cdfs tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
---- EOF - GMER 1.0.15 ----
OSAM: OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 19:38:01 on 09.02.2011 OS: Windows XP Home Edition Service Pack 3 (Build 2600) Default Browser: Mozilla Corporation Firefox 3.6.13 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [AppInit DLLs] -----( HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows )----- "AppInit_DLLs" - "Kaspersky Lab ZAO" - C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll "AppInit_DLLs" - "Kaspersky Lab ZAO" - C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll [Common] -----( %SystemRoot%\Tasks )----- "AppleSoftwareUpdate.job" - "Apple Inc." - C:\Programme\Apple Software Update\SoftwareUpdate.exe "GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Programme\Google\Update\GoogleUpdate.exe "GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Programme\Google\Update\GoogleUpdate.exe "Google Software Updater.job" - "Google" - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [Control Panel Objects] -----( %SystemRoot%\system32 )----- "HWSETUP.CPL" - "TOSHIBA Corp." - C:\WINDOWS\system32\HWSETUP.CPL "infocardcpl.cpl" - "Microsoft Corporation" - C:\WINDOWS\system32\infocardcpl.cpl "javacpl.cpl" - "Sun Microsystems, Inc." - C:\WINDOWS\system32\javacpl.cpl "PRAppltW.cpl" - "Intel(R) Corporation" - C:\WINDOWS\system32\PRAppltW.cpl "stac97.cpl" - "SigmaTel Inc." - C:\WINDOWS\system32\stac97.cpl "TOSCDSPD.cpl" - ? - C:\WINDOWS\system32\TOSCDSPD.cpl (File found, but it contains no detailed information) "TPwrSave.cpl" - "TOSHIBA Corporation" - C:\WINDOWS\system32\TPwrSave.cpl -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )----- "Nero BurnRights" - "Nero AG" - C:\Programme\Nero\Nero8\Nero Toolkit\NeroBurnRights.cpl "QuickTime" - "Apple Inc." - C:\Programme\QuickTime\QTSystem\QuickTime.cpl "ToshSrv" - "TOSHIBA Corporation" - C:\Programme\TOSHIBA\TOSHIBA Controls\ToshSrv.cpl [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "AEGIS Protocol (IEEE 802.1x) v2.2.1.0" (MDC8021X) - "Meetinghouse Data Communications" - C:\WINDOWS\System32\DRIVERS\mdc8021x.sys "catchme" (catchme) - ? - C:\DOKUME~1\Claudia\LOKALE~1\Temp\catchme.sys (File not found) "Changer" (Changer) - ? - C:\WINDOWS\system32\drivers\Changer.sys (File not found) "drvmcdb" (drvmcdb) - "Sonic Solutions" - C:\WINDOWS\System32\drivers\drvmcdb.sys "drvnddm" (drvnddm) - "Sonic Solutions" - C:\WINDOWS\System32\drivers\drvnddm.sys "i2omgmt" (i2omgmt) - ? - C:\WINDOWS\system32\drivers\i2omgmt.sys (File not found) "Kaspersky Lab Driver" (KLIF) - "Kaspersky Lab" - C:\WINDOWS\System32\DRIVERS\klif.sys "lbrtfdc" (lbrtfdc) - ? - C:\WINDOWS\system32\drivers\lbrtfdc.sys (File not found) "PCIDump" (PCIDump) - ? - C:\WINDOWS\system32\drivers\PCIDump.sys (File not found) "PDCOMP" (PDCOMP) - ? - C:\WINDOWS\system32\drivers\PDCOMP.sys (File not found) "PDFRAME" (PDFRAME) - ? - C:\WINDOWS\system32\drivers\PDFRAME.sys (File not found) "PDRELI" (PDRELI) - ? - C:\WINDOWS\system32\drivers\PDRELI.sys (File not found) "PDRFRAME" (PDRFRAME) - ? - C:\WINDOWS\system32\drivers\PDRFRAME.sys (File not found) "PxHelp20" (PxHelp20) - "Sonic Solutions" - C:\WINDOWS\System32\Drivers\PxHelp20.sys "sscdbhk5" (sscdbhk5) - "Sonic Solutions" - C:\WINDOWS\System32\drivers\sscdbhk5.sys "ssrtln" (ssrtln) - "Sonic Solutions" - C:\WINDOWS\System32\drivers\ssrtln.sys "StarOpen" (StarOpen) - ? - C:\WINDOWS\system32\drivers\StarOpen.sys (File found, but it contains no detailed information) "tfsnboio" (tfsnboio) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnboio.sys "tfsncofs" (tfsncofs) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsncofs.sys "tfsndrct" (tfsndrct) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsndrct.sys "tfsndres" (tfsndres) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsndres.sys "tfsnifs" (tfsnifs) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnifs.sys "tfsnopio" (tfsnopio) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnopio.sys "tfsnpool" (tfsnpool) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnpool.sys "tfsnudf" (tfsnudf) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnudf.sys "tfsnudfa" (tfsnudfa) - "Sonic Solutions" - C:\WINDOWS\System32\dla\tfsnudfa.sys "TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver" (TVALZ) - "TOSHIBA Corporation" - C:\WINDOWS\System32\DRIVERS\TVALZ.SYS "TOSHIBA Network Device Usermode I/O Protocol" (Netdevio) - "TOSHIBA Corporation." - C:\WINDOWS\System32\DRIVERS\netdevio.sys "WDICA" (WDICA) - ? - C:\WINDOWS\system32\drivers\WDICA.sys (File not found) "WLAN Transport" (s24trans) - "Intel Corporation" - C:\WINDOWS\System32\DRIVERS\s24trans.sys [Explorer] -----( HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components )----- {89B4C1CD-B018-4511-B0A1-5476DBF70820} "StubPath" - "Microsoft Corporation" - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" - ? - C:\Programme\OpenOffice.org 2.2\program\shlxthdl.dll -----( HKLM\Software\Classes\Protocols\Filter )----- {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" - "Microsoft Corporation" - C:\WINDOWS\system32\mscoree.dll {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" - "Microsoft Corporation" - C:\WINDOWS\system32\mscoree.dll {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" - "Microsoft Corporation" - C:\WINDOWS\system32\mscoree.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {23170F69-40C1-278A-1000-000100020000} "7-Zip Shell Extension" - "Igor Pavlov" - C:\Programme\7-Zip\7-zip.dll {42071714-76d4-11d1-8b24-00a0c9068ff3} "CPL-Erweiterung für Anzeigeverschiebung" - ? - deskpan.dll (File not found) {5CA3D70E-1895-11CF-8E15-001234567890} "DriveLetterAccess" - "Sonic Solutions" - C:\WINDOWS\system32\dla\tfswshx.dll {1D2680C9-0E2A-469d-B787-065558BC7D43} "Fusion Cache" - "Microsoft Corporation" - c:\WINDOWS\system32\mscoree.dll {B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} "iTunes" - "Apple Inc." - C:\Programme\iTunes\iTunesMiniPlayer.dll {853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} "Kontextmenü für die Verschlüsselung" - ? - (File not found | COM-object registry key not found) {32683183-48a0-441b-a342-7c2a440a9478} "Media Band" - ? - (File not found | COM-object registry key not found) {97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2} "NeroCoverEdLiveIcons Class" - "Nero AG" - C:\Programme\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} "OpenOffice.org Column Handler" - ? - C:\Programme\OpenOffice.org 2.2\program\shlxthdl.dll {087B3AE3-E237-4467-B8DB-5A38AB959AC9} "OpenOffice.org Infotip Handler" - ? - C:\Programme\OpenOffice.org 2.2\program\shlxthdl.dll {63542C48-9552-494A-84F7-73AA6A7C99C1} "OpenOffice.org Property Sheet Handler" - ? - C:\Programme\OpenOffice.org 2.2\program\shlxthdl.dll {3B092F0C-7696-40E3-A80F-68D74DA84210} "OpenOffice.org Thumbnail Viewer" - ? - C:\Programme\OpenOffice.org 2.2\program\shlxthdl.dll {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} "RealOne Player Context Menu Class" - "RealNetworks, Inc." - C:\Programme\Real\RealPlayer\rpshell.dll {45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - ? - (File not found | COM-object registry key not found) {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} "Shell Icon Handler for Application References" - "Microsoft Corporation" - c:\WINDOWS\system32\dfshim.dll {764BF0E1-F219-11ce-972D-00AA00A14F56} "Shellerweiterungen für die Dateikomprimierung" - ? - (File not found | COM-object registry key not found) {e82a2d71-5b2f-43a0-97b8-81be15854de8} "ShellLink for Application References" - "Microsoft Corporation" - c:\WINDOWS\system32\dfshim.dll {C4213067-97B3-4929-9B98-B5600FBBBA13} "TouchShellExt Class" - "TOSHIBA Corporation" - C:\PROGRA~1\TOSHIBA\TouchED\TouchED.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - ? - C:\Programme\WinRAR\rarext.dll (File found, but it contains no detailed information) [Internet Explorer] -----( HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars )----- {32683183-48a0-441b-a342-7c2a440a9478} "{32683183-48a0-441b-a342-7c2a440a9478}" - ? - (File not found | COM-object registry key not found) -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) <binary data> "ITBarLayout" - ? - (File not found | COM-object registry key not found) -----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )----- {855F3B16-6D32-4fe6-8A56-BBB695989046} "ICQToolBar" - "ICQ" - C:\Programme\ICQ6Toolbar\ICQToolBar.dll "{855F3B16-6D32-4fe6-8A56-BBB695989046}" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )----- {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} "Installation Support" - "Yahoo! Inc." - C:\Programme\Yahoo!\Common\Yinsthelper.dll / C:\Programme\Yahoo!\Common\Yinsthelper.dll {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} "Java Plug-in 1.4.2_03" - "JavaSoft / Sun Microsystems, Inc." - C:\Programme\Java\j2re1.4.2_03\bin\npjpi142_03.dll / hxxp://java.sun.com/update/1.4.2/jinstall-1_4_2_03-windows-i586.cab {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_19" - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\bin\npjpi160_19.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} "Java Plug-in 1.6.0_19" - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\bin\npjpi160_19.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_19" - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\bin\npjpi160_19.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab {6E718D87-6909-4FCE-92D4-EDCB2F725727} "Navigram Control" - "Navigram" - C:\Programme\Navigram\NavigramEngine\navigram.ocx / hxxp://www.navigram.com/engine/v1026/Navigram.cab {D0C0F75C-683A-4390-A791-1ACFD5599AB8} "Oberon Flash Game Host" - "Oberon Media, Inc." - C:\WINDOWS\Downloaded Program Files\OberonGameHost.dll / hxxp://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} "{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}" - ? - (File not found | COM-object registry key not found) / hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab {D27CDB6E-AE6D-11CF-96B8-444553540000} "{D27CDB6E-AE6D-11CF-96B8-444553540000}" - ? - (File not found | COM-object registry key not found) / hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {4248FE82-7FCB-46AC-B270-339F08212110} "&Virtuelle Tastatur" - "Kaspersky Lab ZAO" - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll "ICQ6" - "ICQ, LLC." - C:\Programme\ICQ6.5\ICQ.exe {CCF151D8-D089-449F-A5A4-D9909053F20F} "Li&nks untersuchen" - "Kaspersky Lab ZAO" - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- {855F3B16-6D32-4fe6-8A56-BBB695989046} "ICQToolBar" - "ICQ" - C:\Programme\ICQ6Toolbar\ICQToolBar.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} "Adobe PDF Reader" - "Adobe Systems Incorporated" - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll {5CA3D70E-1895-11CF-8E15-001234567890} "DriveLetterAccess" - "Sonic Solutions" - C:\WINDOWS\system32\dla\tfswshx.dll {E33CF602-D945-461A-83F0-819F76A199F8} "FilterBHO Class" - "Kaspersky Lab ZAO" - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} "Google Toolbar Notifier BHO" - "Google Inc." - C:\Programme\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} "IEVkbdBHO Class" - "Kaspersky Lab ZAO" - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\bin\jp2ssv.dll {E7E6F031-17CE-4C07-BC86-EABFE594F69C} "JQSIEStartDetectorImpl Class" - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll {5C255C8A-E604-49b4-9D64-90988571CECB} "{5C255C8A-E604-49b4-9D64-90988571CECB}" - ? - (File not found | COM-object registry key not found) [Logon] -----( %AllUsersProfile%\Startmenü\Programme\Autostart )----- "desktop.ini" - ? - C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\desktop.ini -----( %UserProfile%\Startmenü\Programme\Autostart )----- "desktop.ini" - ? - C:\Dokumente und Einstellungen\Claudia\Startmenü\Programme\Autostart\desktop.ini "OpenOffice.org 2.2.lnk" - ? - C:\Programme\OpenOffice.org 2.2\program\quickstart.exe (Shortcut exists | File found, but it contains no detailed information | File exists) "Yahoo! Widgets.lnk" - ? - C:\Dokumente und Einstellungen\Claudia\Startmenü\Programme\Autostart\Yahoo! Widgets.lnk (Shortcut exists | File not found) -----( HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run )----- "ICQ" - "ICQ, LLC." - "C:\Programme\ICQ6.5\ICQ.exe" silent "MsnMsgr" - "Microsoft Corporation" - "C:\Programme\Windows Live\Messenger\msnmsgr.exe" /background "PhonostarAgent" - ? - C:\Programme\phonostar\ps_agent.exe "PhonostarTimer" - ? - C:\Programme\phonostar\ps_timer.exe "Picasa Media Detector" - "Google Inc." - C:\Programme\Picasa2\PicasaMediaDetector.exe "TOSCDSPD" - "TOSHIBA" - C:\Programme\TOSHIBA\TOSCDSPD\toscdspd.exe -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" "Adobe Reader Speed Launcher" - "Adobe Systems Incorporated" - "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" "AVP" - "Kaspersky Lab ZAO" - "C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [Print Monitors] -----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )----- "Redirected Port" - ? - C:\WINDOWS\system32\redmonnt.dll (File found, but it contains no detailed information) [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- ".NET Runtime Optimization Service v2.0.50727_X86" (clr_optimization_v2.0.50727_32) - "Microsoft Corporation" - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe "Anwendungsverwaltung" (AppMgmt) - ? - C:\WINDOWS\System32\appmgmts.dll (File not found) "Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe "ASP.NET State Service" (aspnet_state) - "Microsoft Corporation" - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe "ConfigFree Service" (CFSvcs) - "TOSHIBA CORPORATION" - C:\Programme\TOSHIBA\ConfigFree\CFSvcs.exe "Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Programme\Bonjour\mDNSResponder.exe "Google Software Updater" (gusvc) - "Google" - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe "Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Programme\Google\Update\GoogleUpdate.exe "ICQ Service" (ICQ Service) - ? - C:\Programme\ICQ6Toolbar\ICQ Service.exe "iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Programme\iPod\bin\iPodService.exe "Java Quick Starter" (JavaQuickStarterService) - "Sun Microsystems, Inc." - C:\Programme\Java\jre6\bin\jqs.exe "Kaspersky Anti-Virus Service" (AVP) - "Kaspersky Lab ZAO" - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe "LiveShare P2P Server 10" (RoxLiveShare10) - "Sonic Solutions" - C:\Programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe "Nero BackItUp Scheduler 3" (Nero BackItUp Scheduler 3) - "Nero AG" - C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe "NMSAccessU" (NMSAccessU) - ? - C:\Programme\CDBurnerXP\NMSAccessU.exe (File found, but it contains no detailed information) "PLFlash DeviceIoControl Service" (PLFlash DeviceIoControl Service) - "Prolific Technology Inc." - C:\WINDOWS\system32\IoctlSvc.exe "ProtexisLicensing" (ProtexisLicensing) - ? - C:\WINDOWS\system32\PSIService.exe "RegSrvc" (RegSrvc) - "Intel Corporation" - C:\WINDOWS\System32\RegSrvc.exe "Roxio Hard Drive Watcher 10" (RoxWatch10) - "Sonic Solutions" - C:\Programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe "Roxio UPnP Renderer 10" (Roxio UPnP Renderer 10) - "Sonic Solutions" - C:\Programme\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe "Roxio Upnp Server 10" (Roxio Upnp Server 10) - "Sonic Solutions" - C:\Programme\Roxio\Digital Home 10\RoxioUpnpService10.exe "RoxMediaDB10" (RoxMediaDB10) - "Sonic Solutions" - C:\Programme\Gemeinsame Dateien\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe "SessionLauncher" (SessionLauncher) - ? - C:\DOKUME~1\Claudia\LOKALE~1\Temp\DX9\SessionLauncher.exe (File not found) "Spectrum24 Event Monitor" (S24EventMonitor) - "Intel Corporation " - C:\WINDOWS\System32\S24EvMon.exe "USBDeviceService" (USBDeviceService) - ? - C:\Programme\Roxio\MyDVD\MyDVD\USBDeviceService.exe "Windows CardSpace" (idsvc) - "Microsoft Corporation" - c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe "Windows Presentation Foundation Font Cache 3.0.0.0" (FontCache3.0.0.0) - "Microsoft Corporation" - c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [Winlogon] -----( HKCU\Control Panel\IOProcs )----- "MVB" - ? - mvfs32.dll (File not found) -----( HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions )----- {c6dc5466-785a-11d2-84d0-00c04fb169f7} "Softwareinstallation" - ? - appmgmts.dll (File not found) -----( HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify )----- "klogon" - "Kaspersky Lab ZAO" - C:\WINDOWS\system32\klogon.dll "Sebring" - "Intel Corporation" - c:\WINDOWS\System32\LgNotify.dll [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "mdnsNSP" - "Apple Inc." - C:\Programme\Bonjour\mdnsNSP.dll ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru[/QUOTE] MBRCheck Zitat:
|
|
10.02.2011, 11:43
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exe Das MBR-Log ist unvollständig.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.02.2011, 19:33
| #11 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe Kanns leider nicht komplett durchlaufen lassen. Wird abgebrochen und Windows gibt mir die Meldung: MBRCheck.exe hat ein Problem festgestellt und muss beendet werden. Un nu? |
|
10.02.2011, 20:13
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exe Probiers bitte im abgesicherten Modus aus.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.02.2011, 19:40
| #13 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe Hallo und Guten Abend, so jetzt hats im abgesicherten Modus geklappt... Anbei mal das Log... LG Claudia |
|
11.02.2011, 20:10
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bekomme Malware nicht los... aktuell wars pdmn2.exeZitat:
 Hast Du noch andere Betriebssystem außer WinXP drauf? Wenn nicht, also WinXP das einzige installierte System ist: Starte den Rechner neu und wähle im Bootmenü die Wiederherstellungskonsole aus. Tipp dort den Befehl fixmbr ein (dann Enter, mit j bestätigen) danach den Befehl fixboot (dann Enter, mit j bestätigen) Mit exit (dann enter drücken) wird der Rechner neu gestartet. Führe im normalen Windowsmodus MBRCheck nochmals aus und poste das neue Log.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.02.2011, 20:31
| #15 |
| | Bekomme Malware nicht los... aktuell wars pdmn2.exe Also ich wüsste jetzt nicht das Windows 98 drauf sein soll... Komisch... |
|
| Themen zu Bekomme Malware nicht los... aktuell wars pdmn2.exe |
| aktion, aktuell, anhang, bereits, doofe, doofen, hallo zusammen, jahres, kis, liebe, lieben, log, malware, malwarebytes, malwarebytes log, runterzuladen, stelle, teile, troja, trojaner, trojanern, zusammen, ältere |
Linear-Darstellung
