GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-05-31 00:29:43 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 SAMSUNG_HD252HJ rev.1AC01113 Running: gmer.exe; Driver: C:\DOCUME~1\UKASZ~1\USTAWI~1\Temp\pxtdipow.sys ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0xB44FE58C] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwClose [0xB448B160] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwConnectPort [0xB44FF922] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateEvent [0xB44FFE94] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwCreateFile [0xB448A868] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwCreateKey [0xB4487320] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateMutant [0xB44FFD6C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateNamedPipeFile [0xB44FE192] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreatePort [0xB44FFC28] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwCreateProcess [0xB4489E90] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwCreateProcessEx [0xB4489D9C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSection [0xB44FE34E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSemaphore [0xB44FFFC6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateSymbolicLinkObject [0xB4501C08] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwCreateThread [0xB448A3FC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwCreateWaitablePort [0xB44FFCCA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDebugActiveProcess [0xB45015FA] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwDeleteFile [0xB448B210] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwDeleteKey [0xB4487786] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwDeleteValueKey [0xB4487846] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDeviceIoControlFile [0xB44FF576] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwDuplicateObject [0xB45025CA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateKey [0xB44FDECA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwEnumerateValueKey [0xB44FDF74] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwFsControlFile [0xB44FF382] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadDriver [0xB450168C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey [0xB44FD412] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwLoadKey2 [0xB44FD424] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwMapViewOfSection [0xB4501CBC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwNotifyChangeKey [0xB44FE0C0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenEvent [0xB44FFF36] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwOpenFile [0xB448AB54] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwOpenKey [0xB44875CA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenMutant [0xB44FFE04] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenProcess [0xB44FE792] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSection [0xB4501C32] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenSemaphore [0xB4500068] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwOpenThread [0xB44FE6B6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryKey [0xB44FE01E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryMultipleValueKey [0xB44FDC46] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQuerySection [0xB4501FD4] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueryValueKey [0xB44FD896] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwQueueApcThread [0xB4501922] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRenameKey [0xB44FDB0E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplaceKey [0xB44FD2B0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyPort [0xB45003F2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0xB45002B8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0xB450139A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwRestoreKey [0xB4504E2C] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwResumeThread [0xB448A4EC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSaveKey [0xB44FD248] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSecureConnectPort [0xB44FF65C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetContextThread [0xB44FECC8] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwSetInformationFile [0xB448AE8C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetInformationToken [0xB4500C4A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSecurityObject [0xB4501786] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSetSystemInformation [0xB4502114] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwSetValueKey [0xB44879BC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendProcess [0xB45021F8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSuspendThread [0xB4502320] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwSystemDebugControl [0xB4501526] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateProcess [0xB44FE90A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwTerminateThread [0xB44FE860] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwUnmapViewOfSection [0xB4501E8A] SSDT \SystemRoot\system32\drivers\SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ZwWriteFile [0xB448ADE0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) ZwWriteVirtualMemory [0xB44FE9EA] Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) FsRtlCheckLockForReadAccess Code \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) IoIsOperationSynchronous ---- Kernel code sections - GMER 1.0.15 ---- .text ntkrnlpa.exe!FsRtlCheckLockForReadAccess 804EAF84 5 Bytes JMP B44F34DC \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) .text ntkrnlpa.exe!IoIsOperationSynchronous 804EF92C 5 Bytes JMP B44F38B6 \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wnet_x86]/Kaspersky Lab) .text ntkrnlpa.exe!ZwCallbackReturn + 2C94 8050454C 12 Bytes [28, FC, 4F, B4, 90, 9E, 48, ...] .text ntkrnlpa.exe!ZwCallbackReturn + 2CA4 8050455C 16 Bytes [4E, E3, 4F, B4, C6, FF, 4F, ...] .text ntkrnlpa.exe!ZwCallbackReturn + 2D60 80504618 12 Bytes [8C, 16, 50, B4, 12, D4, 4F, ...] .text ntkrnlpa.exe!ZwCallbackReturn + 2EDC 80504794 16 Bytes [0E, DB, 4F, B4, B0, D2, 4F, ...] .text ntkrnlpa.exe!ZwCallbackReturn + 2FD0 80504888 12 Bytes [F8, 21, 50, B4, 20, 23, 50, ...] .text ... .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB713A380, 0x8D6CD5, 0xE8000020] ---- User code sections - GMER 1.0.15 ---- ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch; ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] USER32.dll!AlignRects 7E362A78 4 Bytes [70, 11, 33, 6D] .text C:\Program Files\Mozilla Firefox\firefox.exe[1632] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 0128C930 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\firefox.exe[1632] kernel32.dll!VirtualAlloc 7C809AF1 5 Bytes JMP 014BE0AA C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\firefox.exe[1632] kernel32.dll!MapViewOfFile 7C80B9A5 5 Bytes JMP 014BE083 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\firefox.exe[1632] USER32.dll!GetWindowInfo 7E37C49C 5 Bytes JMP 0140BEC9 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\firefox.exe[1632] GDI32.dll!CreateDIBSection 77F19E19 5 Bytes JMP 014BE00D C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch; ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] USER32.dll!AlignRects 7E362A78 4 Bytes [70, 11, 33, 6D] .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3560] USER32.dll!SetWindowLongA 7E37C29D 5 Bytes JMP 10665EE6 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3560] USER32.dll!SetWindowLongW 7E37C2BB 5 Bytes JMP 10665E78 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3560] USER32.dll!GetWindowInfo 7E37C49C 5 Bytes JMP 10454822 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3560] USER32.dll!TrackPopupMenu 7E3B531E 5 Bytes JMP 10454DD6 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation) ---- Kernel IAT/EAT - GMER 1.0.15 ---- IAT \SystemRoot\system32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] [B3F99DC0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) IAT \SystemRoot\system32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] [B3F99DC0] \??\C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 00030240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 000302B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 00030320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 00030390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00C90860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00C908D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00C90940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00C909B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00C90A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C90A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 00030630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 000306A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 00030710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 00030780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 000307F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00C90B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00C90B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00C90BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 00030860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C90C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00C90CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00C90D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00C90DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00C90E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 000309B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 00030A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 00030A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 00030B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 00030B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C90E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00C90EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00C90F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 7D1F05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 7D1F0630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 00030BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 00030C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 00030CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 7D1F0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 7D1F07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 7D1F08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 7D1F09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 00030EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 00030F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 7D1F0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 7D1E0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7D1E0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 00CA0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CA02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00CA0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00CA0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00CA0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00CA0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00CA04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00CA0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 7D1E0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 7D1E09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 7D1E0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 7D1E0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00CA05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7D1E0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7D1E0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7D1E0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CA0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00CA0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00CA07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00CA0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00CA08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00CA0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00CA09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7D1E0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00CA0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00CA0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00CA0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 003D0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CA0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00CA0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00CA0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00CA0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00CA0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00CA0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00CA0E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00CA0E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00CA0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 003D0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 003D00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00CA0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00CB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00CB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00CB00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00CB0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00CB01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00CB0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00CB02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 003D0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00CB0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00CB0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00CB0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 003D0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CB0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 003D0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00CC0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00CC0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00CC0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00CC0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00CC0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00CD0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00CD0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00CD00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00CD0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00CD01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00CD0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00CD02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00CD0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7D1E0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7D1E0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7D1E0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7D1E0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[236] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 003C0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 003C02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 003C0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 003C0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00AB0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00AB08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00AB0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00AB09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00AB0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AB0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!CreateThread] 003C0630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 003C06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 003C0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 003C0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 003C07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00AB0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00AB0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00AB0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!CreateThread] 003C0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AB0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00AB0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00AB0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00AB0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00AB0E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 003C09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 003C0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 003C0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 003C0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 003C0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AB0E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00AB0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00AB0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 7D1F05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 7D1F0630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 003C0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 003C0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateThread] 003C0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 7D1F0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 7D1F07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 7D1F08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 7D1F09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 003C0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 003C0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 7D1F0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 7D1E0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 7D1E0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 00AC0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AC02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00AC0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00AC0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00AC0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00AC0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00AC04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00AC0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 7D1E0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 7D1E09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 7D1E0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateThread] 7D1E0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00AC05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7D1E0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7D1E0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7D1E0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AC0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00AC0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00AC07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00AC0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00AC08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00AC0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00AC09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateThread] 7D1E0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00AC0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00AC0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00AC0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 003D0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AC0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00AC0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00AC0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00AC0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00AC0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00AC0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00AC0E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00AC0E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00AC0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 003D0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 003D00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00AC0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00AD0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00AD0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00AD00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00AD0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00AD01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00AD0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00AD02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateThread] 003D0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00AD0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00AD0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00AD0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 003D0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AD0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 003D0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00AE0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00AE04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00AE0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00AE05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00AE09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00AE0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00AE0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00AE0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00AE0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00AE0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00AE0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00AE0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00AE0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7D1E0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7D1E0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7D1E0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7D1E0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!HeapDestroy] 7D1E0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlFreeHeap] 7D1E0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlAllocateHeap] 7D1E0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 7D1F0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] 7D1F0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!CreateThread] 7D1E01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetErrorMode] 7D1F0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetProcAddress] 7D1F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[2024] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F01D0 ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\Tcpip \Device\Ip SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Tcp SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Udp SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\RawIp SbFw.sys (Sunbelt Personal Firewall driver/Sunbelt Software, Inc.) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xC7 0x65 0x86 0x79 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xC7 0x65 0x86 0x79 ... Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Deskjet F4100 series\HPWarningMsg\MaxDPI@A\1u\0k\0a\0s\0z 0x00 0x00 0x00 0x00 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Print\Printers\HP Deskjet F4100 series\HPWarningMsg\PhotoStacking@A\1u\0k\0a\0s\0z 0x00 0x00 0x00 0x00 ---- EOF - GMER 1.0.15 ----