You have clicked on
"Kaspersky Administration Kit Server" that belongs to "Kaspersky Security Center" made by "Kaspersky Lab ZAO"
Measures you can take regarding this program:

Measures you can take regarding this program:
Digital signature | File is signed |
Application has windows | No |
Internet server | Yes |
Uses the internet | Yes |
Imports potentialy dangerous functions | Yes |
Safety Rating | ![]() |
Technical information: |
|
Icon status | No tray icon |
Icon setting | Not in the system tray |
Executable file | C:\Program Files\Kaspersky Lab\Kaspersky Security Center\klserver.exe |
Version | 9.0.2786.0 |
Parent process | C:\Windows\System32\services.exe |
Can be uninstalled | Yes |
Encrypted | No |
Size on disk | 91.9 Kb |
Minimum recorded memory usage | 60.3 Mb |
Average recorded memory usage | 60.5 Mb |
Maximum recorded memory usage | 60.8 Mb |
Date when maximum memory usage occured | 20-05-2013 16:03:47 |
Minimum recorded CPU usage | 0% |
Average recorded CPU usage | 0% |
Maximum recorded CPU usage | 33% |
Date when maximum CPU usage occured | 20-05-2013 15:58:17 |
Started at | 20-05-2013 15:45:24 |
Total CPU time | 34 seconds |
Imported functions | [-] Imported from klcsrt2.dll ??_D?$basic_ostringstream@_WV?$char_trai... ??0?$basic_ostringstream@_WV?$char_trait... ??0?$basic_string@_WV?$char_traits@_W@st... ??0Init@ios_base@stlp_std@@QAE@XZ ??1?$allocator@_W@stlp_std@@QAE@XZ ??1?$basic_string@_WV?$char_traits@_W@st... ??1Init@ios_base@stlp_std@@QAE@XZ ??4?$basic_string@_WV?$char_traits@_W@st... ??6?$basic_ostream@_WV?$char_traits@_W@s... ?__stl_throw_length_error@stlp_std@@YAXP... ?_M_compute_next_size@?$basic_string@_WV... ?_M_construct_null@?$basic_string@_WV?$c... ?_M_deallocate_block@?$_String_base@_WV?... ?_M_put_nowiden@?$basic_ostream@_WV?$cha... ?_M_rest@?$_String_base@_WV?$allocator@_... ?allocate@?$_STLP_alloc_proxy@PA_W_WV?$a... ?allocate@__node_alloc@stlp_std@@SAPAXAA... ?append@?$basic_string@_WV?$char_traits@... ?assign@?$basic_string@_WV?$char_traits@... ?compare@?$char_traits@_W@stlp_std@@SAHP... ?deallocate@__node_alloc@stlp_std@@SAXPA... ?find@?$basic_string@_WV?$char_traits@_W... ?flush@?$basic_ostream@_WV?$char_traits@... ?get_allocator@?$basic_string@_WV?$char_... ?put@?$basic_ostream@_WV?$char_traits@_W... ?replace@?$basic_string@_WV?$char_traits... ?size@?$basic_string@_WV?$char_traits@_W... ?str@?$basic_ostringstream@_WV?$char_tra... ?widen@?$basic_ios@_WV?$char_traits@_W@s... [-] Imported from KERNEL32.dll AllocConsole CloseHandle CreateDirectoryW CreateEventW CreateMutexW CreateProcessW CreateThread DeleteCriticalSection DeleteFileW EnterCriticalSection ExitProcess FindClose FindFirstFileW FormatMessageW FreeConsole FreeEnvironmentStringsW FreeLibrary GetCurrentProcess GetCurrentProcessId GetCurrentThread GetCurrentThreadId GetEnvironmentStringsW GetFileAttributesW GetLastError GetModuleFileNameW GetModuleHandleW GetProcAddress GetProcessHeap GetStartupInfoW GetStdHandle GetSystemInfo GetSystemTimeAsFileTime GetTempFileNameW GetTickCount GetVersion GetVersionExW GlobalAlloc GlobalFree GlobalMemoryStatusEx HeapFree InitializeCriticalSection InterlockedCompareExchange InterlockedDecrement InterlockedExchange InterlockedIncrement IsDebuggerPresent LeaveCriticalSection LoadLibraryA LocalAlloc LocalFree lstrcmpW lstrlenW MoveFileW QueryPerformanceCounter RaiseException ResetEvent SetConsoleCtrlHandler SetCurrentDirectoryW SetErrorMode SetEvent SetFileApisToANSI SetUnhandledExceptionFilter Sleep TerminateProcess UnhandledExceptionFilter VirtualAlloc VirtualFree WaitForSingleObject [-] Imported from ADVAPI32.dll AdjustTokenPrivileges CloseEventLog CloseServiceHandle ControlService CopySid CreateServiceW DeleteService DeregisterEventSource GetLengthSid GetUserNameW IsValidSid LookupAccountNameW LookupPrivilegeValueW OpenEventLogW OpenProcessToken OpenSCManagerW OpenServiceW OpenThreadToken QueryServiceStatus RegCloseKey RegCreateKeyW RegDeleteKeyW RegDeleteValueW RegisterEventSourceW RegisterServiceCtrlHandlerExW RegNotifyChangeKeyValue RegOpenKeyExW RegOpenKeyW RegQueryValueExW RegSetValueExW ReportEventW SetServiceStatus SetThreadToken StartServiceCtrlDispatcherW StartServiceW [-] Imported from MSVCR90.dll ??_V@YAXPAX@Z ??0exception@std@@QAE@ABQBDH@Z ??0exception@std@@QAE@ABV01@@Z ??1exception@std@@UAE@XZ ??2@YAPAXI@Z ??3@YAXPAX@Z ?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z ?_set_new_mode@@YAHH@Z ?_type_info_dtor_internal_method@type_in... ?set_terminate@@YAP6AXXZP6AXXZ@Z ?terminate@@YAXXZ ?what@exception@std@@UBEPBDXZ __argc __CxxFrameHandler3 __dllonexit __iob_func __p__commode __p__fmode __set_app_type __setusermatherr __wargv __wgetmainargs _adjust_fdiv _amsg_exit _beginthreadex _cexit _configthreadlocale _controlfp_s _crt_debugger_hook _CxxThrowException _decode_pointer _encode_pointer _except_handler4_common _exit _fdopen _get_heap_handle _initterm_e _initterm _invoke_watson _lock _ltow _onexit _open_osfhandle _purecall _set_abort_behavior _set_error_mode _set_invalid_parameter_handler _set_purecall_handler _snwprintf _unlock _wcmdln _wcsicmp _wgetenv _wmakepath _wsetlocale _wsplitpath _XcptFilter exit free malloc memcpy memmove memset setvbuf signal wcsncpy wcsstr wprintf |
Some relevant texts from the exe file | [-] Click here to hide details http://ocsp.verisign.com0 http://crl.verisign.com/pca3-g5.crl04 http://logo.verisign.com/vslogo.gif04 https://www.verisign.com/rpa0 https://www.verisign.com/cps0* /http://csc3-2010-aia.verisign.com/CSC3-2010.cer0 http://ocsp.verisign.com0; /http://csc3-2010-crl.verisign.com/CSC3-2010.crl0D http://ocsp.verisign.com0> https://www.verisign.com/cps0 http://crl.verisign.com/pca3.crl0 0http://crl.verisign.com/ThawteTimestampingCA.crl0 http://crl.verisign.com/tss-ca.crl0 !This program cannot be run in DOS mode. klcsstd2.dll klcstr2.dll klcskca2.dll klcsagt.dll klcssrvp2.dll klcssrv.dll RPCRT4.dll VERSION.dll Secur32.dll srv_inst.dll USER32.dll bad allocation KLSTD::KLBaseQI Error information: KLINITMAIN::CInitMainBase::CInitMainBase kladminserver KLINITMAIN::CInitMainBase::~CInitMainBase Unhandled exception 0x hs) occured at address 0x 08X on thread 0x 08X in process Exception access violation occured at address 0x u while accessing address 0x KLSRV_CONNECTION_DATA KLEVP_MAX_VIRUS_EVENTS_FOR_OUTBREAK KLEVP_MAX_VIRUS_EVENTS_FOR_OUTBREAK_E KLEVP_MAX_VIRUS_EVENTS_FOR_OUTBREAK_P KLEVP_TEST_PERIOD_TO_OUTBREAK KLEVP_TEST_PERIOD_TO_OUTBREAK_E KLEVP_TEST_PERIOD_TO_OUTBREAK_P KLHST_WKS_GROUPID KLHST_WKS_HOSTNAME KLSSS_DEFAULT_SERVER DisplayName BuildNumber PRTS_TASK_STORAGE_LOCAL PRES_EVENTS_STORAGE_LOCAL SS_RUNTIME [EL] Cannot open event log. Error 0x Unable to install s installed. CreateService failed - OpenSCManager failed - Service installed s failed to stop. DeleteService failed - OpenService failed - Starting up s failed to start. s failed to start: Debugging RRL__FacelessWndProc_ SetServiceStatus() failed EventMessageFile TypesSupported CNTService2::WndProc(0x ...CNTService2::WndProc(), bHandled= PumpMessages: GetMessage returned -1, error: 0x WM_ENDSESSION(wParams=0x WM_QUERYENDSESSION -- agree Shutting down 9x SCM service CNTService2::ProcessEndSessionShutdown() kernel32.dll RegisterServiceProcess @purecall_hook Invalid_parameter_hook, expression: ls, function: kldb_mysql.dll kldb_mssql.dll fssync.dll ssleay32.dll libeay32.dll klcssrvp.dll klcskca.dll klcstr.dll klcsstd.dll klcsrt.dll CNTServiceThreadReporter(dwMaxTmt= Failed to create helper thread !!! ~CNTServiceThreadReporter HeapSetInformation KL Administration Server SeDebugPrivilege SeChangeNotifyPrivilege SeAssignPrimaryTokenPrivilege SeIncreaseQuotaPrivilege SeCreateTokenPrivilege Global\klserver-rwidfgvhwjif CNTService2::PumpMessages returned false ! Restarting due to DB connection error CServer::Shutdown() srvloc.dll CServer::PostInitialize Kaspersky Administration Server (foo) localhost@localdomain KLSRV_SSLMOBILE_SERVER_ADDRESS KLSRV_SP_OPEN_AKLWNGT_PORT KLSRV_AUTOPKG_DEF_SERVER_ADDRESS KLSRV_AUTOPKG_DEF_ALLOW_NETBIOS_NAME_SERVICE KLSRV_SP_MAX_EVENTS_IN_DB VSRV_MUST_CREATE_TEST_SERVERS AllowForce Registration succeeded CServer::OnUnregServer A@klnacsrv.dll advapi32.dll msvcrt.dll up2date.exe klbackup.exe klnagent.exe klserver.exe klcsnagt.dll OS version: u, CSDVersion: u, IsWow64: u, Affinity: u, Architecture: u, Revision: Physical memory total: lf Mb, Physical memory available: lf Mb, Virtual memory total: lf Mb, Virtual memory available: version is Environment: KLSTD::TraceVersions ..\..\common\trace_versions.cpp KLSTD::CTraceWatch::Destroy yRegistry key changed!!! Operating system: Microsoft Windows NT Operating system: Microsoft Windows 9x KLSTD::CTraceWatch::UpdateTracing TraceFile: Cannot revert thread token !!! EXCEPTION_ACCESS_VIOLATION EXCEPTION_DATATYPE_MISALIGNMENT EXCEPTION_BREAKPOINT EXCEPTION_SINGLE_STEP EXCEPTION_ARRAY_BOUNDS_EXCEEDED EXCEPTION_FLT_DENORMAL_OPERAND EXCEPTION_FLT_DIVIDE_BY_ZERO EXCEPTION_FLT_INEXACT_RESULT EXCEPTION_FLT_INVALID_OPERATION EXCEPTION_FLT_OVERFLOW EXCEPTION_FLT_STACK_CHECK EXCEPTION_FLT_UNDERFLOW EXCEPTION_INT_DIVIDE_BY_ZERO EXCEPTION_INT_OVERFLOW EXCEPTION_PRIV_INSTRUCTION EXCEPTION_IN_PAGE_ERROR EXCEPTION_ILLEGAL_INSTRUCTION EXCEPTION_NONCONTINUABLE_EXCEPTION EXCEPTION_STACK_OVERFLOW EXCEPTION_INVALID_DISPOSITION EXCEPTION_GUARD_PAGE EXCEPTION_INVALID_HANDLE kldumper.exe Dumped to... WinSta0\Default Unhandled exception ..\..\common\win32_privilege.cpp Win32_SetupCurrentProcessPrivileges KLSTD::Win32_SetupCurrentProcessPrivileges System\CurrentControlSet\Control\ProductOptions ProductSuite Terminal Server o:\CS AdminKit\development2\bin\dll\klserver.pdb ?SayFailure2@KLERR@@YAXHPAVError@1@PB_WPBDH2@Z KLERR_CreateError2 KLERR_CreateError KLSTD_FormatMessage KLERR_LocFormatErrorString KLERR_FindLocString ?KLSTD_ReportError@@YA_NPB_WH@Z KLERR_IsErrorLocalized KLSTD_StParseCommandineW ?KLSTD_Terminate@@YAXXZ ?KLSTD_SetTerminateCallback@@YAXP6AXXZ@Z ?klak_winmajor@@YIIXZ ?KLSTD_GetDiagOptionsW@@YAXHPAPA_WPB_W1AAK@Z ?IsTraceStarted@KLSTD@@YA_NPAH@Z ?KLSTD_StGetProductKeyW@@YA?AV? KLSTD_ThrowLastErrorCode KLSTD_CreateCriticalSection ?InitTrace@KLSTD@@YAXXZ KLSTD_Initialize KLSTD_Deinitialize ?DeinitTrace@KLSTD@@YAXXZ ?klak_winminor@@YIIXZ ?GetSuffix@KLSTD@@YA?AV? ?CreateWinSyncObjUniqName@KLSTD@@YAPB_WPB_WAAV? ?SetPoolSizeBase@KLPAR@@YAXI@Z ?SetParamsEntryPool@KLPAR@@YAXI@Z KLSTD_ThrowLastError ?KLSTD_ClearShutdownFlag@@YAXXZ ?KLSTD_CheckLoadedModules@@YAXPBQB_WI@Z ?KLSTD_SetShutdownFlag@@YAXXZ ?KLSTD_SetDefaultProductAndVersion@@YAXABV? ?KLSTD_SetGlobalReporter@@YAXPAVReporter@KLSTD@@@Z ?KLSTD_GetHostAndDomainName@@YAXAAV? ?KLSTD_IsWow64@@YA_NXZ ?StopTrace@KLSTD@@YAXXZ ?KLSTD_GetTraceInfoW@@YAXHPAPA_WPB_W1AAV? ?KLTR_GetTransport@@YAPAVTransport@KLTRAP@@XZ ?CreateDefaultSsCorruptHandler@KLPRSS@@YA?AV? CAutoPtr@VSsCorruptHandler@KLPRSS@@@KLSTD@@XZ ?KLPRCI_CreateInstanceId@@YA?AV? ?KLSSS_SetDefaultServer@@YAXABV? ?KLSSS_RemoveSsServer@@YA_NABV? ?KLPRSS_UnregisterComponent@@YAXABV? ?KLAGINST_Initialize@@YAXXZ ?KLAGINST_ResumeTsWorker@@YA_NPAX_N@Z ?KLAGINST_UnloadAgent@@YAXPAX@Z ?KLAGINST_Deinitialize@@YAXXZ ?KLCSSRVP_Initialize@@YAXXZ ?KLCSSRVP_Deinitialize@@YAXXZ ?IsConnectionBroken@KLDB@@YA_NXZ ?KLCSSRV_Initialize@@YAXXZ ?KLCSSRV_Deinitialize@@YAXXZ ?KLSRV_PublishRuntimeError@@YAXPB_W@Z UuidCreate UuidToStringW GetFileVersionInfoW VerQueryValueW GetFileVersionInfoSizeW GetUserNameExW UpgradeServer AdjustServerAccount UnregisterServer DestroyWindow DefWindowProcW RegisterClassW CreateWindowExW DispatchMessageW MsgWaitForMultipleObjects MessageBoxW CoInitializeEx CoUninitialize GetProcessMemoryInfo .?AVtype_info@@ .?AV_com_error@@ .?AVCDbgTimeMeasurer2@KLDBG@@ \VarFileInfo\Translation \StringFileInfo\ FileDescription FileVersion InternalName LegalCopyright OriginalFilename ProductName ProductVersion SpecialBuild .PAVError@KLERR@@ .?AVexception@std@@ .?AVCNTService@@ .?AVReporter@KLSTD@@ .?AVCNTService2@KLSTD@@ CPointer@VCNTServiceThreadReporter@@@KLSTD@@ .?AVCriticalSection@KLSTD@@ .?AVCUserDumpCS@?A0xbf9665e7@@ VS_VERSION_INFO StringFileInfo CompanyName Kaspersky Lab ZAO 2011 Kaspersky Lab ZAO. All Rights Reserved. Kaspersky Security Center Kaspersky Administration Kit Server VarFileInfo Translation urn:schemas-microsoft-com:asm.v1 manifestVersion= <trustInfo xmlns= urn:schemas-microsoft-com:asm.v3 <security> uiAccess= ></requestedExecutionLevel> </security> </trustInfo> processorArchitecture= publicKeyToken= ></assemblyIdentity> VeriSign Time Stamping Services CA0 +VeriSign Time Stamping Services Signer - G20 Durbanville1 Thawte Certification1 Thawte Timestamping CA0 .Class 3 Public Primary Certification Authority0 VeriSign Trust Network1:08 image/gif0!0 Washington1 Microsoft Corporation1)0 Microsoft Code Verification Root0 VeriSign Trust Network1;09 VeriSign Class 3 Code Signing 2010 CA0 Technical dept1 VeriSign Class 3 Code Signing 2010 CA VeriSign Time Stamping Services CA |