EQ2Interface - View Single Post

DesiusG · #9 03-17-2016, 09:15 PM

Therendil, can you shed some light on what the utility is trying to do here?

This is behavior flagged by Comodo for approval.

Code:

Date	Action	Target						
3/17/2016 20:58:43	Access Memory	C:\Windows\explorer.exe						
3/17/2016 20:58:43	Access COM Interface	C:\Windows\SysWOW64\dllhost.exe						
3/17/2016 20:58:41	Access COM Interface	C:\Windows\SysWOW64\dllhost.exe						
3/17/2016 20:58:37	Access Memory	C:\Windows\explorer.exe						
3/17/2016 20:58:34	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:29	Modify Key	HKLM\Software\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:28	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:24	Modify Key	HKLM\Software\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:21	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:21	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:21	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:20	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:15	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\trust						
3/17/2016 20:58:13	Modify Key	HKLM\Software\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:11	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:07	Modify Key	HKLM\Software\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:05	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:05	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:58:03	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:57:59	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\SmartCardRoot						
3/17/2016 20:57:59	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\TrustedPeople						
3/17/2016 20:57:55	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\SmartCardRoot						
3/17/2016 20:57:54	Modify Key	HKLM\Software\Microsoft\SystemCertificates\AuthRoot						
3/17/2016 20:57:54	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:54	Modify Key	HKLM\Software\Microsoft\SystemCertificates\SmartCardRoot						
3/17/2016 20:57:53	Modify Key	HKLM\Software\Microsoft\SystemCertificates\SmartCardRoot						
3/17/2016 20:57:49	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:46	Modify Key	HKLM\Software\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:45	Modify Key	HKLM\Software\Microsoft\SystemCertificates\AuthRoot						
3/17/2016 20:57:41	Modify Key	HKLM\Software\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:38	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:38	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:37	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\Root						
3/17/2016 20:57:33	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:30	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:30	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:30	Modify Key	HKLM\Software\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:29	Modify Key	HKLM\Software\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:25	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:22	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\CA						
3/17/2016 20:57:22	Modify Key	HKLM\SOFTWARE\Policies\Microsoft						
3/17/2016 20:57:21	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\Disallowed						
3/17/2016 20:57:17	Modify Key	HKLM\SOFTWARE\Policies\Microsoft						
3/17/2016 20:57:14	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft						
3/17/2016 20:57:14	Modify Key	HKLM\Software\Microsoft\SystemCertificates\CA						
3/17/2016 20:57:13	Modify Key	HKLM\Software\Policies\Microsoft\SystemCertificates\CA						
3/17/2016 20:57:09	Modify Key	HKLM\Software\Microsoft\SystemCertificates\CA						
3/17/2016 20:57:06	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\CA						
3/17/2016 20:57:05	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft						
3/17/2016 20:57:01	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Policies\Microsoft\SystemCertificates\CA						
3/17/2016 20:56:58	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\My						
3/17/2016 20:56:58	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\CA						
3/17/2016 20:56:57	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\CA						
3/17/2016 20:56:52	Modify Key	HKUS\S-1-5-21-2794694279-3940344012-3234229390-1000\Software\Microsoft\SystemCertificates\My