New
#1
Microsoft-Windows-Wininit
can anyone shed some light on this please?
Log Name: System
Source: Microsoft-Windows-Wininit
Date: 04/06/2010 11:13:39 AM
Event ID: 11
Task Category: None
Level: Warning
Keywords:
User: SYSTEM
Computer: bry-PC
Description:
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Wininit" Guid="{206F6DEA-D3C5-4D10-BC72-989F03C8B84B}" />
<EventID>11</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x4000000000000000</Keywords>
<TimeCreated SystemTime="2010-06-04T10:13:39.601659900Z" />
<EventRecordID>179759</EventRecordID>
<Correlation />
<Execution ProcessID="700" ThreadID="744" />
<Channel>System</Channel>
<Computer>bry-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="StringCount">2</Data>
<Data Name="String">C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll</Data>
<Data Name="String">C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll</Data>
</EventData>
</Event>