Mehrere Trojaner gefunden "trojan-spy.win32.greenscreen"....

Fako · 13.10.2008, 17:45

Code:

ATTFilter

- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\midimap.dll
+ 2008-04-14 02:22:14	18,944	----a-w	C:\WINDOWS\system32\midimap.dll
- 2006-02-28 12:00:00	60,928	----a-w	C:\WINDOWS\system32\miglibnt.dll
+ 2008-04-14 02:22:14	60,928	----a-w	C:\WINDOWS\system32\miglibnt.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\mimefilt.dll
+ 2008-04-14 02:22:14	29,696	----a-w	C:\WINDOWS\system32\mimefilt.dll
- 2006-02-28 12:00:00	586,240	----a-w	C:\WINDOWS\system32\mlang.dll
+ 2008-04-14 02:22:14	586,240	----a-w	C:\WINDOWS\system32\mlang.dll
- 2006-02-28 12:00:00	815,616	----a-w	C:\WINDOWS\system32\mmc.exe
+ 2008-04-14 02:22:52	1,415,168	----a-w	C:\WINDOWS\system32\mmc.exe
- 2006-02-28 12:00:00	77,824	----a-w	C:\WINDOWS\system32\mmcbase.dll
+ 2008-04-14 02:22:14	169,984	----a-w	C:\WINDOWS\system32\mmcbase.dll
+ 2008-04-14 02:22:14	397,312	------w	C:\WINDOWS\system32\mmcex.dll
+ 2008-04-14 02:22:15	106,496	------w	C:\WINDOWS\system32\mmcfxcommon.dll
- 2006-02-28 12:00:00	1,197,568	----a-w	C:\WINDOWS\system32\mmcndmgr.dll
+ 2008-04-14 02:22:15	1,877,504	----a-w	C:\WINDOWS\system32\mmcndmgr.dll
+ 2008-04-14 02:22:52	33,792	------w	C:\WINDOWS\system32\mmcperf.exe
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\system32\mmcshext.dll
+ 2008-04-14 02:22:15	61,440	----a-w	C:\WINDOWS\system32\mmcshext.dll
- 2006-02-28 12:00:00	17,920	----a-w	C:\WINDOWS\system32\mmfutil.dll
+ 2008-04-14 02:22:15	17,920	----a-w	C:\WINDOWS\system32\mmfutil.dll
- 2006-02-28 12:00:00	34,560	----a-w	C:\WINDOWS\system32\mnmdd.dll
+ 2008-04-14 02:22:15	34,560	----a-w	C:\WINDOWS\system32\mnmdd.dll
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\mnmsrvc.exe
+ 2008-04-14 02:22:52	32,768	----a-w	C:\WINDOWS\system32\mnmsrvc.exe
- 2006-02-28 12:00:00	209,408	----a-w	C:\WINDOWS\system32\mobsync.dll
+ 2008-04-14 02:22:15	209,408	----a-w	C:\WINDOWS\system32\mobsync.dll
- 2006-02-28 12:00:00	144,384	----a-w	C:\WINDOWS\system32\mobsync.exe
+ 2008-04-14 02:22:52	144,384	----a-w	C:\WINDOWS\system32\mobsync.exe
- 2006-02-28 12:00:00	156,672	----a-w	C:\WINDOWS\system32\modemui.dll
+ 2008-04-14 02:22:15	156,672	----a-w	C:\WINDOWS\system32\modemui.dll
- 2006-02-28 12:00:00	15,872	----a-w	C:\WINDOWS\system32\more.com
+ 2008-04-14 02:23:07	16,896	----a-w	C:\WINDOWS\system32\more.com
- 2006-02-28 12:00:00	216,064	----a-w	C:\WINDOWS\system32\moricons.dll
+ 2008-04-13 16:45:30	216,064	----a-w	C:\WINDOWS\system32\moricons.dll
- 2006-02-28 12:00:00	310,272	----a-w	C:\WINDOWS\system32\mp43dmod.dll
+ 2008-04-14 02:22:15	310,272	----a-w	C:\WINDOWS\system32\mp43dmod.dll
- 2006-02-28 12:00:00	384,512	----a-w	C:\WINDOWS\system32\mp4sdmod.dll
+ 2008-04-14 02:22:15	384,512	----a-w	C:\WINDOWS\system32\mp4sdmod.dll
- 2006-02-28 12:00:00	240,640	----a-w	C:\WINDOWS\system32\mpg4dmod.dll
+ 2008-04-14 02:22:15	240,640	----a-w	C:\WINDOWS\system32\mpg4dmod.dll
- 2006-02-28 12:00:00	124,928	----a-w	C:\WINDOWS\system32\mplay32.exe
+ 2008-04-14 02:22:53	124,928	----a-w	C:\WINDOWS\system32\mplay32.exe
- 2006-02-28 12:00:00	59,904	----a-w	C:\WINDOWS\system32\mpr.dll
+ 2008-04-14 02:22:15	59,904	----a-w	C:\WINDOWS\system32\mpr.dll
- 2006-02-28 12:00:00	87,040	----a-w	C:\WINDOWS\system32\mprapi.dll
+ 2008-04-14 02:22:15	87,040	----a-w	C:\WINDOWS\system32\mprapi.dll
- 2006-02-28 12:00:00	49,152	----a-w	C:\WINDOWS\system32\mprdim.dll
+ 2008-04-14 02:22:15	53,248	----a-w	C:\WINDOWS\system32\mprdim.dll
- 2007-07-06 12:49:58	138,240	----a-w	C:\WINDOWS\system32\mqad.dll
+ 2008-04-14 02:22:15	138,240	----a-w	C:\WINDOWS\system32\mqad.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\mqbkup.exe
+ 2008-04-14 02:22:53	19,968	----a-w	C:\WINDOWS\system32\mqbkup.exe
- 2007-07-06 12:49:58	47,104	----a-w	C:\WINDOWS\system32\mqdscli.dll
+ 2008-04-14 02:22:15	47,616	----a-w	C:\WINDOWS\system32\mqdscli.dll
- 2007-07-06 12:49:58	16,896	----a-w	C:\WINDOWS\system32\mqise.dll
+ 2008-04-14 02:22:15	16,896	----a-w	C:\WINDOWS\system32\mqise.dll
- 2006-02-28 12:00:00	89,088	----a-w	C:\WINDOWS\system32\mqlogmgr.dll
+ 2008-04-14 02:22:15	89,088	----a-w	C:\WINDOWS\system32\mqlogmgr.dll
- 2006-02-28 12:00:00	225,280	----a-w	C:\WINDOWS\system32\mqoa.dll
+ 2008-04-14 02:22:15	225,280	----a-w	C:\WINDOWS\system32\mqoa.dll
- 2007-07-06 12:49:58	660,992	----a-w	C:\WINDOWS\system32\mqqm.dll
+ 2008-04-14 02:22:15	663,040	----a-w	C:\WINDOWS\system32\mqqm.dll
- 2007-07-06 12:49:58	177,152	----a-w	C:\WINDOWS\system32\mqrt.dll
+ 2008-04-14 02:22:15	177,152	----a-w	C:\WINDOWS\system32\mqrt.dll
- 2006-02-28 12:00:00	123,392	----a-w	C:\WINDOWS\system32\mqrtdep.dll
+ 2008-04-14 02:22:15	123,904	----a-w	C:\WINDOWS\system32\mqrtdep.dll
- 2007-07-06 12:49:58	95,744	----a-w	C:\WINDOWS\system32\mqsec.dll
+ 2008-04-14 02:22:15	95,744	----a-w	C:\WINDOWS\system32\mqsec.dll
- 2006-02-28 12:00:00	517,632	----a-w	C:\WINDOWS\system32\mqsnap.dll
+ 2008-04-14 02:22:15	517,632	----a-w	C:\WINDOWS\system32\mqsnap.dll
- 2006-02-28 12:00:00	4,608	----a-w	C:\WINDOWS\system32\mqsvc.exe
+ 2008-04-14 02:22:53	4,608	----a-w	C:\WINDOWS\system32\mqsvc.exe
- 2006-02-28 12:00:00	117,248	----a-w	C:\WINDOWS\system32\mqtgsvc.exe
+ 2008-04-14 02:22:53	117,248	----a-w	C:\WINDOWS\system32\mqtgsvc.exe
- 2006-02-28 12:00:00	186,880	----a-w	C:\WINDOWS\system32\mqtrig.dll
+ 2008-04-14 02:22:15	187,392	----a-w	C:\WINDOWS\system32\mqtrig.dll
- 2007-07-06 12:49:58	48,640	----a-w	C:\WINDOWS\system32\mqupgrd.dll
+ 2008-04-14 02:22:15	49,152	----a-w	C:\WINDOWS\system32\mqupgrd.dll
- 2007-07-06 12:49:58	533,504	----a-w	C:\WINDOWS\system32\mqutil.dll
+ 2008-04-14 02:22:15	533,504	----a-w	C:\WINDOWS\system32\mqutil.dll
- 2006-02-28 12:00:00	72,192	----a-w	C:\WINDOWS\system32\msacm32.dll
+ 2008-04-14 02:22:15	72,192	----a-w	C:\WINDOWS\system32\msacm32.dll
- 2006-02-28 12:00:00	3,584	----a-w	C:\WINDOWS\system32\msafd.dll
+ 2008-04-14 02:20:57	3,584	----a-w	C:\WINDOWS\system32\msafd.dll
- 2006-02-28 12:00:00	86,016	----a-w	C:\WINDOWS\system32\msapsspc.dll
+ 2008-04-14 02:22:16	86,016	----a-w	C:\WINDOWS\system32\msapsspc.dll
- 2006-02-28 12:00:00	57,344	----a-w	C:\WINDOWS\system32\msasn1.dll
+ 2008-04-14 02:22:16	57,344	----a-w	C:\WINDOWS\system32\msasn1.dll
- 2008-06-24 16:22:31	74,240	----a-w	C:\WINDOWS\system32\mscms.dll
+ 2008-06-24 16:42:48	74,240	----a-w	C:\WINDOWS\system32\mscms.dll
- 2006-02-28 12:00:00	69,632	----a-w	C:\WINDOWS\system32\msconf.dll
+ 2008-04-14 02:22:16	69,632	----a-w	C:\WINDOWS\system32\msconf.dll
- 2006-02-28 12:00:00	12,288	----a-w	C:\WINDOWS\system32\mscpx32r.dLL
+ 2008-04-13 17:26:07	12,288	----a-w	C:\WINDOWS\system32\mscpx32r.dll
- 2006-02-28 12:00:00	36,864	----a-w	C:\WINDOWS\system32\mscpxl32.dLL
+ 2008-04-14 02:22:16	36,864	----a-w	C:\WINDOWS\system32\mscpxl32.dll
- 2008-02-26 11:59:49	294,912	----a-w	C:\WINDOWS\system32\msctf.dll
+ 2008-04-14 02:22:16	297,984	----a-w	C:\WINDOWS\system32\msctf.dll
- 2006-02-28 12:00:00	69,120	----a-w	C:\WINDOWS\system32\MSCTFP.dll
+ 2008-04-14 02:22:16	68,608	----a-w	C:\WINDOWS\system32\msctfp.dll
- 2006-02-28 12:00:00	118,784	----a-w	C:\WINDOWS\system32\msdadiag.dll
+ 2008-04-14 02:22:16	118,784	----a-w	C:\WINDOWS\system32\msdadiag.dll
- 2006-02-28 12:00:00	151,552	----a-w	C:\WINDOWS\system32\msdart.dll
+ 2008-04-14 02:22:16	151,552	----a-w	C:\WINDOWS\system32\msdart.dll
- 2006-02-28 12:00:00	14,336	----a-w	C:\WINDOWS\system32\msdmo.dll
+ 2008-04-14 02:22:16	14,336	----a-w	C:\WINDOWS\system32\msdmo.dll
- 2006-02-28 12:00:00	6,144	----a-w	C:\WINDOWS\system32\msdtc.exe
+ 2008-04-14 02:22:53	6,144	----a-w	C:\WINDOWS\system32\msdtc.exe
- 2006-02-28 12:00:00	58,880	----a-w	C:\WINDOWS\system32\msdtclog.dll
+ 2008-04-14 02:22:16	58,880	----a-w	C:\WINDOWS\system32\msdtclog.dll
- 2006-03-01 19:43:33	426,496	----a-w	C:\WINDOWS\system32\msdtcprx.dll
+ 2008-04-14 02:22:16	427,008	----a-w	C:\WINDOWS\system32\msdtcprx.dll
- 2006-03-01 19:43:33	956,416	----a-w	C:\WINDOWS\system32\msdtctm.dll
+ 2008-04-14 02:22:16	956,928	----a-w	C:\WINDOWS\system32\msdtctm.dll
- 2006-03-01 19:43:33	161,280	----a-w	C:\WINDOWS\system32\msdtcuiu.dll
+ 2008-04-14 02:22:16	161,792	----a-w	C:\WINDOWS\system32\msdtcuiu.dll
- 2006-02-28 12:00:00	4,126	----a-w	C:\WINDOWS\system32\msdxmlc.dll
+ 2008-04-14 02:20:58	4,126	----a-w	C:\WINDOWS\system32\msdxmlc.dll
- 2006-11-27 14:54:15	539,136	----a-w	C:\WINDOWS\system32\msftedit.dll
+ 2008-04-14 02:22:16	539,136	----a-w	C:\WINDOWS\system32\msftedit.dll
- 2006-02-28 12:00:00	1,002,496	----a-w	C:\WINDOWS\system32\msgina.dll
+ 2008-04-14 02:22:16	1,005,568	----a-w	C:\WINDOWS\system32\msgina.dll
- 2006-02-28 12:00:00	33,792	----a-w	C:\WINDOWS\system32\msgsvc.dll
+ 2008-04-14 02:22:16	33,792	----a-w	C:\WINDOWS\system32\msgsvc.dll
- 2006-02-28 12:00:00	192,512	----a-w	C:\WINDOWS\system32\msh261.drv
+ 2008-04-14 02:23:08	192,512	----a-w	C:\WINDOWS\system32\msh261.drv
- 2006-02-28 12:00:00	299,008	----a-w	C:\WINDOWS\system32\msh263.drv
+ 2008-04-14 02:23:08	299,008	----a-w	C:\WINDOWS\system32\msh263.drv
- 2007-04-18 16:13:24	2,854,400	----a-w	C:\WINDOWS\system32\msi.dll
+ 2008-04-14 02:22:17	2,843,136	----a-w	C:\WINDOWS\system32\msi.dll
- 2006-02-28 12:00:00	51,712	----a-w	C:\WINDOWS\system32\msident.dll
+ 2008-04-14 02:22:17	51,712	----a-w	C:\WINDOWS\system32\msident.dll
- 2006-02-28 12:00:00	6,656	----a-w	C:\WINDOWS\system32\msidle.dll
+ 2008-04-14 02:22:17	6,656	----a-w	C:\WINDOWS\system32\msidle.dll
- 2006-02-28 12:00:00	252,928	----a-w	C:\WINDOWS\system32\msieftp.dll
+ 2008-04-14 02:22:17	252,928	----a-w	C:\WINDOWS\system32\msieftp.dll
- 2005-05-04 12:45:36	78,848	----a-w	C:\WINDOWS\system32\msiexec.exe
+ 2008-04-14 02:22:53	78,848	----a-w	C:\WINDOWS\system32\msiexec.exe
- 2005-05-04 12:45:36	271,360	----a-w	C:\WINDOWS\system32\msihnd.dll
+ 2008-04-14 02:22:17	271,360	----a-w	C:\WINDOWS\system32\msihnd.dll
- 2006-02-28 12:00:00	4,608	----a-w	C:\WINDOWS\system32\msimg32.dll
+ 2008-04-14 02:22:17	4,608	----a-w	C:\WINDOWS\system32\msimg32.dll
- 2005-05-04 12:45:36	884,736	----a-w	C:\WINDOWS\system32\msimsg.dll
+ 2008-04-13 15:39:43	884,736	----a-w	C:\WINDOWS\system32\msimsg.dll
- 2006-02-28 12:00:00	159,232	----a-w	C:\WINDOWS\system32\MSIMTF.dll
+ 2008-04-14 02:22:17	159,232	----a-w	C:\WINDOWS\system32\msimtf.dll
- 2005-05-04 12:45:36	15,360	----a-w	C:\WINDOWS\system32\msisip.dll
+ 2008-04-14 02:22:17	15,360	----a-w	C:\WINDOWS\system32\msisip.dll
- 2006-02-28 12:00:00	25,600	----a-w	C:\WINDOWS\system32\mslbui.dll
+ 2008-04-14 02:22:17	25,600	----a-w	C:\WINDOWS\system32\mslbui.dll
- 2006-02-28 12:00:00	290,816	----a-w	C:\WINDOWS\system32\msnsspc.dll
+ 2008-04-14 02:22:17	290,816	----a-w	C:\WINDOWS\system32\msnsspc.dll
- 2006-02-28 12:00:00	252,928	----a-w	C:\WINDOWS\system32\msoeacct.dll
+ 2008-04-14 02:22:17	252,928	----a-w	C:\WINDOWS\system32\msoeacct.dll
- 2006-02-28 12:00:00	105,984	----a-w	C:\WINDOWS\system32\msoert2.dll
+ 2008-04-14 02:22:18	105,984	----a-w	C:\WINDOWS\system32\msoert2.dll
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\msorc32r.dll
+ 2007-03-28 12:51:49	24,576	----a-w	C:\WINDOWS\system32\msorc32r.dll
- 2006-02-28 12:00:00	143,360	----a-w	C:\WINDOWS\system32\msorcl32.dll
+ 2008-04-14 02:22:18	143,360	----a-w	C:\WINDOWS\system32\msorcl32.dll
- 2006-02-28 12:00:00	346,624	----a-w	C:\WINDOWS\system32\mspaint.exe
+ 2008-04-14 02:22:54	346,624	----a-w	C:\WINDOWS\system32\mspaint.exe
- 2006-02-28 12:00:00	30,208	----a-w	C:\WINDOWS\system32\mspatcha.dll
+ 2008-04-14 02:22:18	29,696	----a-w	C:\WINDOWS\system32\mspatcha.dll
- 2006-02-28 12:00:00	48,128	----a-w	C:\WINDOWS\system32\msprivs.dll
+ 2008-04-13 16:23:31	48,128	----a-w	C:\WINDOWS\system32\msprivs.dll
- 2006-02-28 12:00:00	11,264	----a-w	C:\WINDOWS\system32\msrle32.dll
+ 2008-04-14 02:22:18	11,264	----a-w	C:\WINDOWS\system32\msrle32.dll
- 2006-02-28 12:00:00	134,656	----a-w	C:\WINDOWS\system32\mssap.dll
+ 2008-04-14 02:22:18	134,656	----a-w	C:\WINDOWS\system32\mssap.dll
+ 2008-04-14 02:22:18	155,136	------w	C:\WINDOWS\system32\mssha.dll
+ 2008-04-14 01:56:52	81,408	------w	C:\WINDOWS\system32\msshavmsg.dll
- 2006-02-28 12:00:00	280,064	----a-w	C:\WINDOWS\system32\mstask.dll
+ 2008-04-14 02:22:18	280,064	----a-w	C:\WINDOWS\system32\mstask.dll
- 2006-02-28 12:00:00	12,288	----a-w	C:\WINDOWS\system32\mstinit.exe
+ 2008-04-14 02:22:54	12,288	----a-w	C:\WINDOWS\system32\mstinit.exe
- 2006-02-28 12:00:00	115,712	----a-w	C:\WINDOWS\system32\mstlsapi.dll
+ 2008-04-14 02:22:18	116,224	----a-w	C:\WINDOWS\system32\mstlsapi.dll
- 2006-02-28 12:00:00	412,672	----a-w	C:\WINDOWS\system32\mstsc.exe
+ 2008-04-14 02:22:50	677,888	----a-w	C:\WINDOWS\system32\mstsc.exe
- 2006-02-28 12:00:00	655,360	----a-w	C:\WINDOWS\system32\mstscax.dll
+ 2008-04-14 02:22:13	2,061,824	----a-w	C:\WINDOWS\system32\mstscax.dll
- 2006-02-28 12:00:00	196,096	----a-w	C:\WINDOWS\system32\msutb.dll
+ 2008-04-14 02:22:18	196,096	----a-w	C:\WINDOWS\system32\msutb.dll
- 2006-02-28 12:00:00	129,536	----a-w	C:\WINDOWS\system32\msv1_0.dll
+ 2008-04-14 02:22:18	132,608	----a-w	C:\WINDOWS\system32\msv1_0.dll
- 2006-02-28 12:00:00	1,392,671	----a-w	C:\WINDOWS\system32\msvbvm60.dll
+ 2008-04-14 02:22:18	1,384,479	----a-w	C:\WINDOWS\system32\msvbvm60.dll
- 2006-02-28 12:00:00	54,784	----a-w	C:\WINDOWS\system32\msvcirt.dll
+ 2008-04-14 02:22:18	57,344	----a-w	C:\WINDOWS\system32\msvcirt.dll
- 2006-02-28 12:00:00	413,696	----a-w	C:\WINDOWS\system32\msvcp60.dll
+ 2008-04-14 02:22:18	413,696	----a-w	C:\WINDOWS\system32\msvcp60.dll
- 2006-02-28 12:00:00	343,040	----a-w	C:\WINDOWS\system32\msvcrt.dll
+ 2008-04-14 02:22:18	343,040	----a-w	C:\WINDOWS\system32\msvcrt.dll
- 2006-02-28 12:00:00	61,440	----a-w	C:\WINDOWS\system32\msvcrt40.dll
+ 2008-04-13 18:30:46	61,440	----a-w	C:\WINDOWS\system32\msvcrt40.dll
- 2006-02-28 12:00:00	121,856	----a-w	C:\WINDOWS\system32\msvfw32.dll
+ 2008-04-14 02:22:18	122,368	----a-w	C:\WINDOWS\system32\msvfw32.dll
- 2006-02-28 12:00:00	1,432,576	----a-w	C:\WINDOWS\system32\msvidctl.dll
+ 2008-04-14 02:22:18	1,433,088	----a-w	C:\WINDOWS\system32\msvidctl.dll
- 2006-02-28 12:00:00	72,704	----a-w	C:\WINDOWS\system32\msw3prt.dll
+ 2008-04-14 02:22:18	72,704	----a-w	C:\WINDOWS\system32\msw3prt.dll
- 2006-02-28 12:00:00	205,312	----a-w	C:\WINDOWS\system32\mswebdvd.dll
+ 2008-04-14 02:22:18	205,312	----a-w	C:\WINDOWS\system32\mswebdvd.dll
- 2008-06-20 17:39:48	247,296	----a-w	C:\WINDOWS\system32\mswsock.dll
+ 2008-06-20 17:46:10	247,296	----a-w	C:\WINDOWS\system32\mswsock.dll
- 2006-02-28 12:00:00	506,368	----a-w	C:\WINDOWS\system32\msxml.dll
+ 2008-04-14 02:22:18	506,368	----a-w	C:\WINDOWS\system32\msxml.dll
- 2006-02-28 12:00:00	701,440	----a-w	C:\WINDOWS\system32\msxml2.dll
+ 2008-04-14 02:22:18	701,440	----a-w	C:\WINDOWS\system32\msxml2.dll
- 2007-06-26 06:08:37	1,104,896	----a-w	C:\WINDOWS\system32\msxml3.dll
+ 2008-04-14 02:22:18	1,104,896	----a-w	C:\WINDOWS\system32\msxml3.dll
+ 2008-04-14 02:22:18	1,306,624	------w	C:\WINDOWS\system32\msxml6.dll
+ 2008-04-14 01:57:41	93,184	------w	C:\WINDOWS\system32\msxml6r.dll
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\msyuv.dll
+ 2008-04-14 02:22:18	16,896	----a-w	C:\WINDOWS\system32\msyuv.dll
- 2006-03-01 19:43:33	66,560	----a-w	C:\WINDOWS\system32\mtxclu.dll
+ 2008-04-14 02:22:18	66,560	----a-w	C:\WINDOWS\system32\mtxclu.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\mtxdm.dll
+ 2008-04-14 02:22:18	30,720	----a-w	C:\WINDOWS\system32\mtxdm.dll
- 2006-02-28 12:00:00	4,096	----a-w	C:\WINDOWS\system32\mtxex.dll
+ 2008-04-14 02:22:18	4,096	----a-w	C:\WINDOWS\system32\mtxex.dll
- 2006-02-28 12:00:00	25,088	----a-w	C:\WINDOWS\system32\mtxlegih.dll
+ 2008-04-14 02:22:18	34,304	----a-w	C:\WINDOWS\system32\mtxlegih.dll
- 2006-03-01 19:43:33	91,136	----a-w	C:\WINDOWS\system32\mtxoci.dll
+ 2008-04-14 02:22:18	91,648	----a-w	C:\WINDOWS\system32\mtxoci.dll
+ 2008-04-14 02:22:18	1,737,856	------w	C:\WINDOWS\system32\mtxparhd.dll
- 2006-02-28 12:00:00	91,136	----a-w	C:\WINDOWS\system32\mydocs.dll
+ 2008-04-14 02:22:19	91,136	----a-w	C:\WINDOWS\system32\mydocs.dll
+ 2008-04-14 02:22:19	30,208	------w	C:\WINDOWS\system32\napipsec.dll
+ 2008-04-14 02:22:19	198,656	------w	C:\WINDOWS\system32\napmontr.dll
+ 2008-04-14 02:22:54	177,664	------w	C:\WINDOWS\system32\napstat.exe
- 2006-02-28 12:00:00	55,296	----a-w	C:\WINDOWS\system32\narrator.exe
+ 2008-04-14 02:22:54	55,296	----a-w	C:\WINDOWS\system32\narrator.exe
- 2006-02-28 12:00:00	36,352	----a-w	C:\WINDOWS\system32\ncobjapi.dll
+ 2008-04-14 02:22:19	36,352	----a-w	C:\WINDOWS\system32\ncobjapi.dll
- 2006-02-28 12:00:00	18,432	----a-w	C:\WINDOWS\system32\nddeapi.dll
+ 2008-04-14 02:22:19	18,432	----a-w	C:\WINDOWS\system32\nddeapi.dll
- 2006-02-28 12:00:00	4,096	----a-w	C:\WINDOWS\system32\nddeapir.exe
+ 2008-04-14 02:22:54	4,096	----a-w	C:\WINDOWS\system32\nddeapir.exe
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\system32\nddenb32.dll
+ 2008-04-14 02:22:19	19,456	----a-w	C:\WINDOWS\system32\nddenb32.dll
- 2006-02-28 12:00:00	42,496	----a-w	C:\WINDOWS\system32\net.exe
+ 2008-04-14 02:22:55	42,496	----a-w	C:\WINDOWS\system32\net.exe
- 2006-02-28 12:00:00	124,928	----a-w	C:\WINDOWS\system32\net1.exe
+ 2008-04-14 02:22:55	124,928	----a-w	C:\WINDOWS\system32\net1.exe
- 2006-08-17 12:28:44	332,288	----a-w	C:\WINDOWS\system32\netapi32.dll
+ 2008-04-14 02:22:19	337,408	----a-w	C:\WINDOWS\system32\netapi32.dll
- 2006-02-28 12:00:00	633,344	----a-w	C:\WINDOWS\system32\netcfgx.dll
+ 2008-04-14 02:22:19	633,856	----a-w	C:\WINDOWS\system32\netcfgx.dll
- 2006-02-28 12:00:00	114,176	----a-w	C:\WINDOWS\system32\netdde.exe
+ 2008-04-14 02:22:55	114,176	----a-w	C:\WINDOWS\system32\netdde.exe
- 2006-02-28 12:00:00	144,896	----a-w	C:\WINDOWS\system32\netid.dll
+ 2008-04-14 02:22:19	144,896	----a-w	C:\WINDOWS\system32\netid.dll
- 2006-02-28 12:00:00	407,040	----a-w	C:\WINDOWS\system32\netlogon.dll
+ 2008-04-14 02:22:19	407,040	----a-w	C:\WINDOWS\system32\netlogon.dll
- 2005-08-22 18:31:48	197,632	----a-w	C:\WINDOWS\system32\netman.dll
+ 2008-04-14 02:22:19	198,144	----a-w	C:\WINDOWS\system32\netman.dll

Fako · 13.10.2008, 17:46

Code:

ATTFilter

- 2006-02-28 12:00:00	883,712	----a-w	C:\WINDOWS\system32\netplwiz.dll
+ 2008-04-14 02:22:19	883,712	----a-w	C:\WINDOWS\system32\netplwiz.dll
- 2006-02-28 12:00:00	12,288	----a-w	C:\WINDOWS\system32\netrap.dll
+ 2008-04-14 02:22:19	11,776	----a-w	C:\WINDOWS\system32\netrap.dll
- 2006-02-28 12:00:00	333,312	----a-w	C:\WINDOWS\system32\netsetup.exe
+ 2008-04-14 02:25:38	333,312	----a-w	C:\WINDOWS\system32\netsetup.exe
- 2006-02-28 12:00:00	88,064	----a-w	C:\WINDOWS\system32\netsh.exe
+ 2008-04-14 02:22:55	88,064	----a-w	C:\WINDOWS\system32\netsh.exe
- 2006-02-28 12:00:00	1,726,976	----a-w	C:\WINDOWS\system32\netshell.dll
+ 2008-04-14 02:22:20	1,722,880	----a-w	C:\WINDOWS\system32\netshell.dll
- 2006-02-28 12:00:00	37,376	----a-w	C:\WINDOWS\system32\netstat.exe
+ 2008-04-14 02:22:55	37,376	----a-w	C:\WINDOWS\system32\netstat.exe
- 2006-02-28 12:00:00	81,920	----a-w	C:\WINDOWS\system32\netui0.dll
+ 2008-04-14 02:22:20	81,920	----a-w	C:\WINDOWS\system32\netui0.dll
- 2006-02-28 12:00:00	245,760	----a-w	C:\WINDOWS\system32\netui1.dll
+ 2008-04-14 02:22:20	245,760	----a-w	C:\WINDOWS\system32\netui1.dll
- 2006-02-28 12:00:00	251,392	----a-w	C:\WINDOWS\system32\newdev.dll
+ 2008-04-14 02:22:20	250,880	----a-w	C:\WINDOWS\system32\newdev.dll
- 2006-02-28 12:00:00	103,936	----a-w	C:\WINDOWS\system32\nlhtml.dll
+ 2008-04-14 02:22:20	98,304	----a-w	C:\WINDOWS\system32\nlhtml.dll
- 2006-02-28 12:00:00	28,672	----a-w	C:\WINDOWS\system32\nmmkcert.dll
+ 2008-04-14 02:22:20	28,672	----a-w	C:\WINDOWS\system32\nmmkcert.dll
- 2006-02-28 12:00:00	70,144	----a-w	C:\WINDOWS\system32\notepad.exe
+ 2008-04-14 02:22:55	70,144	----a-w	C:\WINDOWS\system32\notepad.exe
- 2006-02-28 12:00:00	57,344	----a-w	C:\WINDOWS\system32\npp\ndisnpp.dll
+ 2008-04-14 02:22:19	57,344	----a-w	C:\WINDOWS\system32\npp\ndisnpp.dll
- 2006-02-28 12:00:00	15,360	----a-w	C:\WINDOWS\system32\npp\nppagent.exe
+ 2008-04-14 02:22:55	15,360	----a-w	C:\WINDOWS\system32\npp\nppagent.exe
- 2006-02-28 12:00:00	55,296	----a-w	C:\WINDOWS\system32\npptools.dll
+ 2008-04-14 02:22:20	55,296	----a-w	C:\WINDOWS\system32\npptools.dll
- 2006-02-28 12:00:00	80,896	----a-w	C:\WINDOWS\system32\nslookup.exe
+ 2008-04-14 02:22:55	80,896	----a-w	C:\WINDOWS\system32\nslookup.exe
- 2006-02-28 12:00:00	1,228,800	----a-w	C:\WINDOWS\system32\ntbackup.exe
+ 2008-04-14 02:22:56	1,229,312	----a-w	C:\WINDOWS\system32\ntbackup.exe
- 2006-02-28 12:00:00	733,696	----a-w	C:\WINDOWS\system32\ntdll.dll
+ 2008-04-14 02:21:52	731,648	----a-w	C:\WINDOWS\system32\ntdll.dll
- 2006-02-28 12:00:00	67,072	----a-w	C:\WINDOWS\system32\ntdsapi.dll
+ 2008-04-14 02:22:20	67,072	----a-w	C:\WINDOWS\system32\ntdsapi.dll
- 2007-02-28 16:02:05	2,018,304	----a-w	C:\WINDOWS\system32\ntkrnlpa.exe
+ 2008-04-14 02:00:05	2,026,496	----a-w	C:\WINDOWS\system32\ntkrnlpa.exe
- 2006-02-28 12:00:00	43,520	----a-w	C:\WINDOWS\system32\ntlanman.dll
+ 2008-04-14 02:22:20	44,032	----a-w	C:\WINDOWS\system32\ntlanman.dll
- 2006-02-28 12:00:00	8,192	----a-w	C:\WINDOWS\system32\ntlsapi.dll
+ 2008-04-14 02:22:20	8,192	----a-w	C:\WINDOWS\system32\ntlsapi.dll
- 2006-02-28 12:00:00	119,296	----a-w	C:\WINDOWS\system32\ntmarta.dll
+ 2008-04-14 02:22:20	119,296	----a-w	C:\WINDOWS\system32\ntmarta.dll
- 2006-02-28 12:00:00	40,960	----a-w	C:\WINDOWS\system32\ntmsapi.dll
+ 2008-04-14 02:22:20	40,960	----a-w	C:\WINDOWS\system32\ntmsapi.dll
- 2006-02-28 12:00:00	180,224	----a-w	C:\WINDOWS\system32\ntmsdba.dll
+ 2008-04-14 02:22:20	180,224	----a-w	C:\WINDOWS\system32\ntmsdba.dll
- 2006-02-28 12:00:00	497,664	----a-w	C:\WINDOWS\system32\ntmsmgr.dll
+ 2008-04-14 02:22:20	497,664	----a-w	C:\WINDOWS\system32\ntmsmgr.dll
- 2006-02-28 12:00:00	438,272	----a-w	C:\WINDOWS\system32\ntmssvc.dll
+ 2008-04-14 02:22:20	438,272	----a-w	C:\WINDOWS\system32\ntmssvc.dll
- 2007-02-28 16:02:08	2,138,624	----a-w	C:\WINDOWS\system32\ntoskrnl.exe
+ 2008-04-14 01:59:55	2,147,840	----a-w	C:\WINDOWS\system32\ntoskrnl.exe
- 2006-02-28 12:00:00	92,160	----a-w	C:\WINDOWS\system32\ntprint.dll
+ 2008-04-14 02:22:21	92,160	----a-w	C:\WINDOWS\system32\ntprint.dll
- 2006-02-28 12:00:00	145,920	----a-w	C:\WINDOWS\system32\ntshrui.dll
+ 2008-04-14 02:22:21	145,920	----a-w	C:\WINDOWS\system32\ntshrui.dll
- 2006-02-28 12:00:00	421,376	----a-w	C:\WINDOWS\system32\ntvdm.exe
+ 2008-04-14 02:22:56	422,400	----a-w	C:\WINDOWS\system32\ntvdm.exe
- 2006-02-28 12:00:00	13,312	----a-w	C:\WINDOWS\system32\ntvdmd.dll
+ 2008-04-14 02:22:21	15,360	----a-w	C:\WINDOWS\system32\ntvdmd.dll
- 2006-10-13 12:35:14	64,000	----a-w	C:\WINDOWS\system32\nwapi32.dll
+ 2008-04-14 02:22:21	64,000	----a-w	C:\WINDOWS\system32\nwapi32.dll
- 2006-10-13 12:35:14	146,432	----a-w	C:\WINDOWS\system32\nwprovau.dll
+ 2008-04-14 02:22:21	146,432	----a-w	C:\WINDOWS\system32\nwprovau.dll
- 2006-10-13 12:35:14	65,536	----a-w	C:\WINDOWS\system32\nwwks.dll
+ 2008-04-14 02:22:21	65,536	----a-w	C:\WINDOWS\system32\nwwks.dll
- 2006-02-28 12:00:00	267,776	----a-w	C:\WINDOWS\system32\oakley.dll
+ 2008-04-14 02:22:21	271,360	----a-w	C:\WINDOWS\system32\oakley.dll
- 2006-02-28 12:00:00	288,768	----a-w	C:\WINDOWS\system32\objsel.dll
+ 2008-04-14 02:22:21	289,280	----a-w	C:\WINDOWS\system32\objsel.dll
- 2006-02-28 12:00:00	62,976	----a-w	C:\WINDOWS\system32\ocmanage.dll
+ 2008-04-14 02:22:22	69,632	----a-w	C:\WINDOWS\system32\ocmanage.dll
- 2006-02-28 12:00:00	249,856	----a-w	C:\WINDOWS\system32\odbc32.dll
+ 2008-04-14 02:22:22	249,856	----a-w	C:\WINDOWS\system32\odbc32.dll
- 2006-02-28 12:00:00	16,384	----a-w	C:\WINDOWS\system32\odbc32gt.dll
+ 2008-04-14 02:22:22	16,384	----a-w	C:\WINDOWS\system32\odbc32gt.dll
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\odbcad32.exe
+ 2008-04-14 02:22:56	32,768	----a-w	C:\WINDOWS\system32\odbcad32.exe
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\odbcbcp.dll
+ 2008-04-14 02:22:22	24,576	----a-w	C:\WINDOWS\system32\odbcbcp.dll
- 2006-02-28 12:00:00	135,168	----a-w	C:\WINDOWS\system32\odbcconf.dll
+ 2008-04-14 02:22:22	135,168	----a-w	C:\WINDOWS\system32\odbcconf.dll
- 2006-02-28 12:00:00	69,632	----a-w	C:\WINDOWS\system32\odbcconf.exe
+ 2008-04-14 02:22:56	69,632	----a-w	C:\WINDOWS\system32\odbcconf.exe
- 2006-02-28 12:00:00	106,496	----a-w	C:\WINDOWS\system32\odbccp32.dll
+ 2008-04-14 02:22:22	106,496	----a-w	C:\WINDOWS\system32\odbccp32.dll
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\odbccr32.dll
+ 2008-04-14 02:22:22	65,536	----a-w	C:\WINDOWS\system32\odbccr32.dll
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\odbccu32.dll
+ 2008-04-14 02:22:22	65,536	----a-w	C:\WINDOWS\system32\odbccu32.dll
- 2006-02-28 12:00:00	102,400	----a-w	C:\WINDOWS\system32\odbcint.dll
+ 2007-03-28 12:51:52	102,400	----a-w	C:\WINDOWS\system32\odbcint.dll
- 2006-02-28 12:00:00	57,616	----a-w	C:\WINDOWS\system32\odbcji32.dll
+ 2008-04-14 02:21:15	57,375	----a-w	C:\WINDOWS\system32\odbcji32.dll
- 2006-02-28 12:00:00	278,559	----a-w	C:\WINDOWS\system32\odbcjt32.dll
+ 2008-04-14 02:22:23	278,559	----a-w	C:\WINDOWS\system32\odbcjt32.dll
- 2006-02-28 12:00:00	12,288	----a-w	C:\WINDOWS\system32\odbcp32r.dll
+ 2008-04-13 17:26:05	12,288	----a-w	C:\WINDOWS\system32\odbcp32r.dll
- 2006-02-28 12:00:00	147,456	----a-w	C:\WINDOWS\system32\odbctrac.dll
+ 2008-04-14 02:22:23	147,456	----a-w	C:\WINDOWS\system32\odbctrac.dll
- 2006-02-28 12:00:00	20,511	----a-w	C:\WINDOWS\system32\oddbse32.dll
+ 2008-04-14 02:22:23	20,511	----a-w	C:\WINDOWS\system32\oddbse32.dll
- 2006-02-28 12:00:00	20,510	----a-w	C:\WINDOWS\system32\odexl32.dll
+ 2008-04-14 02:22:23	20,510	----a-w	C:\WINDOWS\system32\odexl32.dll
- 2006-02-28 12:00:00	20,510	----a-w	C:\WINDOWS\system32\odfox32.dll
+ 2008-04-14 02:22:23	20,510	----a-w	C:\WINDOWS\system32\odfox32.dll
- 2006-02-28 12:00:00	20,510	----a-w	C:\WINDOWS\system32\odpdx32.dll
+ 2008-04-14 02:22:23	20,510	----a-w	C:\WINDOWS\system32\odpdx32.dll
- 2006-02-28 12:00:00	20,511	----a-w	C:\WINDOWS\system32\odtext32.dll
+ 2008-04-14 02:22:23	20,511	----a-w	C:\WINDOWS\system32\odtext32.dll
- 2006-02-28 12:00:00	120,832	----a-w	C:\WINDOWS\system32\offfilt.dll
+ 2008-04-14 02:22:23	192,000	----a-w	C:\WINDOWS\system32\offfilt.dll
- 2005-07-26 04:39:49	1,285,120	----a-w	C:\WINDOWS\system32\ole32.dll
+ 2008-04-14 02:22:23	1,287,680	----a-w	C:\WINDOWS\system32\ole32.dll
- 2007-12-04 18:40:03	550,912	----a-w	C:\WINDOWS\system32\oleaut32.dll
+ 2008-04-14 02:22:23	551,936	----a-w	C:\WINDOWS\system32\oleaut32.dll
- 2005-07-26 04:39:50	74,752	----a-w	C:\WINDOWS\system32\olecli32.dll
+ 2008-04-14 02:22:23	74,752	----a-w	C:\WINDOWS\system32\olecli32.dll
- 2005-07-26 04:39:50	37,888	----a-w	C:\WINDOWS\system32\olecnv32.dll
+ 2008-04-14 02:22:23	37,376	----a-w	C:\WINDOWS\system32\olecnv32.dll
- 2006-10-16 16:15:58	126,976	----a-w	C:\WINDOWS\system32\oledlg.dll
+ 2008-04-14 02:22:23	126,976	----a-w	C:\WINDOWS\system32\oledlg.dll
- 2006-02-28 12:00:00	108,544	----a-w	C:\WINDOWS\system32\oleprn.dll
+ 2008-04-14 02:22:23	108,544	----a-w	C:\WINDOWS\system32\oleprn.dll
- 2006-02-28 12:00:00	83,456	----a-w	C:\WINDOWS\system32\olepro32.dll
+ 2008-04-14 02:22:23	84,992	----a-w	C:\WINDOWS\system32\olepro32.dll
+ 2008-04-14 02:22:23	145,408	------w	C:\WINDOWS\system32\onex.dll
- 2006-02-28 12:00:00	122,368	----a-w	C:\WINDOWS\system32\oobe\msobcomm.dll
+ 2008-04-14 02:22:17	122,368	----a-w	C:\WINDOWS\system32\oobe\msobcomm.dll
- 2006-02-28 12:00:00	16,384	----a-w	C:\WINDOWS\system32\oobe\msobdl.dll
+ 2008-04-14 02:22:17	16,384	----a-w	C:\WINDOWS\system32\oobe\msobdl.dll
- 2006-02-28 12:00:00	562,688	----a-w	C:\WINDOWS\system32\oobe\msobmain.dll
+ 2008-04-14 02:22:17	565,760	----a-w	C:\WINDOWS\system32\oobe\msobmain.dll
- 2006-02-28 12:00:00	30,720	----a-w	C:\WINDOWS\system32\oobe\msobshel.dll
+ 2008-04-14 02:22:17	30,720	----a-w	C:\WINDOWS\system32\oobe\msobshel.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\oobe\msobweb.dll
+ 2008-04-14 02:22:17	19,456	----a-w	C:\WINDOWS\system32\oobe\msobweb.dll
- 2006-02-28 12:00:00	28,160	----a-w	C:\WINDOWS\system32\oobe\msoobe.exe
+ 2008-04-14 02:22:54	29,184	----a-w	C:\WINDOWS\system32\oobe\msoobe.exe
- 2006-02-28 12:00:00	51,712	----a-w	C:\WINDOWS\system32\oobe\oobebaln.exe
+ 2008-04-14 02:22:56	51,712	----a-w	C:\WINDOWS\system32\oobe\oobebaln.exe
- 2006-02-28 12:00:00	70,656	----a-w	C:\WINDOWS\system32\openfiles.exe
+ 2008-04-14 02:22:56	70,656	----a-w	C:\WINDOWS\system32\openfiles.exe
- 2006-02-28 12:00:00	713,728	----a-w	C:\WINDOWS\system32\opengl32.dll
+ 2008-04-14 02:22:23	713,728	----a-w	C:\WINDOWS\system32\opengl32.dll
- 2006-02-28 12:00:00	216,576	----a-w	C:\WINDOWS\system32\osk.exe
+ 2008-04-14 02:22:57	216,576	----a-w	C:\WINDOWS\system32\osk.exe
- 2006-02-28 12:00:00	68,096	----a-w	C:\WINDOWS\system32\osuninst.dll
+ 2008-04-14 02:22:23	68,096	----a-w	C:\WINDOWS\system32\osuninst.dll
- 2006-02-28 12:00:00	116,224	----a-w	C:\WINDOWS\system32\p2p.dll
+ 2008-04-14 02:22:23	153,600	----a-w	C:\WINDOWS\system32\p2p.dll
- 2006-02-28 12:00:00	86,016	----a-w	C:\WINDOWS\system32\p2pgasvc.dll
+ 2008-04-14 02:22:23	105,472	----a-w	C:\WINDOWS\system32\p2pgasvc.dll
- 2006-02-28 12:00:00	312,320	----a-w	C:\WINDOWS\system32\p2pgraph.dll
+ 2008-04-14 02:22:23	313,856	----a-w	C:\WINDOWS\system32\p2pgraph.dll
- 2006-02-28 12:00:00	88,064	----a-w	C:\WINDOWS\system32\p2pnetsh.dll
+ 2008-04-14 02:22:23	115,712	----a-w	C:\WINDOWS\system32\p2pnetsh.dll
- 2006-02-28 12:00:00	526,848	----a-w	C:\WINDOWS\system32\p2psvc.dll
+ 2008-04-14 02:22:23	554,496	----a-w	C:\WINDOWS\system32\p2psvc.dll
- 2006-02-28 12:00:00	59,904	----a-w	C:\WINDOWS\system32\packager.exe
+ 2008-04-14 02:22:57	59,904	----a-w	C:\WINDOWS\system32\packager.exe
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\pautoenr.dll
+ 2008-04-14 02:22:23	70,144	----a-w	C:\WINDOWS\system32\pautoenr.dll
- 2006-02-28 12:00:00	286,208	----a-w	C:\WINDOWS\system32\pdh.dll
+ 2008-04-14 02:22:23	286,720	----a-w	C:\WINDOWS\system32\pdh.dll
- 2008-10-10 00:04:47	48,276	----a-w	C:\WINDOWS\system32\perfc007.dat
+ 2008-10-13 12:09:14	48,276	----a-w	C:\WINDOWS\system32\perfc007.dat
- 2008-10-10 00:04:47	40,108	----a-w	C:\WINDOWS\system32\perfc009.dat
+ 2008-10-13 12:09:14	40,108	----a-w	C:\WINDOWS\system32\perfc009.dat
- 2006-02-28 12:00:00	41,984	----a-w	C:\WINDOWS\system32\perfctrs.dll
+ 2008-04-14 02:22:23	41,984	----a-w	C:\WINDOWS\system32\perfctrs.dll
- 2006-02-28 12:00:00	27,136	----a-w	C:\WINDOWS\system32\perfdisk.dll
+ 2008-04-14 02:22:23	27,136	----a-w	C:\WINDOWS\system32\perfdisk.dll
- 2008-10-10 00:04:47	316,942	----a-w	C:\WINDOWS\system32\perfh007.dat
+ 2008-10-13 12:09:14	316,942	----a-w	C:\WINDOWS\system32\perfh007.dat
- 2008-10-10 00:04:47	311,912	----a-w	C:\WINDOWS\system32\perfh009.dat
+ 2008-10-13 12:09:14	311,912	----a-w	C:\WINDOWS\system32\perfh009.dat
- 2006-02-28 12:00:00	15,872	----a-w	C:\WINDOWS\system32\perfmon.exe
+ 2008-04-14 02:22:57	15,872	----a-w	C:\WINDOWS\system32\perfmon.exe
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\perfnet.dll
+ 2008-04-14 02:22:23	18,432	----a-w	C:\WINDOWS\system32\perfnet.dll
- 2006-02-28 12:00:00	26,112	----a-w	C:\WINDOWS\system32\perfos.dll
+ 2008-04-14 02:22:23	26,112	----a-w	C:\WINDOWS\system32\perfos.dll
- 2006-02-28 12:00:00	35,328	----a-w	C:\WINDOWS\system32\perfproc.dll
+ 2008-04-14 02:22:23	35,328	----a-w	C:\WINDOWS\system32\perfproc.dll
+ 2008-04-14 02:22:23	412,160	------w	C:\WINDOWS\system32\photometadatahandler.dll
- 2006-02-28 12:00:00	172,032	----a-w	C:\WINDOWS\system32\photowiz.dll
+ 2008-04-14 02:22:23	172,032	----a-w	C:\WINDOWS\system32\photowiz.dll
- 2006-02-28 12:00:00	35,328	----a-w	C:\WINDOWS\system32\pid.dll
+ 2008-04-14 02:22:23	35,328	----a-w	C:\WINDOWS\system32\pid.dll
- 2006-02-28 12:00:00	24,064	----a-w	C:\WINDOWS\system32\pidgen.dll
+ 2008-04-14 02:21:42	24,064	----a-w	C:\WINDOWS\system32\pidgen.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\ping.exe
+ 2008-04-14 02:22:57	18,944	----a-w	C:\WINDOWS\system32\ping.exe
- 2006-02-28 12:00:00	15,360	----a-w	C:\WINDOWS\system32\pjlmon.dll
+ 2008-04-14 02:22:23	15,360	----a-w	C:\WINDOWS\system32\pjlmon.dll
- 2006-02-28 12:00:00	48,640	----a-w	C:\WINDOWS\system32\pnrpnsp.dll
+ 2008-04-14 02:22:23	58,880	----a-w	C:\WINDOWS\system32\pnrpnsp.dll
- 2006-02-28 12:00:00	105,984	----a-w	C:\WINDOWS\system32\polstore.dll
+ 2008-04-14 02:22:23	105,984	----a-w	C:\WINDOWS\system32\polstore.dll

Fako · 13.10.2008, 17:47

Code:

ATTFilter

- 2006-02-28 12:00:00	49,152	----a-w	C:\WINDOWS\system32\powercfg.exe
+ 2008-04-14 02:22:57	49,152	----a-w	C:\WINDOWS\system32\powercfg.exe
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\powrprof.dll
+ 2008-04-14 02:22:23	17,408	----a-w	C:\WINDOWS\system32\powrprof.dll
- 2006-02-28 12:00:00	577,024	----a-w	C:\WINDOWS\system32\printui.dll
+ 2008-04-14 02:22:23	576,512	----a-w	C:\WINDOWS\system32\printui.dll
- 2006-02-28 12:00:00	27,648	----a-w	C:\WINDOWS\system32\profmap.dll
+ 2008-04-14 02:22:23	27,648	----a-w	C:\WINDOWS\system32\profmap.dll
- 2006-02-28 12:00:00	109,568	----a-w	C:\WINDOWS\system32\progman.exe
+ 2008-04-14 02:22:57	109,568	----a-w	C:\WINDOWS\system32\progman.exe
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\system32\proquota.exe
+ 2008-04-14 02:22:57	50,688	----a-w	C:\WINDOWS\system32\proquota.exe
- 2006-02-28 12:00:00	9,728	----a-w	C:\WINDOWS\system32\proxycfg.exe
+ 2008-04-14 02:22:57	9,728	----a-w	C:\WINDOWS\system32\proxycfg.exe
- 2006-02-28 12:00:00	23,040	----a-w	C:\WINDOWS\system32\psapi.dll
+ 2008-04-14 02:22:23	23,040	----a-w	C:\WINDOWS\system32\psapi.dll
- 2006-02-28 12:00:00	99,328	----a-w	C:\WINDOWS\system32\psbase.dll
+ 2008-04-14 02:22:23	99,328	----a-w	C:\WINDOWS\system32\psbase.dll
- 2006-02-28 12:00:00	43,520	----a-w	C:\WINDOWS\system32\pstorec.dll
+ 2008-04-14 02:22:23	43,520	----a-w	C:\WINDOWS\system32\pstorec.dll
- 2006-02-28 12:00:00	34,816	----a-w	C:\WINDOWS\system32\pstorsvc.dll
+ 2008-04-14 02:22:23	34,816	----a-w	C:\WINDOWS\system32\pstorsvc.dll
+ 2008-04-14 02:22:23	151,040	------w	C:\WINDOWS\system32\qagent.dll
+ 2008-04-14 02:22:23	294,400	------w	C:\WINDOWS\system32\qagentrt.dll
- 2006-02-28 12:00:00	192,512	----a-w	C:\WINDOWS\system32\qcap.dll
+ 2008-04-14 02:22:23	192,512	----a-w	C:\WINDOWS\system32\qcap.dll
+ 2008-04-14 02:22:23	62,464	------w	C:\WINDOWS\system32\qcliprov.dll
- 2006-02-28 12:00:00	279,040	----a-w	C:\WINDOWS\system32\qdv.dll
+ 2008-04-14 02:22:23	279,040	----a-w	C:\WINDOWS\system32\qdv.dll
- 2006-02-28 12:00:00	386,048	----a-w	C:\WINDOWS\system32\qdvd.dll
+ 2008-04-14 02:22:23	387,072	----a-w	C:\WINDOWS\system32\qdvd.dll
- 2006-02-28 12:00:00	563,200	----a-w	C:\WINDOWS\system32\qedit.dll
+ 2008-04-14 02:22:23	563,200	----a-w	C:\WINDOWS\system32\qedit.dll
- 2006-02-28 12:00:00	733,696	----a-w	C:\WINDOWS\system32\qedwipes.dll
+ 2008-04-13 17:21:32	733,696	----a-w	C:\WINDOWS\system32\qedwipes.dll
- 2006-02-28 12:00:00	382,464	----a-w	C:\WINDOWS\system32\qmgr.dll
+ 2008-04-14 02:22:23	409,088	----a-w	C:\WINDOWS\system32\qmgr.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\qmgrprxy.dll
+ 2008-04-14 02:22:23	18,944	----a-w	C:\WINDOWS\system32\qmgrprxy.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\qprocess.exe
+ 2008-04-14 02:22:57	20,480	----a-w	C:\WINDOWS\system32\qprocess.exe
- 2008-05-07 05:14:45	1,293,312	----a-w	C:\WINDOWS\system32\quartz.dll
+ 2008-05-07 05:10:35	1,293,824	----a-w	C:\WINDOWS\system32\quartz.dll
- 2006-06-22 05:06:24	1,441,792	----a-w	C:\WINDOWS\system32\query.dll
+ 2008-04-14 02:22:23	1,441,792	----a-w	C:\WINDOWS\system32\query.dll
+ 2008-04-14 02:22:23	76,800	------w	C:\WINDOWS\system32\qutil.dll
- 2006-02-28 12:00:00	44,032	----a-w	C:\WINDOWS\system32\racpldlg.dll
+ 2008-04-14 02:22:23	43,520	----a-w	C:\WINDOWS\system32\racpldlg.dll
- 2006-06-26 17:40:34	8,192	----a-w	C:\WINDOWS\system32\rasadhlp.dll
+ 2008-04-14 02:22:23	7,680	----a-w	C:\WINDOWS\system32\rasadhlp.dll
- 2006-02-28 12:00:00	236,544	----a-w	C:\WINDOWS\system32\rasapi32.dll
+ 2008-04-14 02:22:23	237,056	----a-w	C:\WINDOWS\system32\rasapi32.dll
- 2006-02-28 12:00:00	89,088	----a-w	C:\WINDOWS\system32\rasauto.dll
+ 2008-04-14 02:22:23	88,576	----a-w	C:\WINDOWS\system32\rasauto.dll
- 2006-02-28 12:00:00	69,632	----a-w	C:\WINDOWS\system32\raschap.dll
+ 2008-04-14 02:22:23	79,872	----a-w	C:\WINDOWS\system32\raschap.dll
- 2006-02-28 12:00:00	686,592	----a-w	C:\WINDOWS\system32\rasdlg.dll
+ 2008-04-14 02:22:23	687,104	----a-w	C:\WINDOWS\system32\rasdlg.dll
- 2006-02-28 12:00:00	61,440	----a-w	C:\WINDOWS\system32\rasman.dll
+ 2008-04-14 02:22:23	61,440	----a-w	C:\WINDOWS\system32\rasman.dll
- 2006-06-22 10:47:23	181,248	----a-w	C:\WINDOWS\system32\rasmans.dll
+ 2008-04-14 02:22:23	186,368	----a-w	C:\WINDOWS\system32\rasmans.dll
- 2006-02-28 12:00:00	57,344	----a-w	C:\WINDOWS\system32\rasphone.exe
+ 2008-04-14 02:22:57	57,344	----a-w	C:\WINDOWS\system32\rasphone.exe
- 2006-02-28 12:00:00	206,336	----a-w	C:\WINDOWS\system32\rasppp.dll
+ 2008-04-14 02:22:23	210,944	----a-w	C:\WINDOWS\system32\rasppp.dll
+ 2008-04-14 02:22:23	61,952	------w	C:\WINDOWS\system32\rasqec.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\rassapi.dll
+ 2008-04-14 02:22:23	16,384	----a-w	C:\WINDOWS\system32\rassapi.dll
- 2006-02-28 12:00:00	58,880	----a-w	C:\WINDOWS\system32\rastapi.dll
+ 2008-04-14 02:22:23	58,368	----a-w	C:\WINDOWS\system32\rastapi.dll
- 2006-02-28 12:00:00	113,152	----a-w	C:\WINDOWS\system32\rastls.dll
+ 2008-04-14 02:22:23	151,040	----a-w	C:\WINDOWS\system32\rastls.dll
- 2006-02-28 12:00:00	102,912	----a-w	C:\WINDOWS\system32\rcbdyctl.dll
+ 2008-04-14 02:22:23	102,912	----a-w	C:\WINDOWS\system32\rcbdyctl.dll
- 2006-02-28 12:00:00	35,840	----a-w	C:\WINDOWS\system32\rcimlby.exe
+ 2008-04-14 02:22:57	35,840	----a-w	C:\WINDOWS\system32\rcimlby.exe
- 2006-02-28 12:00:00	22,528	----a-w	C:\WINDOWS\system32\rcp.exe
+ 2008-04-14 02:22:58	22,528	----a-w	C:\WINDOWS\system32\rcp.exe
- 2006-02-28 12:00:00	147,968	----a-w	C:\WINDOWS\system32\rdchost.dll
+ 2008-04-14 02:22:23	147,968	----a-w	C:\WINDOWS\system32\rdchost.dll
- 2006-02-28 12:00:00	62,464	----a-w	C:\WINDOWS\system32\rdpclip.exe
+ 2008-04-14 02:22:58	62,976	----a-w	C:\WINDOWS\system32\rdpclip.exe
- 2006-02-28 12:00:00	92,168	----a-w	C:\WINDOWS\system32\rdpdd.dll
+ 2008-04-14 02:23:27	92,424	----a-w	C:\WINDOWS\system32\rdpdd.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\rdpsnd.dll
+ 2008-04-14 02:22:23	19,968	----a-w	C:\WINDOWS\system32\rdpsnd.dll
- 2006-02-28 12:00:00	87,176	----a-w	C:\WINDOWS\system32\rdpwsx.dll
+ 2008-04-14 02:23:27	87,176	----a-w	C:\WINDOWS\system32\rdpwsx.dll
- 2006-02-28 12:00:00	13,824	----a-w	C:\WINDOWS\system32\rdsaddin.exe
+ 2008-04-14 02:22:58	13,824	----a-w	C:\WINDOWS\system32\rdsaddin.exe
- 2006-02-28 12:00:00	67,072	----a-w	C:\WINDOWS\system32\rdshost.exe
+ 2008-04-14 02:22:58	67,072	----a-w	C:\WINDOWS\system32\rdshost.exe
- 2006-02-28 12:00:00	53,248	----a-w	C:\WINDOWS\system32\reg.exe
+ 2008-04-14 02:22:58	53,248	----a-w	C:\WINDOWS\system32\reg.exe
- 2006-02-28 12:00:00	49,664	----a-w	C:\WINDOWS\system32\regapi.dll
+ 2008-04-14 02:22:23	49,664	----a-w	C:\WINDOWS\system32\regapi.dll
- 2006-02-28 12:00:00	59,904	----a-w	C:\WINDOWS\system32\regsvc.dll
+ 2008-04-14 02:22:23	59,904	----a-w	C:\WINDOWS\system32\regsvc.dll
- 2006-02-28 12:00:00	12,288	----a-w	C:\WINDOWS\system32\regsvr32.exe
+ 2008-04-14 02:22:58	12,288	----a-w	C:\WINDOWS\system32\regsvr32.exe
- 2006-02-28 12:00:00	399,872	----a-w	C:\WINDOWS\system32\regwizc.dll
+ 2008-04-14 02:22:23	399,872	----a-w	C:\WINDOWS\system32\regwizc.dll
+ 2006-02-28 12:00:00	39,424	----a-w	C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\processr.sys
+ 2006-02-28 12:00:00	39,424	----a-w	C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\i386\processr.sys
- 2006-02-28 12:00:00	61,440	----a-w	C:\WINDOWS\system32\remotepg.dll
+ 2008-04-14 02:22:23	61,440	----a-w	C:\WINDOWS\system32\remotepg.dll
- 2006-02-28 12:00:00	385,536	----a-w	C:\WINDOWS\system32\Restore\rstrui.exe
+ 2008-04-14 02:22:59	385,536	----a-w	C:\WINDOWS\system32\Restore\rstrui.exe
- 2006-02-28 12:00:00	58,880	----a-w	C:\WINDOWS\system32\resutils.dll
+ 2008-04-14 02:22:23	58,880	----a-w	C:\WINDOWS\system32\resutils.dll
- 2006-02-28 12:00:00	14,848	----a-w	C:\WINDOWS\system32\rexec.exe
+ 2008-04-14 02:22:58	14,848	----a-w	C:\WINDOWS\system32\rexec.exe
+ 2008-04-14 02:22:23	290,304	------w	C:\WINDOWS\system32\rhttpaa.dll
- 2006-11-27 14:54:15	433,152	----a-w	C:\WINDOWS\system32\riched20.dll
+ 2008-04-14 02:22:23	433,664	----a-w	C:\WINDOWS\system32\riched20.dll
- 2007-07-09 13:11:35	584,192	----a-w	C:\WINDOWS\system32\rpcrt4.dll
+ 2008-04-14 02:22:23	584,704	----a-w	C:\WINDOWS\system32\rpcrt4.dll
- 2005-07-26 04:39:50	397,824	----a-w	C:\WINDOWS\system32\rpcss.dll
+ 2008-04-14 02:22:23	399,360	----a-w	C:\WINDOWS\system32\rpcss.dll
- 2006-02-28 12:00:00	152,576	----a-w	C:\WINDOWS\system32\rsaenh.dll
+ 2008-04-13 17:37:57	208,384	----a-w	C:\WINDOWS\system32\rsaenh.dll
- 2006-02-28 12:00:00	15,360	----a-w	C:\WINDOWS\system32\rsh.exe
+ 2008-04-14 02:22:58	15,360	----a-w	C:\WINDOWS\system32\rsh.exe
- 2006-02-28 12:00:00	40,448	----a-w	C:\WINDOWS\system32\rshx32.dll
+ 2008-04-14 02:22:23	40,448	----a-w	C:\WINDOWS\system32\rshx32.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\rsmps.dll
+ 2008-04-14 02:22:23	18,944	----a-w	C:\WINDOWS\system32\rsmps.dll
- 2006-02-28 12:00:00	107,520	----a-w	C:\WINDOWS\system32\rsnotify.exe
+ 2008-04-14 02:22:58	107,520	----a-w	C:\WINDOWS\system32\rsnotify.exe
- 2006-02-28 12:00:00	90,112	----a-w	C:\WINDOWS\system32\rsvpsp.dll
+ 2008-04-14 02:22:23	92,672	----a-w	C:\WINDOWS\system32\rsvpsp.dll
- 2006-02-28 12:00:00	78,848	----a-w	C:\WINDOWS\system32\rtcshare.exe
+ 2008-04-14 02:22:59	78,848	----a-w	C:\WINDOWS\system32\rtcshare.exe
- 2006-02-28 12:00:00	31,744	----a-w	C:\WINDOWS\system32\rtipxmib.dll
+ 2008-04-14 02:22:23	31,744	----a-w	C:\WINDOWS\system32\rtipxmib.dll
- 2006-02-28 12:00:00	44,032	----a-w	C:\WINDOWS\system32\rtutils.dll
+ 2008-04-14 02:22:23	44,032	----a-w	C:\WINDOWS\system32\rtutils.dll
- 2006-02-28 12:00:00	33,792	----a-w	C:\WINDOWS\system32\rundll32.exe
+ 2008-04-14 02:22:59	33,792	----a-w	C:\WINDOWS\system32\rundll32.exe
- 2006-02-28 12:00:00	14,336	----a-w	C:\WINDOWS\system32\runonce.exe
+ 2008-04-14 02:22:59	14,336	----a-w	C:\WINDOWS\system32\runonce.exe
+ 2008-04-14 02:22:23	9,728	------w	C:\WINDOWS\system32\rwnh.dll
+ 2008-04-14 02:22:23	397,056	------w	C:\WINDOWS\system32\s3gnb.dll
- 2006-02-28 12:00:00	43,520	----a-w	C:\WINDOWS\system32\safrcdlg.dll
+ 2008-04-14 02:22:23	43,520	----a-w	C:\WINDOWS\system32\safrcdlg.dll
- 2006-02-28 12:00:00	29,696	----a-w	C:\WINDOWS\system32\safrdm.dll
+ 2008-04-14 02:22:23	29,696	----a-w	C:\WINDOWS\system32\safrdm.dll
- 2006-02-28 12:00:00	45,568	----a-w	C:\WINDOWS\system32\safrslv.dll
+ 2008-04-14 02:22:23	45,568	----a-w	C:\WINDOWS\system32\safrslv.dll
- 2006-02-28 12:00:00	64,000	----a-w	C:\WINDOWS\system32\samlib.dll
+ 2008-04-14 02:22:23	64,000	----a-w	C:\WINDOWS\system32\samlib.dll
- 2006-02-28 12:00:00	429,568	----a-w	C:\WINDOWS\system32\samsrv.dll
+ 2008-04-14 02:22:23	429,568	----a-w	C:\WINDOWS\system32\samsrv.dll
- 2006-02-28 12:00:00	13,312	----a-w	C:\WINDOWS\system32\savedump.exe
+ 2008-04-14 02:22:59	13,312	----a-w	C:\WINDOWS\system32\savedump.exe
- 2006-02-28 12:00:00	270,848	----a-w	C:\WINDOWS\system32\sbe.dll
+ 2008-04-14 02:22:23	270,848	----a-w	C:\WINDOWS\system32\sbe.dll
- 2006-02-28 12:00:00	159,232	----a-w	C:\WINDOWS\system32\sbeio.dll
+ 2008-04-14 02:22:23	159,232	----a-w	C:\WINDOWS\system32\sbeio.dll
- 2006-02-28 12:00:00	70,656	----a-w	C:\WINDOWS\system32\scarddlg.dll
+ 2008-04-14 02:22:23	70,656	----a-w	C:\WINDOWS\system32\scarddlg.dll
- 2006-02-28 12:00:00	99,840	----a-w	C:\WINDOWS\system32\scardsvr.exe
+ 2008-04-14 02:22:59	99,840	----a-w	C:\WINDOWS\system32\scardsvr.exe
- 2006-02-28 12:00:00	171,520	----a-w	C:\WINDOWS\system32\sccsccp.dll
+ 2008-04-14 02:22:23	171,520	----a-w	C:\WINDOWS\system32\sccsccp.dll
- 2006-02-28 12:00:00	186,880	----a-w	C:\WINDOWS\system32\scecli.dll
+ 2008-04-14 02:22:23	187,904	----a-w	C:\WINDOWS\system32\scecli.dll
- 2006-02-28 12:00:00	327,168	----a-w	C:\WINDOWS\system32\scesrv.dll
+ 2008-04-14 02:22:23	328,192	----a-w	C:\WINDOWS\system32\scesrv.dll
- 2007-04-25 14:22:27	144,896	----a-w	C:\WINDOWS\system32\schannel.dll
+ 2008-04-14 02:22:23	144,384	----a-w	C:\WINDOWS\system32\schannel.dll
- 2006-02-28 12:00:00	192,000	----a-w	C:\WINDOWS\system32\schedsvc.dll
+ 2008-04-14 02:22:23	193,536	----a-w	C:\WINDOWS\system32\schedsvc.dll
- 2006-02-28 12:00:00	127,488	----a-w	C:\WINDOWS\system32\schtasks.exe
+ 2008-04-14 02:22:59	126,976	----a-w	C:\WINDOWS\system32\schtasks.exe
- 2006-02-28 12:00:00	23,040	----a-w	C:\WINDOWS\system32\sclgntfy.dll
+ 2008-04-14 02:22:23	23,040	----a-w	C:\WINDOWS\system32\sclgntfy.dll
- 2006-02-28 12:00:00	9,216	----a-w	C:\WINDOWS\system32\scrnsave.scr
+ 2008-04-14 02:23:08	9,216	----a-w	C:\WINDOWS\system32\scrnsave.scr
- 2006-02-28 12:00:00	159,744	----a-w	C:\WINDOWS\system32\scrobj.dll
+ 2008-04-14 02:22:23	180,224	----a-w	C:\WINDOWS\system32\scrobj.dll
- 2006-02-28 12:00:00	151,552	----a-w	C:\WINDOWS\system32\scrrun.dll
+ 2008-04-14 02:22:24	172,032	----a-w	C:\WINDOWS\system32\scrrun.dll
- 2006-02-28 12:00:00	78,336	----a-w	C:\WINDOWS\system32\sdbinst.exe
+ 2008-04-14 02:22:59	78,336	----a-w	C:\WINDOWS\system32\sdbinst.exe
- 2006-02-28 12:00:00	29,184	----a-w	C:\WINDOWS\system32\sdhcinst.dll
+ 2008-04-14 02:22:24	29,184	----a-w	C:\WINDOWS\system32\sdhcinst.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\system32\secedit.exe
+ 2008-04-14 02:22:59	19,968	----a-w	C:\WINDOWS\system32\secedit.exe
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\seclogon.dll
+ 2008-04-14 02:22:24	18,944	----a-w	C:\WINDOWS\system32\seclogon.dll
- 2006-02-28 12:00:00	55,808	----a-w	C:\WINDOWS\system32\secur32.dll
+ 2008-04-14 02:22:24	56,320	----a-w	C:\WINDOWS\system32\secur32.dll
- 2006-02-28 12:00:00	5,632	----a-w	C:\WINDOWS\system32\security.dll
+ 2008-04-14 02:22:24	5,632	----a-w	C:\WINDOWS\system32\security.dll
- 2006-02-28 12:00:00	29,696	----a-w	C:\WINDOWS\system32\sendcmsg.dll
+ 2008-04-14 02:22:24	29,696	----a-w	C:\WINDOWS\system32\sendcmsg.dll
- 2006-02-28 12:00:00	55,296	----a-w	C:\WINDOWS\system32\sendmail.dll
+ 2008-04-14 02:22:24	55,296	----a-w	C:\WINDOWS\system32\sendmail.dll
- 2006-02-28 12:00:00	38,912	----a-w	C:\WINDOWS\system32\sens.dll
+ 2008-04-14 02:22:24	39,424	----a-w	C:\WINDOWS\system32\sens.dll
- 2006-02-28 12:00:00	6,656	----a-w	C:\WINDOWS\system32\sensapi.dll
+ 2008-04-14 02:22:24	7,168	----a-w	C:\WINDOWS\system32\sensapi.dll
- 2006-02-28 12:00:00	56,320	----a-w	C:\WINDOWS\system32\servdeps.dll
+ 2008-04-14 02:22:24	56,320	----a-w	C:\WINDOWS\system32\servdeps.dll
- 2006-02-28 12:00:00	108,544	----a-w	C:\WINDOWS\system32\services.exe
+ 2008-04-14 02:22:59	109,056	----a-w	C:\WINDOWS\system32\services.exe
- 2006-02-28 12:00:00	142,848	----a-w	C:\WINDOWS\system32\sessmgr.exe
+ 2008-04-14 02:23:00	143,360	----a-w	C:\WINDOWS\system32\sessmgr.exe
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\sethc.exe
+ 2008-04-14 02:23:00	32,768	----a-w	C:\WINDOWS\system32\sethc.exe
- 2006-02-28 12:00:00	23,040	----a-w	C:\WINDOWS\system32\setup.exe
+ 2008-04-14 02:23:00	23,040	----a-w	C:\WINDOWS\system32\setup.exe
- 2006-02-28 12:00:00	259,584	----a-w	C:\WINDOWS\system32\Setup\comsetup.dll
+ 2008-04-14 02:22:08	274,944	----a-w	C:\WINDOWS\system32\Setup\comsetup.dll
- 2006-02-28 12:00:00	32,828	----a-w	C:\WINDOWS\system32\Setup\fp40ext.dll
+ 2008-04-14 02:22:10	32,828	----a-w	C:\WINDOWS\system32\Setup\fp40ext.dll
- 2006-02-28 12:00:00	132,608	----a-w	C:\WINDOWS\system32\Setup\fxsocm.dll
+ 2008-04-14 02:22:10	132,608	----a-w	C:\WINDOWS\system32\Setup\fxsocm.dll
- 2006-02-28 12:00:00	508,416	----a-w	C:\WINDOWS\system32\Setup\iis.dll
+ 2008-04-14 02:22:12	508,416	----a-w	C:\WINDOWS\system32\Setup\iis.dll
- 2006-02-28 12:00:00	118,784	----a-w	C:\WINDOWS\system32\Setup\imsinsnt.dll
+ 2008-04-14 02:22:12	126,464	----a-w	C:\WINDOWS\system32\Setup\imsinsnt.dll
+ 2008-04-14 02:22:13	8,192	----a-w	C:\WINDOWS\system32\Setup\koc.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\Setup\medctroc.dll
+ 2008-04-14 02:22:14	16,896	----a-w	C:\WINDOWS\system32\Setup\medctroc.dll
- 2006-02-28 12:00:00	82,432	----a-w	C:\WINDOWS\system32\Setup\msdtcstp.dll
+ 2008-04-14 02:22:16	90,112	----a-w	C:\WINDOWS\system32\Setup\msdtcstp.dll
- 2006-02-28 12:00:00	15,360	----a-w	C:\WINDOWS\system32\Setup\msgrocm.dll
+ 2008-04-14 02:22:16	15,360	----a-w	C:\WINDOWS\system32\Setup\msgrocm.dll
- 2006-02-28 12:00:00	169,984	----a-w	C:\WINDOWS\system32\Setup\msmqocm.dll
+ 2008-04-14 02:22:17	170,496	----a-w	C:\WINDOWS\system32\Setup\msmqocm.dll
- 2006-02-28 12:00:00	78,336	----a-w	C:\WINDOWS\system32\Setup\netoc.dll
+ 2008-04-14 02:22:19	78,336	----a-w	C:\WINDOWS\system32\Setup\netoc.dll
- 2006-02-28 12:00:00	63,488	----a-w	C:\WINDOWS\system32\Setup\ntoc.dll
+ 2008-04-14 02:22:20	63,488	----a-w	C:\WINDOWS\system32\Setup\ntoc.dll
- 2006-02-28 12:00:00	15,872	----a-w	C:\WINDOWS\system32\Setup\ocgen.dll
+ 2008-04-14 02:22:22	15,360	----a-w	C:\WINDOWS\system32\Setup\ocgen.dll
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\Setup\ocmsn.dll
+ 2008-04-14 02:22:22	17,408	----a-w	C:\WINDOWS\system32\Setup\ocmsn.dll
- 2006-02-28 12:00:00	101,888	----a-w	C:\WINDOWS\system32\Setup\setupqry.dll
+ 2008-04-14 02:22:24	101,888	----a-w	C:\WINDOWS\system32\Setup\setupqry.dll
- 2006-02-28 12:00:00	34,304	----a-w	C:\WINDOWS\system32\Setup\tabletoc.dll
+ 2008-04-14 02:22:30	34,304	----a-w	C:\WINDOWS\system32\Setup\tabletoc.dll
- 2006-02-28 12:00:00	123,392	----a-w	C:\WINDOWS\system32\Setup\tsoc.dll
+ 2008-04-14 02:22:30	131,584	----a-w	C:\WINDOWS\system32\Setup\tsoc.dll
- 2006-02-28 12:00:00	988,672	----a-w	C:\WINDOWS\system32\setupapi.dll
+ 2008-04-14 05:52:26	989,696	----a-w	C:\WINDOWS\system32\setupapi.dll
+ 2008-04-14 02:23:00	32,768	------w	C:\WINDOWS\system32\setupn.exe
- 2006-02-28 12:00:00	5,120	----a-w	C:\WINDOWS\system32\sfc.dll
+ 2008-04-14 02:22:24	5,120	----a-w	C:\WINDOWS\system32\sfc.dll
- 2006-02-28 12:00:00	142,336	----a-w	C:\WINDOWS\system32\sfc_os.dll
+ 2008-04-14 02:22:24	142,336	----a-w	C:\WINDOWS\system32\sfc_os.dll
- 2006-02-28 12:00:00	1,548,288	----a-w	C:\WINDOWS\system32\sfcfiles.dll
+ 2008-04-14 02:22:25	1,571,840	----a-w	C:\WINDOWS\system32\sfcfiles.dll
- 2006-02-28 12:00:00	572,928	----a-w	C:\WINDOWS\system32\shdoclc.dll
+ 2008-04-14 01:55:38	572,928	----a-w	C:\WINDOWS\system32\shdoclc.dll
- 2008-02-16 09:30:56	1,499,136	----a-w	C:\WINDOWS\system32\shdocvw.dll
+ 2008-04-14 02:22:25	1,499,136	----a-w	C:\WINDOWS\system32\shdocvw.dll
- 2007-10-25 16:55:09	8,495,616	----a-w	C:\WINDOWS\system32\shell32.dll
+ 2008-04-14 02:22:25	8,502,272	----a-w	C:\WINDOWS\system32\shell32.dll
- 2006-02-28 12:00:00	25,088	----a-w	C:\WINDOWS\system32\shfolder.dll
+ 2008-04-14 02:22:25	25,088	----a-w	C:\WINDOWS\system32\shfolder.dll
- 2006-02-28 12:00:00	68,096	----a-w	C:\WINDOWS\system32\shgina.dll
+ 2008-04-14 02:22:25	68,096	----a-w	C:\WINDOWS\system32\shgina.dll
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\shimeng.dll
+ 2008-04-14 02:22:25	65,024	----a-w	C:\WINDOWS\system32\shimeng.dll
- 2006-02-28 12:00:00	439,808	----a-w	C:\WINDOWS\system32\shimgvw.dll
+ 2008-04-14 02:22:25	439,808	----a-w	C:\WINDOWS\system32\shimgvw.dll
- 2008-02-16 09:30:57	474,624	----a-w	C:\WINDOWS\system32\shlwapi.dll
+ 2008-04-14 02:22:25	474,624	----a-w	C:\WINDOWS\system32\shlwapi.dll
- 2006-02-28 12:00:00	153,600	----a-w	C:\WINDOWS\system32\shmedia.dll
+ 2008-04-14 02:22:25	154,112	----a-w	C:\WINDOWS\system32\shmedia.dll
- 2006-02-28 12:00:00	42,496	----a-w	C:\WINDOWS\system32\shmgrate.exe
+ 2008-04-14 02:23:00	45,056	----a-w	C:\WINDOWS\system32\shmgrate.exe
- 2006-02-28 12:00:00	78,336	----a-w	C:\WINDOWS\system32\shrpubw.exe
+ 2008-04-14 02:23:00	78,336	----a-w	C:\WINDOWS\system32\shrpubw.exe
- 2006-02-28 12:00:00	28,160	----a-w	C:\WINDOWS\system32\shscrap.dll
+ 2008-04-14 02:22:25	28,160	----a-w	C:\WINDOWS\system32\shscrap.dll
- 2006-12-19 21:49:41	135,168	----a-w	C:\WINDOWS\system32\shsvcs.dll
+ 2008-04-14 02:22:25	135,168	----a-w	C:\WINDOWS\system32\shsvcs.dll
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\system32\shutdown.exe
+ 2008-04-14 02:23:01	20,480	----a-w	C:\WINDOWS\system32\shutdown.exe
- 2006-02-28 12:00:00	13,312	----a-w	C:\WINDOWS\system32\sigtab.dll
+ 2008-04-14 02:22:25	13,312	----a-w	C:\WINDOWS\system32\sigtab.dll
- 2006-02-28 12:00:00	71,168	----a-w	C:\WINDOWS\system32\sigverif.exe
+ 2008-04-14 02:23:01	71,168	----a-w	C:\WINDOWS\system32\sigverif.exe
- 2006-02-28 12:00:00	26,112	----a-w	C:\WINDOWS\system32\skeys.exe
+ 2008-04-14 02:23:01	26,112	----a-w	C:\WINDOWS\system32\skeys.exe
- 2006-02-28 12:00:00	25,600	----a-w	C:\WINDOWS\system32\slayerxp.dll
+ 2008-04-14 02:22:25	25,600	----a-w	C:\WINDOWS\system32\slayerxp.dll
- 2006-02-28 12:00:00	98,304	----a-w	C:\WINDOWS\system32\slbiop.dll

Fako · 13.10.2008, 17:49

Code:

ATTFilter

+ 2008-04-14 02:22:25	98,304	----a-w	C:\WINDOWS\system32\slbiop.dll
+ 2008-04-14 02:22:25	73,832	------w	C:\WINDOWS\system32\slcoinst.dll
+ 2008-04-14 02:22:25	286,792	------w	C:\WINDOWS\system32\slextspk.dll
+ 2008-04-14 02:22:25	188,508	------w	C:\WINDOWS\system32\slgen.dll
+ 2008-04-14 02:23:01	32,866	------w	C:\WINDOWS\system32\slrundll.exe
+ 2008-04-14 02:23:01	73,796	------w	C:\WINDOWS\system32\slserv.exe
- 2006-02-28 12:00:00	8,192	----a-w	C:\WINDOWS\system32\smbinst.exe
+ 2008-04-14 02:23:01	8,192	----a-w	C:\WINDOWS\system32\smbinst.exe
- 2006-02-28 12:00:00	368,640	----a-w	C:\WINDOWS\system32\smlogcfg.dll
+ 2008-04-14 02:22:25	368,128	----a-w	C:\WINDOWS\system32\smlogcfg.dll
- 2006-02-28 12:00:00	94,208	----a-w	C:\WINDOWS\system32\smlogsvc.exe
+ 2008-04-14 02:23:01	94,208	----a-w	C:\WINDOWS\system32\smlogsvc.exe
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\system32\smss.exe
+ 2008-04-14 02:23:01	50,688	----a-w	C:\WINDOWS\system32\smss.exe
+ 2008-04-14 02:22:25	10,752	------w	C:\WINDOWS\system32\smtpapi.dll
- 2006-02-28 12:00:00	133,120	----a-w	C:\WINDOWS\system32\sndrec32.exe
+ 2008-04-14 02:23:01	133,120	----a-w	C:\WINDOWS\system32\sndrec32.exe
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\snmpapi.dll
+ 2008-04-14 02:22:25	18,944	----a-w	C:\WINDOWS\system32\snmpapi.dll
- 2006-02-28 12:00:00	183,808	----a-w	C:\WINDOWS\system32\snmpsnap.dll
+ 2008-04-14 02:22:25	183,808	----a-w	C:\WINDOWS\system32\snmpsnap.dll
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\sort.exe
+ 2008-04-14 02:23:01	25,600	----a-w	C:\WINDOWS\system32\sort.exe
+ 2008-04-14 02:23:01	7,680	----a-w	C:\WINDOWS\system32\spdwnwxp.exe
- 2006-02-28 12:00:00	539,136	----a-w	C:\WINDOWS\system32\spider.exe
+ 2008-04-14 02:23:02	539,136	----a-w	C:\WINDOWS\system32\spider.exe
- 2006-02-28 12:00:00	12,800	----a-w	C:\WINDOWS\system32\spiisupd.exe
+ 2008-04-13 18:43:31	12,800	----a-w	C:\WINDOWS\system32\spiisupd.exe
- 2006-02-28 12:00:00	11,776	----a-w	C:\WINDOWS\system32\spnpinst.exe
+ 2008-04-14 05:53:04	11,264	----a-w	C:\WINDOWS\system32\spnpinst.exe
- 2006-02-28 12:00:00	74,752	----a-w	C:\WINDOWS\system32\spoolss.dll
+ 2008-04-14 02:22:25	75,264	----a-w	C:\WINDOWS\system32\spoolss.dll
- 2005-06-10 23:53:32	57,856	----a-w	C:\WINDOWS\system32\spoolsv.exe
+ 2008-04-14 02:23:02	57,856	----a-w	C:\WINDOWS\system32\spoolsv.exe
- 2006-09-06 15:42:32	22,752	----a-w	C:\WINDOWS\system32\spupdsvc.exe
+ 2007-08-10 18:44:56	26,488	----a-w	C:\WINDOWS\system32\spupdsvc.exe
+ 2008-04-14 02:23:02	20,992	------w	C:\WINDOWS\system32\spupdwxp.exe
- 2006-02-28 12:00:00	442,368	----a-w	C:\WINDOWS\system32\sqlsrv32.dll
+ 2008-04-14 02:22:30	442,368	----a-w	C:\WINDOWS\system32\sqlsrv32.dll
- 2006-02-28 12:00:00	180,800	----a-w	C:\WINDOWS\system32\sqlunirl.dll
+ 2008-04-14 02:22:30	180,800	----a-w	C:\WINDOWS\system32\sqlunirl.dll
- 2006-02-28 12:00:00	67,584	----a-w	C:\WINDOWS\system32\srclient.dll
+ 2008-04-14 02:22:30	67,584	----a-w	C:\WINDOWS\system32\srclient.dll
- 2006-02-28 12:00:00	242,176	----a-w	C:\WINDOWS\system32\srrstr.dll
+ 2008-04-14 02:22:30	242,176	----a-w	C:\WINDOWS\system32\srrstr.dll
- 2006-02-28 12:00:00	171,008	----a-w	C:\WINDOWS\system32\srsvc.dll
+ 2008-04-14 02:22:30	171,520	----a-w	C:\WINDOWS\system32\srsvc.dll
- 2004-12-07 19:33:24	96,768	----a-w	C:\WINDOWS\system32\srvsvc.dll
+ 2008-04-14 02:22:30	96,768	----a-w	C:\WINDOWS\system32\srvsvc.dll
- 2006-02-28 12:00:00	708,608	----a-w	C:\WINDOWS\system32\ss3dfo.scr
+ 2008-04-14 02:23:08	708,608	----a-w	C:\WINDOWS\system32\ss3dfo.scr
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\ssbezier.scr
+ 2008-04-14 02:23:08	19,968	----a-w	C:\WINDOWS\system32\ssbezier.scr
- 2006-02-28 12:00:00	34,816	----a-w	C:\WINDOWS\system32\ssdpapi.dll
+ 2008-04-14 02:22:30	34,816	----a-w	C:\WINDOWS\system32\ssdpapi.dll
- 2006-02-28 12:00:00	71,680	----a-w	C:\WINDOWS\system32\ssdpsrv.dll
+ 2008-04-14 02:22:30	71,680	----a-w	C:\WINDOWS\system32\ssdpsrv.dll
- 2006-02-28 12:00:00	393,216	----a-w	C:\WINDOWS\system32\ssflwbox.scr
+ 2008-04-14 02:23:08	393,216	----a-w	C:\WINDOWS\system32\ssflwbox.scr
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\system32\ssmarque.scr
+ 2008-04-14 02:23:08	20,992	----a-w	C:\WINDOWS\system32\ssmarque.scr
- 2006-02-28 12:00:00	47,104	----a-w	C:\WINDOWS\system32\ssmypics.scr
+ 2008-04-14 02:23:08	47,104	----a-w	C:\WINDOWS\system32\ssmypics.scr
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\ssmyst.scr
+ 2008-04-14 02:23:08	18,944	----a-w	C:\WINDOWS\system32\ssmyst.scr
- 2006-02-28 12:00:00	610,304	----a-w	C:\WINDOWS\system32\sspipes.scr
+ 2008-04-14 02:23:08	610,304	----a-w	C:\WINDOWS\system32\sspipes.scr
- 2006-02-28 12:00:00	14,848	----a-w	C:\WINDOWS\system32\ssstars.scr
+ 2008-04-14 02:23:08	14,848	----a-w	C:\WINDOWS\system32\ssstars.scr
- 2006-02-28 12:00:00	684,032	----a-w	C:\WINDOWS\system32\sstext3d.scr
+ 2008-04-14 02:23:08	684,032	----a-w	C:\WINDOWS\system32\sstext3d.scr
- 2006-02-28 12:00:00	54,272	----a-w	C:\WINDOWS\system32\stclient.dll
+ 2008-04-14 02:22:30	59,392	----a-w	C:\WINDOWS\system32\stclient.dll
- 2006-02-28 12:00:00	68,096	----a-w	C:\WINDOWS\system32\sti.dll
+ 2008-04-14 02:22:30	68,608	----a-w	C:\WINDOWS\system32\sti.dll
- 2006-02-28 12:00:00	137,216	----a-w	C:\WINDOWS\system32\sti_ci.dll
+ 2008-04-14 02:22:30	137,216	----a-w	C:\WINDOWS\system32\sti_ci.dll
- 2006-02-28 12:00:00	14,848	----a-w	C:\WINDOWS\system32\stimon.exe
+ 2008-04-14 02:23:02	14,848	----a-w	C:\WINDOWS\system32\stimon.exe
- 2006-02-28 12:00:00	122,368	----a-w	C:\WINDOWS\system32\stobject.dll
+ 2008-04-14 02:22:30	122,368	----a-w	C:\WINDOWS\system32\stobject.dll
- 2004-08-03 23:57:36	76,288	----a-w	C:\WINDOWS\system32\storprop.dll
+ 2008-04-14 02:22:30	76,288	----a-w	C:\WINDOWS\system32\storprop.dll
- 2006-08-24 11:19:40	246,814	----a-w	C:\WINDOWS\system32\strmdll.dll
+ 2008-04-14 02:22:30	246,814	----a-w	C:\WINDOWS\system32\strmdll.dll
- 2006-02-28 12:00:00	75,776	----a-w	C:\WINDOWS\system32\strmfilt.dll
+ 2008-04-14 02:22:30	75,776	----a-w	C:\WINDOWS\system32\strmfilt.dll
- 2006-02-28 12:00:00	14,336	----a-w	C:\WINDOWS\system32\svchost.exe
+ 2008-04-14 02:23:02	14,336	----a-w	C:\WINDOWS\system32\svchost.exe
- 2006-10-20 01:38:26	715,776	----a-w	C:\WINDOWS\system32\sxs.dll
+ 2008-04-14 02:22:30	715,776	----a-w	C:\WINDOWS\system32\sxs.dll
- 2006-02-28 12:00:00	57,856	----a-w	C:\WINDOWS\system32\synceng.dll
+ 2008-04-14 02:22:30	57,856	----a-w	C:\WINDOWS\system32\synceng.dll
- 2006-02-28 12:00:00	198,656	----a-w	C:\WINDOWS\system32\syncui.dll
+ 2008-04-14 02:22:30	198,144	----a-w	C:\WINDOWS\system32\syncui.dll
- 2006-02-28 12:00:00	108,032	----a-w	C:\WINDOWS\system32\sysocmgr.exe
+ 2008-04-14 02:23:02	108,032	----a-w	C:\WINDOWS\system32\sysocmgr.exe
- 2006-02-28 12:00:00	998,912	----a-w	C:\WINDOWS\system32\syssetup.dll
+ 2008-04-14 02:22:30	1,005,056	----a-w	C:\WINDOWS\system32\syssetup.dll
- 2006-02-28 12:00:00	70,144	----a-w	C:\WINDOWS\system32\systeminfo.exe
+ 2008-04-14 02:23:02	73,728	----a-w	C:\WINDOWS\system32\systeminfo.exe
- 2005-10-17 21:20:02	118,272	----a-w	C:\WINDOWS\system32\t2embed.dll
+ 2008-04-14 02:22:30	117,760	----a-w	C:\WINDOWS\system32\t2embed.dll
- 2006-02-28 12:00:00	860,672	----a-w	C:\WINDOWS\system32\tapi3.dll
+ 2008-04-14 02:22:30	860,672	----a-w	C:\WINDOWS\system32\tapi3.dll
- 2006-02-28 12:00:00	181,760	----a-w	C:\WINDOWS\system32\tapi32.dll
+ 2008-04-14 02:22:30	181,760	----a-w	C:\WINDOWS\system32\tapi32.dll
- 2005-07-08 16:28:23	249,344	----a-w	C:\WINDOWS\system32\tapisrv.dll
+ 2008-04-14 02:22:30	249,856	----a-w	C:\WINDOWS\system32\tapisrv.dll
- 2006-02-28 12:00:00	74,240	----a-w	C:\WINDOWS\system32\taskkill.exe
+ 2008-04-14 02:23:02	78,336	----a-w	C:\WINDOWS\system32\taskkill.exe
- 2006-02-28 12:00:00	73,728	----a-w	C:\WINDOWS\system32\tasklist.exe
+ 2008-04-14 02:23:02	79,360	----a-w	C:\WINDOWS\system32\tasklist.exe
- 2006-02-28 12:00:00	140,800	----a-w	C:\WINDOWS\system32\taskmgr.exe
+ 2008-04-14 02:23:02	140,800	----a-w	C:\WINDOWS\system32\taskmgr.exe
- 2006-02-28 12:00:00	14,848	----a-w	C:\WINDOWS\system32\tcpmib.dll
+ 2008-04-14 02:22:30	14,848	----a-w	C:\WINDOWS\system32\tcpmib.dll
- 2006-02-28 12:00:00	47,104	----a-w	C:\WINDOWS\system32\tcpmon.dll
+ 2008-04-14 02:22:30	47,104	----a-w	C:\WINDOWS\system32\tcpmon.dll
- 2006-02-28 12:00:00	47,104	----a-w	C:\WINDOWS\system32\tcpmonui.dll
+ 2008-04-14 02:22:30	47,104	----a-w	C:\WINDOWS\system32\tcpmonui.dll
- 2005-05-11 02:30:02	78,336	----a-w	C:\WINDOWS\system32\telnet.exe
+ 2008-04-14 02:23:03	78,336	----a-w	C:\WINDOWS\system32\telnet.exe
- 2006-02-28 12:00:00	358,400	----a-w	C:\WINDOWS\system32\termmgr.dll
+ 2008-04-14 02:22:30	358,400	----a-w	C:\WINDOWS\system32\termmgr.dll
- 2006-02-28 12:00:00	297,472	----a-w	C:\WINDOWS\system32\termsrv.dll
+ 2008-04-14 02:22:30	297,472	----a-w	C:\WINDOWS\system32\termsrv.dll
- 2006-02-28 12:00:00	389,632	----a-w	C:\WINDOWS\system32\themeui.dll
+ 2008-04-14 02:22:30	389,632	----a-w	C:\WINDOWS\system32\themeui.dll
- 2006-02-28 12:00:00	64,000	----a-w	C:\WINDOWS\system32\tlntadmn.exe
+ 2008-04-14 02:23:03	64,000	----a-w	C:\WINDOWS\system32\tlntadmn.exe
- 2006-02-28 12:00:00	80,384	----a-w	C:\WINDOWS\system32\tlntsess.exe
+ 2008-04-14 02:23:03	80,384	----a-w	C:\WINDOWS\system32\tlntsess.exe
- 2006-02-28 12:00:00	75,264	----a-w	C:\WINDOWS\system32\tlntsvr.exe
+ 2008-04-14 02:23:03	75,264	----a-w	C:\WINDOWS\system32\tlntsvr.exe
- 2006-02-28 12:00:00	7,168	----a-w	C:\WINDOWS\system32\tlntsvrp.dll
+ 2008-04-14 02:22:30	7,168	----a-w	C:\WINDOWS\system32\tlntsvrp.dll
- 2006-02-28 12:00:00	347,136	----a-w	C:\WINDOWS\system32\tourstart.exe
+ 2008-04-14 02:23:03	347,136	----a-w	C:\WINDOWS\system32\tourstart.exe
- 2006-02-28 12:00:00	260,096	----a-w	C:\WINDOWS\system32\tracerpt.exe
+ 2008-04-14 02:23:03	260,096	----a-w	C:\WINDOWS\system32\tracerpt.exe
- 2006-02-28 12:00:00	12,800	----a-w	C:\WINDOWS\system32\tracert.exe
+ 2008-04-14 02:23:03	12,800	----a-w	C:\WINDOWS\system32\tracert.exe
- 2006-02-28 12:00:00	11,264	----a-w	C:\WINDOWS\system32\tree.com
+ 2008-04-14 02:23:07	12,800	----a-w	C:\WINDOWS\system32\tree.com
- 2006-02-28 12:00:00	90,624	----a-w	C:\WINDOWS\system32\trkwks.dll
+ 2008-04-14 02:22:30	90,112	----a-w	C:\WINDOWS\system32\trkwks.dll
- 2006-02-28 12:00:00	94,720	----a-w	C:\WINDOWS\system32\tscfgwmi.dll
+ 2008-04-14 02:22:30	94,720	----a-w	C:\WINDOWS\system32\tscfgwmi.dll
- 2006-02-28 12:00:00	12,168	----a-w	C:\WINDOWS\system32\tsddd.dll
+ 2008-04-14 02:23:27	12,168	----a-w	C:\WINDOWS\system32\tsddd.dll
+ 2008-04-14 02:22:30	53,248	------w	C:\WINDOWS\system32\tsgqec.dll
+ 2008-04-14 02:22:30	50,688	------w	C:\WINDOWS\system32\tspkg.dll
- 2006-02-28 12:00:00	44,032	----a-w	C:\WINDOWS\system32\twext.dll
+ 2008-04-14 02:22:30	57,856	----a-w	C:\WINDOWS\system32\twext.dll
- 2005-07-26 04:39:50	101,376	----a-w	C:\WINDOWS\system32\txflog.dll
+ 2008-04-14 02:22:30	101,376	----a-w	C:\WINDOWS\system32\txflog.dll
- 2008-07-14 11:09:18	62,976	------w	C:\WINDOWS\system32\tzchange.exe
+ 2008-04-14 02:23:03	60,416	------w	C:\WINDOWS\system32\tzchange.exe
- 2006-02-28 12:00:00	25,600	----a-w	C:\WINDOWS\system32\udhisapi.dll
+ 2008-04-14 02:22:30	26,624	----a-w	C:\WINDOWS\system32\udhisapi.dll
- 2006-02-28 12:00:00	312,832	----a-w	C:\WINDOWS\system32\ulib.dll
+ 2008-04-14 02:22:30	312,832	----a-w	C:\WINDOWS\system32\ulib.dll
- 2006-02-28 12:00:00	36,352	----a-w	C:\WINDOWS\system32\umandlg.dll
+ 2008-04-14 02:22:31	36,352	----a-w	C:\WINDOWS\system32\umandlg.dll
- 2005-08-23 03:39:57	124,416	----a-w	C:\WINDOWS\system32\umpnpmgr.dll
+ 2008-04-14 02:22:31	124,416	----a-w	C:\WINDOWS\system32\umpnpmgr.dll
- 2006-02-28 12:00:00	78,848	----a-w	C:\WINDOWS\system32\unimdmat.dll
+ 2008-04-14 02:22:31	78,848	----a-w	C:\WINDOWS\system32\unimdmat.dll
- 2006-02-28 12:00:00	13,824	----a-w	C:\WINDOWS\system32\uniplat.dll
+ 2008-04-14 02:22:31	13,824	----a-w	C:\WINDOWS\system32\uniplat.dll
- 2006-02-28 12:00:00	316,416	----a-w	C:\WINDOWS\system32\untfs.dll
+ 2008-04-14 02:22:31	316,416	----a-w	C:\WINDOWS\system32\untfs.dll
- 2006-02-28 12:00:00	132,608	----a-w	C:\WINDOWS\system32\upnp.dll
+ 2008-04-14 02:22:31	133,632	----a-w	C:\WINDOWS\system32\upnp.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\upnpcont.exe
+ 2008-04-14 02:23:03	16,896	----a-w	C:\WINDOWS\system32\upnpcont.exe
- 2007-02-05 20:18:44	185,856	----a-w	C:\WINDOWS\system32\upnphost.dll
+ 2008-04-14 02:22:31	186,880	----a-w	C:\WINDOWS\system32\upnphost.dll
- 2006-02-28 12:00:00	240,128	----a-w	C:\WINDOWS\system32\upnpui.dll
+ 2008-04-14 02:22:31	239,616	----a-w	C:\WINDOWS\system32\upnpui.dll
- 2006-02-28 12:00:00	18,432	----a-w	C:\WINDOWS\system32\ups.exe
+ 2008-04-14 02:23:03	18,432	----a-w	C:\WINDOWS\system32\ups.exe
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\usbmon.dll
+ 2008-04-14 02:22:31	16,896	----a-w	C:\WINDOWS\system32\usbmon.dll
- 2004-08-03 23:57:38	77,312	----a-w	C:\WINDOWS\system32\usbui.dll
+ 2008-04-14 02:22:31	77,312	----a-w	C:\WINDOWS\system32\usbui.dll
- 2007-03-08 15:36:30	579,072	----a-w	C:\WINDOWS\system32\user32.dll
+ 2008-04-14 02:22:31	580,096	----a-w	C:\WINDOWS\system32\user32.dll
- 2006-02-28 12:00:00	733,184	----a-w	C:\WINDOWS\system32\userenv.dll
+ 2008-04-14 02:22:31	736,768	----a-w	C:\WINDOWS\system32\userenv.dll
- 2006-02-28 12:00:00	25,088	----a-w	C:\WINDOWS\system32\userinit.exe
+ 2008-04-14 02:23:03	26,624	----a-w	C:\WINDOWS\system32\userinit.exe
+ 2008-04-13 16:44:16	17,920	------w	C:\WINDOWS\system32\usmt\cobramsg.dll
- 2006-02-28 12:00:00	125,440	----a-w	C:\WINDOWS\system32\usmt\guitrn.dll
+ 2008-04-14 02:22:11	134,656	----a-w	C:\WINDOWS\system32\usmt\guitrn.dll
+ 2008-04-14 02:22:11	115,712	------w	C:\WINDOWS\system32\usmt\guitrna.dll
- 2006-02-28 12:00:00	4,096	----a-w	C:\WINDOWS\system32\usmt\iconlib.dll
+ 2008-04-13 16:44:29	2,560	----a-w	C:\WINDOWS\system32\usmt\iconlib.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\usmt\log.dll
+ 2008-04-14 02:22:13	19,968	----a-w	C:\WINDOWS\system32\usmt\log.dll
- 2006-02-28 12:00:00	201,216	----a-w	C:\WINDOWS\system32\usmt\migism.dll
+ 2008-04-14 02:22:14	274,432	----a-w	C:\WINDOWS\system32\usmt\migism.dll
+ 2008-04-14 02:22:14	261,120	------w	C:\WINDOWS\system32\usmt\migisma.dll
- 2006-02-28 12:00:00	103,936	----a-w	C:\WINDOWS\system32\usmt\migload.exe
+ 2008-04-14 02:22:51	104,448	----a-w	C:\WINDOWS\system32\usmt\migload.exe
- 2006-02-28 12:00:00	247,296	----a-w	C:\WINDOWS\system32\usmt\migwiz.exe
+ 2008-04-14 02:22:51	252,416	----a-w	C:\WINDOWS\system32\usmt\migwiz.exe
+ 2008-04-14 02:22:51	248,320	------w	C:\WINDOWS\system32\usmt\migwiza.exe
- 2006-02-28 12:00:00	204,288	----a-w	C:\WINDOWS\system32\usmt\script.dll
+ 2008-04-14 02:22:23	217,088	----a-w	C:\WINDOWS\system32\usmt\script.dll
+ 2008-04-14 02:22:23	200,704	------w	C:\WINDOWS\system32\usmt\scripta.dll
- 2006-02-28 12:00:00	169,472	----a-w	C:\WINDOWS\system32\usmt\sysmod.dll
+ 2008-04-14 02:22:30	193,536	----a-w	C:\WINDOWS\system32\usmt\sysmod.dll
+ 2008-04-14 02:22:30	173,568	------w	C:\WINDOWS\system32\usmt\sysmoda.dll
- 2006-02-28 12:00:00	406,528	----a-w	C:\WINDOWS\system32\usp10.dll
+ 2008-04-14 02:22:31	406,016	----a-w	C:\WINDOWS\system32\usp10.dll
- 2006-02-28 12:00:00	50,176	----a-w	C:\WINDOWS\system32\utilman.exe
+ 2008-04-14 02:23:04	50,176	----a-w	C:\WINDOWS\system32\utilman.exe
- 2006-02-28 12:00:00	219,648	----a-w	C:\WINDOWS\system32\uxtheme.dll
+ 2008-04-14 02:22:31	219,136	----a-w	C:\WINDOWS\system32\uxtheme.dll
- 2006-02-28 12:00:00	30,749	----a-w	C:\WINDOWS\system32\vbajet32.dll
+ 2008-04-14 02:22:31	30,749	----a-w	C:\WINDOWS\system32\vbajet32.dll
- 2007-08-13 16:54:10	413,696	----a-w	C:\WINDOWS\system32\vbscript.dll
+ 2008-04-14 02:22:31	434,176	----a-w	C:\WINDOWS\system32\vbscript.dll
- 2006-02-28 12:00:00	26,112	----a-w	C:\WINDOWS\system32\vdmdbg.dll
+ 2008-04-14 02:22:31	26,112	----a-w	C:\WINDOWS\system32\vdmdbg.dll
- 2006-02-28 12:00:00	51,712	----a-w	C:\WINDOWS\system32\vdmredir.dll
+ 2008-04-14 02:22:31	51,712	----a-w	C:\WINDOWS\system32\vdmredir.dll
- 2006-03-17 00:38:01	28,672	------w	C:\WINDOWS\system32\verclsid.exe
+ 2008-04-14 02:23:04	28,672	------w	C:\WINDOWS\system32\verclsid.exe
- 2006-02-28 12:00:00	13,312	----a-w	C:\WINDOWS\system32\verifier.dll
+ 2008-04-14 02:22:31	26,624	----a-w	C:\WINDOWS\system32\verifier.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\version.dll
+ 2008-04-14 02:22:31	18,944	----a-w	C:\WINDOWS\system32\version.dll
- 2006-02-28 12:00:00	430,592	----a-w	C:\WINDOWS\system32\vssapi.dll
+ 2008-04-14 02:22:31	430,592	----a-w	C:\WINDOWS\system32\vssapi.dll
- 2006-02-28 12:00:00	292,864	----a-w	C:\WINDOWS\system32\vssvc.exe
+ 2008-04-14 02:23:04	292,864	----a-w	C:\WINDOWS\system32\vssvc.exe
- 2006-02-28 12:00:00	176,640	----a-w	C:\WINDOWS\system32\w32time.dll
+ 2008-04-14 02:22:31	177,152	----a-w	C:\WINDOWS\system32\w32time.dll
- 2006-02-28 12:00:00	15,872	----a-w	C:\WINDOWS\system32\w3ssl.dll
+ 2008-04-14 02:22:31	15,872	----a-w	C:\WINDOWS\system32\w3ssl.dll
- 2006-02-28 12:00:00	17,664	----a-w	C:\WINDOWS\system32\watchdog.sys
+ 2008-04-13 18:44:59	17,664	----a-w	C:\WINDOWS\system32\watchdog.sys
- 2006-02-28 12:00:00	208,896	----a-w	C:\WINDOWS\system32\wavemsp.dll
+ 2008-04-14 02:22:32	215,552	----a-w	C:\WINDOWS\system32\wavemsp.dll
- 2006-02-28 12:00:00	1,352,704	----a-w	C:\WINDOWS\system32\wbem\cimwin32.dll
+ 2008-04-14 02:22:07	1,359,360	----a-w	C:\WINDOWS\system32\wbem\cimwin32.dll
- 2006-02-28 12:00:00	45,568	----a-w	C:\WINDOWS\system32\wbem\CmdEvTgProv.dll
+ 2008-04-14 02:22:10	45,056	----a-w	C:\WINDOWS\system32\wbem\cmdevtgprov.dll
- 2006-02-28 12:00:00	247,808	----a-w	C:\WINDOWS\system32\wbem\esscli.dll
+ 2008-04-14 02:22:10	247,808	----a-w	C:\WINDOWS\system32\wbem\esscli.dll
- 2006-02-28 12:00:00	22,016	----a-w	C:\WINDOWS\system32\wbem\evntrprv.dll
+ 2008-04-14 02:22:10	21,504	----a-w	C:\WINDOWS\system32\wbem\evntrprv.dll
- 2006-02-28 12:00:00	472,064	----a-w	C:\WINDOWS\system32\wbem\fastprox.dll
+ 2008-04-14 02:22:10	472,064	----a-w	C:\WINDOWS\system32\wbem\fastprox.dll
- 2006-02-28 12:00:00	185,856	----a-w	C:\WINDOWS\system32\wbem\framedyn.dll
+ 2008-04-14 02:22:10	185,344	----a-w	C:\WINDOWS\system32\wbem\framedyn.dll
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\wbem\krnlprov.dll
+ 2008-04-14 02:22:13	24,576	----a-w	C:\WINDOWS\system32\wbem\krnlprov.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\wbem\mofcomp.exe
+ 2008-04-14 02:22:52	16,896	----a-w	C:\WINDOWS\system32\wbem\mofcomp.exe
- 2006-02-28 12:00:00	124,416	----a-w	C:\WINDOWS\system32\wbem\mofd.dll
+ 2008-04-14 02:22:15	124,416	----a-w	C:\WINDOWS\system32\wbem\mofd.dll
- 2006-02-28 12:00:00	47,104	----a-w	C:\WINDOWS\system32\wbem\ncprov.dll
+ 2008-04-14 02:22:19	47,104	----a-w	C:\WINDOWS\system32\wbem\ncprov.dll
- 2006-02-28 12:00:00	212,992	----a-w	C:\WINDOWS\system32\wbem\ntevt.dll
+ 2008-04-14 02:22:20	212,992	----a-w	C:\WINDOWS\system32\wbem\ntevt.dll
- 2006-02-28 12:00:00	92,672	----a-w	C:\WINDOWS\system32\wbem\policman.dll
+ 2008-04-14 02:22:23	92,672	----a-w	C:\WINDOWS\system32\wbem\policman.dll
- 2006-02-28 12:00:00	237,056	----a-w	C:\WINDOWS\system32\wbem\provthrd.dll
+ 2008-04-14 02:22:23	237,056	----a-w	C:\WINDOWS\system32\wbem\provthrd.dll
- 2006-02-28 12:00:00	177,152	----a-w	C:\WINDOWS\system32\wbem\repdrvfs.dll
+ 2008-04-14 02:22:23	178,176	----a-w	C:\WINDOWS\system32\wbem\repdrvfs.dll
- 2006-02-28 12:00:00	36,864	----a-w	C:\WINDOWS\system32\wbem\scrcons.exe
+ 2008-04-14 02:22:59	36,352	----a-w	C:\WINDOWS\system32\wbem\scrcons.exe
- 2006-02-28 12:00:00	86,528	----a-w	C:\WINDOWS\system32\wbem\stdprov.dll
+ 2008-04-14 02:22:30	86,528	----a-w	C:\WINDOWS\system32\wbem\stdprov.dll
- 2006-02-28 12:00:00	131,584	----a-w	C:\WINDOWS\system32\wbem\viewprov.dll
+ 2008-04-14 02:22:31	131,584	----a-w	C:\WINDOWS\system32\wbem\viewprov.dll
- 2006-02-28 12:00:00	201,216	----a-w	C:\WINDOWS\system32\wbem\wbemcntl.dll
+ 2008-04-14 02:22:32	201,216	----a-w	C:\WINDOWS\system32\wbem\wbemcntl.dll
- 2006-02-28 12:00:00	214,528	----a-w	C:\WINDOWS\system32\wbem\wbemcomn.dll
+ 2008-04-14 02:22:32	214,528	----a-w	C:\WINDOWS\system32\wbem\wbemcomn.dll
- 2006-02-28 12:00:00	71,680	----a-w	C:\WINDOWS\system32\wbem\wbemcons.dll
+ 2008-04-14 02:22:32	71,680	----a-w	C:\WINDOWS\system32\wbem\wbemcons.dll
- 2006-02-28 12:00:00	530,944	----a-w	C:\WINDOWS\system32\wbem\wbemcore.dll
+ 2008-04-14 02:22:32	531,456	----a-w	C:\WINDOWS\system32\wbem\wbemcore.dll
- 2006-02-28 12:00:00	178,176	----a-w	C:\WINDOWS\system32\wbem\wbemdisp.dll
+ 2008-04-14 02:22:32	178,176	----a-w	C:\WINDOWS\system32\wbem\wbemdisp.dll
- 2006-02-28 12:00:00	273,920	----a-w	C:\WINDOWS\system32\wbem\wbemess.dll
+ 2008-04-14 02:22:32	273,920	----a-w	C:\WINDOWS\system32\wbem\wbemess.dll
- 2006-02-28 12:00:00	44,544	----a-w	C:\WINDOWS\system32\wbem\wbemperf.dll
+ 2008-04-14 02:22:32	44,544	----a-w	C:\WINDOWS\system32\wbem\wbemperf.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\wbem\wbemprox.dll
+ 2008-04-14 02:22:32	18,944	----a-w	C:\WINDOWS\system32\wbem\wbemprox.dll
- 2006-02-28 12:00:00	43,520	----a-w	C:\WINDOWS\system32\wbem\wbemsvc.dll
+ 2008-04-14 02:22:32	43,520	----a-w	C:\WINDOWS\system32\wbem\wbemsvc.dll
- 2006-02-28 12:00:00	120,320	----a-w	C:\WINDOWS\system32\wbem\wbemtest.exe
+ 2008-04-14 02:23:04	120,320	----a-w	C:\WINDOWS\system32\wbem\wbemtest.exe
- 2006-02-28 12:00:00	197,120	----a-w	C:\WINDOWS\system32\wbem\wbemupgd.dll
+ 2008-04-14 02:22:32	197,120	----a-w	C:\WINDOWS\system32\wbem\wbemupgd.dll
- 2006-02-28 12:00:00	196,608	----a-w	C:\WINDOWS\system32\wbem\wmiadap.exe
+ 2008-04-14 02:23:06	196,608	----a-w	C:\WINDOWS\system32\wbem\wmiadap.exe
- 2006-02-28 12:00:00	7,680	----a-w	C:\WINDOWS\system32\wbem\wmiapres.dll
+ 2008-04-14 01:54:35	7,680	----a-w	C:\WINDOWS\system32\wbem\wmiapres.dll
- 2006-02-28 12:00:00	89,088	----a-w	C:\WINDOWS\system32\wbem\wmiaprpl.dll
+ 2008-04-14 02:22:32	88,576	----a-w	C:\WINDOWS\system32\wbem\wmiaprpl.dll
- 2006-02-28 12:00:00	126,464	----a-w	C:\WINDOWS\system32\wbem\wmiapsrv.exe
+ 2008-04-14 02:23:06	126,464	----a-w	C:\WINDOWS\system32\wbem\wmiapsrv.exe
- 2006-02-28 12:00:00	370,176	----a-w	C:\WINDOWS\system32\wbem\wmic.exe
+ 2008-04-14 02:23:06	370,176	----a-w	C:\WINDOWS\system32\wbem\wmic.exe
- 2006-02-28 12:00:00	60,928	----a-w	C:\WINDOWS\system32\wbem\wmicookr.dll
+ 2008-04-14 02:22:32	60,928	----a-w	C:\WINDOWS\system32\wbem\wmicookr.dll
- 2006-02-28 12:00:00	140,800	----a-w	C:\WINDOWS\system32\wbem\wmidcprv.dll
+ 2008-04-14 02:22:32	140,800	----a-w	C:\WINDOWS\system32\wbem\wmidcprv.dll
- 2006-02-28 12:00:00	156,672	----a-w	C:\WINDOWS\system32\wbem\wmipcima.dll
+ 2008-04-14 02:22:32	156,672	----a-w	C:\WINDOWS\system32\wbem\wmipcima.dll
- 2006-02-28 12:00:00	132,096	----a-w	C:\WINDOWS\system32\wbem\wmipdskq.dll
+ 2008-04-14 02:22:32	132,096	----a-w	C:\WINDOWS\system32\wbem\wmipdskq.dll
- 2006-02-28 12:00:00	62,464	----a-w	C:\WINDOWS\system32\wbem\wmipiprt.dll
+ 2008-04-14 02:22:32	61,952	----a-w	C:\WINDOWS\system32\wbem\wmipiprt.dll
- 2006-02-28 12:00:00	62,976	----a-w	C:\WINDOWS\system32\wbem\wmipjobj.dll
+ 2008-04-14 02:22:32	62,464	----a-w	C:\WINDOWS\system32\wbem\wmipjobj.dll
- 2006-02-28 12:00:00	144,896	----a-w	C:\WINDOWS\system32\wbem\wmiprov.dll
+ 2008-04-14 02:22:32	144,896	----a-w	C:\WINDOWS\system32\wbem\wmiprov.dll
- 2006-02-28 12:00:00	437,248	----a-w	C:\WINDOWS\system32\wbem\wmiprvsd.dll
+ 2008-04-14 02:22:32	437,248	----a-w	C:\WINDOWS\system32\wbem\wmiprvsd.dll
- 2006-02-28 12:00:00	218,112	----a-w	C:\WINDOWS\system32\wbem\wmiprvse.exe
+ 2008-04-14 02:23:06	218,112	----a-w	C:\WINDOWS\system32\wbem\wmiprvse.exe
- 2006-02-28 12:00:00	41,472	----a-w	C:\WINDOWS\system32\wbem\wmipsess.dll
+ 2008-04-14 02:22:32	41,472	----a-w	C:\WINDOWS\system32\wbem\wmipsess.dll
- 2006-02-28 12:00:00	145,408	----a-w	C:\WINDOWS\system32\wbem\wmisvc.dll
+ 2008-04-14 02:22:32	145,408	----a-w	C:\WINDOWS\system32\wbem\wmisvc.dll
- 2006-02-28 12:00:00	99,840	----a-w	C:\WINDOWS\system32\wbem\wmiutils.dll
+ 2008-04-14 02:22:32	99,840	----a-w	C:\WINDOWS\system32\wbem\wmiutils.dll
- 2006-03-24 04:37:55	49,152	----a-w	C:\WINDOWS\system32\wdigest.dll
+ 2008-04-14 02:22:32	49,152	----a-w	C:\WINDOWS\system32\wdigest.dll
- 2006-02-28 12:00:00	23,552	----a-w	C:\WINDOWS\system32\wdmaud.drv
+ 2008-04-14 02:23:08	23,552	----a-w	C:\WINDOWS\system32\wdmaud.drv
- 2006-01-04 03:35:01	68,096	----a-w	C:\WINDOWS\system32\webclnt.dll
+ 2008-04-14 02:22:32	68,096	----a-w	C:\WINDOWS\system32\webclnt.dll

Fako · 13.10.2008, 17:50

Code:

ATTFilter

- 2006-02-28 12:00:00	136,192	----a-w	C:\WINDOWS\system32\webvw.dll
+ 2008-04-14 02:22:32	136,192	----a-w	C:\WINDOWS\system32\webvw.dll
- 2006-02-28 12:00:00	67,072	----a-w	C:\WINDOWS\system32\wextract.exe
+ 2008-04-14 02:23:04	67,072	----a-w	C:\WINDOWS\system32\wextract.exe
- 2006-02-28 12:00:00	437,760	----a-w	C:\WINDOWS\system32\wiaacmgr.exe
+ 2008-04-14 02:23:05	437,760	----a-w	C:\WINDOWS\system32\wiaacmgr.exe
- 2006-02-28 12:00:00	464,384	----a-w	C:\WINDOWS\system32\wiadefui.dll
+ 2008-04-14 02:22:32	464,384	----a-w	C:\WINDOWS\system32\wiadefui.dll
- 2006-02-28 12:00:00	124,928	----a-w	C:\WINDOWS\system32\wiadss.dll
+ 2008-04-14 02:22:32	124,928	----a-w	C:\WINDOWS\system32\wiadss.dll
- 2006-02-28 12:00:00	75,776	----a-w	C:\WINDOWS\system32\wiascr.dll
+ 2008-04-14 02:22:32	75,776	----a-w	C:\WINDOWS\system32\wiascr.dll
- 2006-12-19 18:17:03	334,336	----a-w	C:\WINDOWS\system32\wiaservc.dll
+ 2008-04-14 02:22:32	334,336	----a-w	C:\WINDOWS\system32\wiaservc.dll
- 2006-02-28 12:00:00	592,896	----a-w	C:\WINDOWS\system32\wiashext.dll
+ 2008-04-14 02:22:32	592,896	----a-w	C:\WINDOWS\system32\wiashext.dll
- 2006-02-28 12:00:00	111,104	----a-w	C:\WINDOWS\system32\wiavideo.dll
+ 2008-04-14 02:22:32	111,104	----a-w	C:\WINDOWS\system32\wiavideo.dll
- 2008-03-20 08:03:19	1,845,376	----a-w	C:\WINDOWS\system32\win32k.sys
+ 2008-04-14 01:53:16	1,845,760	----a-w	C:\WINDOWS\system32\win32k.sys
- 2006-02-28 12:00:00	101,888	----a-w	C:\WINDOWS\system32\win32spl.dll
+ 2008-04-14 02:22:32	102,400	----a-w	C:\WINDOWS\system32\win32spl.dll
- 2006-02-28 12:00:00	937,984	----a-w	C:\WINDOWS\system32\winbrand.dll
+ 2008-04-13 16:48:53	1,647,616	----a-w	C:\WINDOWS\system32\winbrand.dll
+ 2008-04-14 02:22:32	712,704	------w	C:\WINDOWS\system32\windowscodecs.dll
+ 2008-04-14 02:22:32	346,112	------w	C:\WINDOWS\system32\windowscodecsext.dll
- 2006-02-28 12:00:00	351,232	----a-w	C:\WINDOWS\system32\winhttp.dll
+ 2008-04-14 02:22:32	354,304	----a-w	C:\WINDOWS\system32\winhttp.dll
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\winipsec.dll
+ 2008-04-14 02:22:32	32,256	----a-w	C:\WINDOWS\system32\winipsec.dll
- 2006-02-28 12:00:00	507,392	----a-w	C:\WINDOWS\system32\winlogon.exe
+ 2008-04-14 02:23:05	513,024	----a-w	C:\WINDOWS\system32\winlogon.exe
- 2006-02-28 12:00:00	178,176	----a-w	C:\WINDOWS\system32\winmm.dll
+ 2008-04-14 02:22:32	178,176	----a-w	C:\WINDOWS\system32\winmm.dll
- 2006-02-28 12:00:00	772,096	----a-w	C:\WINDOWS\system32\winntbbu.dll
+ 2008-04-14 02:21:43	762,368	----a-w	C:\WINDOWS\system32\winntbbu.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\winrnr.dll
+ 2008-04-14 02:22:32	16,896	----a-w	C:\WINDOWS\system32\winrnr.dll
- 2006-02-28 12:00:00	100,352	----a-w	C:\WINDOWS\system32\winscard.dll
+ 2008-04-14 02:22:32	100,352	----a-w	C:\WINDOWS\system32\winscard.dll
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\winshfhc.dll
+ 2008-04-14 02:22:32	17,408	----a-w	C:\WINDOWS\system32\winshfhc.dll
- 2006-02-28 12:00:00	146,944	----a-w	C:\WINDOWS\system32\winspool.drv
+ 2008-04-14 02:23:08	146,944	----a-w	C:\WINDOWS\system32\winspool.drv
- 2007-03-17 13:44:25	293,376	----a-w	C:\WINDOWS\system32\winsrv.dll
+ 2008-04-14 02:22:32	293,888	----a-w	C:\WINDOWS\system32\winsrv.dll
- 2006-02-28 12:00:00	53,760	----a-w	C:\WINDOWS\system32\winsta.dll
+ 2008-04-14 02:22:32	53,760	----a-w	C:\WINDOWS\system32\winsta.dll
- 2006-02-28 12:00:00	176,640	----a-w	C:\WINDOWS\system32\wintrust.dll
+ 2008-04-14 02:22:32	176,640	----a-w	C:\WINDOWS\system32\wintrust.dll
- 2006-02-28 12:00:00	5,632	----a-w	C:\WINDOWS\system32\winver.exe
+ 2008-04-14 02:23:05	5,632	----a-w	C:\WINDOWS\system32\winver.exe
- 2006-08-17 12:28:44	132,096	----a-w	C:\WINDOWS\system32\wkssvc.dll
+ 2008-04-14 02:22:32	132,096	----a-w	C:\WINDOWS\system32\wkssvc.dll
+ 2008-04-14 02:22:32	69,120	------w	C:\WINDOWS\system32\wlanapi.dll
- 2006-02-28 12:00:00	173,056	----a-w	C:\WINDOWS\system32\wldap32.dll
+ 2008-04-14 02:22:32	173,056	----a-w	C:\WINDOWS\system32\wldap32.dll
- 2006-02-28 12:00:00	93,696	----a-w	C:\WINDOWS\system32\wlnotify.dll
+ 2008-04-14 02:22:32	93,696	----a-w	C:\WINDOWS\system32\wlnotify.dll
- 2006-02-28 12:00:00	202,752	----a-w	C:\WINDOWS\system32\wmerror.dll
+ 2008-04-14 01:54:32	202,752	----a-w	C:\WINDOWS\system32\wmerror.dll
- 2006-02-28 12:00:00	5,632	----a-w	C:\WINDOWS\system32\wmi.dll
+ 2008-04-14 02:21:45	5,632	----a-w	C:\WINDOWS\system32\wmi.dll
- 2007-04-30 00:22:16	4,734,976	----a-w	C:\WINDOWS\system32\wmp.dll
+ 2008-04-14 02:22:32	4,874,240	----a-w	C:\WINDOWS\system32\wmp.dll
- 2006-02-28 12:00:00	114,688	----a-w	C:\WINDOWS\system32\wmpasf.dll
+ 2008-04-14 02:22:32	114,688	----a-w	C:\WINDOWS\system32\wmpasf.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\wmpcd.dll
+ 2008-04-14 02:22:32	20,480	----a-w	C:\WINDOWS\system32\wmpcd.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\wmpcore.dll
+ 2008-04-14 02:22:32	20,480	----a-w	C:\WINDOWS\system32\wmpcore.dll
- 2006-02-28 12:00:00	233,472	----a-w	C:\WINDOWS\system32\wmpdxm.dll
+ 2008-04-14 02:22:32	233,472	----a-w	C:\WINDOWS\system32\wmpdxm.dll
+ 2008-04-14 02:22:32	276,992	------w	C:\WINDOWS\system32\wmphoto.dll
- 2006-02-28 12:00:00	2,973,696	----a-w	C:\WINDOWS\system32\wmploc.dll
+ 2008-04-14 01:56:20	2,973,696	----a-w	C:\WINDOWS\system32\wmploc.dll
- 2006-02-28 12:00:00	102,400	----a-w	C:\WINDOWS\system32\wmpshell.dll
+ 2008-04-14 02:22:32	102,400	----a-w	C:\WINDOWS\system32\wmpshell.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\wmpui.dll
+ 2008-04-14 02:22:32	20,480	----a-w	C:\WINDOWS\system32\wmpui.dll
- 2006-02-28 12:00:00	115,200	----a-w	C:\WINDOWS\system32\wmsdmoe.dll
+ 2008-04-14 02:22:32	115,200	----a-w	C:\WINDOWS\system32\wmsdmoe.dll
- 2006-02-28 12:00:00	303,616	----a-w	C:\WINDOWS\system32\wmstream.dll
+ 2008-04-14 02:22:32	303,616	----a-w	C:\WINDOWS\system32\wmstream.dll
- 2006-02-28 12:00:00	264,704	----a-w	C:\WINDOWS\system32\wow32.dll
+ 2008-04-14 02:22:32	264,704	----a-w	C:\WINDOWS\system32\wow32.dll
- 2006-02-28 12:00:00	32,256	----a-w	C:\WINDOWS\system32\wpabaln.exe
+ 2008-04-14 02:23:06	32,256	----a-w	C:\WINDOWS\system32\wpabaln.exe
- 2006-02-28 12:00:00	32,256	----a-w	C:\WINDOWS\system32\wpnpinst.exe
+ 2008-04-14 02:23:06	11,264	----a-w	C:\WINDOWS\system32\wpnpinst.exe
- 2006-02-28 12:00:00	82,944	----a-w	C:\WINDOWS\system32\ws2_32.dll
+ 2008-04-14 02:22:32	82,432	----a-w	C:\WINDOWS\system32\ws2_32.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\ws2help.dll
+ 2008-04-14 02:22:32	19,968	----a-w	C:\WINDOWS\system32\ws2help.dll
- 2006-02-28 12:00:00	13,824	----a-w	C:\WINDOWS\system32\wscntfy.exe
+ 2008-04-14 02:23:06	13,824	----a-w	C:\WINDOWS\system32\wscntfy.exe
- 2006-02-28 12:00:00	114,688	----a-w	C:\WINDOWS\system32\wscript.exe
+ 2008-04-14 02:23:06	155,648	----a-w	C:\WINDOWS\system32\wscript.exe
- 2006-02-28 12:00:00	81,408	----a-w	C:\WINDOWS\system32\wscsvc.dll
+ 2008-04-14 02:22:32	80,896	----a-w	C:\WINDOWS\system32\wscsvc.dll
- 2006-02-28 12:00:00	610,304	----a-w	C:\WINDOWS\system32\wsecedit.dll
+ 2008-04-14 02:22:32	617,472	----a-w	C:\WINDOWS\system32\wsecedit.dll
- 2006-02-28 12:00:00	108,032	----a-w	C:\WINDOWS\system32\wshbth.dll
+ 2008-04-14 02:22:32	108,032	----a-w	C:\WINDOWS\system32\wshbth.dll
- 2006-02-28 12:00:00	28,672	----a-w	C:\WINDOWS\system32\wshcon.dll
+ 2008-04-14 02:22:32	36,864	----a-w	C:\WINDOWS\system32\wshcon.dll
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\wshext.dll
+ 2008-04-14 02:22:32	90,112	----a-w	C:\WINDOWS\system32\wshext.dll
- 2006-02-28 12:00:00	14,336	----a-w	C:\WINDOWS\system32\wship6.dll
+ 2008-04-14 02:22:32	14,336	----a-w	C:\WINDOWS\system32\wship6.dll
- 2006-02-28 12:00:00	11,776	----a-w	C:\WINDOWS\system32\WshRm.dll
+ 2008-04-14 02:22:32	11,264	----a-w	C:\WINDOWS\system32\wshrm.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\system32\wshtcpip.dll
+ 2008-04-14 02:22:32	19,456	----a-w	C:\WINDOWS\system32\wshtcpip.dll
- 2006-02-28 12:00:00	42,496	----a-w	C:\WINDOWS\system32\wsnmp32.dll
+ 2008-04-14 02:22:32	41,984	----a-w	C:\WINDOWS\system32\wsnmp32.dll
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\wsock32.dll
+ 2008-04-14 02:22:32	24,576	----a-w	C:\WINDOWS\system32\wsock32.dll
- 2006-02-28 12:00:00	51,200	----a-w	C:\WINDOWS\system32\wstdecod.dll
+ 2008-04-14 02:22:32	51,200	----a-w	C:\WINDOWS\system32\wstdecod.dll
- 2006-02-28 12:00:00	18,432	----a-w	C:\WINDOWS\system32\wtsapi32.dll
+ 2008-04-14 02:22:32	18,432	----a-w	C:\WINDOWS\system32\wtsapi32.dll
- 2006-02-28 12:00:00	168,448	----a-w	C:\WINDOWS\system32\wuauclt1.exe
+ 2008-04-14 02:23:06	168,448	----a-w	C:\WINDOWS\system32\wuauclt1.exe
- 2006-02-28 12:00:00	183,808	----a-w	C:\WINDOWS\system32\wuaueng1.dll
+ 2008-04-14 02:22:33	183,808	----a-w	C:\WINDOWS\system32\wuaueng1.dll
- 2006-02-28 12:00:00	6,656	----a-w	C:\WINDOWS\system32\wuauserv.dll
+ 2008-04-14 02:22:33	6,656	----a-w	C:\WINDOWS\system32\wuauserv.dll
- 2006-02-28 12:00:00	379,904	----a-w	C:\WINDOWS\system32\wzcdlg.dll
+ 2008-04-14 02:22:33	384,512	----a-w	C:\WINDOWS\system32\wzcdlg.dll
- 2006-02-28 12:00:00	51,712	----a-w	C:\WINDOWS\system32\wzcsapi.dll
+ 2008-04-14 02:22:33	52,736	----a-w	C:\WINDOWS\system32\wzcsapi.dll
- 2006-02-28 12:00:00	359,936	----a-w	C:\WINDOWS\system32\wzcsvc.dll
+ 2008-04-14 02:22:33	483,840	----a-w	C:\WINDOWS\system32\wzcsvc.dll
- 2006-02-28 12:00:00	91,648	----a-w	C:\WINDOWS\system32\xactsrv.dll
+ 2008-04-14 02:22:33	91,648	----a-w	C:\WINDOWS\system32\xactsrv.dll
- 2006-02-28 12:00:00	30,720	----a-w	C:\WINDOWS\system32\xcopy.exe
+ 2008-04-14 02:23:07	30,720	----a-w	C:\WINDOWS\system32\xcopy.exe
- 2006-07-14 15:51:51	121,856	------w	C:\WINDOWS\system32\xmllite.dll
+ 2008-04-14 02:22:33	121,856	------w	C:\WINDOWS\system32\xmllite.dll
- 2006-02-28 12:00:00	129,536	----a-w	C:\WINDOWS\system32\xmlprov.dll
+ 2008-04-14 02:22:33	129,024	----a-w	C:\WINDOWS\system32\xmlprov.dll
- 2006-02-28 12:00:00	50,176	----a-w	C:\WINDOWS\system32\xmlprovi.dll
+ 2008-04-14 02:22:33	50,176	----a-w	C:\WINDOWS\system32\xmlprovi.dll
- 2006-03-01 19:43:33	11,776	----a-w	C:\WINDOWS\system32\xolehlp.dll
+ 2008-04-14 02:22:33	11,776	----a-w	C:\WINDOWS\system32\xolehlp.dll
- 2006-02-28 12:00:00	438,784	----a-w	C:\WINDOWS\system32\xpob2res.dll
+ 2008-04-13 18:40:32	438,784	----a-w	C:\WINDOWS\system32\xpob2res.dll
- 2006-02-28 12:00:00	199,680	----a-w	C:\WINDOWS\system32\xpsp1res.dll
+ 2008-04-13 18:35:21	199,680	----a-w	C:\WINDOWS\system32\xpsp1res.dll
- 2006-02-28 12:00:00	2,981,888	----a-w	C:\WINDOWS\system32\xpsp2res.dll
+ 2008-04-13 18:36:47	2,981,888	----a-w	C:\WINDOWS\system32\xpsp2res.dll
- 2008-02-15 23:03:14	374,272	----a-w	C:\WINDOWS\system32\xpsp3res.dll
+ 2008-04-13 18:39:17	779,776	----a-w	C:\WINDOWS\system32\xpsp3res.dll
- 2006-02-28 12:00:00	340,992	----a-w	C:\WINDOWS\system32\zipfldr.dll
+ 2008-04-14 02:22:33	341,504	----a-w	C:\WINDOWS\system32\zipfldr.dll
- 2008-10-12 17:14:52	387,924	----a-w	C:\WINDOWS\system32\ZoneLabs\avsys\bases\sfdb.dat
+ 2008-10-13 15:25:38	497,488	----a-w	C:\WINDOWS\system32\ZoneLabs\avsys\bases\sfdb.dat
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\twain_32.dll
+ 2008-04-14 02:22:30	50,688	----a-w	C:\WINDOWS\twain_32.dll
- 2006-02-28 12:00:00	288,768	----a-w	C:\WINDOWS\winhlp32.exe
+ 2008-04-14 02:23:05	288,768	----a-w	C:\WINDOWS\winhlp32.exe
- 2007-01-19 12:50:53	74,802	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\atl.dll
+ 2008-04-14 02:20:10	74,802	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\atl.dll
- 2007-01-19 12:50:53	995,383	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42.dll
+ 2008-04-14 02:20:10	995,383	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42.dll
- 2007-01-19 12:50:53	1,011,774	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42u.dll
+ 2008-04-14 02:20:10	1,011,774	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\mfc42u.dll
- 2007-01-19 12:50:53	401,462	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\msvcp60.dll
+ 2008-04-14 02:20:10	401,462	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\msvcp60.dll
+ 2008-04-14 02:20:11	1,054,208	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
+ 2008-04-14 02:20:11	57,344	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcirt.dll
+ 2008-04-14 02:20:11	343,040	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
+ 2008-04-14 02:20:10	1,724,416	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5512_x-ww_dfb54e0c\GdiPlus.dll
- 2006-02-28 12:00:00	852,992	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.Dxmrtp_6595b64144ccf1df_5.2.2.3_x-ww_468466a7\dxmrtp.dll
+ 2008-04-14 02:20:10	852,992	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.Dxmrtp_6595b64144ccf1df_5.2.2.3_x-ww_468466a7\dxmrtp.dll
- 2006-02-28 12:00:00	994,304	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.RtcDll_6595b64144ccf1df_5.2.2.3_x-ww_d6bd8b95\rtcdll.dll
+ 2008-04-14 02:20:10	994,304	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.RtcDll_6595b64144ccf1df_5.2.2.3_x-ww_d6bd8b95\rtcdll.dll
- 2006-02-28 12:00:00	137,216	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.RtcRes_6595b64144ccf1df_5.2.2.3_de_78e7f208\rtcres.dll
+ 2008-04-14 01:59:09	137,216	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Networking.RtcRes_6595b64144ccf1df_5.2.2.3_de_78e7f208\rtcres.dll
.
-- Snapshot auf jetziges Datum zurückgesetzt --
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe" [2005-09-25 94208]
"MsnMsgr"="C:\Programme\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
"MSMSGS"="C:\Programme\Messenger\msmsgs.exe" [2008-04-14 1695232]
"Nokia.PCSync"="C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]
"Google Update"="C:\Dokumente und Einstellungen\Peter\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe" [2008-09-02 133104]
"ICQ"="C:\Programme\ICQ6\ICQ.exe" [2008-09-01 173304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-03-09 7561216]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-03-09 86016]
"avgnt"="C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-28 266497]
"WinampAgent"="C:\Programme\Winamp\winampa.exe" [2008-04-01 36352]
"SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"Adobe Reader Speed Launcher"="C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"iTunesHelper"="C:\Programme\iTunes\iTunesHelper.exe" [2006-06-14 278528]
"QuickTime Task"="C:\Programme\QuickTime\qttask.exe" [2008-06-05 282624]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2005-09-25 155648]
"PCSuiteTrayApplication"="C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-06-18 271360]
"TkBellExe"="C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" [2008-09-20 185896]
"ZoneAlarm Client"="C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe" [2008-07-09 919016]
"nwiz"="nwiz.exe" [2006-03-09 C:\WINDOWS\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 1241088]

C:\Dokumente und Einstellungen\Peter\Startmen\Programme\Autostart\
Xfire.lnk - C:\Programme\Xfire\xfire.exe [2008-09-18 3089232]

C:\Dokumente und Einstellungen\All Users\Startmen\Programme\Autostart\
D-Link AirPlus G+ Wireless Adapter Utility.lnk - C:\Programme\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE [2008-05-29 671744]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.XFR1"= xfcodec.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Programme\\ICQ6\\ICQ.exe"=
"C:\\Programme\\KONAMI\\Pro Evolution Soccer 2008\\PES2008.exe"=
"C:\\Programme\\iTunes\\iTunes.exe"=
"C:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programme\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Programme\\Xfire\\xfire.exe"=
"C:\\Programme\\Electronic Arts\\Command & Conquer 3\\RetailExe\\1.0\\cnc3game.dat"=
"C:\\Programme\\Mozilla Firefox\\firefox.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

R3 cm102u32;C-Media CM6501 Like Sound Interface;C:\WINDOWS\system32\drivers\c6501.sys [2006-09-05 1419968]
R3 TNET1130;D-Link AirPlus G+ Wireless Adapter;C:\WINDOWS\system32\DRIVERS\GPlus.sys [2004-05-21 283392]
.
Inhalt des "geplante Tasks" Ordners

2008-10-13 C:\WINDOWS\Tasks\GoogleUpdateTaskUser.job
- C:\Dokumente und Einstellungen\Peter\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2008-09-02 22:00]
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-13 17:32:41
Windows 5.1.2600 Service Pack 3 NTFS

Scanne versteckte Prozesse...

Scanne versteckte Autostarteinträge...

Scanne versteckte Dateien...

Scan erfolgreich abgeschlossen
versteckte Dateien: 0

**************************************************************************
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------

Prozess: C:\WINDOWS\explorer.exe
-> C:\WINDOWS\system32\nview.dll
.
Zeit der Fertigstellung: 2008-10-13 17:35:19
ComboFix-quarantined-files.txt  2008-10-13 15:35:05
ComboFix2.txt  2008-10-12 17:27:31

Vor Suchlauf: 8 Verzeichnis(se), 125.092.839.424 Bytes frei
Nach Suchlauf: 10 Verzeichnis(se), 125,080,162,304 Bytes frei

4827	--- E O F ---	2008-10-13 11:57:06

So bitteschön

nochdigger · 13.10.2008, 18:55

Hallo

das scheint mir i.O., wie geht es deinem System?
Gibt es noch Probleme?

Deinstalliere Combofix bitte

Zitat:

Start --> Ausführen --> schreib rein Combofix /u --> drücke Enter

und lösche Smitfraudfix es kommt sonst zu Fehlalarmen mit Antivir.

Zum Abschluss bitte Antivir laufen lassen wie hier beschrieben
http://www.trojaner-board.de/54192-a...tellungen.html

MFG

Fako · 13.10.2008, 19:49

Hey,
System läuft wieder ohne Probleme.

Bei Antivir hat er einen Fund gehabt, und zwar folgenden :

Zitat:

Die Datei 'C:\Programme\Mozilla Firefox\SmitfraudFix\restart.exe'
enthielt einen Virus oder unerwünschtes Programm 'SPR/Tool.Hardoff.A' [riskware].
Durchgeführte Aktion(en):
Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '4966942d.qua' verschoben!

LG Fako

PS: i.O. ?

nochdigger · 13.10.2008, 20:53

Hallo

Zitat:

und lösche Smitfraudfix es kommt sonst zu Fehlalarmen mit Antivir.

Zitat:

Bei Antivir hat er einen Fund gehabt, und zwar folgenden :

Zitat:

Die Datei 'C:\Programme\Mozilla Firefox\SmitfraudFix\restart.exe'
...

Zitat:

PS: i.O. ?

Jupp

MFG

Fako · 13.10.2008, 21:42

Huhu,

das Prog ist schon runtern!

was heißt i.O?.

LG

Mehrere Trojaner gefunden "trojan-spy.win32.greenscreen"....

Plagegeister aller Art und deren Bekämpfung: Mehrere Trojaner gefunden "trojan-spy.win32.greenscreen"....