Mehrere Trojaner gefunden "trojan-spy.win32.greenscreen"....

Fako · 10.10.2008, 10:57

Hallo,

hab seit gestern ein Problem mit:
1.trojan-spy.win32.greenscreen
2.Trojan-Clicker.Win32Tiny.h
3.Trojan-Downloader.Win32.Agent.bq
4.Trojan-Spy.Win32.Keylogger.aa
5.Trojan-Spy.HTML.Bankfraud.dq

Ich hab jetzt auch schon HiJack this angewendet. Ich hoffe es ist alles richtig gemacht!

Code:

ATTFilter

Logfile of Trend Micro Hija**This v2.0.2
Scan saved at 11:32:16, on 10.10.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programme\Winamp\winampa.exe
C:\Programme\Java\jre1.6.0_07\bin\jusched.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\QuickTime\qttask.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Programme\Spyware Doctor\pctsAuxs.exe
C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\brastk.exe
C:\Programme\Spyware Doctor\pctsTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Dokumente und Einstellungen\Peter\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spgbijgb.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE
C:\WINDOWS\system32\wdfmgr.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\PC Connectivity Solution\ServiceLayer.exe
C:\Programme\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\System32\alg.exe
C:\Programme\Gemeinsame Dateien\Nokia\MPAPI\MPAPI3s.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programme\Lavasoft\Ad-Aware\aawservice.exe
C:\Programme\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = h**p://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [brastk] C:\WINDOWS\system32\brastk.exe
O4 - HKLM\..\Run: [ISTray] "C:\Programme\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Nokia.PCSync] C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [Google Update] "C:\Dokumente und Einstellungen\****\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ICQ] "C:\Programme\ICQ6\ICQ.exe" silent
O4 - HKCU\..\Run: [winutildb] C:\WINDOWS\system32\spgbijgb.exe
O4 - HKCU\..\Run: [brastk] C:\WINDOWS\system32\brastk.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Xfire.lnk = C:\Programme\Xfire\xfire.exe
O4 - Global Startup: D-Link AirPlus G+ Wireless Adapter Utility.lnk = C:\Programme\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O21 - SSODL: comdbadm - {73D0635E-0B2F-7247-33FF-02C10A20279A} - C:\Programme\chcedyf\comdbadm.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Programme\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Programme\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 7992 bytes

Ich bitte um schnelle Hilfe.

Liebe Grüße Fako

nochdigger · 10.10.2008, 18:29

Hallo und

lass bitte diese Dateien

Zitat:

C:\WINDOWS\system32\brastk.exe
C:\WINDOWS\system32\spgbijgb.exe
C:\Programme\chcedyf\comdbadm.dll

hier Virustotal, hier virscan.org
oder hier Jotti überprüfen (kann einige Minuten dauern),
poste die Ergebnisse mit der Angabe der Größe der hochgeladenen Datei sowie die MD5 und SHA1 Angaben,
bitte auch wenn nichts gefunden wurde.

Überprüfe dein System ebenfalls mit Smitfraudfix (Option 1)
SmitFraudFix
deaktiviere dazu bitte den Hintergrundwächter deines Antivirenprogramms da es sonst zu einem Fehlalarm kommt, poste nach dem scan bitte den rapport.txt hierher.

MFG

Fako · 11.10.2008, 11:54

Hey,

ich hab ejtzt einfach mal alles kopiert, hofef es ist nicht schlimm

Code:

ATTFilter

AhnLab-V3	2008.10.10.1	2008.10.10	-
AntiVir	7.8.1.34	2008.10.10	-
Authentium	5.1.0.4	2008.10.11	-
Avast	4.8.1248.0	2008.10.10	Win32:PureMorph
AVG	8.0.0.161	2008.10.10	-
BitDefender	7.2	2008.10.11	-
CAT-QuickHeal	9.50	2008.10.11	Win32.Trojan.Obfuscated.gx.3
ClamAV	0.93.1	2008.10.11	-
DrWeb	4.44.0.09170	2008.10.11	-
eSafe	7.0.17.0	2008.10.08	-
eTrust-Vet	31.6.6141	2008.10.10	-
Ewido	4.0	2008.10.11	-
F-Prot	4.4.4.56	2008.10.10	-
F-Secure	8.0.14332.0	2008.10.11	-
Fortinet	3.113.0.0	2008.10.11	W32/PolySmall.BP!tr
GData	19	2008.10.11	Win32:PureMorph
Ikarus	T3.1.1.34.0	2008.10.11	-
K7AntiVirus	7.10.490	2008.10.10	-
Kaspersky	7.0.0.125	2008.10.11	-
McAfee	5403	2008.10.11	FakeAlert-BD
Microsoft	1.4005	2008.10.11	Trojan:Win32/Busky.EI
NOD32	3514	2008.10.11	a variant of Win32/TrojanDownloader.FakeAlert.IQ
Norman	5.80.02	2008.10.10	-
Panda	9.0.0.4	2008.10.11	-
PCTools	4.4.2.0	2008.10.10	-
Prevx1	V2	2008.10.11	-
Rising	20.65.42.00	2008.10.10	-
SecureWeb-Gateway	6.7.6	2008.10.10	-
Sophos	4.34.0	2008.10.11	Mal/EncPk-DG
Sunbelt	3.1.1715.1	2008.10.11	-
Symantec	10	2008.10.11	Packed.Generic.182
TheHacker	6.3.1.0.106	2008.10.10	-
TrendMicro	8.700.0.1004	2008.10.10	-
VBA32	3.12.8.6	2008.10.10	-
ViRobot	2008.10.10.1416	2008.10.10	-
VirusBuster	4.5.11.0	2008.10.10	-
weitere Informationen
File size: 73728 bytes
MD5...: 4d6b2e60344780e9a2176ad0f0834456
SHA1..: 0cb989ba7e0be5d9634c6b7c604ebad7d50faca7
SHA256: 5f095fc87f6804338d50b87de0490d64d48f6b45be6d091e8224ad049f008f2c
SHA512: 2d240c8c668accc3efcd9ce2640f30fa3285f1aeb4d9b35df37351f9d79de827
f8b137ee20cb73796acfe2dea3187f69c9fb79558212b702a8621d4f6375f8ae
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x40994a
timedatestamp.....: 0x48ee2b4c (Thu Oct 09 16:03:24 2008)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.wmdvvsl 0x1000 0xeb54 0xf000 6.50 ee6207b99f462dda5e4b9a577cf39105
.lrdlioo 0x10000 0x5b4 0x1000 2.49 a0a91178e993f7054826471b805dd4d3
.ociqj 0x11000 0x5a24 0x1000 0.70 8e4a3667f506789863b1c9b7631a4006

( 2 imports )
> KERNEL32.dll: GetVersion, VirtualFree, WaitForSingleObject, FreeLibrary, WriteFile, LoadLibraryA, WideCharToMultiByte, GetSystemTime, TerminateThread, QueryDosDeviceW, SetThreadPriority, CloseHandle, FindResourceW, LoadResource, FindFirstFileW, GetCurrentProcessId, GetUserDefaultLangID, GetCurrentThread, GetFileAttributesExW, lstrcpyW, WaitForMultipleObjects, GetProcAddress, GetCurrentThreadId, GetPrivateProfileStringW, FindNextChangeNotification, FindFirstChangeNotificationW, MultiByteToWideChar, GlobalUnlock, CreateProcessW, lstrlenW
> USER32.dll: GetClassNameW, RegisterClassExW, DispatchMessageW, CreateWindowExW, GetKeyState, WindowFromPoint, LoadCursorW, SetWindowPos, GetCursorPos, ReleaseDC, DefWindowProcW, GetMessageW, AppendMenuW, PostQuitMessage, MessageBoxW, SendMessageW, CreatePopupMenu, SetWindowTextW, IsWindow, TranslateMessage, RegisterWindowMessageW, LoadImageW

( 0 exports )

Rapport :

Code:

ATTFilter

SmitFraudFix v2.358

Scan done at 12:53:32,26, 11.10.2008
Run from C:\Programme\Mozilla Firefox\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programme\Winamp\winampa.exe
C:\Programme\Java\jre1.6.0_07\bin\jusched.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\QuickTime\qttask.exe
C:\Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Dokumente und Einstellungen\Peter\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spgbijgb.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\D-Link\D-Link AirPlus G+ Wireless Adapter Utility\DWLGTI.EXE
C:\Programme\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Gemeinsame Dateien\Nokia\MPAPI\MPAPI3s.exe
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

hosts file corrupted !

127.0.0.1	www.legal-at-spybot.info
127.0.0.1	legal-at-spybot.info

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Dokumente und Einstellungen\Peter


»»»»»»»»»»»»»»»»»»»»»»»» C:\Dokumente und Einstellungen\Peter\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Start Menu


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOKUME~1\Peter\FAVORI~1


»»»»»»»»»»»»»»»»»»»»»»»» Desktop


»»»»»»»»»»»»»»»»»»»»»»»» C:\Programme 


»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys


»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components
 
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Die derzeitige Homepage"
 

»»»»»»»»»»»»»»»»»»»»»»»» o4Patch
!!!Attention, following keys are not inevitably infected!!!

o4Patch
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, following keys are not inevitably infected!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, following keys are not inevitably infected!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, following keys are not inevitably infected!!!

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix
!!!Attention, following keys are not inevitably infected!!!

AntiXPVSTFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» RK



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: D-Link AirPlus G+ DWL-G520+ Wireless PCI Adapter - Paketplaner-Miniport
DNS Server Search Order: 192.168.178.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{86647B50-FEBB-4823-BA38-EEEC8CE97BD9}: DhcpNameServer=192.168.178.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{86647B50-FEBB-4823-BA38-EEEC8CE97BD9}: DhcpNameServer=192.168.178.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{86647B50-FEBB-4823-BA38-EEEC8CE97BD9}: DhcpNameServer=192.168.178.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.178.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.178.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.178.1


»»»»»»»»»»»»»»»»»»»»»»»» Scanning for wininet.dll infection


»»»»»»»»»»»»»»»»»»»»»»»» End

LG Fako

nochdigger · 11.10.2008, 14:17

Hallo

du hast wohl nur eine Datei der drei auswerten lassen oder kam bei allen das selbe Ergebnis

?

Lass bitte zuerst Malwarebytes dein System bereinigen und anschließend lass Combofix dein System untersuchen

Zitat:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir das Tool hier herunter auf den Desktop -> KLICK

Das Programm jedoch noch nicht starten sondern zuerst folgendes tun:

Schliesse alle Anwendungen und Programme, vor allem deine Antiviren-Software und andere Hintergrundwächter, sowie deinen Internetbrowser.
Vermeide es auch explizit während das Combofix läuft die Maus und Tastatur zu benutzen.

Dann folgende Anleitung durchlesen und abarbeiten -> CCleaner Systembereinigung

Starte nun die combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen und lass dein System durchsuchen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte abkopieren und in deinen Beitrag einfügen. Das log findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Hinweis: Combofix verhindert die Autostart Funktion aller CD / DVD und USB - Laufwerken um so eine Verbeitung einzudämmen. Wenn es hierdurch zu Problemen kommt, diese im Thread posten.

Poste bitte die entstandenen Logs hierher und berichte.

MFG

Fako · 11.10.2008, 15:51

Sorry :P das ist jettz von dem ersten. Das andere war von dem zweiten
die 3. datei findet der nicht

Code:

ATTFilter

Antivirus  	Version  	letzte aktualisierung  	Ergebnis
AhnLab-V3	2008.10.10.1	2008.10.10	-
AntiVir	7.8.1.34	2008.10.11	-
Authentium	5.1.0.4	2008.10.11	-
Avast	4.8.1248.0	2008.10.10	Win32:Lighty
AVG	8.0.0.161	2008.10.10	Downloader.Generic7.AXLP
BitDefender	7.2	2008.10.11	-
CAT-QuickHeal	9.50	2008.10.11	-
ClamAV	0.93.1	2008.10.11	-
DrWeb	4.44.0.09170	2008.10.11	-
eSafe	7.0.17.0	2008.10.08	-
eTrust-Vet	31.6.6141	2008.10.10	-
Ewido	4.0	2008.10.11	-
F-Prot	4.4.4.56	2008.10.10	-
F-Secure	8.0.14332.0	2008.10.11	Suspicious:W32/Malware!Gemini
Fortinet	3.113.0.0	2008.10.11	-
GData	19	2008.10.11	Win32:Lighty
Ikarus	T3.1.1.34.0	2008.10.11	Virus.Win32.Lighty
K7AntiVirus	7.10.491	2008.10.11	-
Kaspersky	7.0.0.125	2008.10.11	-
McAfee	5403	2008.10.11	-
Microsoft	1.4005	2008.10.11	TrojanDownloader:Win32/Renos
NOD32	3515	2008.10.11	a variant of Win32/TrojanDownloader.FakeAlert.LG
Norman	5.80.02	2008.10.10	W32/Lighty.D
Panda	9.0.0.4	2008.10.11	-
PCTools	4.4.2.0	2008.10.11	-
Prevx1	V2	2008.10.11	Cloaked Malware
Rising	20.65.42.00	2008.10.10	-
SecureWeb-Gateway	6.7.6	2008.10.11	-
Sophos	4.34.0	2008.10.11	-
Sunbelt	3.1.1715.1	2008.10.11	-
Symantec	10	2008.10.11	-
TheHacker	6.3.1.0.106	2008.10.10	-
TrendMicro	8.700.0.1004	2008.10.10	-
VBA32	3.12.8.6	2008.10.10	OScope.Downloader.Braviax.3
ViRobot	2008.10.10.1416	2008.10.10	-
VirusBuster	4.5.11.0	2008.10.11	Trojan.DR.Renos.ATB
weitere Informationen
File size: 9728 bytes
MD5...: 2669a713f96a2533c91cd59c4fc79fc4
SHA1..: b0080bc76a15c6a1b41535be9529a4ae324765d1
SHA256: 34b3efbc2658152fed6564682806674a987c28574d17bf741181b86b97e1998e
SHA512: 31879af1c40807a12434ebedf9448532fa2c61bdb05b522c6dbee426f63521b2
c0302a2f1ff008ba4562ab85ba15aeb569a37ffd7ad96bc1a89799ea9bd43306
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x401000
timedatestamp.....: 0x0 (Thu Jan 01 00:00:00 1970)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x4000 0x200 4.89 34bd25994ec81ad385c92bb46805cd7e
.data 0x5000 0x3000 0x2000 7.50 6c43ac81f586120d4d00a1ad3594a5cc
.rdata 0x8000 0x3000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0xb000 0x3000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e

( 3 imports )
> KERNEL32.DLL: CancelDeviceWakeupRequest, CreateTapePartition, DeleteFileA, ExitProcess, GetCurrentDirectoryW, GetProcessHeap, GetTapeParameters, GetThreadContext, GetVolumeInformationW, GlobalCompact, HeapCreate, HeapFree, HeapValidate, HeapWalk, LoadResource, ReadFileEx, ResetWriteWatch, SleepEx, TerminateThread, WaitCommEvent, lstrcat, lstrcatA
> USER32.DLL: AdjustWindowRectEx, BroadcastSystemMessageA, CharToOemBuffA, DdeGetLastError, DefMDIChildProcW, DeleteMenu, DrawAnimatedRects, DrawCaptionTempA, DrawCaptionTempW, DrawIconEx, GetKBCodePage, GetShellWindow, GetThreadDesktop, IMPGetIMEW, IntersectRect, LockWindowUpdate, MapVirtualKeyExA, RegisterSystemThread, RegisterWindowMessageW, RemovePropW, SendIMEMessageExW, SetDebugErrorLevel, SetMenu, SetWindowRgn, ShowScrollBar, UnhookWinEvent, ValidateRgn
> GDI32.DLL: AnimatePalette, ColorMatchToTarget, CopyMetaFileW, CreateMetaFileW, CreateScalableFontResourceA, CreateScalableFontResourceW, GetAspectRatioFilterEx, GetColorAdjustment, GetEnhMetaFileHeader, GetEnhMetaFileW, GetKerningPairsW, GetMetaRgn, GetPixelFormat, GetTextFaceW, RealizePalette, ResetDCW, SetICMMode, SetPixel, SetViewportOrgEx, SwapBuffers

( 0 exports )

Hier ist das Ergebnis von Malwarebytes.

Code:

ATTFilter

Malwarebytes' Anti-Malware 1.28
Datenbank Version: 1255
Windows 5.1.2600 Service Pack 2

11.10.2008 16:53:28
mbam-log-2008-10-11 (16-53-28).txt

Scan-Methode: Vollständiger Scan (C:\|F:\|G:\|)
Durchsuchte Objekte: 90539
Laufzeit: 49 minute(s), 12 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 11
Infizierte Registrierungswerte: 6
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 4

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CLASSES_ROOT\CLSID\{73D0635E-0B2F-7247-33FF-02C10A20279A} (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\toolband.xttbpos00 (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{77d6ddfa-7834-4541-b2b3-a8b0fb0e3924} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{055fd26d-3a88-4e15-963d-dc8493744b1d} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4bd2d6c3-31dc-b947-23d0-dc52ec4f0c4c} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{855f3b16-6d32-4fe6-8a56-bbb695989046} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\toolband.xttbpos00.1 (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\iTunesMusic (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\rdriv (Fake.Dropped.Malware) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\comdbadm (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winutildb (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{855f3b16-6d32-4fe6-8a56-bbb695989046} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{855f3b16-6d32-4fe6-8a56-bbb695989046} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{855f3b16-6d32-4fe6-8a56-bbb695989046} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SystemCheck2 (Trojan.Agent) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Programme\chcedyf\comdbadm.dll (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spgbijgb.exe (Trojan.FakeAlert.H) -> Delete on reboot.
C:\Programme\ICQToolbar\toolbaru.dll (Adware.BHO) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\brastk.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Combofix folgt noch, aber vllt kannst du damit schon was anfangen

LG Fako

nochdigger · 11.10.2008, 17:22

Hallo

Zitat:

Combofix folgt noch, aber vllt kannst du damit schon was anfangen

der Anfang sieht ganz gut aus, erstelle nach dem Durchlauf von Combofix bitte auch ein frisches HijackThis Log.

MFG

Fako · 13.10.2008, 16:46

Hey,
Wurde zwar nicht nach nem Neustart gefragt, aber hier ist trotzdem das LOG.

Code:

ATTFilter

ComboFix 08-10-11.04 - Peter 2008-10-13 17:31:00.2 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1031.18.1616 [GMT 2:00]
ausgeführt von:: C:\Dokumente und Einstellungen\Peter\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: C:\Dokumente und Einstellungen\Peter\Desktop\CFScript.txt
 * Neuer Wiederherstellungspunkt wurde erstellt

Achtung - Auf diesem PC ist keine Wiederherstellungskonsole installiert !!
.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\glwfghgr
C:\Programme\chcedyf

.
(((((((((((((((((((((((   Dateien erstellt von 2008-09-13 bis 2008-10-13  ))))))))))))))))))))))))))))))
.

2008-10-13 14:07 . 2008-04-14 04:22	221,184	--a------	C:\WINDOWS\system32\wmpns.dll
2008-10-13 13:51 . 2008-10-13 13:51	<DIR>	d--------	C:\WINDOWS\system32\de
2008-10-13 13:51 . 2008-10-13 13:51	<DIR>	d--------	C:\WINDOWS\system32\bits
2008-10-13 13:51 . 2008-10-13 13:51	<DIR>	d--------	C:\WINDOWS\l2schemas
2008-10-13 13:48 . 2008-10-13 13:52	<DIR>	d--------	C:\WINDOWS\ServicePackFiles
2008-10-12 23:52 . 2008-10-12 23:52	<DIR>	d--------	C:\WINDOWS\system32\LogFiles
2008-10-12 00:52 . 2008-10-12 00:52	<DIR>	d--------	C:\Programme\CCleaner
2008-10-11 15:54 . 2008-10-11 15:54	<DIR>	d--------	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\Malwarebytes
2008-10-11 15:53 . 2008-10-11 15:54	<DIR>	d--------	C:\Programme\Malwarebytes' Anti-Malware
2008-10-11 15:53 . 2008-10-11 15:53	<DIR>	d--------	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2008-10-11 15:53 . 2008-09-10 00:04	38,528	--a------	C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-11 15:53 . 2008-09-10 00:03	17,200	--a------	C:\WINDOWS\system32\drivers\mbam.sys
2008-10-11 12:53 . 2008-10-11 12:53	3,140	--a------	C:\WINDOWS\system32\tmp.reg
2008-10-10 16:16 . 2008-10-13 16:20	805	--a------	C:\rollback.ini
2008-10-10 14:49 . 2008-10-10 14:49	<DIR>	d--------	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\MailFrontier
2008-10-10 14:44 . 2008-10-13 17:33	2,528,544	--ahs----	C:\WINDOWS\system32\drivers\fidbox.dat
2008-10-10 14:44 . 2008-10-13 14:15	36,140	--ahs----	C:\WINDOWS\system32\drivers\fidbox.idx
2008-10-10 14:15 . 2008-10-10 17:02	<DIR>	d--------	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MailFrontier
2008-10-10 14:15 . 2008-07-09 09:05	75,248	--a------	C:\WINDOWS\zllsputility.exe
2008-10-10 14:15 . 2008-07-09 09:05	54,672	--a------	C:\WINDOWS\system32\vsutil_loc0407.dll
2008-10-10 14:15 . 2008-07-09 09:05	42,384	--a------	C:\WINDOWS\zllsputility_loc0407.dll
2008-10-10 14:15 . 2008-07-09 09:05	21,904	--a------	C:\WINDOWS\system32\imsinstall_loc0407.dll
2008-10-10 14:15 . 2008-07-09 09:05	17,808	--a------	C:\WINDOWS\system32\imslsp_install_loc0407.dll
2008-10-10 14:15 . 2004-04-27 04:40	11,264	--a------	C:\WINDOWS\system32\SpOrder.dll
2008-10-10 14:15 . 2008-10-13 14:08	4,212	---h-----	C:\WINDOWS\system32\zllictbl.dat
2008-10-10 14:14 . 2008-10-10 14:14	<DIR>	d--------	C:\Programme\Zone Labs
2008-10-10 14:13 . 2008-10-13 16:22	<DIR>	d--------	C:\WINDOWS\Internet Logs
2008-10-10 11:31 . 2008-10-10 11:31	<DIR>	d--------	C:\Programme\Trend Micro
2008-10-10 11:19 . 2008-10-10 11:19	<DIR>	d--------	C:\Programme\Lavasoft
2008-10-10 11:19 . 2008-10-10 11:19	<DIR>	d--------	C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2008-10-10 11:19 . 2008-10-10 11:20	<DIR>	d--------	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft
2008-10-10 02:29 . 2008-10-10 02:29	91	--a------	C:\WINDOWS\wininit.ini
2008-10-10 02:09 . 2008-10-10 02:11	<DIR>	d--------	C:\Programme\Spybot - Search & Destroy
2008-10-10 02:09 . 2008-10-12 12:16	<DIR>	d--------	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy
2008-10-10 02:03 . 2008-10-10 13:55	<DIR>	d-a------	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
2008-10-09 22:51 . 2004-08-04 00:38	701,952	---------	C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-09-30 14:37 . 2008-09-30 14:37	54,156	--ah-----	C:\WINDOWS\QTFont.qfn
2008-09-30 14:37 . 2008-09-30 14:37	1,409	--a------	C:\WINDOWS\QTFont.for
2008-09-20 15:48 . 2008-09-20 15:48	<DIR>	d--------	C:\Programme\Gemeinsame Dateien\xing shared
2008-09-20 15:48 . 2008-09-20 15:48	<DIR>	d--------	C:\Programme\Gemeinsame Dateien\Real
2008-09-20 15:48 . 2008-09-20 15:48	<DIR>	d--------	C:\Program Files
2008-09-18 02:41 . 2008-09-18 02:41	42,320	--a------	C:\WINDOWS\system32\xfcodec.dll

.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-13 14:20	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\teamspeak2
2008-10-13 14:13	51,795	----a-w	C:\WINDOWS\Internet Logs\vsmon_2nd_2008_10_13_14_14_26_small.dmp.zip
2008-10-13 14:13	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\Xfire
2008-10-11 14:53	---------	d-----w	C:\Programme\ICQToolbar
2008-10-10 06:58	82,944	----a-w	C:\WINDOWS\system32\o4Patch.exe
2008-10-10 06:58	82,944	----a-w	C:\WINDOWS\system32\IEDFix.C.exe
2008-10-09 23:25	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\ICQ Toolbar
2008-10-09 15:21	---------	d-----w	C:\Programme\Xfire
2008-10-03 13:51	---------	d-----w	C:\Programme\KONAMI
2008-10-03 13:28	---------	d-----w	C:\Programme\EuroPoker
2008-10-01 13:51	87,552	----a-w	C:\WINDOWS\system32\VACFix.exe
2008-09-29 10:17	---------	d-----w	C:\Programme\ICQ6
2008-09-12 12:27	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\gtk-2.0
2008-09-11 21:22	---------	d-----w	C:\Programme\GIMP-2.0
2008-09-08 21:38	88,576	----a-w	C:\WINDOWS\system32\AntiXPVSTFix.exe
2008-09-03 16:30	---------	d-----w	C:\Programme\CamStudio
2008-08-19 21:05	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\McLoad
2008-08-18 10:19	82,432	----a-w	C:\WINDOWS\system32\404Fix.exe
2008-08-16 19:23	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\Nokia
2008-08-16 18:25	---------	d-----w	C:\Programme\PC Connectivity Solution
2008-08-16 18:25	---------	d-----w	C:\Programme\Nokia
2008-08-16 18:25	---------	d-----w	C:\Programme\Gemeinsame Dateien\PCSuite
2008-08-16 18:25	---------	d-----w	C:\Programme\Gemeinsame Dateien\Nokia
2008-08-16 18:25	---------	d-----w	C:\Programme\DIFX
2008-08-16 18:25	---------	d-----w	C:\Dokumente und Einstellungen\Peter\Anwendungsdaten\PC Suite
2008-08-16 18:25	---------	d-----w	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC Suite
2008-08-16 18:24	---------	d-----w	C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Installations
2008-07-18 20:10	94,920	----a-w	C:\WINDOWS\system32\cdm.dll
2008-07-18 20:10	53,448	----a-w	C:\WINDOWS\system32\wuauclt.exe
2008-07-18 20:10	45,768	----a-w	C:\WINDOWS\system32\wups2.dll
2008-07-18 20:10	36,552	----a-w	C:\WINDOWS\system32\wups.dll
2008-07-18 20:09	563,912	----a-w	C:\WINDOWS\system32\wuapi.dll
2008-07-18 20:09	325,832	----a-w	C:\WINDOWS\system32\wucltui.dll
2008-07-18 20:09	205,000	----a-w	C:\WINDOWS\system32\wuweb.dll
2008-07-18 20:09	1,811,656	----a-w	C:\WINDOWS\system32\wuaueng.dll
2004-08-20 17:09	62,865	----a-w	C:\WINDOWS\inf\IM\odysseyIM3.sys
2004-08-20 17:09	45,056	----a-w	C:\WINDOWS\inf\IM\imdinst.exe
2004-08-20 17:09	12,739	----a-w	C:\WINDOWS\inf\IM\odNetInstall.dll
.

(((((((((((((((((((((((((((((   snapshot@2008-10-12_19.26.36,48   )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB938464_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB938464_0$\spuninst\updspapi.dll
- 2004-08-03 23:11:26	82,944	-c----w	C:\WINDOWS\$NtUninstallKB946648$\msgsc.dll
+ 2004-08-03 23:11:26	82,944	-c----w	C:\WINDOWS\$NtUninstallKB946648_0$\msgsc.dll
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB946648_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB946648_0$\spuninst\updspapi.dll
- 2006-07-13 08:48:58	202,240	-c----w	C:\WINDOWS\$NtUninstallKB950762$\rmcast.sys
+ 2006-07-13 08:48:58	202,240	-c----w	C:\WINDOWS\$NtUninstallKB950762_0$\rmcast.sys
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB950762_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB950762_0$\spuninst\updspapi.dll
- 2005-07-26 04:39:46	243,200	-c----w	C:\WINDOWS\$NtUninstallKB950974$\es.dll
+ 2005-07-26 04:39:46	243,200	-c----w	C:\WINDOWS\$NtUninstallKB950974_0$\es.dll
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB950974_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:08	388,984	-c----w	C:\WINDOWS\$NtUninstallKB950974_0$\spuninst\updspapi.dll
- 2007-08-21 06:16:14	683,520	-c----w	C:\WINDOWS\$NtUninstallKB951066$\inetcomm.dll
+ 2007-08-21 06:16:14	683,520	-c----w	C:\WINDOWS\$NtUninstallKB951066_0$\inetcomm.dll
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB951066_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB951066_0$\spuninst\updspapi.dll
- 2008-04-14 15:51:00	273,024	-c----w	C:\WINDOWS\$NtUninstallKB951376-v2$\bthport.sys
+ 2008-04-14 15:51:00	273,024	-c----w	C:\WINDOWS\$NtUninstallKB951376-v2_0$\bthport.sys
+ 2007-11-30 11:18:34	234,872	-c----w	C:\WINDOWS\$NtUninstallKB951376-v2_0$\spuninst\spuninst.exe
+ 2007-11-30 11:18:35	388,984	-c----w	C:\WINDOWS\$NtUninstallKB951376-v2_0$\spuninst\updspapi.dll
+ 2007-11-30 11:18:34	234,872	-c----w	C:\WINDOWS\$NtUninstallKB951376_0$\spuninst\spuninst.exe
+ 2007-11-30 11:18:35	388,984	-c----w	C:\WINDOWS\$NtUninstallKB951376_0$\spuninst\updspapi.dll
- 2007-10-29 22:42:30	1,293,312	-c----w	C:\WINDOWS\$NtUninstallKB951698$\quartz.dll
+ 2007-10-29 22:42:30	1,293,312	-c----w	C:\WINDOWS\$NtUninstallKB951698_0$\quartz.dll
+ 2007-11-30 11:18:34	234,872	-c----w	C:\WINDOWS\$NtUninstallKB951698_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB951698_0$\spuninst\updspapi.dll
- 2006-02-28 12:00:00	138,496	-c----w	C:\WINDOWS\$NtUninstallKB951748$\afd.sys
- 2008-02-20 05:33:54	148,992	-c----w	C:\WINDOWS\$NtUninstallKB951748$\dnsapi.dll
- 2006-02-28 12:00:00	247,296	-c----w	C:\WINDOWS\$NtUninstallKB951748$\mswsock.dll
- 2007-10-30 17:20:55	360,064	-c----w	C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
- 2006-08-16 09:37:30	225,664	-c----w	C:\WINDOWS\$NtUninstallKB951748$\tcpip6.sys
+ 2006-02-28 12:00:00	138,496	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\afd.sys
+ 2008-02-20 05:33:54	148,992	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\dnsapi.dll
+ 2006-02-28 12:00:00	247,296	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\mswsock.dll
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:08	388,984	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\spuninst\updspapi.dll
+ 2007-10-30 17:20:55	360,064	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
+ 2006-08-16 09:37:30	225,664	-c----w	C:\WINDOWS\$NtUninstallKB951748_0$\tcpip6.sys
- 2006-02-28 12:00:00	331,776	-c----w	C:\WINDOWS\$NtUninstallKB952287$\msadce.dll
+ 2006-02-28 12:00:00	331,776	-c----w	C:\WINDOWS\$NtUninstallKB952287_0$\msadce.dll
+ 2007-11-30 11:18:34	234,872	-c----w	C:\WINDOWS\$NtUninstallKB952287_0$\spuninst\spuninst.exe
+ 2007-11-30 11:18:35	388,984	-c----w	C:\WINDOWS\$NtUninstallKB952287_0$\spuninst\updspapi.dll
- 2005-06-29 01:49:39	74,240	-c----w	C:\WINDOWS\$NtUninstallKB952954$\mscms.dll
+ 2005-06-29 01:49:39	74,240	-c----w	C:\WINDOWS\$NtUninstallKB952954_0$\mscms.dll
+ 2007-11-30 12:39:14	234,872	-c----w	C:\WINDOWS\$NtUninstallKB952954_0$\spuninst\spuninst.exe
+ 2007-11-30 12:39:15	388,984	-c----w	C:\WINDOWS\$NtUninstallKB952954_0$\spuninst\updspapi.dll
+ 2008-04-14 02:22:06	39,424	------w	C:\WINDOWS\AppPatch\acadproc.dll
- 2006-02-28 12:00:00	1,852,416	----a-w	C:\WINDOWS\AppPatch\AcGenral.dll
+ 2008-04-14 02:22:06	1,852,928	----a-w	C:\WINDOWS\AppPatch\acgenral.dll
- 2006-02-28 12:00:00	450,048	----a-w	C:\WINDOWS\AppPatch\AcLayers.dll
+ 2008-04-14 02:22:06	451,072	----a-w	C:\WINDOWS\AppPatch\aclayers.dll
- 2006-02-28 12:00:00	137,728	----a-w	C:\WINDOWS\AppPatch\AcLua.dll
+ 2008-04-14 02:22:06	141,312	----a-w	C:\WINDOWS\AppPatch\aclua.dll
- 2006-02-28 12:00:00	244,736	----a-w	C:\WINDOWS\AppPatch\AcSpecfc.dll
+ 2008-04-14 02:22:06	245,248	----a-w	C:\WINDOWS\AppPatch\acspecfc.dll
- 2006-02-28 12:00:00	116,224	----a-w	C:\WINDOWS\AppPatch\AcXtrnal.dll
+ 2008-04-14 02:22:06	116,224	----a-w	C:\WINDOWS\AppPatch\acxtrnal.dll
- 2008-06-14 17:57:40	273,024	------w	C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-06-14 17:32:01	273,024	------w	C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-04-14 02:22:51	58,368	------w	C:\WINDOWS\ehome\medctrro.exe
- 2007-06-13 13:21:45	1,036,288	----a-w	C:\WINDOWS\explorer.exe
+ 2008-04-14 02:22:45	1,036,800	----a-w	C:\WINDOWS\explorer.exe
- 2006-02-28 12:00:00	34,816	----a-w	C:\WINDOWS\Help\sniffpol.dll
+ 2008-04-14 02:22:25	34,816	----a-w	C:\WINDOWS\Help\sniffpol.dll
- 2006-02-28 12:00:00	33,280	----a-w	C:\WINDOWS\Help\sstub.dll
+ 2008-04-14 02:22:30	33,280	----a-w	C:\WINDOWS\Help\sstub.dll
- 2006-02-28 12:00:00	279,040	----a-w	C:\WINDOWS\Help\tshoot.dll
+ 2008-04-14 02:22:30	279,040	----a-w	C:\WINDOWS\Help\tshoot.dll
- 2005-05-26 23:22:01	10,752	----a-w	C:\WINDOWS\hh.exe
+ 2008-04-14 02:22:47	10,752	----a-w	C:\WINDOWS\hh.exe
- 2006-02-28 12:00:00	220,160	----a-w	C:\WINDOWS\ime\mscandui.dll
+ 2008-04-14 02:22:16	220,160	----a-w	C:\WINDOWS\ime\mscandui.dll
- 2006-02-28 12:00:00	130,048	----a-w	C:\WINDOWS\ime\SOFTKBD.DLL
+ 2008-04-14 02:22:25	130,048	----a-w	C:\WINDOWS\ime\softkbd.dll
- 2006-02-28 12:00:00	62,976	----a-w	C:\WINDOWS\ime\SPGRMR.dll
+ 2008-04-13 16:43:18	62,976	----a-w	C:\WINDOWS\ime\spgrmr.dll
- 2006-02-28 12:00:00	272,384	----a-w	C:\WINDOWS\ime\SPTIP.dll
+ 2008-04-14 02:22:30	272,384	----a-w	C:\WINDOWS\ime\sptip.dll
- 2006-02-28 12:00:00	212,992	----a-w	C:\WINDOWS\inf\unregmp2.exe
+ 2008-04-14 02:23:03	212,992	----a-w	C:\WINDOWS\inf\unregmp2.exe
+ 2008-01-18 15:13:09	2,247	------w	C:\WINDOWS\Installer\tsclientmsitrans\tscdsbl.bat
+ 2007-12-12 10:33:51	18,917	------w	C:\WINDOWS\Installer\tsclientmsitrans\tscinst.vbs
+ 2007-10-30 10:06:46	13,801	------w	C:\WINDOWS\Installer\tsclientmsitrans\tscuinst.vbs
+ 2008-04-14 02:21:56	25,600	------w	C:\WINDOWS\Installer\tsclientmsitrans\tscupdc.dll
- 2006-02-28 12:00:00	24,064	----a-w	C:\WINDOWS\msagent\agentanm.dll
+ 2008-04-14 02:22:07	24,064	----a-w	C:\WINDOWS\msagent\agentanm.dll
- 2006-02-28 12:00:00	214,016	----a-w	C:\WINDOWS\msagent\agentctl.dll
+ 2008-04-14 02:22:07	214,016	----a-w	C:\WINDOWS\msagent\agentctl.dll
- 2006-10-12 14:02:58	42,496	----a-w	C:\WINDOWS\msagent\agentdp2.dll
+ 2008-04-14 02:22:07	42,496	----a-w	C:\WINDOWS\msagent\agentdp2.dll
- 2007-03-09 13:48:08	57,344	----a-w	C:\WINDOWS\msagent\agentdpv.dll
+ 2008-04-14 02:22:07	57,344	----a-w	C:\WINDOWS\msagent\agentdpv.dll
- 2006-02-28 12:00:00	49,152	----a-w	C:\WINDOWS\msagent\agentmpx.dll
+ 2008-04-14 02:22:07	49,152	----a-w	C:\WINDOWS\msagent\agentmpx.dll
- 2006-02-28 12:00:00	24,064	----a-w	C:\WINDOWS\msagent\agentpsh.dll
+ 2008-04-14 02:22:07	24,064	----a-w	C:\WINDOWS\msagent\agentpsh.dll
- 2006-02-28 12:00:00	44,032	----a-w	C:\WINDOWS\msagent\agentsr.dll
+ 2008-04-14 02:22:07	44,032	----a-w	C:\WINDOWS\msagent\agentsr.dll
- 2006-10-12 11:09:53	256,512	----a-w	C:\WINDOWS\msagent\agentsvr.exe
+ 2008-04-14 02:22:34	256,512	----a-w	C:\WINDOWS\msagent\agentsvr.exe
- 2006-02-28 12:00:00	24,064	----a-w	C:\WINDOWS\msagent\agtintl.dll
+ 2008-04-14 02:22:07	24,064	----a-w	C:\WINDOWS\msagent\agtintl.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0405.dll
+ 2007-04-02 18:25:59	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0405.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0406.dll
+ 2007-04-02 18:25:59	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0406.dll
- 2006-02-28 12:00:00	21,504	----a-w	C:\WINDOWS\msagent\intl\agt0407.dll
+ 2007-04-02 18:26:00	21,504	----a-w	C:\WINDOWS\msagent\intl\agt0407.dll
- 2006-02-28 12:00:00	22,016	----a-w	C:\WINDOWS\msagent\intl\agt0408.dll
+ 2007-04-02 18:26:00	22,016	----a-w	C:\WINDOWS\msagent\intl\agt0408.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0409.dll
+ 2008-04-13 17:32:28	19,968	----a-w	C:\WINDOWS\msagent\intl\agt0409.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt040b.dll
+ 2007-04-02 18:26:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt040b.dll
- 2006-02-28 12:00:00	21,504	----a-w	C:\WINDOWS\msagent\intl\agt040c.dll
+ 2007-04-02 18:26:00	21,504	----a-w	C:\WINDOWS\msagent\intl\agt040c.dll
- 2006-02-28 12:00:00	19,968	----a-w	C:\WINDOWS\msagent\intl\agt040e.dll
+ 2007-04-02 18:26:00	19,968	----a-w	C:\WINDOWS\msagent\intl\agt040e.dll
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0410.dll
+ 2007-04-02 18:26:00	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0410.dll
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0413.dll
+ 2007-04-02 18:26:01	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0413.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0414.dll
+ 2007-04-02 18:26:01	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0414.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0415.dll
+ 2007-04-02 18:26:01	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0415.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\msagent\intl\agt0416.dll
+ 2007-04-02 18:26:01	20,480	----a-w	C:\WINDOWS\msagent\intl\agt0416.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0419.dll
+ 2007-04-02 18:26:01	19,456	----a-w	C:\WINDOWS\msagent\intl\agt0419.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt041d.dll
+ 2007-04-02 18:26:01	19,456	----a-w	C:\WINDOWS\msagent\intl\agt041d.dll
- 2006-02-28 12:00:00	19,456	----a-w	C:\WINDOWS\msagent\intl\agt041f.dll
+ 2007-04-02 18:26:01	19,456	----a-w	C:\WINDOWS\msagent\intl\agt041f.dll
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0816.dll
+ 2007-04-02 18:26:02	20,992	----a-w	C:\WINDOWS\msagent\intl\agt0816.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\msagent\intl\agt0c0a.dll
+ 2007-04-02 18:26:02	20,480	----a-w	C:\WINDOWS\msagent\intl\agt0c0a.dll
- 2006-02-28 12:00:00	39,936	----a-w	C:\WINDOWS\msagent\mslwvtts.dll
+ 2008-04-14 02:22:17	39,936	----a-w	C:\WINDOWS\msagent\mslwvtts.dll
- 2006-06-02 19:31:05	33,792	------w	C:\WINDOWS\network diagnostic\custsat.dll
+ 2008-04-14 02:22:08	33,792	------w	C:\WINDOWS\network diagnostic\custsat.dll
- 2006-10-10 12:44:50	557,568	------w	C:\WINDOWS\network diagnostic\xpnetdiag.exe
+ 2008-04-13 18:53:32	558,080	------w	C:\WINDOWS\network diagnostic\xpnetdiag.exe
- 2006-02-28 12:00:00	70,144	----a-w	C:\WINDOWS\NOTEPAD.EXE
+ 2008-04-14 02:22:55	70,144	----a-w	C:\WINDOWS\notepad.exe
- 2006-02-28 12:00:00	768,512	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe
+ 2008-04-14 02:22:47	769,024	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe
- 2006-02-28 12:00:00	743,936	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\HelpSvc.exe
+ 2008-04-14 02:22:47	744,448	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\helpsvc.exe
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\HscUpd.exe
+ 2008-04-14 02:22:47	18,432	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\hscupd.exe
- 2006-02-28 12:00:00	160,768	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe
+ 2008-04-14 02:22:53	172,544	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe
- 2006-02-28 12:00:00	379,904	----a-w	C:\WINDOWS\pchealth

Fako · 13.10.2008, 16:56

Code:

ATTFilter

+ 2008-04-14 02:22:17	380,416	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\msinfo.dll
- 2006-02-28 12:00:00	102,400	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\pchshell.dll
+ 2008-04-14 02:22:23	102,912	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\pchshell.dll
- 2006-02-28 12:00:00	38,912	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
+ 2008-04-14 02:22:23	38,400	----a-w	C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
- 2008-06-03 14:08:51	86,327	----a-w	C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat
+ 2008-10-13 11:54:29	86,327	----a-w	C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat
- 2008-06-03 14:08:51	2,426	----a-w	C:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
+ 2008-10-13 11:54:29	2,740	----a-w	C:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
- 2006-02-28 12:00:00	151,040	----a-w	C:\WINDOWS\pchealth\UploadLB\Binaries\UploadM.exe
+ 2008-04-14 02:23:03	151,040	----a-w	C:\WINDOWS\pchealth\UploadLB\Binaries\uploadm.exe
- 2006-02-28 12:00:00	151,552	----a-w	C:\WINDOWS\PeerNet\sqldb20.dll
+ 2008-04-14 02:22:30	151,552	----a-w	C:\WINDOWS\PeerNet\sqldb20.dll
- 2006-02-28 12:00:00	462,848	----a-w	C:\WINDOWS\PeerNet\sqlqp20.dll
+ 2008-04-14 02:22:30	462,848	----a-w	C:\WINDOWS\PeerNet\sqlqp20.dll
- 2006-02-28 12:00:00	110,592	----a-w	C:\WINDOWS\PeerNet\sqlse20.dll
+ 2008-04-14 02:22:30	110,592	----a-w	C:\WINDOWS\PeerNet\sqlse20.dll
- 2006-02-28 12:00:00	153,600	----a-w	C:\WINDOWS\regedit.exe
+ 2008-04-14 02:22:58	153,600	----a-w	C:\WINDOWS\regedit.exe
+ 2008-04-13 18:46:18	53,376	------w	C:\WINDOWS\ServicePackFiles\i386\1394bus.sys
+ 2008-04-13 18:40:50	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\4mmdat.sys
+ 2008-04-13 18:46:20	48,128	------w	C:\WINDOWS\ServicePackFiles\i386\61883.sys
+ 2008-04-14 02:22:06	100,352	------w	C:\WINDOWS\ServicePackFiles\i386\6to4svc.dll
+ 2008-04-14 02:22:06	136,192	------w	C:\WINDOWS\ServicePackFiles\i386\aaclient.dll
+ 2004-08-03 20:32:22	231,552	------w	C:\WINDOWS\ServicePackFiles\i386\ac97ali.sys
+ 2004-08-03 20:32:32	84,480	------w	C:\WINDOWS\ServicePackFiles\i386\ac97via.sys
+ 2008-04-14 02:22:06	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\acadproc.dll
+ 2008-04-14 02:22:34	188,928	------w	C:\WINDOWS\ServicePackFiles\i386\accwiz.exe
+ 2008-04-14 02:22:06	1,852,928	------w	C:\WINDOWS\ServicePackFiles\i386\acgenral.dll
+ 2008-04-14 02:22:06	451,072	------w	C:\WINDOWS\ServicePackFiles\i386\aclayers.dll
+ 2008-04-14 02:22:06	141,312	------w	C:\WINDOWS\ServicePackFiles\i386\aclua.dll
+ 2008-04-14 02:22:06	121,344	------w	C:\WINDOWS\ServicePackFiles\i386\aclui.dll
+ 2008-04-14 01:49:03	188,800	------w	C:\WINDOWS\ServicePackFiles\i386\acpi.sys
+ 2008-04-14 02:22:06	245,248	------w	C:\WINDOWS\ServicePackFiles\i386\acspecfc.dll
+ 2008-04-14 02:22:06	193,536	------w	C:\WINDOWS\ServicePackFiles\i386\activeds.dll
+ 2008-04-14 02:22:34	4,096	------w	C:\WINDOWS\ServicePackFiles\i386\actmovie.exe
+ 2008-04-14 02:22:06	98,304	------w	C:\WINDOWS\ServicePackFiles\i386\actxprxy.dll
+ 2008-04-14 02:22:06	116,224	------w	C:\WINDOWS\ServicePackFiles\i386\acxtrnal.dll
+ 2008-04-14 02:22:06	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\admexs.dll
+ 2008-04-14 02:22:06	20,540	------w	C:\WINDOWS\ServicePackFiles\i386\admin.dll
+ 2008-04-14 02:22:34	16,439	------w	C:\WINDOWS\ServicePackFiles\i386\admin.exe
+ 2004-08-03 20:32:24	10,880	------w	C:\WINDOWS\ServicePackFiles\i386\admjoy.sys
+ 2008-04-14 02:22:06	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\admparse.dll
+ 2008-04-14 02:22:06	43,520	------w	C:\WINDOWS\ServicePackFiles\i386\admwprox.dll
+ 2008-04-14 02:22:06	290,816	------w	C:\WINDOWS\ServicePackFiles\i386\adsiis51.dll
+ 2008-04-14 02:22:06	175,616	------w	C:\WINDOWS\ServicePackFiles\i386\adsldp.dll
+ 2008-04-14 02:22:06	143,360	------w	C:\WINDOWS\ServicePackFiles\i386\adsldpc.dll
+ 2008-04-14 02:22:06	68,096	------w	C:\WINDOWS\ServicePackFiles\i386\adsmsext.dll
+ 2008-04-14 02:22:06	263,680	------w	C:\WINDOWS\ServicePackFiles\i386\adsnt.dll
+ 2008-04-14 02:22:06	123,392	------w	C:\WINDOWS\ServicePackFiles\i386\adsnw.dll
+ 2007-04-02 13:10:44	85,813	------w	C:\WINDOWS\ServicePackFiles\i386\adsutil.vbs
+ 2008-04-14 02:22:07	4,255	------w	C:\WINDOWS\ServicePackFiles\i386\adv01nt5.dll
+ 2008-04-14 02:22:07	3,967	------w	C:\WINDOWS\ServicePackFiles\i386\adv02nt5.dll
+ 2008-04-14 02:22:07	3,615	------w	C:\WINDOWS\ServicePackFiles\i386\adv05nt5.dll
+ 2008-04-14 02:22:07	3,647	------w	C:\WINDOWS\ServicePackFiles\i386\adv07nt5.dll
+ 2008-04-14 02:22:07	3,135	------w	C:\WINDOWS\ServicePackFiles\i386\adv08nt5.dll
+ 2008-04-14 02:22:07	3,711	------w	C:\WINDOWS\ServicePackFiles\i386\adv09nt5.dll
+ 2008-04-14 02:22:07	3,775	------w	C:\WINDOWS\ServicePackFiles\i386\adv11nt5.dll
+ 2008-04-14 02:22:07	678,400	------w	C:\WINDOWS\ServicePackFiles\i386\advapi32.dll
+ 2008-04-14 02:22:07	102,400	------w	C:\WINDOWS\ServicePackFiles\i386\advpack.dll
+ 2008-04-13 16:39:23	142,592	------w	C:\WINDOWS\ServicePackFiles\i386\aec.sys
+ 2008-04-13 19:19:23	138,112	------w	C:\WINDOWS\ServicePackFiles\i386\afd.sys
+ 2008-04-14 02:22:07	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\agentanm.dll
+ 2008-04-14 02:22:07	214,016	------w	C:\WINDOWS\ServicePackFiles\i386\agentctl.dll
+ 2008-04-14 02:22:07	42,496	------w	C:\WINDOWS\ServicePackFiles\i386\agentdp2.dll
+ 2008-04-14 02:22:07	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\agentdpv.dll
+ 2008-04-14 02:22:07	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\agentmpx.dll
+ 2008-04-14 02:22:07	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\agentpsh.dll
+ 2008-04-14 02:22:07	44,032	------w	C:\WINDOWS\ServicePackFiles\i386\agentsr.dll
+ 2008-04-14 02:22:34	256,512	------w	C:\WINDOWS\ServicePackFiles\i386\agentsvr.exe
+ 2008-04-13 18:36:38	42,368	------w	C:\WINDOWS\ServicePackFiles\i386\agp440.sys
+ 2008-04-13 18:36:39	44,928	------w	C:\WINDOWS\ServicePackFiles\i386\agpcpq.sys
+ 2007-04-02 18:25:59	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0401.dll
+ 2007-04-02 18:25:59	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0404.dll
+ 2007-04-02 18:25:59	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0405.dll
+ 2007-04-02 18:25:59	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0406.dll
+ 2007-04-02 18:26:00	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\agt0407.dll
+ 2007-04-02 18:26:00	22,016	------w	C:\WINDOWS\ServicePackFiles\i386\agt0408.dll
+ 2008-04-13 17:32:28	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\agt0409.dll
+ 2007-04-02 18:26:00	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt040b.dll
+ 2007-04-02 18:26:00	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\agt040c.dll
+ 2007-04-02 18:26:00	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt040d.dll
+ 2007-04-02 18:26:00	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\agt040e.dll
+ 2007-04-02 18:26:00	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\agt0410.dll
+ 2007-04-02 18:26:00	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0411.dll
+ 2007-04-02 18:26:00	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0412.dll
+ 2007-04-02 18:26:01	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\agt0413.dll
+ 2007-04-02 18:26:01	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0414.dll
+ 2007-04-02 18:26:01	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0415.dll
+ 2007-04-02 18:26:01	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\agt0416.dll
+ 2007-04-02 18:26:01	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0419.dll
+ 2007-04-02 18:26:01	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt041d.dll
+ 2007-04-02 18:26:01	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt041f.dll
+ 2007-04-02 18:26:02	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\agt0804.dll
+ 2007-04-02 18:26:02	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\agt0816.dll
+ 2007-04-02 18:26:02	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\agt0c0a.dll
+ 2008-04-14 02:22:07	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\agtintl.dll
+ 2008-04-14 02:22:34	98,304	------w	C:\WINDOWS\ServicePackFiles\i386\ahui.exe
+ 2008-04-14 02:22:34	44,544	------w	C:\WINDOWS\ServicePackFiles\i386\alg.exe
+ 2008-04-13 18:36:38	42,752	------w	C:\WINDOWS\ServicePackFiles\i386\alim1541.sys
+ 2008-04-14 02:22:07	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\alrsvc.dll
+ 2008-04-13 18:36:39	43,008	------w	C:\WINDOWS\ServicePackFiles\i386\amdagp.sys
+ 2008-04-14 01:50:05	41,472	------w	C:\WINDOWS\ServicePackFiles\i386\amdk6.sys
+ 2008-04-14 01:50:06	41,856	------w	C:\WINDOWS\ServicePackFiles\i386\amdk7.sys
+ 2008-04-14 02:22:07	70,656	------w	C:\WINDOWS\ServicePackFiles\i386\amstream.dll
+ 2004-08-03 20:31:20	36,224	------w	C:\WINDOWS\ServicePackFiles\i386\an983.sys
+ 2008-04-14 02:22:07	110,080	------w	C:\WINDOWS\ServicePackFiles\i386\appconf.dll
+ 2008-04-14 02:22:07	125,952	------w	C:\WINDOWS\ServicePackFiles\i386\apphelp.dll
+ 2008-04-14 02:22:07	175,616	------w	C:\WINDOWS\ServicePackFiles\i386\appmgmts.dll
+ 2008-04-14 02:22:07	301,568	------w	C:\WINDOWS\ServicePackFiles\i386\appmgr.dll
+ 2008-04-14 02:22:07	334,848	------w	C:\WINDOWS\ServicePackFiles\i386\aqueue.dll
+ 2008-04-13 18:51:25	60,800	------w	C:\WINDOWS\ServicePackFiles\i386\arp1394.sys
+ 2008-04-14 02:22:07	374,784	------w	C:\WINDOWS\ServicePackFiles\i386\asp51.dll
+ 2008-04-13 16:09:58	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\aspnet_filter.dll
+ 2008-04-13 16:09:59	200,704	------w	C:\WINDOWS\ServicePackFiles\i386\aspnet_isapi.dll
+ 2008-04-13 16:10:01	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\aspnet_regiis.exe
+ 2008-04-13 16:10:01	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\aspnet_state.exe
+ 2008-04-13 16:10:01	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\aspnet_wp.exe
+ 2008-04-14 02:22:34	30,208	------w	C:\WINDOWS\ServicePackFiles\i386\asr_fmt.exe
+ 2008-04-14 02:22:34	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\asr_pfu.exe
+ 2008-04-14 02:22:07	65,024	------w	C:\WINDOWS\ServicePackFiles\i386\asycfilt.dll
+ 2008-04-13 18:57:27	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\asyncmac.sys
+ 2008-04-14 02:22:34	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\at.exe
+ 2008-04-13 18:40:30	96,512	------w	C:\WINDOWS\ServicePackFiles\i386\atapi.sys
+ 2004-08-03 20:29:30	56,623	------w	C:\WINDOWS\ServicePackFiles\i386\ati1btxx.sys
+ 2004-08-03 20:29:30	11,615	------w	C:\WINDOWS\ServicePackFiles\i386\ati1mdxx.sys
+ 2004-08-03 20:29:30	12,047	------w	C:\WINDOWS\ServicePackFiles\i386\ati1pdxx.sys
+ 2004-08-03 20:29:32	30,671	------w	C:\WINDOWS\ServicePackFiles\i386\ati1raxx.sys
+ 2004-08-03 20:29:32	63,663	------w	C:\WINDOWS\ServicePackFiles\i386\ati1rvxx.sys
+ 2004-08-03 20:29:32	26,367	------w	C:\WINDOWS\ServicePackFiles\i386\ati1snxx.sys
+ 2004-08-03 20:29:32	21,343	------w	C:\WINDOWS\ServicePackFiles\i386\ati1ttxx.sys
+ 2004-08-03 20:29:32	36,463	------w	C:\WINDOWS\ServicePackFiles\i386\ati1tuxx.sys
+ 2004-08-03 20:29:32	29,455	------w	C:\WINDOWS\ServicePackFiles\i386\ati1xbxx.sys
+ 2004-08-03 20:29:32	34,735	------w	C:\WINDOWS\ServicePackFiles\i386\ati1xsxx.sys
+ 2008-04-14 02:22:07	229,376	------w	C:\WINDOWS\ServicePackFiles\i386\ati2cqag.dll
+ 2008-04-14 02:22:07	377,984	------w	C:\WINDOWS\ServicePackFiles\i386\ati2dvaa.dll
+ 2008-04-14 02:22:07	201,728	------w	C:\WINDOWS\ServicePackFiles\i386\ati2dvag.dll
+ 2004-08-03 22:38:56	327,168	------w	C:\WINDOWS\ServicePackFiles\i386\ati2mtaa.sys
+ 2004-08-03 22:38:58	701,952	------w	C:\WINDOWS\ServicePackFiles\i386\ati2mtag.sys
+ 2008-04-14 02:22:07	870,784	------w	C:\WINDOWS\ServicePackFiles\i386\ati3d1ag.dll
+ 2008-04-14 02:22:07	1,057,760	------w	C:\WINDOWS\ServicePackFiles\i386\ati3d2ag.dll
+ 2008-04-14 02:22:07	1,888,992	------w	C:\WINDOWS\ServicePackFiles\i386\ati3duag.dll
+ 2004-08-03 20:29:28	57,856	------w	C:\WINDOWS\ServicePackFiles\i386\atinbtxx.sys
+ 2004-08-03 20:29:30	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\atinmdxx.sys
+ 2004-08-03 20:29:30	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\atinpdxx.sys
+ 2004-08-03 20:29:30	52,224	------w	C:\WINDOWS\ServicePackFiles\i386\atinraxx.sys
+ 2004-08-03 20:29:32	104,960	------w	C:\WINDOWS\ServicePackFiles\i386\atinrvxx.sys
+ 2004-08-03 20:29:32	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\atinsnxx.sys
+ 2004-08-03 20:29:32	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\atinttxx.sys
+ 2004-08-03 20:29:32	73,216	------w	C:\WINDOWS\ServicePackFiles\i386\atintuxx.sys
+ 2004-08-03 20:29:32	31,744	------w	C:\WINDOWS\ServicePackFiles\i386\atinxbxx.sys
+ 2004-08-03 20:29:32	63,488	------w	C:\WINDOWS\ServicePackFiles\i386\atinxsxx.sys
+ 2008-04-14 02:22:07	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\ativtmxx.dll
+ 2008-04-14 02:22:07	516,768	------w	C:\WINDOWS\ServicePackFiles\i386\ativvaxx.dll
+ 2008-04-14 02:22:07	58,880	------w	C:\WINDOWS\ServicePackFiles\i386\atl.dll
+ 2008-04-14 02:22:34	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\atmadm.exe
+ 2008-04-13 18:51:25	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\atmarpc.sys
+ 2008-04-14 02:20:15	285,696	------w	C:\WINDOWS\ServicePackFiles\i386\atmfd.dll
+ 2008-04-13 18:51:30	55,808	------w	C:\WINDOWS\ServicePackFiles\i386\atmlane.sys
+ 2008-04-14 02:22:07	30,208	------w	C:\WINDOWS\ServicePackFiles\i386\atmlib.dll
+ 2008-04-14 02:22:34	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\attrib.exe
+ 2008-04-14 02:22:07	21,183	------w	C:\WINDOWS\ServicePackFiles\i386\atv01nt5.dll
+ 2008-04-14 02:22:07	11,359	------w	C:\WINDOWS\ServicePackFiles\i386\atv02nt5.dll
+ 2008-04-14 02:22:07	25,471	------w	C:\WINDOWS\ServicePackFiles\i386\atv04nt5.dll
+ 2008-04-14 02:22:07	14,143	------w	C:\WINDOWS\ServicePackFiles\i386\atv06nt5.dll
+ 2008-04-14 02:22:07	17,279	------w	C:\WINDOWS\ServicePackFiles\i386\atv10nt5.dll
+ 2008-04-14 02:22:07	42,496	------w	C:\WINDOWS\ServicePackFiles\i386\audiosrv.dll
+ 2008-04-14 02:22:35	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\auditusr.exe
+ 2008-04-14 02:22:07	20,540	------w	C:\WINDOWS\ServicePackFiles\i386\author.dll
+ 2008-04-14 02:22:35	16,439	------w	C:\WINDOWS\ServicePackFiles\i386\author.exe
+ 2008-04-14 02:22:07	62,464	------w	C:\WINDOWS\ServicePackFiles\i386\authz.dll
+ 2008-04-14 02:22:35	626,176	------w	C:\WINDOWS\ServicePackFiles\i386\autochk.exe
+ 2008-04-14 02:22:35	640,000	------w	C:\WINDOWS\ServicePackFiles\i386\autoconv.exe
+ 2008-04-14 02:22:35	617,984	------w	C:\WINDOWS\ServicePackFiles\i386\autofmt.exe
+ 2008-04-14 02:22:35	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\autolfn.exe
+ 2008-04-13 18:46:20	38,912	------w	C:\WINDOWS\ServicePackFiles\i386\avc.sys
+ 2008-04-13 18:46:07	13,696	------w	C:\WINDOWS\ServicePackFiles\i386\avcstrm.sys
+ 2008-04-14 02:22:07	85,504	------w	C:\WINDOWS\ServicePackFiles\i386\avifil32.dll
+ 2008-04-14 02:22:07	233,472	------w	C:\WINDOWS\ServicePackFiles\i386\azroles.dll
+ 2008-04-14 02:22:07	52,736	------w	C:\WINDOWS\ServicePackFiles\i386\basesrv.dll
+ 2008-04-14 02:22:07	29,184	------w	C:\WINDOWS\ServicePackFiles\i386\batmeter.dll
+ 2008-04-14 02:22:07	8,704	------w	C:\WINDOWS\ServicePackFiles\i386\batt.dll
+ 2008-04-14 01:52:14	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\battc.sys
+ 2008-04-13 18:46:21	11,776	------w	C:\WINDOWS\ServicePackFiles\i386\bdasup.sys
+ 2008-04-14 02:22:07	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\bidispl.dll
+ 2008-04-14 02:22:07	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\bitsprx2.dll
+ 2008-04-14 02:22:07	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\bitsprx3.dll
+ 2008-04-14 02:22:07	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\bitsprx4.dll
+ 2008-04-14 02:22:36	71,680	------w	C:\WINDOWS\ServicePackFiles\i386\blastcln.exe
+ 2008-04-14 02:22:36	153,600	------w	C:\WINDOWS\ServicePackFiles\i386\bootcfg.exe
+ 2008-04-13 18:53:23	71,552	------w	C:\WINDOWS\ServicePackFiles\i386\bridge.sys
+ 2008-04-14 01:52:35	68,096	------w	C:\WINDOWS\ServicePackFiles\i386\browselc.dll
+ 2008-04-14 02:22:07	77,824	------w	C:\WINDOWS\ServicePackFiles\i386\browser.dll
+ 2008-04-14 02:22:07	1,025,024	------w	C:\WINDOWS\ServicePackFiles\i386\browseui.dll
+ 2008-04-14 02:22:07	78,336	------w	C:\WINDOWS\ServicePackFiles\i386\browsewm.dll
+ 2008-04-14 02:22:07	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\bthci.dll
+ 2008-04-13 18:46:33	17,024	------w	C:\WINDOWS\ServicePackFiles\i386\bthenum.sys
+ 2008-04-13 18:46:33	37,888	------w	C:\WINDOWS\ServicePackFiles\i386\bthmodem.sys
+ 2008-04-13 18:51:34	101,120	------w	C:\WINDOWS\ServicePackFiles\i386\bthpan.sys
+ 2008-04-14 01:52:43	273,920	------w	C:\WINDOWS\ServicePackFiles\i386\bthport.sys
+ 2008-04-13 18:46:31	36,480	------w	C:\WINDOWS\ServicePackFiles\i386\bthprint.sys
+ 2008-04-14 02:22:07	30,208	------w	C:\WINDOWS\ServicePackFiles\i386\bthserv.dll
+ 2008-04-13 18:46:29	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\bthusb.sys
+ 2008-04-14 02:22:07	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\btpanui.dll
+ 2008-04-14 02:22:07	218,112	------w	C:\WINDOWS\ServicePackFiles\i386\c_g18030.dll
+ 2008-04-14 02:22:07	60,416	------w	C:\WINDOWS\ServicePackFiles\i386\cabinet.dll
+ 2008-04-14 02:22:07	84,992	------w	C:\WINDOWS\ServicePackFiles\i386\cabview.dll
+ 2008-04-14 02:22:37	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\cacls.exe
+ 2008-04-14 02:22:07	385,024	------w	C:\WINDOWS\ServicePackFiles\i386\callcont.dll
+ 2008-04-14 02:22:07	121,856	------w	C:\WINDOWS\ServicePackFiles\i386\camext30.dll
+ 2008-04-14 02:22:07	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\camocx.dll
+ 2008-04-14 02:22:07	153,600	------w	C:\WINDOWS\ServicePackFiles\i386\capesnpn.dll

Fako · 13.10.2008, 16:59

Code:

ATTFilter

+ 2007-06-27 12:53:18	94,208	------w	C:\WINDOWS\ServicePackFiles\i386\caspol.exe
+ 2008-04-14 02:22:07	226,304	------w	C:\WINDOWS\ServicePackFiles\i386\catsrv.dll
+ 2008-04-14 02:22:07	85,504	------w	C:\WINDOWS\ServicePackFiles\i386\catsrvps.dll
+ 2008-04-14 02:22:07	625,664	------w	C:\WINDOWS\ServicePackFiles\i386\catsrvut.dll
+ 2008-04-13 18:46:23	17,024	------w	C:\WINDOWS\ServicePackFiles\i386\ccdecode.sys
+ 2008-04-13 19:14:21	63,744	------w	C:\WINDOWS\ServicePackFiles\i386\cdfs.sys
+ 2008-04-14 02:22:07	152,064	------w	C:\WINDOWS\ServicePackFiles\i386\cdfview.dll
+ 2008-04-14 02:22:07	66,560	------w	C:\WINDOWS\ServicePackFiles\i386\cdm.dll
+ 2008-04-14 02:22:07	2,091,520	------w	C:\WINDOWS\ServicePackFiles\i386\cdosys.dll
+ 2008-04-13 18:40:46	62,976	------w	C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
+ 2008-04-14 02:22:07	198,144	------w	C:\WINDOWS\ServicePackFiles\i386\certcli.dll
+ 2008-04-14 02:22:07	466,432	------w	C:\WINDOWS\ServicePackFiles\i386\certmgr.dll
+ 2008-04-14 02:22:07	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\cfgbkend.dll
+ 2008-04-14 02:20:17	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\cfgmgr32.dll
+ 2008-04-14 02:22:38	188,480	------w	C:\WINDOWS\ServicePackFiles\i386\cfgwiz.exe
+ 2008-04-14 02:22:07	15,423	------w	C:\WINDOWS\ServicePackFiles\i386\ch7xxnt5.dll
+ 2008-04-13 18:40:58	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\changer.sys
+ 2008-04-14 02:22:07	148,480	------w	C:\WINDOWS\ServicePackFiles\i386\cic.dll
+ 2008-04-14 02:22:07	1,359,360	------w	C:\WINDOWS\ServicePackFiles\i386\cimwin32.dll
+ 2008-04-14 02:22:07	69,120	------w	C:\WINDOWS\ServicePackFiles\i386\ciodm.dll
+ 2008-04-14 02:22:38	58,880	------w	C:\WINDOWS\ServicePackFiles\i386\cipher.exe
+ 2008-04-14 02:22:38	5,632	------w	C:\WINDOWS\ServicePackFiles\i386\cisvc.exe
+ 2008-04-13 19:16:22	49,536	------w	C:\WINDOWS\ServicePackFiles\i386\classpnp.sys
+ 2008-04-14 02:22:07	110,592	------w	C:\WINDOWS\ServicePackFiles\i386\clbcatex.dll
+ 2008-04-14 02:22:07	498,688	------w	C:\WINDOWS\ServicePackFiles\i386\clbcatq.dll
+ 2008-04-14 02:22:38	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\cleanmgr.exe
+ 2008-04-14 02:22:07	77,824	------w	C:\WINDOWS\ServicePackFiles\i386\cliconfg.dll
+ 2008-04-14 02:22:38	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\cliconfg.exe
+ 2008-04-14 02:22:38	104,448	------w	C:\WINDOWS\ServicePackFiles\i386\clipbrd.exe
+ 2008-04-14 02:22:38	33,280	------w	C:\WINDOWS\ServicePackFiles\i386\clipsrv.exe
+ 2008-04-14 02:22:07	58,368	------w	C:\WINDOWS\ServicePackFiles\i386\clusapi.dll
+ 2008-04-13 18:36:37	13,952	------w	C:\WINDOWS\ServicePackFiles\i386\cmbatt.sys
+ 2008-04-14 02:22:07	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\cmcfg32.dll
+ 2008-04-14 02:22:38	401,920	------w	C:\WINDOWS\ServicePackFiles\i386\cmd.exe
+ 2008-04-14 02:22:07	354,816	------w	C:\WINDOWS\ServicePackFiles\i386\cmdial32.dll
+ 2008-04-14 02:22:38	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\cmdl32.exe
+ 2008-04-14 02:22:39	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\cmmon32.exe
+ 2008-04-14 02:22:07	189,440	------w	C:\WINDOWS\ServicePackFiles\i386\cmprops.dll
+ 2008-04-14 02:22:07	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\cmsetacl.dll
+ 2008-04-14 02:22:39	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\cmstp.exe
+ 2008-04-14 02:22:07	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\cmutil.dll
+ 2008-04-14 02:22:07	51,712	------w	C:\WINDOWS\ServicePackFiles\i386\cnbjmon.dll
+ 2008-04-14 02:22:07	84,992	------w	C:\WINDOWS\ServicePackFiles\i386\cnbjmon2.dll
+ 2008-04-14 02:22:07	47,104	------w	C:\WINDOWS\ServicePackFiles\i386\coadmin.dll
+ 2008-04-13 16:44:16	17,920	------w	C:\WINDOWS\ServicePackFiles\i386\cobramsg.dll
+ 2008-04-14 02:22:08	60,416	------w	C:\WINDOWS\ServicePackFiles\i386\colbact.dll
+ 2008-04-14 02:22:08	28,160	------w	C:\WINDOWS\ServicePackFiles\i386\comaddin.dll
+ 2008-04-14 02:22:08	195,072	------w	C:\WINDOWS\ServicePackFiles\i386\comadmin.dll
+ 2008-04-14 02:22:08	617,472	------w	C:\WINDOWS\ServicePackFiles\i386\comctl32.dll
+ 2008-04-14 02:22:08	281,600	------w	C:\WINDOWS\ServicePackFiles\i386\comdlg32.dll
+ 2008-04-14 02:22:08	253,440	------w	C:\WINDOWS\ServicePackFiles\i386\compatui.dll
+ 2008-04-13 18:36:37	10,240	------w	C:\WINDOWS\ServicePackFiles\i386\compbatt.sys
+ 2008-04-14 02:22:08	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\compfilt.dll
+ 2008-04-14 02:22:08	230,912	------w	C:\WINDOWS\ServicePackFiles\i386\compstui.dll
+ 2008-04-14 02:22:08	97,792	------w	C:\WINDOWS\ServicePackFiles\i386\comrepl.dll
+ 2008-04-14 02:22:39	9,728	------w	C:\WINDOWS\ServicePackFiles\i386\comrepl.exe
+ 2008-04-14 02:22:39	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\comrereg.exe
+ 2008-04-14 02:22:08	846,848	------w	C:\WINDOWS\ServicePackFiles\i386\comres.dll
+ 2008-04-13 18:43:32	9,728	------w	C:\WINDOWS\ServicePackFiles\i386\comsdupd.exe
+ 2008-04-14 02:22:08	274,944	------w	C:\WINDOWS\ServicePackFiles\i386\comsetup.dll
+ 2008-04-14 02:22:08	167,424	------w	C:\WINDOWS\ServicePackFiles\i386\comsnap.dll
+ 2008-04-14 02:22:08	1,267,200	------w	C:\WINDOWS\ServicePackFiles\i386\comsvcs.dll
+ 2008-04-14 02:20:21	539,648	------w	C:\WINDOWS\ServicePackFiles\i386\comuid.dll
+ 2008-04-14 02:22:39	1,040,384	------w	C:\WINDOWS\ServicePackFiles\i386\conf.exe
+ 2008-04-14 02:22:08	45,056	------w	C:\WINDOWS\ServicePackFiles\i386\confmrsl.dll
+ 2008-04-14 02:22:08	357,888	------w	C:\WINDOWS\ServicePackFiles\i386\confmsp.dll
+ 2008-04-14 02:22:40	27,648	------w	C:\WINDOWS\ServicePackFiles\i386\conime.exe
+ 2008-04-13 16:10:05	69,632	------w	C:\WINDOWS\ServicePackFiles\i386\corperfmonext.dll
+ 2008-04-14 02:22:08	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\corpol.dll
+ 2008-04-14 02:22:08	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\credssp.dll
+ 2008-04-14 02:22:08	165,376	------w	C:\WINDOWS\ServicePackFiles\i386\credui.dll
+ 2008-04-14 01:56:30	40,832	------w	C:\WINDOWS\ServicePackFiles\i386\crusoe.sys
+ 2008-04-14 02:22:08	604,160	------w	C:\WINDOWS\ServicePackFiles\i386\crypt32.dll
+ 2008-04-14 02:22:08	76,800	------w	C:\WINDOWS\ServicePackFiles\i386\cryptdlg.dll
+ 2008-04-14 02:22:08	33,280	------w	C:\WINDOWS\ServicePackFiles\i386\cryptdll.dll
+ 2008-04-14 02:22:08	54,784	------w	C:\WINDOWS\ServicePackFiles\i386\cryptext.dll
+ 2008-04-14 02:22:08	64,512	------w	C:\WINDOWS\ServicePackFiles\i386\cryptnet.dll
+ 2008-04-14 02:22:08	62,464	------w	C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
+ 2008-04-14 02:22:08	530,944	------w	C:\WINDOWS\ServicePackFiles\i386\cryptui.dll
+ 2008-04-13 16:10:13	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\csc.exe
+ 2008-04-14 02:22:08	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\cscdll.dll
+ 2007-06-27 12:53:47	589,824	------w	C:\WINDOWS\ServicePackFiles\i386\cscomp.dll
+ 2008-04-14 02:22:40	139,264	------w	C:\WINDOWS\ServicePackFiles\i386\cscript.exe
+ 2008-04-14 02:22:08	334,848	------w	C:\WINDOWS\ServicePackFiles\i386\cscui.dll
+ 2008-04-14 02:22:08	32,256	------w	C:\WINDOWS\ServicePackFiles\i386\csrsrv.dll
+ 2008-04-14 02:22:40	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\csrss.exe
+ 2008-04-14 02:22:40	15,360	------w	C:\WINDOWS\ServicePackFiles\i386\ctfmon.exe
+ 2008-04-14 02:22:08	252,928	------w	C:\WINDOWS\ServicePackFiles\i386\ctmasetp.dll
+ 2008-04-14 02:22:08	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\custsat.dll
+ 2004-08-03 20:32:26	48,640	------w	C:\WINDOWS\ServicePackFiles\i386\cwrwdm.sys
+ 2008-04-14 02:22:08	1,179,648	------w	C:\WINDOWS\ServicePackFiles\i386\d3d8.dll
+ 2008-04-14 02:22:08	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\d3d8thk.dll
+ 2008-04-14 02:22:08	1,689,088	------w	C:\WINDOWS\ServicePackFiles\i386\d3d9.dll
+ 2008-04-14 02:22:08	824,320	------w	C:\WINDOWS\ServicePackFiles\i386\d3dim700.dll
+ 2008-04-14 02:22:08	1,056,256	------w	C:\WINDOWS\ServicePackFiles\i386\danim.dll
+ 2008-03-25 04:50:25	554,008	------w	C:\WINDOWS\ServicePackFiles\i386\dao360.dll
+ 2008-04-14 02:22:08	54,784	------w	C:\WINDOWS\ServicePackFiles\i386\dataclen.dll
+ 2008-04-14 02:22:08	165,376	------w	C:\WINDOWS\ServicePackFiles\i386\datime.dll
+ 2008-04-14 02:22:40	42,496	------w	C:\WINDOWS\ServicePackFiles\i386\davcdata.exe
+ 2008-04-14 02:22:08	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\davclnt.dll
+ 2008-04-14 02:22:08	640,000	------w	C:\WINDOWS\ServicePackFiles\i386\dbghelp.dll
+ 2008-04-14 02:22:08	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\dbmsrpcn.dll
+ 2008-04-14 02:22:08	110,592	------w	C:\WINDOWS\ServicePackFiles\i386\dbnetlib.dll
+ 2008-04-14 02:22:08	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\dbnmpntw.dll
+ 2008-04-14 02:36:25	1,804	------w	C:\WINDOWS\ServicePackFiles\i386\dcache.bin
+ 2008-04-14 02:22:08	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\dcap32.dll
+ 2008-04-14 02:22:08	8,704	------w	C:\WINDOWS\ServicePackFiles\i386\dciman32.dll
+ 2008-04-14 02:22:40	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\dcomcnfg.exe
+ 2008-04-14 02:22:40	31,744	------w	C:\WINDOWS\ServicePackFiles\i386\ddeshare.exe
+ 2008-04-14 02:22:08	279,552	------w	C:\WINDOWS\ServicePackFiles\i386\ddraw.dll
+ 2008-04-14 02:22:08	27,136	------w	C:\WINDOWS\ServicePackFiles\i386\ddrawex.dll
+ 2008-04-14 02:22:40	25,088	------w	C:\WINDOWS\ServicePackFiles\i386\defrag.exe
+ 2008-04-14 02:22:08	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\devenum.dll
+ 2008-04-14 02:22:08	287,744	------w	C:\WINDOWS\ServicePackFiles\i386\devmgr.dll
+ 2008-04-14 02:22:40	82,944	------w	C:\WINDOWS\ServicePackFiles\i386\dfrgfat.exe
+ 2008-04-14 02:22:41	105,472	------w	C:\WINDOWS\ServicePackFiles\i386\dfrgntfs.exe
+ 2008-04-14 02:22:08	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\dfrgsnap.dll
+ 2008-04-14 02:22:08	124,416	------w	C:\WINDOWS\ServicePackFiles\i386\dfrgui.dll
+ 2008-04-14 02:22:08	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\dfsshlex.dll
+ 2008-04-14 02:22:08	113,152	------w	C:\WINDOWS\ServicePackFiles\i386\dgnet.dll
+ 2008-04-14 02:22:08	127,488	------w	C:\WINDOWS\ServicePackFiles\i386\dhcpcsvc.dll
+ 2008-04-14 02:22:08	408,576	------w	C:\WINDOWS\ServicePackFiles\i386\dhcpmon.dll
+ 2008-04-14 02:22:09	48,640	------w	C:\WINDOWS\ServicePackFiles\i386\dhcpqec.dll
+ 2008-04-14 02:22:42	545,280	------w	C:\WINDOWS\ServicePackFiles\i386\dialer.exe
+ 2008-04-14 02:22:42	87,040	------w	C:\WINDOWS\ServicePackFiles\i386\diantz.exe
+ 2006-02-28 12:00:00	888,808	------w	C:\WINDOWS\ServicePackFiles\i386\digcore.exe
+ 2008-04-14 02:22:09	68,608	------w	C:\WINDOWS\ServicePackFiles\i386\digest.dll
+ 2008-04-14 02:22:09	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\dimsntfy.dll
+ 2008-04-14 02:22:09	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\dimsroam.dll
+ 2008-04-14 02:22:09	163,328	------w	C:\WINDOWS\ServicePackFiles\i386\dinput.dll
+ 2008-04-14 02:22:09	186,368	------w	C:\WINDOWS\ServicePackFiles\i386\dinput8.dll
+ 2008-04-14 02:22:09	86,528	------w	C:\WINDOWS\ServicePackFiles\i386\directdb.dll
+ 2008-04-13 18:40:47	36,352	------w	C:\WINDOWS\ServicePackFiles\i386\disk.sys
+ 2008-04-14 02:22:09	1,504,768	------w	C:\WINDOWS\ServicePackFiles\i386\diskcopy.dll
+ 2008-04-13 18:40:44	14,208	------w	C:\WINDOWS\ServicePackFiles\i386\diskdump.sys
+ 2008-04-14 02:22:42	169,984	------w	C:\WINDOWS\ServicePackFiles\i386\diskpart.exe
+ 2008-04-14 02:22:09	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\dispex.dll
+ 2008-04-14 02:22:42	5,120	------w	C:\WINDOWS\ServicePackFiles\i386\dllhost.exe
+ 2008-04-13 18:40:51	8,320	------w	C:\WINDOWS\ServicePackFiles\i386\dlttape.sys
+ 2008-04-14 02:22:42	225,280	------w	C:\WINDOWS\ServicePackFiles\i386\dmadmin.exe
+ 2008-04-14 02:22:09	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\dmband.dll
+ 2008-04-14 01:58:13	800,384	------w	C:\WINDOWS\ServicePackFiles\i386\dmboot.sys
+ 2008-04-14 02:22:09	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\dmcompos.dll
+ 2008-04-14 02:22:09	285,184	------w	C:\WINDOWS\ServicePackFiles\i386\dmdlgs.dll
+ 2008-04-14 02:22:09	200,704	------w	C:\WINDOWS\ServicePackFiles\i386\dmdskmgr.dll
+ 2008-04-14 02:22:09	181,248	------w	C:\WINDOWS\ServicePackFiles\i386\dmime.dll
+ 2008-04-14 01:58:18	154,112	------w	C:\WINDOWS\ServicePackFiles\i386\dmio.sys
+ 2008-04-14 02:22:09	35,840	------w	C:\WINDOWS\ServicePackFiles\i386\dmloader.dll
+ 2008-04-14 02:22:42	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\dmremote.exe
+ 2008-04-14 02:22:09	82,432	------w	C:\WINDOWS\ServicePackFiles\i386\dmscript.dll
+ 2008-04-14 02:22:09	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\dmserver.dll
+ 2008-04-14 02:22:09	105,984	------w	C:\WINDOWS\ServicePackFiles\i386\dmstyle.dll
+ 2008-04-14 02:22:09	103,424	------w	C:\WINDOWS\ServicePackFiles\i386\dmsynth.dll
+ 2008-04-14 02:22:09	104,448	------w	C:\WINDOWS\ServicePackFiles\i386\dmusic.dll
+ 2008-04-13 18:45:01	52,864	------w	C:\WINDOWS\ServicePackFiles\i386\dmusic.sys
+ 2008-04-14 02:22:09	59,392	------w	C:\WINDOWS\ServicePackFiles\i386\dmutil.dll
+ 2008-04-14 02:22:09	147,968	------w	C:\WINDOWS\ServicePackFiles\i386\dnsapi.dll
+ 2008-04-14 02:22:09	45,568	------w	C:\WINDOWS\ServicePackFiles\i386\dnsrslvr.dll
+ 2008-04-14 02:22:09	48,640	------w	C:\WINDOWS\ServicePackFiles\i386\docprop2.dll
+ 2006-02-28 12:00:00	54,128	------w	C:\WINDOWS\ServicePackFiles\i386\dosx.exe
+ 2008-04-14 02:22:09	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\dot3api.dll
+ 2008-04-14 02:22:09	62,976	------w	C:\WINDOWS\ServicePackFiles\i386\dot3cfg.dll
+ 2008-04-14 02:22:09	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\dot3clnt.dll
+ 2008-04-14 02:22:09	9,216	------w	C:\WINDOWS\ServicePackFiles\i386\dot3dlg.dll
+ 2008-04-14 02:22:09	56,832	------w	C:\WINDOWS\ServicePackFiles\i386\dot3msm.dll
+ 2008-04-14 02:22:09	133,120	------w	C:\WINDOWS\ServicePackFiles\i386\dot3svc.dll
+ 2008-04-14 02:22:09	651,264	------w	C:\WINDOWS\ServicePackFiles\i386\dot3ui.dll
+ 2008-04-13 18:39:46	206,976	------w	C:\WINDOWS\ServicePackFiles\i386\dot4.sys
+ 2008-04-14 02:22:09	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\dpcdll.dll
+ 2008-04-14 02:22:43	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\dplaysvr.exe
+ 2008-04-14 02:22:09	229,888	------w	C:\WINDOWS\ServicePackFiles\i386\dplayx.dll
+ 2008-04-14 02:22:09	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\dpmodemx.dll
+ 2008-04-14 02:20:27	3,072	------w	C:\WINDOWS\ServicePackFiles\i386\dpnaddr.dll
+ 2008-04-14 02:22:09	375,296	------w	C:\WINDOWS\ServicePackFiles\i386\dpnet.dll
+ 2008-04-14 02:22:09	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\dpnhpast.dll
+ 2008-04-14 02:22:09	60,928	------w	C:\WINDOWS\ServicePackFiles\i386\dpnhupnp.dll
+ 2008-04-14 02:20:27	3,072	------w	C:\WINDOWS\ServicePackFiles\i386\dpnlobby.dll
+ 2008-04-14 02:22:43	17,920	------w	C:\WINDOWS\ServicePackFiles\i386\dpnsvr.exe
+ 2008-04-14 02:22:09	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\dpvacm.dll
+ 2008-04-14 02:22:09	214,016	------w	C:\WINDOWS\ServicePackFiles\i386\dpvoice.dll
+ 2008-04-14 02:22:43	83,456	------w	C:\WINDOWS\ServicePackFiles\i386\dpvsetup.exe
+ 2008-04-14 02:22:09	116,736	------w	C:\WINDOWS\ServicePackFiles\i386\dpvvox.dll
+ 2008-04-14 02:22:09	57,856	------w	C:\WINDOWS\ServicePackFiles\i386\dpwsockx.dll
+ 2008-04-13 18:45:14	60,160	------w	C:\WINDOWS\ServicePackFiles\i386\drmk.sys
+ 2008-04-13 18:45:13	2,944	------w	C:\WINDOWS\ServicePackFiles\i386\drmkaud.sys
+ 2008-04-14 02:22:09	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\drprov.dll
+ 2008-04-14 02:22:43	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\drvqry.exe
+ 2006-02-28 12:00:00	4,656	------w	C:\WINDOWS\ServicePackFiles\i386\ds16gt.dll
+ 2008-04-14 02:22:09	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\ds32gt.dll
+ 2008-04-14 02:22:09	181,248	------w	C:\WINDOWS\ServicePackFiles\i386\dsdmo.dll
+ 2008-04-14 02:22:09	74,240	------w	C:\WINDOWS\ServicePackFiles\i386\dsdmoprp.dll
+ 2008-04-14 02:22:09	93,184	------w	C:\WINDOWS\ServicePackFiles\i386\dskquota.dll
+ 2008-04-14 02:22:09	160,768	------w	C:\WINDOWS\ServicePackFiles\i386\dskquoui.dll
+ 2008-04-14 02:22:09	367,616	------w	C:\WINDOWS\ServicePackFiles\i386\dsound.dll
+ 2008-04-14 02:22:09	1,293,824	------w	C:\WINDOWS\ServicePackFiles\i386\dsound3d.dll

Fako · 13.10.2008, 17:01

Code:

ATTFilter

+ 2008-04-14 02:22:09	146,944	------w	C:\WINDOWS\ServicePackFiles\i386\dsprop.dll
+ 2008-04-14 01:59:20	4,096	------w	C:\WINDOWS\ServicePackFiles\i386\dsprpres.dll
+ 2008-04-14 02:22:09	240,128	------w	C:\WINDOWS\ServicePackFiles\i386\dsquery.dll
+ 2008-04-14 02:22:09	52,224	------w	C:\WINDOWS\ServicePackFiles\i386\dssec.dll
+ 2008-04-13 17:37:57	138,752	------w	C:\WINDOWS\ServicePackFiles\i386\dssenh.dll
+ 2008-04-14 02:22:09	113,664	------w	C:\WINDOWS\ServicePackFiles\i386\dsuiext.dll
+ 2008-04-14 02:22:09	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\dswave.dll
+ 2008-04-14 02:22:43	10,752	------w	C:\WINDOWS\ServicePackFiles\i386\dumprep.exe
+ 2008-04-14 02:22:09	304,128	------w	C:\WINDOWS\ServicePackFiles\i386\duser.dll
+ 2008-04-14 02:22:43	17,920	------w	C:\WINDOWS\ServicePackFiles\i386\dvdupgrd.exe
+ 2006-02-28 12:00:00	56,032	------w	C:\WINDOWS\ServicePackFiles\i386\dwil1031.dll
+ 2008-04-14 02:22:43	180,224	------w	C:\WINDOWS\ServicePackFiles\i386\dwwin.exe
+ 2008-04-14 02:22:09	619,008	------w	C:\WINDOWS\ServicePackFiles\i386\dx7vb.dll
+ 2008-04-14 02:22:09	1,227,264	------w	C:\WINDOWS\ServicePackFiles\i386\dx8vb.dll
+ 2008-04-14 02:22:43	1,298,432	------w	C:\WINDOWS\ServicePackFiles\i386\dxdiag.exe
+ 2008-04-14 02:22:09	2,113,536	------w	C:\WINDOWS\ServicePackFiles\i386\dxdiagn.dll
+ 2008-04-13 18:38:29	71,168	------w	C:\WINDOWS\ServicePackFiles\i386\dxg.sys
+ 2008-04-14 02:22:09	357,888	------w	C:\WINDOWS\ServicePackFiles\i386\dxtmsft.dll
+ 2008-04-14 02:22:09	205,312	------w	C:\WINDOWS\ServicePackFiles\i386\dxtrans.dll
+ 2008-04-14 02:22:09	30,720	------w	C:\WINDOWS\ServicePackFiles\i386\eapolqec.dll
+ 2008-04-14 02:22:09	184,832	------w	C:\WINDOWS\ServicePackFiles\i386\eapp3hst.dll
+ 2008-04-14 02:22:09	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\eappcfg.dll
+ 2008-04-14 02:22:09	95,232	------w	C:\WINDOWS\ServicePackFiles\i386\eappgnui.dll
+ 2008-04-14 02:22:09	182,272	------w	C:\WINDOWS\ServicePackFiles\i386\eapphost.dll
+ 2008-04-14 02:22:09	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\eappprxy.dll
+ 2008-04-14 02:22:09	59,392	------w	C:\WINDOWS\ServicePackFiles\i386\eapqec.dll
+ 2008-04-14 02:22:09	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\eapsvc.dll
+ 2008-04-14 02:22:09	27,136	------w	C:\WINDOWS\ServicePackFiles\i386\efsadu.dll
+ 2008-04-14 02:22:10	186,880	------w	C:\WINDOWS\ServicePackFiles\i386\els.dll
+ 2008-04-14 02:22:10	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\encapi.dll
+ 2008-04-14 02:22:10	186,880	------w	C:\WINDOWS\ServicePackFiles\i386\encdec.dll
+ 2008-04-14 01:52:04	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\ep9res.dll
+ 2004-08-03 22:38:02	120,832	------w	C:\WINDOWS\ServicePackFiles\i386\epcl5res.dll
+ 2008-04-14 02:22:10	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\ersvc.dll
+ 2008-04-14 02:22:10	246,272	------w	C:\WINDOWS\ServicePackFiles\i386\es.dll
+ 2008-04-14 02:22:10	1,094,144	------w	C:\WINDOWS\ServicePackFiles\i386\esent.dll
+ 2008-04-14 02:22:10	247,808	------w	C:\WINDOWS\ServicePackFiles\i386\esscli.dll
+ 2004-08-03 20:32:28	137,088	------w	C:\WINDOWS\ServicePackFiles\i386\essm2e.sys
+ 2008-04-14 02:22:44	195,584	------w	C:\WINDOWS\ServicePackFiles\i386\eudcedit.exe
+ 2008-04-14 02:22:44	52,736	------w	C:\WINDOWS\ServicePackFiles\i386\evcreate.exe
+ 2008-04-14 02:22:10	56,320	------w	C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
+ 2007-06-27 12:54:17	798,720	------w	C:\WINDOWS\ServicePackFiles\i386\eventlogmessages.dll
+ 2008-04-14 02:22:10	108,032	------w	C:\WINDOWS\ServicePackFiles\i386\evntagnt.dll
+ 2008-04-14 02:22:44	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\evntcmd.exe
+ 2008-04-14 02:22:10	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\evntrprv.dll
+ 2008-04-14 02:22:44	94,208	------w	C:\WINDOWS\ServicePackFiles\i386\evntwin.exe
+ 2008-04-14 02:22:10	45,056	------w	C:\WINDOWS\ServicePackFiles\i386\evtgprov.dll
+ 2008-04-14 02:22:44	85,504	------w	C:\WINDOWS\ServicePackFiles\i386\evtrig.exe
+ 2008-04-14 02:22:45	1,036,800	------w	C:\WINDOWS\ServicePackFiles\i386\explorer.exe
+ 2008-04-14 02:22:10	380,445	------w	C:\WINDOWS\ServicePackFiles\i386\expsrv.dll
+ 2008-04-14 02:22:10	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\exstrace.dll
+ 2008-04-14 02:22:10	55,808	------w	C:\WINDOWS\ServicePackFiles\i386\extmgr.dll
+ 2008-04-14 02:22:45	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\extrac32.exe
+ 2008-04-14 02:22:10	125,952	------w	C:\WINDOWS\ServicePackFiles\i386\exts.dll
+ 2008-04-14 02:20:33	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\f3ahvoas.dll
+ 2008-04-13 19:14:29	143,744	------w	C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
+ 2008-04-14 02:22:10	472,064	------w	C:\WINDOWS\ServicePackFiles\i386\fastprox.dll
+ 2008-04-14 02:22:10	80,896	------w	C:\WINDOWS\ServicePackFiles\i386\faultrep.dll
+ 2008-04-14 02:22:45	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\faxpatch.exe
+ 2008-04-13 18:40:25	27,392	------w	C:\WINDOWS\ServicePackFiles\i386\fdc.sys
+ 2008-04-14 02:22:10	125,952	------w	C:\WINDOWS\ServicePackFiles\i386\fde.dll
+ 2008-04-14 02:22:10	76,800	------w	C:\WINDOWS\ServicePackFiles\i386\fdeploy.dll
+ 2008-04-14 02:22:10	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\feclient.dll
+ 2008-04-14 02:22:10	345,600	------w	C:\WINDOWS\ServicePackFiles\i386\filemgmt.dll
+ 2008-04-14 02:22:45	28,160	------w	C:\WINDOWS\ServicePackFiles\i386\findstr.exe
+ 2008-04-14 01:52:51	44,672	------w	C:\WINDOWS\ServicePackFiles\i386\fips.sys
+ 2008-04-14 02:22:10	88,576	------w	C:\WINDOWS\ServicePackFiles\i386\fldrclnr.dll
+ 2008-04-13 18:40:25	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\flpydisk.sys
+ 2008-04-14 02:22:10	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\fltlib.dll
+ 2008-04-14 02:22:46	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\fltmc.exe
+ 2008-04-13 18:32:59	129,792	------w	C:\WINDOWS\ServicePackFiles\i386\fltmgr.sys
+ 2008-04-14 02:22:10	386,560	------w	C:\WINDOWS\ServicePackFiles\i386\fontext.dll
+ 2008-04-14 02:22:10	80,896	------w	C:\WINDOWS\ServicePackFiles\i386\fontsub.dll
+ 2008-04-14 02:22:46	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\fontview.exe
+ 2008-04-14 02:22:46	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\forcedos.exe
+ 2004-08-03 20:31:24	34,173	------w	C:\WINDOWS\ServicePackFiles\i386\forehe.sys
+ 2008-04-14 02:23:07	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\format.com
+ 2008-04-14 02:22:10	32,828	------w	C:\WINDOWS\ServicePackFiles\i386\fp40ext.dll
+ 2008-04-14 02:22:10	184,435	------w	C:\WINDOWS\ServicePackFiles\i386\fp4amsft.dll
+ 2008-04-14 02:22:10	82,035	------w	C:\WINDOWS\ServicePackFiles\i386\fp4anscp.dll
+ 2008-04-14 02:22:10	147,513	------w	C:\WINDOWS\ServicePackFiles\i386\fp4apws.dll
+ 2008-04-14 02:22:10	49,210	------w	C:\WINDOWS\ServicePackFiles\i386\fp4areg.dll
+ 2008-04-14 02:22:10	102,509	------w	C:\WINDOWS\ServicePackFiles\i386\fp4atxt.dll
+ 2008-04-14 02:22:10	618,605	------w	C:\WINDOWS\ServicePackFiles\i386\fp4autl.dll
+ 2008-04-14 02:22:10	41,020	------w	C:\WINDOWS\ServicePackFiles\i386\fp4avnb.dll
+ 2008-04-14 02:22:10	32,826	------w	C:\WINDOWS\ServicePackFiles\i386\fp4avss.dll
+ 2008-04-14 02:22:10	49,212	------w	C:\WINDOWS\ServicePackFiles\i386\fp4awebs.dll
+ 2008-04-14 02:22:10	876,653	------w	C:\WINDOWS\ServicePackFiles\i386\fp4awel.dll
+ 2008-04-14 02:22:46	15,120	------w	C:\WINDOWS\ServicePackFiles\i386\fp98sadm.exe
+ 2008-04-14 02:22:46	109,840	------w	C:\WINDOWS\ServicePackFiles\i386\fp98swin.exe
+ 2008-04-14 02:22:46	24,632	------w	C:\WINDOWS\ServicePackFiles\i386\fpadmcgi.exe
+ 2008-04-14 02:22:10	20,541	------w	C:\WINDOWS\ServicePackFiles\i386\fpadmdll.dll
+ 2008-04-14 02:22:46	188,494	------w	C:\WINDOWS\ServicePackFiles\i386\fpcount.exe
+ 2008-04-14 02:22:10	94,208	------w	C:\WINDOWS\ServicePackFiles\i386\fpencode.dll
+ 2008-04-14 02:22:10	20,541	------w	C:\WINDOWS\ServicePackFiles\i386\fpexedll.dll
+ 2008-04-14 02:22:10	598,071	------w	C:\WINDOWS\ServicePackFiles\i386\fpmmc.dll
+ 2003-03-24 14:52:44	217,088	------w	C:\WINDOWS\ServicePackFiles\i386\fpmmcsat.dll
+ 2008-04-14 02:22:46	20,538	------w	C:\WINDOWS\ServicePackFiles\i386\fpremadm.exe
+ 2008-04-14 02:22:46	28,728	------w	C:\WINDOWS\ServicePackFiles\i386\fpsrvadm.exe
+ 2008-04-14 02:20:34	9,344	------w	C:\WINDOWS\ServicePackFiles\i386\framebuf.dll
+ 2008-04-14 02:22:10	185,344	------w	C:\WINDOWS\ServicePackFiles\i386\framedyn.dll
+ 2008-04-14 02:22:46	193,024	------w	C:\WINDOWS\ServicePackFiles\i386\fsquirt.exe
+ 2008-04-14 02:22:46	45,056	------w	C:\WINDOWS\ServicePackFiles\i386\ftp.exe
+ 2008-04-14 02:22:10	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\ftpmib.dll
+ 2008-04-14 02:22:10	125,952	------w	C:\WINDOWS\ServicePackFiles\i386\ftpsv251.dll
+ 2007-06-27 12:54:17	233,472	------w	C:\WINDOWS\ServicePackFiles\i386\fusion.dll
+ 2008-04-14 02:22:10	60,416	------w	C:\WINDOWS\ServicePackFiles\i386\fwcfg.dll
+ 2008-04-14 02:22:10	451,584	------w	C:\WINDOWS\ServicePackFiles\i386\fxsapi.dll
+ 2008-04-14 02:22:46	142,848	------w	C:\WINDOWS\ServicePackFiles\i386\fxsclnt.exe
+ 2008-04-14 02:22:10	72,192	------w	C:\WINDOWS\ServicePackFiles\i386\fxscom.dll
+ 2008-04-14 02:22:10	285,184	------w	C:\WINDOWS\ServicePackFiles\i386\fxscomex.dll
+ 2008-04-14 02:22:47	235,520	------w	C:\WINDOWS\ServicePackFiles\i386\fxscover.exe
+ 2008-04-14 02:22:10	26,624	------w	C:\WINDOWS\ServicePackFiles\i386\fxsdrv.dll
+ 2008-04-14 02:22:10	64,000	------w	C:\WINDOWS\ServicePackFiles\i386\fxsevent.dll
+ 2008-04-14 02:22:10	23,552	------w	C:\WINDOWS\ServicePackFiles\i386\fxsext32.dll
+ 2008-04-14 02:22:10	23,552	------w	C:\WINDOWS\ServicePackFiles\i386\fxsmon.dll
+ 2008-04-14 02:22:10	132,608	------w	C:\WINDOWS\ServicePackFiles\i386\fxsocm.dll
+ 2008-04-14 02:22:10	8,704	------w	C:\WINDOWS\ServicePackFiles\i386\fxsperf.dll
+ 2008-04-14 02:20:35	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\fxsres.dll
+ 2008-04-14 02:22:10	563,200	------w	C:\WINDOWS\ServicePackFiles\i386\fxsst.dll
+ 2008-04-14 02:22:47	268,800	------w	C:\WINDOWS\ServicePackFiles\i386\fxssvc.exe
+ 2008-04-14 02:22:10	246,272	------w	C:\WINDOWS\ServicePackFiles\i386\fxst30.dll
+ 2008-04-14 02:22:10	397,312	------w	C:\WINDOWS\ServicePackFiles\i386\fxstiff.dll
+ 2008-04-14 02:22:10	155,648	------w	C:\WINDOWS\ServicePackFiles\i386\fxsui.dll
+ 2008-04-14 02:22:10	195,584	------w	C:\WINDOWS\ServicePackFiles\i386\fxswzrd.dll
+ 2008-04-14 02:22:10	400,896	------w	C:\WINDOWS\ServicePackFiles\i386\fxsxp32.dll
+ 2008-04-13 18:36:40	46,464	------w	C:\WINDOWS\ServicePackFiles\i386\gagp30kx.sys
+ 2008-04-13 18:45:29	10,624	------w	C:\WINDOWS\ServicePackFiles\i386\gameenum.sys
+ 2008-04-13 18:45:32	59,136	------w	C:\WINDOWS\ServicePackFiles\i386\gckernel.sys
+ 2008-04-14 02:22:10	285,184	------w	C:\WINDOWS\ServicePackFiles\i386\gdi32.dll
+ 2008-04-14 02:22:47	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\getmac.exe
+ 2008-04-14 02:22:10	122,880	------w	C:\WINDOWS\ServicePackFiles\i386\glu32.dll
+ 2008-04-14 02:22:10	577,024	------w	C:\WINDOWS\ServicePackFiles\i386\gpedit.dll
+ 2006-02-28 12:00:00	101,888	------w	C:\WINDOWS\ServicePackFiles\i386\gpkcsp.dll
+ 2008-04-14 01:54:15	10,752	------w	C:\WINDOWS\ServicePackFiles\i386\gpkrsrc.dll
+ 2008-04-14 02:22:47	123,392	------w	C:\WINDOWS\ServicePackFiles\i386\gprslt.exe
+ 2008-04-14 02:22:11	202,240	------w	C:\WINDOWS\ServicePackFiles\i386\gptext.dll
+ 2008-04-14 02:22:47	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\grpconv.exe
+ 2008-04-14 01:54:20	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\grserial.sys
+ 2008-04-14 02:22:11	134,656	------w	C:\WINDOWS\ServicePackFiles\i386\guitrn.dll
+ 2008-04-14 02:22:11	115,712	------w	C:\WINDOWS\ServicePackFiles\i386\guitrna.dll
+ 2008-04-14 02:22:11	32,256	------w	C:\WINDOWS\ServicePackFiles\i386\gzip.dll
+ 2008-04-14 02:22:11	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\h323cc.dll
+ 2008-04-14 02:22:11	614,912	------w	C:\WINDOWS\ServicePackFiles\i386\h323msp.dll
+ 2008-04-13 18:31:32	105,344	------w	C:\WINDOWS\ServicePackFiles\i386\hal.dll
+ 2008-04-13 18:31:28	131,840	------w	C:\WINDOWS\ServicePackFiles\i386\halaacpi.dll
+ 2008-04-13 18:31:27	81,152	------w	C:\WINDOWS\ServicePackFiles\i386\halacpi.dll
+ 2008-04-13 18:31:28	150,528	------w	C:\WINDOWS\ServicePackFiles\i386\halapic.dll
+ 2008-04-13 18:31:28	134,400	------w	C:\WINDOWS\ServicePackFiles\i386\halmacpi.dll
+ 2008-04-13 18:31:32	152,576	------w	C:\WINDOWS\ServicePackFiles\i386\halmps.dll
+ 2008-04-13 18:31:31	77,696	------w	C:\WINDOWS\ServicePackFiles\i386\halsp.dll
+ 2008-04-14 02:22:11	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\hccoin.dll
+ 2008-04-13 16:36:05	144,384	------w	C:\WINDOWS\ServicePackFiles\i386\hdaudbus.sys
+ 2008-04-14 02:22:47	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\help.exe
+ 2008-04-14 02:22:47	769,024	------w	C:\WINDOWS\ServicePackFiles\i386\helpctr.exe
+ 2008-04-14 02:22:47	744,448	------w	C:\WINDOWS\ServicePackFiles\i386\helpsvc.exe
+ 2008-04-14 02:22:47	10,752	------w	C:\WINDOWS\ServicePackFiles\i386\hh.exe
+ 2008-04-14 02:22:11	41,472	------w	C:\WINDOWS\ServicePackFiles\i386\hhsetup.dll
+ 2008-04-14 02:22:11	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\hid.dll
+ 2008-04-13 18:36:38	20,352	------w	C:\WINDOWS\ServicePackFiles\i386\hidbatt.sys
+ 2008-04-14 01:54:49	25,856	------w	C:\WINDOWS\ServicePackFiles\i386\hidbth.sys
+ 2008-04-13 18:45:26	36,864	------w	C:\WINDOWS\ServicePackFiles\i386\hidclass.sys
+ 2008-04-13 18:45:26	19,200	------w	C:\WINDOWS\ServicePackFiles\i386\hidir.sys
+ 2008-04-13 18:45:22	24,960	------w	C:\WINDOWS\ServicePackFiles\i386\hidparse.sys
+ 2008-04-14 02:22:11	21,504	------w	C:\WINDOWS\ServicePackFiles\i386\hidserv.dll
+ 2008-04-13 18:45:27	10,368	------w	C:\WINDOWS\ServicePackFiles\i386\hidusb.sys
+ 2008-04-14 02:22:11	72,704	------w	C:\WINDOWS\ServicePackFiles\i386\hlink.dll
+ 2008-04-14 02:22:11	38,912	------w	C:\WINDOWS\ServicePackFiles\i386\hmmapi.dll
+ 2008-04-14 02:22:11	348,672	------w	C:\WINDOWS\ServicePackFiles\i386\hnetcfg.dll
+ 2008-04-14 02:22:11	338,432	------w	C:\WINDOWS\ServicePackFiles\i386\hnetwiz.dll
+ 2008-04-14 02:22:11	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\hostmib.dll
+ 2008-04-14 02:22:11	146,432	------w	C:\WINDOWS\ServicePackFiles\i386\hotplug.dll
+ 2008-04-14 02:22:11	10,752	------w	C:\WINDOWS\ServicePackFiles\i386\hpcjrr.dll
+ 2008-04-14 02:22:11	10,240	------w	C:\WINDOWS\ServicePackFiles\i386\hpcjrrps.dll
+ 2008-04-14 02:22:11	87,552	------w	C:\WINDOWS\ServicePackFiles\i386\hpfud50.dll
+ 2008-04-14 02:22:47	18,432	------w	C:\WINDOWS\ServicePackFiles\i386\hscupd.exe
+ 2004-08-03 20:41:48	220,032	------w	C:\WINDOWS\ServicePackFiles\i386\hsfbs2s2.sys
+ 2008-04-14 02:22:11	32,285	------w	C:\WINDOWS\ServicePackFiles\i386\hsfcisp2.dll
+ 2004-08-03 20:41:50	685,056	------w	C:\WINDOWS\ServicePackFiles\i386\hsfcxts2.sys
+ 2004-08-03 20:41:56	1,041,536	------w	C:\WINDOWS\ServicePackFiles\i386\hsfdpsp2.sys
+ 2008-04-13 18:53:53	264,832	------w	C:\WINDOWS\ServicePackFiles\i386\http.sys
+ 2008-04-14 02:22:11	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\httpapi.dll
+ 2008-04-14 02:22:11	268,288	------w	C:\WINDOWS\ServicePackFiles\i386\httpext.dll
+ 2008-04-14 02:22:11	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\httpmb51.dll
+ 2008-04-14 02:22:11	61,952	------w	C:\WINDOWS\ServicePackFiles\i386\httpod51.dll
+ 2008-04-14 02:22:11	43,008	------w	C:\WINDOWS\ServicePackFiles\i386\htui.dll
+ 2008-04-14 02:22:12	356,352	------w	C:\WINDOWS\ServicePackFiles\i386\hypertrm.dll
+ 2008-04-13 18:41:22	8,576	------w	C:\WINDOWS\ServicePackFiles\i386\i2omgmt.sys
+ 2008-04-13 18:41:22	18,560	------w	C:\WINDOWS\ServicePackFiles\i386\i2omp.sys
+ 2008-04-14 01:55:34	52,992	------w	C:\WINDOWS\ServicePackFiles\i386\i8042prt.sys
+ 2008-04-14 02:22:12	702,845	------w	C:\WINDOWS\ServicePackFiles\i386\i81xdnt5.dll
+ 2004-08-03 20:29:38	161,020	------w	C:\WINDOWS\ServicePackFiles\i386\i81xnt5.sys
+ 2008-04-14 02:22:12	119,808	------w	C:\WINDOWS\ServicePackFiles\i386\iasrad.dll
+ 2008-04-14 02:22:12	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\icaapi.dll
+ 2008-04-14 02:22:12	80,384	------w	C:\WINDOWS\ServicePackFiles\i386\iccvid.dll
+ 2008-04-14 02:22:12	254,976	------w	C:\WINDOWS\ServicePackFiles\i386\icm32.dll
+ 2008-04-14 02:20:41	3,584	------w	C:\WINDOWS\ServicePackFiles\i386\icmp.dll
+ 2008-04-13 16:44:29	2,560	------w	C:\WINDOWS\ServicePackFiles\i386\iconlib.dll
+ 2008-04-14 02:22:12	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\icwconn.dll
+ 2008-04-14 02:22:48	218,624	------w	C:\WINDOWS\ServicePackFiles\i386\icwconn1.exe
+ 2008-04-14 02:22:48	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\icwconn2.exe
+ 2008-04-14 02:22:12	73,728	------w	C:\WINDOWS\ServicePackFiles\i386\icwdial.dll
+ 2008-04-14 02:22:12	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\icwdl.dll
+ 2008-04-14 02:22:12	172,032	------w	C:\WINDOWS\ServicePackFiles\i386\icwhelp.dll
+ 2008-04-14 02:22:12	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\icwphbk.dll
+ 2008-04-14 02:22:48	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\icwrmind.exe
+ 2008-04-14 02:22:12	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\icwutil.dll
+ 2008-04-14 02:22:12	121,344	------w	C:\WINDOWS\ServicePackFiles\i386\idq.dll
+ 2008-04-14 02:22:48	34,304	------w	C:\WINDOWS\ServicePackFiles\i386\ie4uinit.exe
+ 2008-04-14 02:22:12	143,360	------w	C:\WINDOWS\ServicePackFiles\i386\ieakeng.dll
+ 2008-04-14 02:22:12	220,672	------w	C:\WINDOWS\ServicePackFiles\i386\ieaksie.dll
+ 2008-04-14 02:22:12	323,584	------w	C:\WINDOWS\ServicePackFiles\i386\iedkcs32.dll
+ 2008-04-14 02:22:48	18,432	------w	C:\WINDOWS\ServicePackFiles\i386\iedw.exe
+ 2008-04-14 02:22:12	81,920	------w	C:\WINDOWS\ServicePackFiles\i386\ieencode.dll
+ 2007-12-17 11:58:35	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\ieexec.exe
+ 2007-06-27 12:54:23	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\ieexecremote.dll
+ 2007-06-27 12:54:23	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\iehost.dll
+ 2008-04-14 02:22:12	251,904	------w	C:\WINDOWS\ServicePackFiles\i386\iepeers.dll
+ 2008-04-14 02:22:12	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\iernonce.dll
+ 2008-04-14 02:22:12	64,000	------w	C:\WINDOWS\ServicePackFiles\i386\iesetup.dll
+ 2008-04-14 02:22:48	93,184	------w	C:\WINDOWS\ServicePackFiles\i386\iexplore.exe
+ 2008-04-14 02:22:48	114,688	------w	C:\WINDOWS\ServicePackFiles\i386\iexpress.exe
+ 2008-04-14 02:22:12	135,680	------w	C:\WINDOWS\ServicePackFiles\i386\ifmon.dll
+ 2008-04-14 02:22:12	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\igmpagnt.dll
+ 2008-04-14 02:22:12	508,416	------w	C:\WINDOWS\ServicePackFiles\i386\iis.dll
+ 2008-04-14 02:22:12	25,088	------w	C:\WINDOWS\ServicePackFiles\i386\iisadmin.dll
+ 2008-04-14 02:22:12	145,408	------w	C:\WINDOWS\ServicePackFiles\i386\iische51.dll
+ 2008-04-14 02:22:12	68,608	------w	C:\WINDOWS\ServicePackFiles\i386\iisext51.dll
+ 2008-04-14 02:22:12	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\iisfecnv.dll
+ 2008-04-14 02:22:12	79,872	------w	C:\WINDOWS\ServicePackFiles\i386\iislog51.dll
+ 2008-04-14 02:22:12	64,512	------w	C:\WINDOWS\ServicePackFiles\i386\iismap.dll
+ 2008-04-14 02:22:48	30,720	------w	C:\WINDOWS\ServicePackFiles\i386\iisrstas.exe
+ 2008-04-14 02:22:12	133,632	------w	C:\WINDOWS\ServicePackFiles\i386\iisrtl.dll
+ 2008-04-13 16:10:32	184,320	------w	C:\WINDOWS\ServicePackFiles\i386\ilasm.exe
+ 2008-04-14 02:22:12	81,920	------w	C:\WINDOWS\ServicePackFiles\i386\ils.dll
+ 2008-04-14 02:22:12	144,384	------w	C:\WINDOWS\ServicePackFiles\i386\imagehlp.dll
+ 2008-04-14 02:22:48	150,528	------w	C:\WINDOWS\ServicePackFiles\i386\imapi.exe
+ 2008-04-13 18:40:58	42,112	------w	C:\WINDOWS\ServicePackFiles\i386\imapi.sys
+ 2008-04-14 02:22:12	36,921	------w	C:\WINDOWS\ServicePackFiles\i386\imeshare.dll
+ 2008-04-14 02:22:12	35,840	------w	C:\WINDOWS\ServicePackFiles\i386\imgutil.dll
+ 2008-04-14 02:22:12	110,080	------w	C:\WINDOWS\ServicePackFiles\i386\imm32.dll
+ 2008-04-14 02:22:12	126,464	------w	C:\WINDOWS\ServicePackFiles\i386\imsinsnt.dll
+ 2008-04-14 02:22:12	282,624	------w	C:\WINDOWS\ServicePackFiles\i386\inetcfg.dll
+ 2008-04-14 02:22:12	691,712	------w	C:\WINDOWS\ServicePackFiles\i386\inetcomm.dll
+ 2008-04-14 02:22:49	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\inetin51.exe
+ 2008-04-14 02:22:12	847,360	------w	C:\WINDOWS\ServicePackFiles\i386\inetmgr.dll
+ 2008-04-14 02:22:12	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\inetmib1.dll
+ 2008-04-14 02:22:12	75,264	------w	C:\WINDOWS\ServicePackFiles\i386\inetpp.dll
+ 2008-04-14 02:22:12	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\inetppui.dll
+ 2008-04-14 01:56:57	51,712	------w	C:\WINDOWS\ServicePackFiles\i386\inetres.dll
+ 2008-04-14 02:22:49	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\inetwiz.exe
+ 2008-04-14 02:22:12	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\infoadmn.dll
+ 2008-04-14 02:22:12	257,024	------w	C:\WINDOWS\ServicePackFiles\i386\infocomm.dll
+ 2008-04-14 02:22:12	147,456	------w	C:\WINDOWS\ServicePackFiles\i386\initpki.dll
+ 2008-04-14 02:22:12	127,488	------w	C:\WINDOWS\ServicePackFiles\i386\input.dll
+ 2008-04-14 02:22:12	96,768	------w	C:\WINDOWS\ServicePackFiles\i386\inseng.dll
+ 2007-06-27 12:54:28	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\installutil.exe

Fako · 13.10.2008, 17:02

Code:

ATTFilter

+ 2008-04-14 01:57:19	5,504	------w	C:\WINDOWS\ServicePackFiles\i386\intelide.sys
+ 2008-04-14 01:57:20	40,448	------w	C:\WINDOWS\ServicePackFiles\i386\intelppm.sys
+ 2008-04-13 18:53:34	36,608	------w	C:\WINDOWS\ServicePackFiles\i386\ip6fw.sys
+ 2008-04-14 02:22:49	58,368	------w	C:\WINDOWS\ServicePackFiles\i386\ipconfig.exe
+ 2008-04-14 02:20:32	103,424	------w	C:\WINDOWS\ServicePackFiles\i386\ipevldpc.dll
+ 2008-04-14 02:20:29	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\ipevlpid.dll
+ 2008-04-14 02:22:12	95,744	------w	C:\WINDOWS\ServicePackFiles\i386\iphlpapi.dll
+ 2008-04-13 18:57:07	20,864	------w	C:\WINDOWS\ServicePackFiles\i386\ipinip.sys
+ 2008-04-14 02:22:12	161,280	------w	C:\WINDOWS\ServicePackFiles\i386\ipmontr.dll
+ 2008-04-13 18:57:15	152,832	------w	C:\WINDOWS\ServicePackFiles\i386\ipnat.sys
+ 2008-04-14 02:22:12	334,336	------w	C:\WINDOWS\ServicePackFiles\i386\ipnathlp.dll
+ 2008-04-14 02:22:12	345,600	------w	C:\WINDOWS\ServicePackFiles\i386\ippromon.dll
+ 2008-04-14 02:22:12	36,864	------w	C:\WINDOWS\ServicePackFiles\i386\iprip.dll
+ 2008-04-14 02:22:12	177,152	------w	C:\WINDOWS\ServicePackFiles\i386\iprtrmgr.dll
+ 2008-04-13 19:19:42	75,264	------w	C:\WINDOWS\ServicePackFiles\i386\ipsec.sys
+ 2008-04-14 02:22:12	361,472	------w	C:\WINDOWS\ServicePackFiles\i386\ipsecsnp.dll
+ 2008-04-14 02:22:12	185,344	------w	C:\WINDOWS\ServicePackFiles\i386\ipsecsvc.dll
+ 2008-04-14 02:21:23	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\ipseldpc.dll
+ 2008-04-14 02:20:29	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\ipselpid.dll
+ 2008-04-14 02:22:12	387,584	------w	C:\WINDOWS\ServicePackFiles\i386\ipsmsnap.dll
+ 2008-04-14 02:22:50	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\ipv6.exe
+ 2008-04-14 02:22:12	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\ipv6mon.dll
+ 2008-04-14 02:22:50	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\ipxroute.exe
+ 2008-04-14 02:22:12	22,016	------w	C:\WINDOWS\ServicePackFiles\i386\ipxwan.dll
+ 2008-04-14 02:22:12	120,320	------w	C:\WINDOWS\ServicePackFiles\i386\ir41_qc.dll
+ 2008-04-14 02:22:12	338,432	------w	C:\WINDOWS\ServicePackFiles\i386\ir41_qcx.dll
+ 2008-04-14 02:22:12	755,200	------w	C:\WINDOWS\ServicePackFiles\i386\ir50_32.dll
+ 2008-04-14 02:22:12	200,192	------w	C:\WINDOWS\ServicePackFiles\i386\ir50_qc.dll
+ 2008-04-14 02:22:12	183,808	------w	C:\WINDOWS\ServicePackFiles\i386\ir50_qcx.dll
+ 2008-04-13 18:45:34	46,592	------w	C:\WINDOWS\ServicePackFiles\i386\irbus.sys
+ 2008-04-13 18:54:36	88,192	------w	C:\WINDOWS\ServicePackFiles\i386\irda.sys
+ 2008-04-13 18:54:28	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\irenum.sys
+ 2008-04-14 02:22:50	153,088	------w	C:\WINDOWS\ServicePackFiles\i386\irftp.exe
+ 2008-04-14 02:22:12	28,160	------w	C:\WINDOWS\ServicePackFiles\i386\irmon.dll
+ 2008-04-14 01:58:03	37,632	------w	C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
+ 2008-04-14 02:22:12	68,608	------w	C:\WINDOWS\ServicePackFiles\i386\isatq.dll
+ 2008-04-14 02:22:12	26,624	------w	C:\WINDOWS\ServicePackFiles\i386\iscomlog.dll
+ 2008-04-14 02:21:15	105,984	------w	C:\WINDOWS\ServicePackFiles\i386\isdpc.dll
+ 2008-04-14 02:21:33	105,984	------w	C:\WINDOWS\ServicePackFiles\i386\isendpc.dll
+ 2008-04-14 02:21:33	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\isenpid.dll
+ 2008-04-14 02:22:12	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\isign32.dll
+ 2008-04-14 02:21:15	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\ispid.dll
+ 2008-04-14 02:22:12	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\isrdbg32.dll
+ 2008-04-14 02:22:12	155,136	------w	C:\WINDOWS\ServicePackFiles\i386\itircl.dll
+ 2008-04-14 02:22:12	138,240	------w	C:\WINDOWS\ServicePackFiles\i386\itss.dll
+ 2008-04-14 02:22:12	191,488	------w	C:\WINDOWS\ServicePackFiles\i386\iuengine.dll
+ 2008-04-14 02:22:12	54,784	------w	C:\WINDOWS\ServicePackFiles\i386\ixsso.dll
+ 2008-04-14 02:22:12	47,616	------w	C:\WINDOWS\ServicePackFiles\i386\iyuv_32.dll
+ 2008-04-14 02:22:12	163,840	------w	C:\WINDOWS\ServicePackFiles\i386\jgdw400.dll
+ 2008-04-14 02:22:13	27,648	------w	C:\WINDOWS\ServicePackFiles\i386\jgpl400.dll
+ 2007-06-27 12:54:35	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\jsc.exe
+ 2008-04-14 02:22:13	512,000	------w	C:\WINDOWS\ServicePackFiles\i386\jscript.dll
+ 2008-04-14 02:22:13	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\jsproxy.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbd101.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbd106.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbd106n.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdax2.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdbhc.dll
+ 2008-04-14 01:58:36	25,216	------w	C:\WINDOWS\ServicePackFiles\i386\kbdclass.sys
+ 2008-04-14 02:20:50	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\kbdfi1.dll
+ 2008-04-14 01:58:37	14,720	------w	C:\WINDOWS\ServicePackFiles\i386\kbdhid.sys
+ 2008-04-14 02:20:50	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\kbdibm02.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdinbe1.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdinben.dll
+ 2008-04-14 02:20:50	6,656	------w	C:\WINDOWS\ServicePackFiles\i386\kbdinmal.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdiultn.dll
+ 2008-04-14 02:20:50	6,656	------w	C:\WINDOWS\ServicePackFiles\i386\kbdlk41a.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdlk41j.dll
+ 2008-04-14 02:20:50	5,632	------w	C:\WINDOWS\ServicePackFiles\i386\kbdmaori.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdmlt47.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdmlt48.dll
+ 2008-04-14 02:20:50	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\kbdnec.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdnepr.dll
+ 2008-04-14 02:20:50	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\kbdno1.dll
+ 2008-04-14 02:20:50	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\kbdpash.dll
+ 2008-04-14 02:20:50	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\kbdsmsfi.dll
+ 2008-04-14 02:20:50	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\kbdsmsno.dll
+ 2008-04-14 02:20:50	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\kbdukx.dll
+ 2008-04-13 18:31:35	7,424	------w	C:\WINDOWS\ServicePackFiles\i386\kd1394.dll
+ 2008-04-14 02:22:13	186,880	------w	C:\WINDOWS\ServicePackFiles\i386\kdcsvc.dll
+ 2008-04-14 02:22:13	48,640	------w	C:\WINDOWS\ServicePackFiles\i386\kdsui.dll
+ 2008-04-14 02:22:13	254,464	------w	C:\WINDOWS\ServicePackFiles\i386\kdsusd.dll
+ 2008-04-14 02:22:13	299,520	------w	C:\WINDOWS\ServicePackFiles\i386\kerberos.dll
+ 2008-04-14 02:22:13	1,063,424	------w	C:\WINDOWS\ServicePackFiles\i386\kernel32.dll
+ 2006-02-28 12:00:00	42,537	------w	C:\WINDOWS\ServicePackFiles\i386\keyboard.sys
+ 2008-04-14 02:22:13	156,160	------w	C:\WINDOWS\ServicePackFiles\i386\keymgr.dll
+ 2008-04-13 18:45:09	172,416	------w	C:\WINDOWS\ServicePackFiles\i386\kmixer.sys
+ 2008-04-14 02:22:13	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\kmsvc.dll
+ 2008-04-14 02:20:51	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\knperdpc.dll
+ 2008-04-14 02:20:51	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\knperpid.dll
+ 2008-04-14 02:20:51	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\knprodpc.dll
+ 2008-04-14 02:20:51	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\knpropid.dll
+ 2008-04-14 02:22:13	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\koc.dll
+ 2008-04-14 02:20:50	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\kperdpc.dll
+ 2008-04-14 02:20:51	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\kperpid.dll
+ 2008-04-14 02:20:51	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\kprodpc.dll
+ 2008-04-14 02:20:51	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\kpropid.dll
+ 2006-02-28 12:00:00	92,640	------w	C:\WINDOWS\ServicePackFiles\i386\krnl386.exe
+ 2008-04-14 02:22:13	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\krnlprov.dll
+ 2008-04-13 19:16:36	141,056	------w	C:\WINDOWS\ServicePackFiles\i386\ks.sys
+ 2008-04-13 18:31:43	92,288	------w	C:\WINDOWS\ServicePackFiles\i386\ksecdd.sys
+ 2008-04-14 02:22:13	4,096	------w	C:\WINDOWS\ServicePackFiles\i386\ksuser.dll
+ 2008-04-14 02:22:13	37,376	------w	C:\WINDOWS\ServicePackFiles\i386\l2store.dll
+ 2008-04-14 02:20:18	97,792	------w	C:\WINDOWS\ServicePackFiles\i386\lang\chtmbx.dll
+ 2008-04-14 02:20:18	56,320	------w	C:\WINDOWS\ServicePackFiles\i386\lang\chtskdic.dll
+ 2008-04-14 02:20:18	173,568	------w	C:\WINDOWS\ServicePackFiles\i386\lang\chtskf.dll
+ 2008-04-14 02:20:18	198,656	------w	C:\WINDOWS\ServicePackFiles\i386\lang\cintime.dll
+ 2006-02-28 12:00:00	480,256	------w	C:\WINDOWS\ServicePackFiles\i386\lang\cintsetp.exe
+ 2006-02-28 12:00:00	57,399	------w	C:\WINDOWS\ServicePackFiles\i386\lang\cplexe.exe
+ 2008-04-14 02:20:41	13,463,552	------w	C:\WINDOWS\ServicePackFiles\i386\lang\hwxjpn.dll
+ 2008-04-14 02:20:43	106,496	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imekrcic.dll
+ 2008-04-14 02:20:43	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imekrmbx.dll
+ 2008-04-14 02:20:44	811,064	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjp81k.dll
+ 2008-04-14 02:20:44	368,696	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpcic.dll
+ 2008-04-14 02:20:44	716,856	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpcus.dll
+ 2008-04-14 02:20:44	81,976	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpdct.dll
+ 2006-02-28 12:00:00	307,257	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpdct.exe
+ 2006-02-28 12:00:00	155,705	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpdsvr.exe
+ 2006-02-28 12:00:00	196,665	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpinst.exe
+ 2006-02-28 12:00:00	208,952	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjpmig.exe
+ 2006-02-28 12:00:00	233,527	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjprw.exe
+ 2006-02-28 12:00:00	262,200	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjputy.exe
+ 2008-04-14 02:20:44	274,489	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imjputyc.dll
+ 2008-04-14 02:20:44	102,456	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imlang.dll
+ 2006-02-28 12:00:00	59,392	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imscinst.exe
+ 2008-04-14 02:20:45	315,455	------w	C:\WINDOWS\ServicePackFiles\i386\lang\imskf.dll
+ 2008-04-14 02:21:16	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\lang\padrs404.dll
+ 2008-04-14 02:21:16	15,360	------w	C:\WINDOWS\ServicePackFiles\i386\lang\padrs804.dll
+ 2008-04-14 02:21:16	175,104	------w	C:\WINDOWS\ServicePackFiles\i386\lang\pintlcsa.dll
+ 2008-04-14 02:21:17	53,760	------w	C:\WINDOWS\ServicePackFiles\i386\lang\pintlcsd.dll
+ 2008-04-13 16:43:36	70,144	------w	C:\WINDOWS\ServicePackFiles\i386\lang\pintlphr.exe
+ 2008-04-14 02:21:17	67,584	------w	C:\WINDOWS\ServicePackFiles\i386\lang\pmigrate.dll
+ 2006-02-28 12:00:00	44,032	------w	C:\WINDOWS\ServicePackFiles\i386\lang\tintlphr.exe
+ 2006-02-28 12:00:00	455,168	------w	C:\WINDOWS\ServicePackFiles\i386\lang\tintsetp.exe
+ 2008-04-14 02:21:36	10,240	------w	C:\WINDOWS\ServicePackFiles\i386\lang\tmigrate.dll
+ 2008-04-14 02:21:37	76,288	------w	C:\WINDOWS\ServicePackFiles\i386\lang\uniime.dll
+ 2008-04-14 02:21:38	426,041	------w	C:\WINDOWS\ServicePackFiles\i386\lang\voicepad.dll
+ 2008-04-14 02:21:38	86,073	------w	C:\WINDOWS\ServicePackFiles\i386\lang\voicesub.dll
+ 2008-04-13 18:40:26	34,688	------w	C:\WINDOWS\ServicePackFiles\i386\lbrtfdc.sys
+ 2008-04-14 02:22:50	677,888	------w	C:\WINDOWS\ServicePackFiles\i386\lhmstsc.exe
+ 2008-04-14 02:22:13	2,061,824	------w	C:\WINDOWS\ServicePackFiles\i386\lhmstscx.dll
+ 2008-04-14 05:52:14	425,472	------w	C:\WINDOWS\ServicePackFiles\i386\licdll.dll
+ 2008-04-14 02:22:13	22,016	------w	C:\WINDOWS\ServicePackFiles\i386\licmgr10.dll
+ 2008-04-14 02:22:13	58,880	------w	C:\WINDOWS\ServicePackFiles\i386\licwmi.dll
+ 2008-04-14 02:22:13	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\linkinfo.dll
+ 2008-04-14 02:22:13	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\lmhsvc.dll
+ 2008-04-14 02:22:13	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\lmmib2.dll
+ 2008-04-14 02:22:13	399,872	------w	C:\WINDOWS\ServicePackFiles\i386\lmrt.dll
+ 2008-04-14 02:22:13	99,840	------w	C:\WINDOWS\ServicePackFiles\i386\loadperf.dll
+ 2008-04-14 02:22:13	226,304	------w	C:\WINDOWS\ServicePackFiles\i386\localsec.dll
+ 2008-04-14 02:22:13	345,600	------w	C:\WINDOWS\ServicePackFiles\i386\localspl.dll
+ 2008-04-14 02:22:13	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\localui.dll
+ 2008-04-14 02:22:50	75,264	------w	C:\WINDOWS\ServicePackFiles\i386\locator.exe
+ 2008-04-14 02:22:13	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\log.dll
+ 2008-04-14 02:22:50	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\logman.exe
+ 2008-04-14 02:23:07	220,672	------w	C:\WINDOWS\ServicePackFiles\i386\logon.scr
+ 2008-04-14 02:22:51	515,072	------w	C:\WINDOWS\ServicePackFiles\i386\logonui.exe
+ 2008-04-14 02:22:13	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\lonsint.dll
+ 2008-04-14 02:22:13	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\lpdsvc.dll
+ 2008-04-14 02:22:14	22,016	------w	C:\WINDOWS\ServicePackFiles\i386\lpk.dll
+ 2008-04-14 02:22:14	10,240	------w	C:\WINDOWS\ServicePackFiles\i386\lprhelp.dll
+ 2008-04-14 02:22:14	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\lprmon.dll
+ 2008-04-14 02:22:14	735,744	------w	C:\WINDOWS\ServicePackFiles\i386\lsasrv.dll
+ 2008-04-14 02:22:51	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\lsass.exe
+ 2004-08-03 22:47:32	607,196	------w	C:\WINDOWS\ServicePackFiles\i386\ltmdmnt.sys
+ 2004-08-03 22:47:34	422,016	------w	C:\WINDOWS\ServicePackFiles\i386\ltmdmntt.sys
+ 2008-04-13 18:40:52	7,040	------w	C:\WINDOWS\ServicePackFiles\i386\ltotape.sys
+ 2004-08-03 20:39:32	20,864	------w	C:\WINDOWS\ServicePackFiles\i386\lwadihid.sys
+ 2008-04-14 02:22:51	73,216	------w	C:\WINDOWS\ServicePackFiles\i386\magnify.exe
+ 2008-04-14 02:22:51	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\makecab.exe
+ 2008-04-14 02:22:14	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\mcastmib.dll
+ 2008-04-14 02:22:14	85,504	------w	C:\WINDOWS\ServicePackFiles\i386\mciavi32.dll
+ 2008-04-14 02:22:14	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\mciqtz32.dll
+ 2008-04-14 02:22:14	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\mciseq.dll
+ 2008-04-14 02:22:14	23,552	------w	C:\WINDOWS\ServicePackFiles\i386\mciwave.dll
+ 2008-04-14 02:22:14	37,888	------w	C:\WINDOWS\ServicePackFiles\i386\md5filt.dll
+ 2008-04-14 02:22:14	121,344	------w	C:\WINDOWS\ServicePackFiles\i386\mdminst.dll
+ 2008-04-14 02:22:14	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\mdmxsdk.dll
+ 2004-08-03 20:41:56	11,868	------w	C:\WINDOWS\ServicePackFiles\i386\mdmxsdk.sys
+ 2008-04-14 02:22:14	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\medctroc.dll
+ 2008-04-13 18:41:21	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\memstpci.sys
+ 2008-04-14 02:22:14	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\metada51.dll
+ 2008-04-13 18:36:41	63,744	------w	C:\WINDOWS\ServicePackFiles\i386\mf.sys
+ 2008-04-14 02:22:14	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\mf3216.dll
+ 2008-04-14 02:22:14	927,504	------w	C:\WINDOWS\ServicePackFiles\i386\mfc40u.dll
+ 2008-04-14 02:22:14	1,028,096	------w	C:\WINDOWS\ServicePackFiles\i386\mfc42.dll
+ 2006-10-14 08:13:25	981,760	------w	C:\WINDOWS\ServicePackFiles\i386\mfc42u.dll
+ 2008-04-14 02:22:14	22,528	------w	C:\WINDOWS\ServicePackFiles\i386\mfcsubs.dll
+ 2008-04-14 02:22:14	14,848	------w	C:\WINDOWS\ServicePackFiles\i386\mgmtapi.dll
+ 2007-06-27 12:54:42	712,704	------w	C:\WINDOWS\ServicePackFiles\i386\microsoft.jscript.dll
+ 2007-06-27 12:54:48	286,720	------w	C:\WINDOWS\ServicePackFiles\i386\microsoft.visualbasic.dll
+ 2008-04-14 02:22:14	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\midimap.dll
+ 2008-04-14 02:22:14	274,432	------w	C:\WINDOWS\ServicePackFiles\i386\migism.dll
+ 2008-04-14 02:22:14	261,120	------w	C:\WINDOWS\ServicePackFiles\i386\migisma.dll
+ 2008-04-14 02:22:14	60,928	------w	C:\WINDOWS\ServicePackFiles\i386\miglibnt.dll
+ 2008-04-14 02:22:51	104,448	------w	C:\WINDOWS\ServicePackFiles\i386\migload.exe
+ 2008-04-14 02:22:51	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\migregdb.exe
+ 2008-04-14 02:22:51	252,416	------w	C:\WINDOWS\ServicePackFiles\i386\migwiz.exe
+ 2008-04-14 02:22:51	248,320	------w	C:\WINDOWS\ServicePackFiles\i386\migwiza.exe
+ 2008-04-14 02:22:14	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\mimefilt.dll
+ 2008-04-14 02:22:14	586,240	------w	C:\WINDOWS\ServicePackFiles\i386\mlang.dll
+ 2008-04-14 02:22:52	1,415,168	------w	C:\WINDOWS\ServicePackFiles\i386\mmc.exe
+ 2008-04-14 02:22:14	184,320	------w	C:\WINDOWS\ServicePackFiles\i386\mmc30.dll
+ 2008-04-14 02:22:14	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\mmc30r.dll
+ 2008-04-14 02:22:14	169,984	------w	C:\WINDOWS\ServicePackFiles\i386\mmcbase.dll
+ 2008-04-14 02:22:14	397,312	------w	C:\WINDOWS\ServicePackFiles\i386\mmcex.dll
+ 2008-04-14 02:22:14	36,864	------w	C:\WINDOWS\ServicePackFiles\i386\mmcexr.dll
+ 2008-04-14 02:22:15	106,496	------w	C:\WINDOWS\ServicePackFiles\i386\mmcfxc.dll
+ 2008-04-14 02:22:15	5,120	------w	C:\WINDOWS\ServicePackFiles\i386\mmcfxcr.dll
+ 2008-04-14 02:22:15	1,877,504	------w	C:\WINDOWS\ServicePackFiles\i386\mmcndmgr.dll
+ 2008-04-14 02:22:52	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\mmcperf.exe
+ 2008-04-14 02:22:15	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\mmcshext.dll
+ 2008-04-14 02:22:15	17,920	------w	C:\WINDOWS\ServicePackFiles\i386\mmfutil.dll
+ 2006-02-28 12:00:00	69,632	------w	C:\WINDOWS\ServicePackFiles\i386\mmsystem.dll
+ 2008-04-14 02:22:15	34,560	------w	C:\WINDOWS\ServicePackFiles\i386\mnmdd.dll
+ 2008-04-14 02:22:52	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\mnmsrvc.exe
+ 2008-04-14 02:22:15	209,408	------w	C:\WINDOWS\ServicePackFiles\i386\mobsync.dll
+ 2008-04-14 02:22:52	144,384	------w	C:\WINDOWS\ServicePackFiles\i386\mobsync.exe
+ 2008-04-14 01:49:32	30,336	------w	C:\WINDOWS\ServicePackFiles\i386\modem.sys
+ 2008-04-14 02:22:15	156,672	------w	C:\WINDOWS\ServicePackFiles\i386\modemui.dll
+ 2008-04-14 02:22:52	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\mofcomp.exe
+ 2008-04-14 02:22:15	124,416	------w	C:\WINDOWS\ServicePackFiles\i386\mofd.dll
+ 2008-04-14 02:23:07	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\more.com
+ 2008-04-13 16:45:30	216,064	------w	C:\WINDOWS\ServicePackFiles\i386\moricons.dll
+ 2008-04-14 01:49:36	23,552	------w	C:\WINDOWS\ServicePackFiles\i386\mouclass.sys
+ 2008-04-13 18:39:46	42,368	------w	C:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
+ 2008-04-14 02:22:52	3,558,912	------w	C:\WINDOWS\ServicePackFiles\i386\moviemk.exe
+ 2008-04-13 18:46:22	15,232	------w	C:\WINDOWS\ServicePackFiles\i386\mpe.sys
+ 2008-04-14 02:22:53	124,928	------w	C:\WINDOWS\ServicePackFiles\i386\mplay32.exe
+ 2008-04-14 02:22:15	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\mpr.dll
+ 2008-04-14 02:22:15	87,040	------w	C:\WINDOWS\ServicePackFiles\i386\mprapi.dll
+ 2008-04-14 02:22:15	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\mprdim.dll
+ 2008-04-13 18:39:44	92,544	------w	C:\WINDOWS\ServicePackFiles\i386\mqac.sys
+ 2008-04-14 02:22:15	138,240	------w	C:\WINDOWS\ServicePackFiles\i386\mqad.dll
+ 2008-04-14 02:22:53	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\mqbkup.exe
+ 2008-04-14 02:22:15	47,616	------w	C:\WINDOWS\ServicePackFiles\i386\mqdscli.dll
+ 2008-04-14 02:22:15	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\mqise.dll
+ 2008-04-14 02:22:15	89,088	------w	C:\WINDOWS\ServicePackFiles\i386\mqlogmgr.dll
+ 2008-04-14 02:22:15	225,280	------w	C:\WINDOWS\ServicePackFiles\i386\mqoa.dll
+ 2008-04-14 02:22:15	663,040	------w	C:\WINDOWS\ServicePackFiles\i386\mqqm.dll
+ 2008-04-14 02:22:15	177,152	------w	C:\WINDOWS\ServicePackFiles\i386\mqrt.dll
+ 2008-04-14 02:22:15	123,904	------w	C:\WINDOWS\ServicePackFiles\i386\mqrtdep.dll
+ 2008-04-14 02:22:15	95,744	------w	C:\WINDOWS\ServicePackFiles\i386\mqsec.dll
+ 2008-04-14 02:22:15	517,632	------w	C:\WINDOWS\ServicePackFiles\i386\mqsnap.dll
+ 2008-04-14 02:22:53	4,608	------w	C:\WINDOWS\ServicePackFiles\i386\mqsvc.exe
+ 2008-04-14 02:22:53	117,248	------w	C:\WINDOWS\ServicePackFiles\i386\mqtgsvc.exe
+ 2008-04-14 02:22:15	187,392	------w	C:\WINDOWS\ServicePackFiles\i386\mqtrig.dll
+ 2008-04-14 02:22:15	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\mqupgrd.dll
+ 2008-04-14 02:22:15	533,504	------w	C:\WINDOWS\ServicePackFiles\i386\mqutil.dll
+ 2008-04-13 18:32:44	180,608	------w	C:\WINDOWS\ServicePackFiles\i386\mrxdav.sys
+ 2008-04-13 19:17:01	456,576	------w	C:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
+ 2008-04-14 02:22:15	72,192	------w	C:\WINDOWS\ServicePackFiles\i386\msacm32.dll
+ 2008-04-14 02:22:15	331,776	------w	C:\WINDOWS\ServicePackFiles\i386\msadce.dll
+ 2007-03-28 12:51:44	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\msadcer.dll
+ 2008-04-14 02:22:15	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\msadcf.dll
+ 2007-03-28 12:51:46	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\msadcfr.dll
+ 2008-04-14 02:22:16	143,360	------w	C:\WINDOWS\ServicePackFiles\i386\msadco.dll
+ 2007-03-28 12:51:46	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\msadcor.dll
+ 2008-04-14 02:22:16	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\msadcs.dll
+ 2008-04-14 02:22:16	155,648	------w	C:\WINDOWS\ServicePackFiles\i386\msadds.dll
+ 2007-03-28 12:51:46	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\msaddsr.dll
+ 2007-03-28 12:51:47	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\msader15.dll
+ 2008-04-14 02:22:16	536,576	------w	C:\WINDOWS\ServicePackFiles\i386\msado15.dll
+ 2008-04-14 02:22:16	180,224	------w	C:\WINDOWS\ServicePackFiles\i386\msadomd.dll
+ 2008-04-14 02:22:16	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\msador15.dll
+ 2008-04-14 02:22:16	200,704	------w	C:\WINDOWS\ServicePackFiles\i386\msadox.dll
+ 2008-04-14 02:22:16	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\msadrh15.dll
+ 2008-04-14 02:20:57	3,584	------w	C:\WINDOWS\ServicePackFiles\i386\msafd.dll
+ 2008-04-14 02:22:16	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\msapsspc.dll
+ 2008-04-14 02:22:16	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\msasn1.dll
+ 2008-04-14 02:22:16	220,160	------w	C:\WINDOWS\ServicePackFiles\i386\mscandui.dll
+ 2008-04-14 02:22:16	73,728	------w	C:\WINDOWS\ServicePackFiles\i386\mscms.dll

Fako · 13.10.2008, 17:06

Code:

ATTFilter

+ 2008-04-14 02:22:21	271,360	------w	C:\WINDOWS\ServicePackFiles\i386\oakley.dll
+ 2008-04-14 02:22:21	289,280	------w	C:\WINDOWS\ServicePackFiles\i386\objsel.dll
+ 2008-04-13 18:40:32	438,784	------w	C:\WINDOWS\ServicePackFiles\i386\obrs0407.dll
+ 2008-04-14 02:22:22	97,792	------w	C:\WINDOWS\ServicePackFiles\i386\occache.dll
+ 2008-04-14 02:22:22	15,360	------w	C:\WINDOWS\ServicePackFiles\i386\ocgen.dll
+ 2008-04-14 02:22:22	69,632	------w	C:\WINDOWS\ServicePackFiles\i386\ocmanage.dll
+ 2008-04-14 02:22:22	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\ocmsn.dll
+ 2006-02-28 12:00:00	26,224	------w	C:\WINDOWS\ServicePackFiles\i386\odbc16gt.dll
+ 2008-04-14 02:22:22	249,856	------w	C:\WINDOWS\ServicePackFiles\i386\odbc32.dll
+ 2008-04-14 02:22:22	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\odbc32gt.dll
+ 2008-04-14 02:22:56	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\odbcad32.exe
+ 2008-04-14 02:22:22	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\odbcbcp.dll
+ 2008-04-14 02:22:22	135,168	------w	C:\WINDOWS\ServicePackFiles\i386\odbcconf.dll
+ 2008-04-14 02:22:56	69,632	------w	C:\WINDOWS\ServicePackFiles\i386\odbcconf.exe
+ 2008-04-14 02:22:22	106,496	------w	C:\WINDOWS\ServicePackFiles\i386\odbccp32.dll
+ 2008-04-14 02:22:22	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\odbccr32.dll
+ 2008-04-14 02:22:22	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\odbccu32.dll
+ 2007-03-28 12:51:52	102,400	------w	C:\WINDOWS\ServicePackFiles\i386\odbcint.dll
+ 2008-04-14 02:21:15	57,375	------w	C:\WINDOWS\ServicePackFiles\i386\odbcji32.dll
+ 2008-04-14 02:22:23	278,559	------w	C:\WINDOWS\ServicePackFiles\i386\odbcjt32.dll
+ 2008-04-13 17:26:05	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\odbcp32r.dll
+ 2008-04-14 02:22:23	147,456	------w	C:\WINDOWS\ServicePackFiles\i386\odbctrac.dll
+ 2008-04-14 02:22:23	20,511	------w	C:\WINDOWS\ServicePackFiles\i386\oddbse32.dll
+ 2008-04-14 02:22:23	20,510	------w	C:\WINDOWS\ServicePackFiles\i386\odexl32.dll
+ 2008-04-14 02:22:23	20,510	------w	C:\WINDOWS\ServicePackFiles\i386\odfox32.dll
+ 2008-04-14 02:22:23	20,510	------w	C:\WINDOWS\ServicePackFiles\i386\odpdx32.dll
+ 2008-04-14 02:22:23	20,511	------w	C:\WINDOWS\ServicePackFiles\i386\odtext32.dll
+ 2008-04-14 02:22:23	104,448	------w	C:\WINDOWS\ServicePackFiles\i386\oeimport.dll
+ 2008-04-14 02:22:56	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\oemig50.exe
+ 2008-04-14 02:22:23	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\oemiglib.dll
+ 2008-04-14 02:22:23	192,000	------w	C:\WINDOWS\ServicePackFiles\i386\offfilt.dll
+ 2008-04-13 18:46:18	61,696	------w	C:\WINDOWS\ServicePackFiles\i386\ohci1394.sys
+ 2008-04-14 02:22:23	1,287,680	------w	C:\WINDOWS\ServicePackFiles\i386\ole32.dll
+ 2008-04-14 02:22:23	551,936	------w	C:\WINDOWS\ServicePackFiles\i386\oleaut32.dll
+ 2008-04-14 02:22:23	74,752	------w	C:\WINDOWS\ServicePackFiles\i386\olecli32.dll
+ 2008-04-14 02:22:23	37,376	------w	C:\WINDOWS\ServicePackFiles\i386\olecnv32.dll
+ 2008-04-14 02:22:23	487,424	------w	C:\WINDOWS\ServicePackFiles\i386\oledb32.dll
+ 2008-04-14 02:22:23	73,728	------w	C:\WINDOWS\ServicePackFiles\i386\oledb32r.dll
+ 2008-04-14 02:22:23	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\oledlg.dll
+ 2008-04-14 02:22:23	108,544	------w	C:\WINDOWS\ServicePackFiles\i386\oleprn.dll
+ 2008-04-14 02:22:23	84,992	------w	C:\WINDOWS\ServicePackFiles\i386\olepro32.dll
+ 2008-04-14 02:22:23	145,408	------w	C:\WINDOWS\ServicePackFiles\i386\onex.dll
+ 2008-04-14 02:22:56	51,712	------w	C:\WINDOWS\ServicePackFiles\i386\oobebaln.exe
+ 2008-04-14 02:22:23	713,728	------w	C:\WINDOWS\ServicePackFiles\i386\opengl32.dll
+ 2008-04-14 02:22:56	70,656	------w	C:\WINDOWS\ServicePackFiles\i386\opnfiles.exe
+ 2008-04-13 18:32:32	166,912	------w	C:\WINDOWS\ServicePackFiles\i386\oschoice.exe
+ 2008-04-14 02:22:57	216,576	------w	C:\WINDOWS\ServicePackFiles\i386\osk.exe
+ 2008-04-13 18:31:54	231,936	------w	C:\WINDOWS\ServicePackFiles\i386\osloader.exe
+ 2008-04-14 02:22:23	68,096	------w	C:\WINDOWS\ServicePackFiles\i386\osuninst.dll
+ 2008-04-14 02:22:23	153,600	------w	C:\WINDOWS\ServicePackFiles\i386\p2p.dll
+ 2008-04-14 02:22:23	105,472	------w	C:\WINDOWS\ServicePackFiles\i386\p2pgasvc.dll
+ 2008-04-14 02:22:23	313,856	------w	C:\WINDOWS\ServicePackFiles\i386\p2pgraph.dll
+ 2008-04-14 02:22:23	115,712	------w	C:\WINDOWS\ServicePackFiles\i386\p2pnetsh.dll
+ 2008-04-14 02:22:23	554,496	------w	C:\WINDOWS\ServicePackFiles\i386\p2psvc.dll
+ 2008-04-14 02:02:08	46,848	------w	C:\WINDOWS\ServicePackFiles\i386\p3.sys
+ 2008-04-14 02:22:57	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\packager.exe
+ 2008-04-14 02:02:10	80,384	------w	C:\WINDOWS\ServicePackFiles\i386\parport.sys
+ 2008-04-13 18:40:49	19,712	------w	C:\WINDOWS\ServicePackFiles\i386\partmgr.sys
+ 2008-04-14 02:22:23	70,144	------w	C:\WINDOWS\ServicePackFiles\i386\pautoenr.dll
+ 2004-08-03 20:31:24	29,502	------w	C:\WINDOWS\ServicePackFiles\i386\pca200e.sys
+ 2008-04-14 02:22:23	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\pchshell.dll
+ 2008-04-14 02:22:23	38,400	------w	C:\WINDOWS\ServicePackFiles\i386\pchsvc.dll
+ 2008-04-14 02:02:13	68,224	------w	C:\WINDOWS\ServicePackFiles\i386\pci.sys
+ 2008-04-13 18:40:29	24,960	------w	C:\WINDOWS\ServicePackFiles\i386\pciidex.sys
+ 2007-05-15 08:08:11	288,768	------w	C:\WINDOWS\ServicePackFiles\i386\pcl4res.dll
+ 2007-05-15 08:08:13	1,058,816	------w	C:\WINDOWS\ServicePackFiles\i386\pcl5eres.dll
+ 2007-05-15 08:08:14	1,057,280	------w	C:\WINDOWS\ServicePackFiles\i386\pcl5ures.dll
+ 2007-05-15 08:08:14	207,872	------w	C:\WINDOWS\ServicePackFiles\i386\pclxl.dll
+ 2008-04-14 02:02:16	120,576	------w	C:\WINDOWS\ServicePackFiles\i386\pcmcia.sys
+ 2004-08-03 20:06:18	169,984	------w	C:\WINDOWS\ServicePackFiles\i386\pcx500.sys
+ 2008-04-14 02:22:23	286,720	------w	C:\WINDOWS\ServicePackFiles\i386\pdh.dll
+ 2008-04-13 16:11:06	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\perfcounter.dll
+ 2008-04-14 02:22:23	41,984	------w	C:\WINDOWS\ServicePackFiles\i386\perfctrs.dll
+ 2008-04-14 02:22:23	27,136	------w	C:\WINDOWS\ServicePackFiles\i386\perfdisk.dll
+ 2008-04-14 02:22:57	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\perfmon.exe
+ 2008-04-14 02:22:23	18,432	------w	C:\WINDOWS\ServicePackFiles\i386\perfnet.dll
+ 2008-04-14 02:22:23	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\perfos.dll
+ 2008-04-14 02:22:23	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\perfproc.dll
+ 2008-04-13 18:44:29	27,904	------w	C:\WINDOWS\ServicePackFiles\i386\perm2.sys
+ 2008-04-14 02:21:16	211,584	------w	C:\WINDOWS\ServicePackFiles\i386\perm2dll.dll
+ 2008-04-13 18:44:30	28,032	------w	C:\WINDOWS\ServicePackFiles\i386\perm3.sys
+ 2008-04-14 02:21:16	259,328	------w	C:\WINDOWS\ServicePackFiles\i386\perm3dd.dll
+ 2008-04-14 02:22:23	172,032	------w	C:\WINDOWS\ServicePackFiles\i386\photowiz.dll
+ 2008-04-14 02:22:23	35,328	------w	C:\WINDOWS\ServicePackFiles\i386\pid.dll
+ 2008-04-14 02:21:42	24,064	------w	C:\WINDOWS\ServicePackFiles\i386\pidgen.dll
+ 2008-04-14 02:22:57	282,624	------w	C:\WINDOWS\ServicePackFiles\i386\pinball.exe
+ 2008-04-14 02:22:57	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\ping.exe
+ 2008-04-14 02:22:23	15,360	------w	C:\WINDOWS\ServicePackFiles\i386\pjlmon.dll
+ 2008-04-14 02:22:23	44,544	------w	C:\WINDOWS\ServicePackFiles\i386\plotter.dll
+ 2008-04-14 02:22:23	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\plotui.dll
+ 2008-04-14 02:22:23	412,160	------w	C:\WINDOWS\ServicePackFiles\i386\pmh.dll
+ 2008-04-14 02:22:23	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\pngfilt.dll
+ 2008-04-14 02:22:23	58,880	------w	C:\WINDOWS\ServicePackFiles\i386\pnrpnsp.dll
+ 2008-04-14 02:22:23	92,672	------w	C:\WINDOWS\ServicePackFiles\i386\policman.dll
+ 2008-04-14 02:22:23	105,984	------w	C:\WINDOWS\ServicePackFiles\i386\polstore.dll
+ 2008-04-13 19:19:41	146,048	------w	C:\WINDOWS\ServicePackFiles\i386\portcls.sys
+ 2008-04-14 02:22:57	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\powercfg.exe
+ 2008-04-13 18:40:56	8,832	------w	C:\WINDOWS\ServicePackFiles\i386\powerfil.sys
+ 2008-04-14 02:22:23	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\powrprof.dll
+ 2008-04-13 18:41:00	17,664	------w	C:\WINDOWS\ServicePackFiles\i386\ppa3.sys
+ 2008-04-14 02:22:23	576,512	------w	C:\WINDOWS\ServicePackFiles\i386\printui.dll
+ 2008-04-14 01:51:21	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\processr.sys
+ 2008-04-14 02:22:23	27,648	------w	C:\WINDOWS\ServicePackFiles\i386\profmap.dll
+ 2008-04-14 02:22:57	109,568	------w	C:\WINDOWS\ServicePackFiles\i386\progman.exe
+ 2008-04-14 02:22:57	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\proquota.exe
+ 2008-04-14 02:22:23	237,056	------w	C:\WINDOWS\ServicePackFiles\i386\provthrd.dll
+ 2008-04-14 02:22:57	9,728	------w	C:\WINDOWS\ServicePackFiles\i386\proxycfg.exe
+ 2008-04-14 02:22:23	728,576	------w	C:\WINDOWS\ServicePackFiles\i386\ps5ui.dll
+ 2008-04-14 02:22:23	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\psapi.dll
+ 2008-04-14 02:22:23	99,328	------w	C:\WINDOWS\ServicePackFiles\i386\psbase.dll
+ 2008-04-13 18:56:38	69,120	------w	C:\WINDOWS\ServicePackFiles\i386\psched.sys
+ 2008-04-14 02:22:23	543,232	------w	C:\WINDOWS\ServicePackFiles\i386\pscript5.dll
+ 2008-04-14 02:22:23	363,520	------w	C:\WINDOWS\ServicePackFiles\i386\psisdecd.dll
+ 2008-04-14 02:22:23	43,520	------w	C:\WINDOWS\ServicePackFiles\i386\pstorec.dll
+ 2008-04-14 02:22:23	34,816	------w	C:\WINDOWS\ServicePackFiles\i386\pstorsvc.dll
+ 2008-04-14 02:22:23	159,232	------w	C:\WINDOWS\ServicePackFiles\i386\ptpusd.dll
+ 2008-04-14 02:22:23	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\pwsdata.dll
+ 2008-04-14 02:22:23	151,040	------w	C:\WINDOWS\ServicePackFiles\i386\qagent.dll
+ 2008-04-14 02:22:23	294,400	------w	C:\WINDOWS\ServicePackFiles\i386\qagentrt.dll
+ 2008-04-14 02:22:23	237,568	------w	C:\WINDOWS\ServicePackFiles\i386\qasf.dll
+ 2008-04-14 02:22:23	192,512	------w	C:\WINDOWS\ServicePackFiles\i386\qcap.dll
+ 2008-04-14 02:22:23	62,464	------w	C:\WINDOWS\ServicePackFiles\i386\qcliprov.dll
+ 2008-04-14 02:22:23	279,040	------w	C:\WINDOWS\ServicePackFiles\i386\qdv.dll
+ 2008-04-14 02:22:23	387,072	------w	C:\WINDOWS\ServicePackFiles\i386\qdvd.dll
+ 2008-04-14 02:22:23	563,200	------w	C:\WINDOWS\ServicePackFiles\i386\qedit.dll
+ 2008-04-13 17:21:32	733,696	------w	C:\WINDOWS\ServicePackFiles\i386\qedwipes.dll
+ 2008-04-13 18:40:52	6,016	------w	C:\WINDOWS\ServicePackFiles\i386\qic157.sys
+ 2008-04-14 02:22:23	409,088	------w	C:\WINDOWS\ServicePackFiles\i386\qmgr.dll
+ 2008-04-14 02:22:23	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\qmgrprxy.dll
+ 2008-04-14 02:22:57	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\qprocess.exe
+ 2008-04-14 02:22:23	1,293,824	------w	C:\WINDOWS\ServicePackFiles\i386\quartz.dll
+ 2008-04-14 02:22:23	1,441,792	------w	C:\WINDOWS\ServicePackFiles\i386\query.dll
+ 2008-04-14 02:22:23	76,800	------w	C:\WINDOWS\ServicePackFiles\i386\qutil.dll
+ 2008-04-14 02:22:23	43,520	------w	C:\WINDOWS\ServicePackFiles\i386\racpldlg.dll
+ 2008-04-13 18:41:23	20,736	------w	C:\WINDOWS\ServicePackFiles\i386\ramdisk.sys
+ 2008-04-14 02:22:23	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\rasadhlp.dll
+ 2008-04-14 02:22:23	237,056	------w	C:\WINDOWS\ServicePackFiles\i386\rasapi32.dll
+ 2008-04-14 02:22:23	88,576	------w	C:\WINDOWS\ServicePackFiles\i386\rasauto.dll
+ 2008-04-14 02:22:23	79,872	------w	C:\WINDOWS\ServicePackFiles\i386\raschap.dll
+ 2008-04-14 02:22:23	687,104	------w	C:\WINDOWS\ServicePackFiles\i386\rasdlg.dll
+ 2008-04-13 19:19:43	51,328	------w	C:\WINDOWS\ServicePackFiles\i386\rasl2tp.sys
+ 2008-04-14 02:22:23	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\rasman.dll
+ 2008-04-14 02:22:23	186,368	------w	C:\WINDOWS\ServicePackFiles\i386\rasmans.dll
+ 2008-04-14 02:22:57	57,344	------w	C:\WINDOWS\ServicePackFiles\i386\rasphone.exe
+ 2008-04-14 02:22:23	210,944	------w	C:\WINDOWS\ServicePackFiles\i386\rasppp.dll
+ 2008-04-13 18:57:32	41,472	------w	C:\WINDOWS\ServicePackFiles\i386\raspppoe.sys
+ 2008-04-13 19:19:48	48,384	------w	C:\WINDOWS\ServicePackFiles\i386\raspptp.sys
+ 2008-04-14 02:22:23	61,952	------w	C:\WINDOWS\ServicePackFiles\i386\rasqec.dll
+ 2008-04-14 02:22:23	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\rassapi.dll
+ 2008-04-14 02:22:23	58,368	------w	C:\WINDOWS\ServicePackFiles\i386\rastapi.dll
+ 2008-04-14 02:22:23	151,040	------w	C:\WINDOWS\ServicePackFiles\i386\rastls.dll
+ 2008-04-14 02:22:23	102,912	------w	C:\WINDOWS\ServicePackFiles\i386\rcbdyctl.dll
+ 2008-04-14 02:22:57	35,840	------w	C:\WINDOWS\ServicePackFiles\i386\rcimlby.exe
+ 2008-04-14 02:22:58	22,528	------w	C:\WINDOWS\ServicePackFiles\i386\rcp.exe
+ 2008-04-13 19:28:39	175,744	------w	C:\WINDOWS\ServicePackFiles\i386\rdbss.sys
+ 2008-04-14 02:22:23	147,968	------w	C:\WINDOWS\ServicePackFiles\i386\rdchost.dll
+ 2008-04-14 02:22:58	62,976	------w	C:\WINDOWS\ServicePackFiles\i386\rdpclip.exe
+ 2008-04-14 02:23:27	92,424	------w	C:\WINDOWS\ServicePackFiles\i386\rdpdd.dll
+ 2008-04-13 18:32:51	196,224	------w	C:\WINDOWS\ServicePackFiles\i386\rdpdr.sys
+ 2008-04-14 02:22:23	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\rdpsnd.dll
+ 2008-04-14 02:23:27	139,656	------w	C:\WINDOWS\ServicePackFiles\i386\rdpwd.sys
+ 2008-04-14 02:23:27	87,176	------w	C:\WINDOWS\ServicePackFiles\i386\rdpwsx.dll
+ 2008-04-14 02:22:58	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\rdsaddin.exe
+ 2008-04-14 02:22:58	67,072	------w	C:\WINDOWS\ServicePackFiles\i386\rdshost.exe
+ 2004-08-03 20:41:40	13,776	------w	C:\WINDOWS\ServicePackFiles\i386\recagent.sys
+ 2008-04-14 01:52:51	57,728	------w	C:\WINDOWS\ServicePackFiles\i386\redbook.sys
+ 2006-02-28 12:00:00	3,358	------w	C:\WINDOWS\ServicePackFiles\i386\redir.exe
+ 2008-04-14 02:22:58	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\reg.exe
+ 2008-04-14 02:22:23	49,664	------w	C:\WINDOWS\ServicePackFiles\i386\regapi.dll
+ 2007-06-27 12:57:33	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\regasm.exe
+ 2007-06-27 12:57:36	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\regcode.dll
+ 2008-04-14 02:22:58	153,600	------w	C:\WINDOWS\ServicePackFiles\i386\regedit.exe
+ 2008-04-14 02:22:23	59,904	------w	C:\WINDOWS\ServicePackFiles\i386\regsvc.dll
+ 2007-06-27 12:57:41	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\regsvcs.exe
+ 2008-04-14 02:22:58	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\regsvr32.exe
+ 2008-04-14 02:22:23	399,872	------w	C:\WINDOWS\ServicePackFiles\i386\regwizc.dll
+ 2008-04-14 02:22:23	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\remotepg.dll
+ 2008-04-14 02:22:23	178,176	------w	C:\WINDOWS\ServicePackFiles\i386\repdrvfs.dll
+ 2008-04-14 02:22:23	58,880	------w	C:\WINDOWS\ServicePackFiles\i386\resutils.dll
+ 2008-04-14 02:22:58	14,848	------w	C:\WINDOWS\ServicePackFiles\i386\rexec.exe
+ 2008-04-13 18:46:32	59,136	------w	C:\WINDOWS\ServicePackFiles\i386\rfcomm.sys
+ 2008-04-14 02:22:23	290,304	------w	C:\WINDOWS\ServicePackFiles\i386\rhttpaa.dll
+ 2008-04-14 02:22:23	123,904	------w	C:\WINDOWS\ServicePackFiles\i386\riafres.dll
+ 2008-04-14 02:22:23	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\riafui1.dll
+ 2008-04-14 02:22:23	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\riafui2.dll
+ 2008-04-14 02:22:23	433,664	------w	C:\WINDOWS\ServicePackFiles\i386\riched20.dll
+ 2008-04-13 18:55:08	202,624	------w	C:\WINDOWS\ServicePackFiles\i386\rmcast.sys
+ 2008-04-13 18:56:49	30,592	------w	C:\WINDOWS\ServicePackFiles\i386\rndismp.sys
+ 2008-04-13 18:56:49	30,592	------w	C:\WINDOWS\ServicePackFiles\i386\rndismpx.sys
+ 2008-04-14 01:53:41	79,360	------w	C:\WINDOWS\ServicePackFiles\i386\rocket.sys
+ 2008-04-14 02:22:23	4,096	------w	C:\WINDOWS\ServicePackFiles\i386\rpcref.dll
+ 2008-04-14 02:22:23	584,704	------w	C:\WINDOWS\ServicePackFiles\i386\rpcrt4.dll
+ 2008-04-14 02:22:23	399,360	------w	C:\WINDOWS\ServicePackFiles\i386\rpcss.dll
+ 2008-04-14 02:22:23	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\rrcm.dll
+ 2008-04-13 17:37:57	208,384	------w	C:\WINDOWS\ServicePackFiles\i386\rsaenh.dll
+ 2008-04-14 02:22:58	15,360	------w	C:\WINDOWS\ServicePackFiles\i386\rsh.exe
+ 2008-04-14 02:22:23	40,448	------w	C:\WINDOWS\ServicePackFiles\i386\rshx32.dll
+ 2008-04-14 02:22:23	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\rsmps.dll
+ 2008-04-14 02:22:58	107,520	------w	C:\WINDOWS\ServicePackFiles\i386\rsnotify.exe
+ 2008-04-14 02:22:59	385,536	------w	C:\WINDOWS\ServicePackFiles\i386\rstrui.exe
+ 2008-04-14 02:22:23	92,672	------w	C:\WINDOWS\ServicePackFiles\i386\rsvpsp.dll
+ 2008-04-14 02:22:59	78,848	------w	C:\WINDOWS\ServicePackFiles\i386\rtcshare.exe
+ 2008-04-14 02:22:23	31,744	------w	C:\WINDOWS\ServicePackFiles\i386\rtipxmib.dll
+ 2004-08-03 20:31:34	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\rtl8139.sys
+ 2008-04-14 02:22:23	44,032	------w	C:\WINDOWS\ServicePackFiles\i386\rtutils.dll
+ 2008-04-14 02:22:59	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\rundll32.exe
+ 2008-04-14 02:22:59	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\runonce.exe
+ 2008-04-14 02:22:23	27,648	------w	C:\WINDOWS\ServicePackFiles\i386\rw001ext.dll
+ 2008-04-14 02:22:23	29,184	------w	C:\WINDOWS\ServicePackFiles\i386\rw330ext.dll
+ 2008-04-14 02:22:23	27,648	------w	C:\WINDOWS\ServicePackFiles\i386\rw430ext.dll
+ 2008-04-14 02:22:23	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\rw450ext.dll
+ 2008-04-14 02:22:23	9,728	------w	C:\WINDOWS\ServicePackFiles\i386\rwnh.dll
+ 2008-04-14 02:22:23	397,056	------w	C:\WINDOWS\ServicePackFiles\i386\s3gnb.dll
+ 2004-08-03 20:29:52	166,912	------w	C:\WINDOWS\ServicePackFiles\i386\s3gnbm.sys
+ 2008-04-14 02:22:23	43,520	------w	C:\WINDOWS\ServicePackFiles\i386\safrcdlg.dll
+ 2008-04-14 02:22:23	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\safrdm.dll
+ 2008-04-14 02:22:23	45,568	------w	C:\WINDOWS\ServicePackFiles\i386\safrslv.dll
+ 2008-04-14 02:22:23	64,000	------w	C:\WINDOWS\ServicePackFiles\i386\samlib.dll
+ 2008-04-14 02:22:23	429,568	------w	C:\WINDOWS\ServicePackFiles\i386\samsrv.dll
+ 2008-04-14 02:22:23	741,376	------w	C:\WINDOWS\ServicePackFiles\i386\sapi.dll
+ 2008-04-14 02:22:59	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\savedump.exe
+ 2008-04-14 02:22:23	270,848	------w	C:\WINDOWS\ServicePackFiles\i386\sbe.dll
+ 2008-04-14 02:22:23	159,232	------w	C:\WINDOWS\ServicePackFiles\i386\sbeio.dll
+ 2008-04-13 18:40:48	43,904	------w	C:\WINDOWS\ServicePackFiles\i386\sbp2port.sys
+ 2008-04-14 02:22:23	70,656	------w	C:\WINDOWS\ServicePackFiles\i386\scarddlg.dll
+ 2008-04-14 02:22:59	99,840	------w	C:\WINDOWS\ServicePackFiles\i386\scardsvr.exe
+ 2006-02-28 12:00:00	169,984	------w	C:\WINDOWS\ServicePackFiles\i386\sccbase.dll
+ 2008-04-14 02:22:23	171,520	------w	C:\WINDOWS\ServicePackFiles\i386\sccsccp.dll
+ 2008-04-14 02:22:23	187,904	------w	C:\WINDOWS\ServicePackFiles\i386\scecli.dll
+ 2008-04-14 02:22:23	328,192	------w	C:\WINDOWS\ServicePackFiles\i386\scesrv.dll
+ 2008-04-14 02:22:23	144,384	------w	C:\WINDOWS\ServicePackFiles\i386\schannel.dll
+ 2008-04-14 02:22:23	193,536	------w	C:\WINDOWS\ServicePackFiles\i386\schedsvc.dll
+ 2008-04-14 02:22:23	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\sclgntfy.dll
+ 2008-04-14 02:22:59	36,352	------w	C:\WINDOWS\ServicePackFiles\i386\scrcons.exe
+ 2008-04-14 02:22:23	217,088	------w	C:\WINDOWS\ServicePackFiles\i386\script.dll
+ 2008-04-14 02:22:23	200,704	------w	C:\WINDOWS\ServicePackFiles\i386\scripta.dll
+ 2008-04-14 02:23:08	9,216	------w	C:\WINDOWS\ServicePackFiles\i386\scrnsave.scr
+ 2008-04-14 02:22:23	180,224	------w	C:\WINDOWS\ServicePackFiles\i386\scrobj.dll
+ 2008-04-14 02:22:24	172,032	------w	C:\WINDOWS\ServicePackFiles\i386\scrrun.dll
+ 2008-04-13 18:40:30	96,384	------w	C:\WINDOWS\ServicePackFiles\i386\scsiport.sys
+ 2008-04-13 18:45:33	11,520	------w	C:\WINDOWS\ServicePackFiles\i386\scsiscan.sys
+ 2008-04-14 02:22:59	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\sctasks.exe
+ 2008-04-14 02:22:59	78,336	------w	C:\WINDOWS\ServicePackFiles\i386\sdbinst.exe
+ 2008-04-13 18:36:44	79,232	------w	C:\WINDOWS\ServicePackFiles\i386\sdbus.sys
+ 2008-04-14 02:22:24	29,184	------w	C:\WINDOWS\ServicePackFiles\i386\sdhcinst.dll
+ 2007-11-13 10:25:53	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\secdrv.sys
+ 2008-04-14 02:22:59	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\secedit.exe
+ 2008-04-14 02:22:24	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\seclogon.dll
+ 2006-12-31 05:57:08	4,569	------w	C:\WINDOWS\ServicePackFiles\i386\secupd.dat
+ 2008-04-14 02:22:24	56,320	------w	C:\WINDOWS\ServicePackFiles\i386\secur32.dll
+ 2008-04-14 02:22:24	5,632	------w	C:\WINDOWS\ServicePackFiles\i386\security.dll
+ 2008-04-14 02:22:24	29,696	------w	C:\WINDOWS\ServicePackFiles\i386\sendcmsg.dll
+ 2008-04-14 02:22:24	55,296	------w	C:\WINDOWS\ServicePackFiles\i386\sendmail.dll
+ 2008-04-14 02:22:24	39,424	------w	C:\WINDOWS\ServicePackFiles\i386\sens.dll
+ 2008-04-14 02:22:24	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\sensapi.dll
+ 2008-04-14 02:22:24	221,696	------w	C:\WINDOWS\ServicePackFiles\i386\seo.dll
+ 2008-04-13 18:40:12	15,744	------w	C:\WINDOWS\ServicePackFiles\i386\serenum.sys
+ 2008-04-14 01:54:59	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\serial.sys
+ 2008-04-14 02:22:24	56,320	------w	C:\WINDOWS\ServicePackFiles\i386\servdeps.dll
+ 2008-04-14 02:22:59	109,056	------w	C:\WINDOWS\ServicePackFiles\i386\services.exe
+ 2008-04-14 02:23:00	143,360	------w	C:\WINDOWS\ServicePackFiles\i386\sessmgr.exe
+ 2008-04-14 02:23:00	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\sethc.exe
+ 2007-12-17 11:59:54	66,592	------w	C:\WINDOWS\ServicePackFiles\i386\setregni.exe
+ 2008-04-14 02:23:00	23,040	------w	C:\WINDOWS\ServicePackFiles\i386\setup.exe
+ 2008-04-14 02:23:00	74,240	------w	C:\WINDOWS\ServicePackFiles\i386\setup50.exe
+ 2008-04-14 05:52:26	989,696	------w	C:\WINDOWS\ServicePackFiles\i386\setupapi.dll
+ 2008-04-14 02:23:00	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\setupn.exe
+ 2008-04-14 02:22:24	101,888	------w	C:\WINDOWS\ServicePackFiles\i386\setupqry.dll
+ 2008-04-14 02:22:24	5,120	------w	C:\WINDOWS\ServicePackFiles\i386\sfc.dll
+ 2008-04-14 02:22:24	142,336	------w	C:\WINDOWS\ServicePackFiles\i386\sfc_os.dll
+ 2008-04-14 02:22:25	1,571,840	------w	C:\WINDOWS\ServicePackFiles\i386\sfcfiles.dll
+ 2008-04-13 18:40:47	11,904	------w	C:\WINDOWS\ServicePackFiles\i386\sffdisk.sys
+ 2008-04-13 18:40:48	10,240	------w	C:\WINDOWS\ServicePackFiles\i386\sffp_mmc.sys
+ 2008-04-13 18:40:47	11,008	------w	C:\WINDOWS\ServicePackFiles\i386\sffp_sd.sys
+ 2008-04-13 18:40:48	11,392	------w	C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys
+ 2008-04-14 01:55:38	572,928	------w	C:\WINDOWS\ServicePackFiles\i386\shdoclc.dll
+ 2008-04-14 02:22:25	1,499,136	------w	C:\WINDOWS\ServicePackFiles\i386\shdocvw.dll
+ 2008-04-14 02:22:25	8,502,272	------w	C:\WINDOWS\ServicePackFiles\i386\shell32.dll
+ 2008-04-14 02:22:25	25,088	------w	C:\WINDOWS\ServicePackFiles\i386\shfolder.dll
+ 2008-04-14 02:22:25	68,096	------w	C:\WINDOWS\ServicePackFiles\i386\shgina.dll
+ 2008-04-14 02:22:25	65,024	------w	C:\WINDOWS\ServicePackFiles\i386\shimeng.dll
+ 2008-04-14 02:22:25	439,808	------w	C:\WINDOWS\ServicePackFiles\i386\shimgvw.dll
+ 2008-04-14 02:22:25	474,624	------w	C:\WINDOWS\ServicePackFiles\i386\shlwapi.dll
+ 2008-04-14 02:23:00	45,056	------w	C:\WINDOWS\ServicePackFiles\i386\shmgrate.exe
+ 2008-04-14 02:23:00	78,336	------w	C:\WINDOWS\ServicePackFiles\i386\shrpubw.exe
+ 2008-04-14 02:22:25	28,160	------w	C:\WINDOWS\ServicePackFiles\i386\shscrap.dll

Fako · 13.10.2008, 17:10

Code:

ATTFilter

+ 2008-04-14 02:22:25	135,168	------w	C:\WINDOWS\ServicePackFiles\i386\shsvcs.dll
+ 2008-04-14 02:22:25	20,536	------w	C:\WINDOWS\ServicePackFiles\i386\shtml.dll
+ 2008-04-14 02:23:00	16,437	------w	C:\WINDOWS\ServicePackFiles\i386\shtml.exe
+ 2008-04-14 02:23:01	20,480	------w	C:\WINDOWS\ServicePackFiles\i386\shutdown.exe
+ 2008-04-14 02:22:25	13,312	------w	C:\WINDOWS\ServicePackFiles\i386\sigtab.dll
+ 2008-04-14 02:23:01	71,168	------w	C:\WINDOWS\ServicePackFiles\i386\sigverif.exe
+ 2008-04-14 02:22:25	3,901	------w	C:\WINDOWS\ServicePackFiles\i386\siint5.dll
+ 2008-04-13 18:36:39	40,960	------w	C:\WINDOWS\ServicePackFiles\i386\sisagp.sys
+ 2004-08-03 20:31:36	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\sisnic.sys
+ 2008-04-14 02:23:01	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\skeys.exe
+ 2004-08-03 20:31:42	63,547	------w	C:\WINDOWS\ServicePackFiles\i386\sla30nd5.sys
+ 2008-04-14 02:22:25	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\slayerxp.dll
+ 2006-02-28 12:00:00	306,176	------w	C:\WINDOWS\ServicePackFiles\i386\slbcsp.dll
+ 2008-04-14 02:22:25	98,304	------w	C:\WINDOWS\ServicePackFiles\i386\slbiop.dll
+ 2008-04-14 02:22:25	73,832	------w	C:\WINDOWS\ServicePackFiles\i386\slcoinst.dll
+ 2008-04-14 02:22:25	286,792	------w	C:\WINDOWS\ServicePackFiles\i386\slextspk.dll
+ 2008-04-14 02:22:25	188,508	------w	C:\WINDOWS\ServicePackFiles\i386\slgen.dll
+ 2008-04-13 18:46:23	11,136	------w	C:\WINDOWS\ServicePackFiles\i386\slip.sys
+ 2004-08-03 20:41:42	129,535	------w	C:\WINDOWS\ServicePackFiles\i386\slnt7554.sys
+ 2004-08-03 20:41:44	404,990	------w	C:\WINDOWS\ServicePackFiles\i386\slntamr.sys
+ 2004-08-03 20:41:46	95,424	------w	C:\WINDOWS\ServicePackFiles\i386\slnthal.sys
+ 2008-04-14 02:23:01	32,866	------w	C:\WINDOWS\ServicePackFiles\i386\slrundll.exe
+ 2008-04-14 02:23:01	73,796	------w	C:\WINDOWS\ServicePackFiles\i386\slserv.exe
+ 2004-08-03 20:41:46	13,240	------w	C:\WINDOWS\ServicePackFiles\i386\slwdmsup.sys
+ 2008-04-13 18:36:34	5,888	------w	C:\WINDOWS\ServicePackFiles\i386\smbali.sys
+ 2008-04-13 18:36:33	16,000	------w	C:\WINDOWS\ServicePackFiles\i386\smbbatt.sys
+ 2008-04-13 18:36:33	6,912	------w	C:\WINDOWS\ServicePackFiles\i386\smbclass.sys
+ 2008-04-14 02:23:01	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\smbinst.exe
+ 2008-04-14 02:23:01	236,544	------w	C:\WINDOWS\ServicePackFiles\i386\smi2smir.exe
+ 2008-04-14 02:22:25	368,128	------w	C:\WINDOWS\ServicePackFiles\i386\smlogcfg.dll
+ 2008-04-14 02:23:01	94,208	------w	C:\WINDOWS\ServicePackFiles\i386\smlogsvc.exe
+ 2008-04-14 02:23:01	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\smss.exe
+ 2008-04-14 02:22:25	189,952	------w	C:\WINDOWS\ServicePackFiles\i386\smtpadm.dll
+ 2008-04-14 02:22:25	10,752	------w	C:\WINDOWS\ServicePackFiles\i386\smtpapi.dll
+ 2008-04-14 02:22:25	2,134,528	------w	C:\WINDOWS\ServicePackFiles\i386\smtpsnap.dll
+ 2008-04-14 02:22:25	465,408	------w	C:\WINDOWS\ServicePackFiles\i386\smtpsvc.dll
+ 2008-04-14 02:23:01	133,120	------w	C:\WINDOWS\ServicePackFiles\i386\sndrec32.exe
+ 2008-04-14 02:22:25	34,816	------w	C:\WINDOWS\ServicePackFiles\i386\sniffpol.dll
+ 2008-04-14 02:23:01	33,280	------w	C:\WINDOWS\ServicePackFiles\i386\snmp.exe
+ 2008-04-14 02:22:25	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\snmpapi.dll
+ 2008-04-14 02:22:25	259,072	------w	C:\WINDOWS\ServicePackFiles\i386\snmpcl.dll
+ 2008-04-14 02:22:25	358,400	------w	C:\WINDOWS\ServicePackFiles\i386\snmpincl.dll
+ 2008-04-14 02:22:25	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\snmpmib.dll
+ 2008-04-14 02:22:25	188,416	------w	C:\WINDOWS\ServicePackFiles\i386\snmpsmir.dll
+ 2008-04-14 02:22:25	183,808	------w	C:\WINDOWS\ServicePackFiles\i386\snmpsnap.dll
+ 2008-04-14 02:22:25	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\snmpthrd.dll
+ 2008-04-14 02:23:01	8,704	------w	C:\WINDOWS\ServicePackFiles\i386\snmptrap.exe
+ 2008-04-14 02:22:25	130,048	------w	C:\WINDOWS\ServicePackFiles\i386\softkbd.dll
+ 2008-04-13 18:40:52	7,552	------w	C:\WINDOWS\ServicePackFiles\i386\sonyait.sys
+ 2008-04-13 18:46:07	25,344	------w	C:\WINDOWS\ServicePackFiles\i386\sonydcam.sys
+ 2008-04-14 02:23:01	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\sort.exe
+ 2008-04-14 02:23:01	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\spdwnwxp.exe
+ 2008-04-13 16:43:18	62,976	------w	C:\WINDOWS\ServicePackFiles\i386\spgrmr.dll
+ 2008-04-14 02:23:02	539,136	------w	C:\WINDOWS\ServicePackFiles\i386\spider.exe
+ 2008-04-13 18:43:31	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\spiisupd.exe
+ 2008-04-13 18:45:07	6,272	------w	C:\WINDOWS\ServicePackFiles\i386\splitter.sys
+ 2008-04-14 05:53:04	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\spnpinst.exe
+ 2008-04-14 02:22:25	75,264	------w	C:\WINDOWS\ServicePackFiles\i386\spoolss.dll
+ 2008-04-14 02:23:02	57,856	------w	C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe
+ 2008-04-13 18:35:21	199,680	------w	C:\WINDOWS\ServicePackFiles\i386\sprs0407.dll
+ 2008-04-13 18:36:47	2,981,888	------w	C:\WINDOWS\ServicePackFiles\i386\sprt0407.dll
+ 2008-04-13 18:39:17	779,776	------w	C:\WINDOWS\ServicePackFiles\i386\spru0407.dll
+ 2008-04-14 02:22:30	272,384	------w	C:\WINDOWS\ServicePackFiles\i386\sptip.dll
+ 2008-04-14 02:23:02	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\spupdwxp.exe
+ 2008-04-14 02:22:30	151,552	------w	C:\WINDOWS\ServicePackFiles\i386\sqldb20.dll
+ 2008-04-14 02:22:30	528,384	------w	C:\WINDOWS\ServicePackFiles\i386\sqloledb.dll
+ 2008-04-14 02:22:30	462,848	------w	C:\WINDOWS\ServicePackFiles\i386\sqlqp20.dll
+ 2008-04-14 02:22:30	110,592	------w	C:\WINDOWS\ServicePackFiles\i386\sqlse20.dll
+ 2008-04-14 02:22:30	442,368	------w	C:\WINDOWS\ServicePackFiles\i386\sqlsrv32.dll
+ 2008-04-14 02:22:30	180,800	------w	C:\WINDOWS\ServicePackFiles\i386\sqlunirl.dll
+ 2008-04-14 02:22:30	217,088	------w	C:\WINDOWS\ServicePackFiles\i386\sqlxmlx.dll
+ 2008-04-14 02:02:33	73,472	------w	C:\WINDOWS\ServicePackFiles\i386\sr.sys
+ 2008-04-14 02:22:30	58,434	------w	C:\WINDOWS\ServicePackFiles\i386\srchctls.dll
+ 2008-04-14 02:22:30	727,614	------w	C:\WINDOWS\ServicePackFiles\i386\srchui.dll
+ 2008-04-14 02:22:30	67,584	------w	C:\WINDOWS\ServicePackFiles\i386\srclient.dll
+ 2008-04-14 02:22:30	242,176	------w	C:\WINDOWS\ServicePackFiles\i386\srrstr.dll
+ 2008-04-14 02:22:30	171,520	------w	C:\WINDOWS\ServicePackFiles\i386\srsvc.dll
+ 2008-04-13 19:15:11	334,848	------w	C:\WINDOWS\ServicePackFiles\i386\srv.sys
+ 2008-04-14 02:22:30	96,768	------w	C:\WINDOWS\ServicePackFiles\i386\srvsvc.dll
+ 2008-04-14 02:23:08	708,608	------w	C:\WINDOWS\ServicePackFiles\i386\ss3dfo.scr
+ 2008-04-14 02:23:08	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\ssbezier.scr
+ 2008-04-14 02:22:30	34,816	------w	C:\WINDOWS\ServicePackFiles\i386\ssdpapi.dll
+ 2008-04-14 02:22:30	71,680	------w	C:\WINDOWS\ServicePackFiles\i386\ssdpsrv.dll
+ 2008-04-14 02:23:08	393,216	------w	C:\WINDOWS\ServicePackFiles\i386\ssflwbox.scr
+ 2008-04-14 02:22:30	45,568	------w	C:\WINDOWS\ServicePackFiles\i386\ssinc51.dll
+ 2008-04-14 02:23:08	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\ssmarque.scr
+ 2008-04-14 02:23:08	47,104	------w	C:\WINDOWS\ServicePackFiles\i386\ssmypics.scr
+ 2008-04-14 02:23:08	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\ssmyst.scr
+ 2008-04-14 02:22:30	46,592	------w	C:\WINDOWS\ServicePackFiles\i386\sspifilt.dll
+ 2008-04-14 02:23:08	610,304	------w	C:\WINDOWS\ServicePackFiles\i386\sspipes.scr
+ 2008-04-14 02:23:08	14,848	------w	C:\WINDOWS\ServicePackFiles\i386\ssstars.scr
+ 2008-04-14 02:23:08	684,032	------w	C:\WINDOWS\ServicePackFiles\i386\sstext3d.scr
+ 2008-04-14 02:22:30	33,280	------w	C:\WINDOWS\ServicePackFiles\i386\sstub.dll
+ 2008-04-14 02:22:30	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\staxmem.dll
+ 2008-04-14 02:22:30	59,392	------w	C:\WINDOWS\ServicePackFiles\i386\stclient.dll
+ 2008-04-14 02:22:30	86,528	------w	C:\WINDOWS\ServicePackFiles\i386\stdprov.dll
+ 2008-04-14 02:22:30	68,608	------w	C:\WINDOWS\ServicePackFiles\i386\sti.dll
+ 2008-04-14 02:22:30	137,216	------w	C:\WINDOWS\ServicePackFiles\i386\sti_ci.dll
+ 2008-04-14 02:23:02	14,848	------w	C:\WINDOWS\ServicePackFiles\i386\stimon.exe
+ 2008-04-14 02:22:30	122,368	------w	C:\WINDOWS\ServicePackFiles\i386\stobject.dll
+ 2008-04-14 02:22:30	76,288	------w	C:\WINDOWS\ServicePackFiles\i386\storprop.dll
+ 2008-04-13 18:45:15	49,408	------w	C:\WINDOWS\ServicePackFiles\i386\stream.sys
+ 2008-04-13 18:46:21	15,232	------w	C:\WINDOWS\ServicePackFiles\i386\streamip.sys
+ 2008-04-14 02:22:30	75,776	------w	C:\WINDOWS\ServicePackFiles\i386\strmfilt.dll
+ 2008-04-14 02:23:02	16,449	------w	C:\WINDOWS\ServicePackFiles\i386\stub_fpsrvadm.exe
+ 2008-04-14 02:23:02	65,601	------w	C:\WINDOWS\ServicePackFiles\i386\stub_fpsrvwin.exe
+ 2008-04-14 02:22:30	46,592	------w	C:\WINDOWS\ServicePackFiles\i386\svcext51.dll
+ 2008-04-14 02:23:02	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\svchost.exe
+ 2008-04-13 18:39:53	4,352	------w	C:\WINDOWS\ServicePackFiles\i386\swenum.sys
+ 2008-04-13 18:45:09	56,576	------w	C:\WINDOWS\ServicePackFiles\i386\swmidi.sys
+ 2008-04-14 02:22:30	715,776	------w	C:\WINDOWS\ServicePackFiles\i386\sxs.dll
+ 2007-12-17 11:59:56	1,179,648	------w	C:\WINDOWS\ServicePackFiles\i386\sy52106.dll
+ 2008-04-14 02:22:30	57,856	------w	C:\WINDOWS\ServicePackFiles\i386\synceng.dll
+ 2008-04-14 02:22:30	198,144	------w	C:\WINDOWS\ServicePackFiles\i386\syncui.dll
+ 2008-04-13 19:15:55	60,800	------w	C:\WINDOWS\ServicePackFiles\i386\sysaudio.sys
+ 2008-04-14 02:23:02	73,728	------w	C:\WINDOWS\ServicePackFiles\i386\sysinfo.exe
+ 2008-04-14 02:22:30	193,536	------w	C:\WINDOWS\ServicePackFiles\i386\sysmod.dll
+ 2008-04-14 02:22:30	173,568	------w	C:\WINDOWS\ServicePackFiles\i386\sysmoda.dll
+ 2008-04-14 02:23:02	108,032	------w	C:\WINDOWS\ServicePackFiles\i386\sysocmgr.exe
+ 2008-04-14 02:22:30	1,005,056	------w	C:\WINDOWS\ServicePackFiles\i386\syssetup.dll
+ 2007-06-27 12:57:55	77,824	------w	C:\WINDOWS\ServicePackFiles\i386\system.configuration.install.dll
+ 2007-06-27 12:58:00	1,179,648	------w	C:\WINDOWS\ServicePackFiles\i386\system.data.dll
+ 2007-06-27 12:58:10	1,695,744	------w	C:\WINDOWS\ServicePackFiles\i386\system.design.dll
+ 2007-06-27 12:58:18	86,016	------w	C:\WINDOWS\ServicePackFiles\i386\system.directoryservices.dll
+ 2007-06-27 12:58:21	65,536	------w	C:\WINDOWS\ServicePackFiles\i386\system.drawing.design.dll
+ 2007-06-27 12:58:26	462,848	------w	C:\WINDOWS\ServicePackFiles\i386\system.drawing.dll
+ 2007-06-27 12:58:31	212,992	------w	C:\WINDOWS\ServicePackFiles\i386\system.enterpriseservices.dll
+ 2008-04-13 16:11:22	48,640	------w	C:\WINDOWS\ServicePackFiles\i386\system.enterpriseservices.thunk.dll
+ 2007-06-27 12:58:39	352,256	------w	C:\WINDOWS\ServicePackFiles\i386\system.management.dll
+ 2007-06-27 12:58:43	241,664	------w	C:\WINDOWS\ServicePackFiles\i386\system.messaging.dll
+ 2007-06-27 12:58:55	311,296	------w	C:\WINDOWS\ServicePackFiles\i386\system.runtime.remoting.dll
+ 2007-06-27 12:59:02	131,072	------w	C:\WINDOWS\ServicePackFiles\i386\system.runtime.serialization.formatters.soap.dll
+ 2007-06-27 12:59:05	77,824	------w	C:\WINDOWS\ServicePackFiles\i386\system.security.dll
+ 2007-06-27 12:59:10	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\system.serviceprocess.dll
+ 2007-12-17 12:00:01	1,200,128	------w	C:\WINDOWS\ServicePackFiles\i386\system.web.dll
+ 2007-06-27 12:59:21	61,440	------w	C:\WINDOWS\ServicePackFiles\i386\system.web.regularexpressions.dll
+ 2007-06-27 12:59:25	507,904	------w	C:\WINDOWS\ServicePackFiles\i386\system.web.services.dll
+ 2007-06-27 12:59:34	2,002,944	------w	C:\WINDOWS\ServicePackFiles\i386\system.windows.forms.dll
+ 2007-06-27 12:59:48	1,302,528	------w	C:\WINDOWS\ServicePackFiles\i386\system.xml.dll
+ 2008-04-14 02:22:30	117,760	------w	C:\WINDOWS\ServicePackFiles\i386\t2embed.dll
+ 2008-04-14 02:22:30	34,304	------w	C:\WINDOWS\ServicePackFiles\i386\tabletoc.dll
+ 2008-04-13 18:40:50	14,976	------w	C:\WINDOWS\ServicePackFiles\i386\tape.sys
+ 2008-04-14 02:22:30	860,672	------w	C:\WINDOWS\ServicePackFiles\i386\tapi3.dll
+ 2008-04-14 02:22:30	181,760	------w	C:\WINDOWS\ServicePackFiles\i386\tapi32.dll
+ 2008-04-14 02:22:30	249,856	------w	C:\WINDOWS\ServicePackFiles\i386\tapisrv.dll
+ 2008-04-14 02:23:02	78,336	------w	C:\WINDOWS\ServicePackFiles\i386\taskkill.exe
+ 2008-04-14 02:23:02	79,360	------w	C:\WINDOWS\ServicePackFiles\i386\tasklist.exe
+ 2008-04-14 02:23:02	140,800	------w	C:\WINDOWS\ServicePackFiles\i386\taskmgr.exe
+ 2008-04-13 19:20:16	361,344	------w	C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
+ 2008-04-13 19:00:02	225,664	------w	C:\WINDOWS\ServicePackFiles\i386\tcpip6.sys
+ 2008-04-14 02:22:30	14,848	------w	C:\WINDOWS\ServicePackFiles\i386\tcpmib.dll
+ 2008-04-14 02:22:30	47,104	------w	C:\WINDOWS\ServicePackFiles\i386\tcpmon.dll
+ 2008-04-14 02:22:30	47,104	------w	C:\WINDOWS\ServicePackFiles\i386\tcpmonui.dll
+ 2008-04-14 02:23:02	32,827	------w	C:\WINDOWS\ServicePackFiles\i386\tcptest.exe
+ 2003-03-24 14:52:44	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\tcptsat.dll
+ 2008-04-13 19:00:05	19,072	------w	C:\WINDOWS\ServicePackFiles\i386\tdi.sys
+ 2008-04-14 02:23:26	12,040	------w	C:\WINDOWS\ServicePackFiles\i386\tdpipe.sys
+ 2008-04-14 02:23:26	21,896	------w	C:\WINDOWS\ServicePackFiles\i386\tdtcp.sys
+ 2008-04-14 02:23:03	78,336	------w	C:\WINDOWS\ServicePackFiles\i386\telnet.exe
+ 2008-04-14 02:23:26	40,840	------w	C:\WINDOWS\ServicePackFiles\i386\termdd.sys
+ 2008-04-14 02:22:30	358,400	------w	C:\WINDOWS\ServicePackFiles\i386\termmgr.dll
+ 2008-04-14 02:22:30	297,472	------w	C:\WINDOWS\ServicePackFiles\i386\termsrv.dll
+ 2008-04-13 18:40:50	149,376	------w	C:\WINDOWS\ServicePackFiles\i386\tffsport.sys
+ 2008-04-14 02:22:30	389,632	------w	C:\WINDOWS\ServicePackFiles\i386\themeui.dll
+ 2008-04-14 02:23:03	64,000	------w	C:\WINDOWS\ServicePackFiles\i386\tlntadmn.exe
+ 2008-04-14 02:23:03	80,384	------w	C:\WINDOWS\ServicePackFiles\i386\tlntsess.exe
+ 2008-04-14 02:23:03	75,264	------w	C:\WINDOWS\ServicePackFiles\i386\tlntsvr.exe
+ 2008-04-14 02:22:30	7,168	------w	C:\WINDOWS\ServicePackFiles\i386\tlntsvrp.dll
+ 2007-12-17 12:00:05	66,592	------w	C:\WINDOWS\ServicePackFiles\i386\togac.exe
+ 2008-04-14 02:22:30	33,792	------w	C:\WINDOWS\ServicePackFiles\i386\tools.dll
+ 2008-04-14 02:23:03	347,136	------w	C:\WINDOWS\ServicePackFiles\i386\tourstrt.exe
+ 2008-04-14 02:23:03	82,944	------w	C:\WINDOWS\ServicePackFiles\i386\tp4mon.exe
+ 2008-04-14 02:23:03	260,096	------w	C:\WINDOWS\ServicePackFiles\i386\tracerpt.exe
+ 2008-04-14 02:23:03	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\tracert.exe
+ 2008-04-14 02:23:07	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\tree.com
+ 2008-04-14 02:22:30	153,088	------w	C:\WINDOWS\ServicePackFiles\i386\triedit.dll
+ 2008-04-14 02:22:30	90,112	------w	C:\WINDOWS\ServicePackFiles\i386\trkwks.dll
+ 2008-01-18 15:13:09	2,247	------w	C:\WINDOWS\ServicePackFiles\i386\tscdsbl.bat
+ 2008-04-14 02:22:30	94,720	------w	C:\WINDOWS\ServicePackFiles\i386\tscfgwmi.dll
+ 2007-12-12 10:33:51	18,917	------w	C:\WINDOWS\ServicePackFiles\i386\tscinst.vbs
+ 2007-10-30 10:06:46	13,801	------w	C:\WINDOWS\ServicePackFiles\i386\tscuinst.vbs
+ 2008-04-14 02:21:56	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\tscupdc.dll
+ 2008-04-14 02:23:27	12,168	------w	C:\WINDOWS\ServicePackFiles\i386\tsddd.dll
+ 2008-04-14 02:22:30	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\tsgqec.dll
+ 2008-04-14 02:22:30	279,040	------w	C:\WINDOWS\ServicePackFiles\i386\tshoot.dll
+ 2008-04-14 02:22:30	131,584	------w	C:\WINDOWS\ServicePackFiles\i386\tsoc.dll
+ 2008-04-14 02:22:30	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\tspkg.dll
+ 2008-04-14 02:22:30	8,704	------w	C:\WINDOWS\ServicePackFiles\i386\tty.dll
+ 2008-04-14 01:50:18	39,936	------w	C:\WINDOWS\ServicePackFiles\i386\ttyres.dll
+ 2008-04-14 02:22:30	16,384	------w	C:\WINDOWS\ServicePackFiles\i386\ttyui.dll
+ 2008-04-13 18:56:01	12,288	------w	C:\WINDOWS\ServicePackFiles\i386\tunmp.sys
+ 2008-04-14 02:22:30	50,688	------w	C:\WINDOWS\ServicePackFiles\i386\twain_32.dll
+ 2008-04-14 02:22:30	57,856	------w	C:\WINDOWS\ServicePackFiles\i386\twext.dll
+ 2008-04-14 02:22:30	101,376	------w	C:\WINDOWS\ServicePackFiles\i386\txflog.dll
+ 2008-04-14 02:23:03	60,416	------w	C:\WINDOWS\ServicePackFiles\i386\tzchange.exe
+ 2008-04-13 18:36:40	44,672	------w	C:\WINDOWS\ServicePackFiles\i386\uagp35.sys
+ 2008-04-13 18:32:36	66,048	------w	C:\WINDOWS\ServicePackFiles\i386\udfs.sys
+ 2008-04-14 02:22:30	26,624	------w	C:\WINDOWS\ServicePackFiles\i386\udhisapi.dll
+ 2008-04-14 02:22:30	103,936	------w	C:\WINDOWS\ServicePackFiles\i386\uihelper.dll
+ 2008-04-14 02:22:30	312,832	------w	C:\WINDOWS\ServicePackFiles\i386\ulib.dll
+ 2008-04-14 02:22:31	36,352	------w	C:\WINDOWS\ServicePackFiles\i386\umandlg.dll
+ 2008-04-14 02:22:31	124,416	------w	C:\WINDOWS\ServicePackFiles\i386\umpnpmgr.dll
+ 2008-04-14 02:22:31	373,248	------w	C:\WINDOWS\ServicePackFiles\i386\unidrv.dll
+ 2008-04-14 02:22:31	744,448	------w	C:\WINDOWS\ServicePackFiles\i386\unidrvui.dll
+ 2008-04-14 02:22:31	78,848	------w	C:\WINDOWS\ServicePackFiles\i386\unimdmat.dll
+ 2008-04-14 02:22:31	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\uniplat.dll
+ 2007-05-15 08:08:53	761,344	------w	C:\WINDOWS\ServicePackFiles\i386\unires.dll
+ 2008-04-14 02:22:31	316,416	------w	C:\WINDOWS\ServicePackFiles\i386\untfs.dll
+ 2008-04-13 18:39:46	384,768	------w	C:\WINDOWS\ServicePackFiles\i386\update.sys
+ 2008-04-14 02:23:03	151,040	------w	C:\WINDOWS\ServicePackFiles\i386\uploadm.exe
+ 2008-04-14 02:22:31	133,632	------w	C:\WINDOWS\ServicePackFiles\i386\upnp.dll
+ 2008-04-14 02:23:03	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\upnpcont.exe
+ 2008-04-14 02:22:31	186,880	------w	C:\WINDOWS\ServicePackFiles\i386\upnphost.dll
+ 2008-04-14 02:22:31	239,616	------w	C:\WINDOWS\ServicePackFiles\i386\upnpui.dll
+ 2008-04-14 02:23:03	18,432	------w	C:\WINDOWS\ServicePackFiles\i386\ups.exe
+ 2008-04-14 02:22:31	37,888	------w	C:\WINDOWS\ServicePackFiles\i386\url.dll
+ 2008-04-14 02:22:31	621,568	------w	C:\WINDOWS\ServicePackFiles\i386\urlmon.dll
+ 2004-08-03 22:43:58	32,384	------w	C:\WINDOWS\ServicePackFiles\i386\usb101et.sys
+ 2008-04-13 18:56:49	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\usb8023.sys
+ 2008-04-13 18:56:49	12,800	------w	C:\WINDOWS\ServicePackFiles\i386\usb8023x.sys
+ 2008-04-13 18:45:12	60,032	------w	C:\WINDOWS\ServicePackFiles\i386\usbaudio.sys
+ 2008-04-13 18:45:40	25,600	------w	C:\WINDOWS\ServicePackFiles\i386\usbcamd.sys
+ 2008-04-13 18:45:41	25,728	------w	C:\WINDOWS\ServicePackFiles\i386\usbcamd2.sys
+ 2008-04-13 18:45:39	32,128	------w	C:\WINDOWS\ServicePackFiles\i386\usbccgp.sys
+ 2008-04-13 18:45:35	30,208	------w	C:\WINDOWS\ServicePackFiles\i386\usbehci.sys
+ 2008-04-13 18:45:37	59,520	------w	C:\WINDOWS\ServicePackFiles\i386\usbhub.sys
+ 2008-04-13 18:45:43	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\usbintel.sys
+ 2008-04-14 02:22:31	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\usbmon.dll
+ 2008-04-13 18:45:35	17,152	------w	C:\WINDOWS\ServicePackFiles\i386\usbohci.sys
+ 2008-04-13 18:45:36	143,872	------w	C:\WINDOWS\ServicePackFiles\i386\usbport.sys
+ 2008-04-13 18:47:37	25,856	------w	C:\WINDOWS\ServicePackFiles\i386\usbprint.sys
+ 2008-04-13 18:45:34	15,104	------w	C:\WINDOWS\ServicePackFiles\i386\usbscan.sys
+ 2008-04-13 18:45:36	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\usbser.sys
+ 2008-04-13 18:45:38	26,368	------w	C:\WINDOWS\ServicePackFiles\i386\usbstor.sys
+ 2008-04-13 18:45:35	20,608	------w	C:\WINDOWS\ServicePackFiles\i386\usbuhci.sys
+ 2008-04-14 02:22:31	77,312	------w	C:\WINDOWS\ServicePackFiles\i386\usbui.dll
+ 2008-04-13 18:46:20	121,984	------w	C:\WINDOWS\ServicePackFiles\i386\usbvideo.sys
+ 2008-04-14 02:22:31	580,096	------w	C:\WINDOWS\ServicePackFiles\i386\user32.dll
+ 2008-04-14 02:22:31	736,768	------w	C:\WINDOWS\ServicePackFiles\i386\userenv.dll
+ 2008-04-14 02:23:03	26,624	------w	C:\WINDOWS\ServicePackFiles\i386\userinit.exe
+ 2008-04-14 02:22:31	406,016	------w	C:\WINDOWS\ServicePackFiles\i386\usp10.dll
+ 2008-04-14 02:23:04	50,176	------w	C:\WINDOWS\ServicePackFiles\i386\utilman.exe
+ 2008-04-14 02:22:31	219,136	------w	C:\WINDOWS\ServicePackFiles\i386\uxtheme.dll
+ 2008-04-14 02:22:31	30,749	------w	C:\WINDOWS\ServicePackFiles\i386\vbajet32.dll
+ 2007-06-27 12:59:58	716,800	------w	C:\WINDOWS\ServicePackFiles\i386\vbc.exe
+ 2008-04-13 16:11:44	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.chs.dll
+ 2008-04-13 16:11:45	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.cht.dll
+ 2008-04-13 16:11:45	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.dll
+ 2008-04-13 16:11:45	147,456	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.es.dll
+ 2008-04-13 16:11:45	151,552	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.fr.dll
+ 2008-04-13 16:11:45	151,552	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.ger.dll
+ 2008-04-13 16:11:45	147,456	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.it.dll
+ 2008-04-13 16:11:45	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.ja.dll
+ 2008-04-13 16:11:45	126,976	------w	C:\WINDOWS\ServicePackFiles\i386\vbc7ui.kor.dll
+ 2008-04-14 02:22:31	434,176	------w	C:\WINDOWS\ServicePackFiles\i386\vbscript.dll
+ 2008-04-14 02:22:31	11,325	------w	C:\WINDOWS\ServicePackFiles\i386\vchnt5.dll
+ 2008-04-14 02:22:31	26,112	------w	C:\WINDOWS\ServicePackFiles\i386\vdmdbg.dll
+ 2008-04-14 02:22:31	51,712	------w	C:\WINDOWS\ServicePackFiles\i386\vdmredir.dll
+ 2008-04-14 02:23:04	28,672	------w	C:\WINDOWS\ServicePackFiles\i386\verclsid.exe
+ 2008-04-14 02:22:31	26,624	------w	C:\WINDOWS\ServicePackFiles\i386\verifier.dll
+ 2008-04-14 02:22:31	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\version.dll
+ 2008-04-14 02:22:31	54,272	------w	C:\WINDOWS\ServicePackFiles\i386\vfwwdm32.dll
+ 2008-04-13 18:44:40	20,992	------w	C:\WINDOWS\ServicePackFiles\i386\vga.sys
+ 2008-04-14 02:22:31	851,968	------w	C:\WINDOWS\ServicePackFiles\i386\vgx.dll
+ 2008-04-13 18:36:40	42,240	------w	C:\WINDOWS\ServicePackFiles\i386\viaagp.sys
+ 2008-04-13 18:40:31	5,376	------w	C:\WINDOWS\ServicePackFiles\i386\viaide.sys
+ 2008-04-13 18:44:40	81,664	------w	C:\WINDOWS\ServicePackFiles\i386\videoprt.sys
+ 2008-04-14 02:22:31	131,584	------w	C:\WINDOWS\ServicePackFiles\i386\viewprov.dll
+ 2008-04-14 01:52:02	53,760	------w	C:\WINDOWS\ServicePackFiles\i386\volsnap.sys
+ 2008-04-13 16:11:47	999,424	------w	C:\WINDOWS\ServicePackFiles\i386\vsavb7rt.dll
+ 2008-04-14 02:22:31	430,592	------w	C:\WINDOWS\ServicePackFiles\i386\vssapi.dll
+ 2008-04-14 02:23:04	292,864	------w	C:\WINDOWS\ServicePackFiles\i386\vssvc.exe
+ 2008-04-14 02:22:31	177,152	------w	C:\WINDOWS\ServicePackFiles\i386\w32time.dll
+ 2008-04-14 02:22:31	15,872	------w	C:\WINDOWS\ServicePackFiles\i386\w3ssl.dll
+ 2008-04-14 02:22:31	363,008	------w	C:\WINDOWS\ServicePackFiles\i386\w3svc.dll
+ 2008-04-14 02:22:32	494,592	------w	C:\WINDOWS\ServicePackFiles\i386\w95upgnt.dll

LG

Fako · 13.10.2008, 17:12

Code:

ATTFilter

+ 2008-04-14 02:23:04	46,080	------w	C:\WINDOWS\ServicePackFiles\i386\wab.exe
+ 2008-04-14 02:22:32	510,976	------w	C:\WINDOWS\ServicePackFiles\i386\wab32.dll
+ 2008-04-14 01:52:16	259,072	------w	C:\WINDOWS\ServicePackFiles\i386\wab32res.dll
+ 2008-04-14 02:22:32	32,768	------w	C:\WINDOWS\ServicePackFiles\i386\wabfind.dll
+ 2008-04-14 02:22:32	85,504	------w	C:\WINDOWS\ServicePackFiles\i386\wabimp.dll
+ 2008-04-14 02:23:04	30,208	------w	C:\WINDOWS\ServicePackFiles\i386\wabmig.exe
+ 2008-04-13 18:43:55	14,208	------w	C:\WINDOWS\ServicePackFiles\i386\wacompen.sys
+ 2004-08-03 20:29:38	12,415	------w	C:\WINDOWS\ServicePackFiles\i386\wadv01nt.sys
+ 2004-08-03 20:29:38	12,127	------w	C:\WINDOWS\ServicePackFiles\i386\wadv02nt.sys
+ 2004-08-03 20:29:38	11,775	------w	C:\WINDOWS\ServicePackFiles\i386\wadv05nt.sys
+ 2004-08-03 20:29:40	11,807	------w	C:\WINDOWS\ServicePackFiles\i386\wadv07nt.sys
+ 2004-08-03 20:29:40	11,295	------w	C:\WINDOWS\ServicePackFiles\i386\wadv08nt.sys
+ 2004-08-03 20:29:42	11,871	------w	C:\WINDOWS\ServicePackFiles\i386\wadv09nt.sys
+ 2004-08-03 20:29:42	11,935	------w	C:\WINDOWS\ServicePackFiles\i386\wadv11nt.sys
+ 2008-04-14 02:22:32	76,288	------w	C:\WINDOWS\ServicePackFiles\i386\wam51.dll
+ 2008-04-14 02:22:32	53,248	------w	C:\WINDOWS\ServicePackFiles\i386\wamreg51.dll
+ 2008-04-13 18:57:21	34,560	------w	C:\WINDOWS\ServicePackFiles\i386\wanarp.sys
+ 2008-04-13 18:44:59	17,664	------w	C:\WINDOWS\ServicePackFiles\i386\watchdog.sys
+ 2004-08-03 20:29:42	29,311	------w	C:\WINDOWS\ServicePackFiles\i386\watv01nt.sys
+ 2004-08-03 20:29:44	19,551	------w	C:\WINDOWS\ServicePackFiles\i386\watv02nt.sys
+ 2004-08-03 20:29:44	33,599	------w	C:\WINDOWS\ServicePackFiles\i386\watv04nt.sys
+ 2004-08-03 20:29:46	22,271	------w	C:\WINDOWS\ServicePackFiles\i386\watv06nt.sys
+ 2004-08-03 20:29:46	25,471	------w	C:\WINDOWS\ServicePackFiles\i386\watv10nt.sys
+ 2008-04-14 02:22:32	215,552	------w	C:\WINDOWS\ServicePackFiles\i386\wavemsp.dll
+ 2008-04-14 02:22:32	201,216	------w	C:\WINDOWS\ServicePackFiles\i386\wbemcntl.dll
+ 2008-04-14 02:22:32	214,528	------w	C:\WINDOWS\ServicePackFiles\i386\wbemcomn.dll
+ 2008-04-14 02:22:32	71,680	------w	C:\WINDOWS\ServicePackFiles\i386\wbemcons.dll
+ 2008-04-14 02:22:32	531,456	------w	C:\WINDOWS\ServicePackFiles\i386\wbemcore.dll
+ 2008-04-14 02:22:32	178,176	------w	C:\WINDOWS\ServicePackFiles\i386\wbemdisp.dll
+ 2008-04-14 02:22:32	273,920	------w	C:\WINDOWS\ServicePackFiles\i386\wbemess.dll
+ 2008-04-14 02:22:32	44,544	------w	C:\WINDOWS\ServicePackFiles\i386\wbemperf.dll
+ 2008-04-14 02:22:32	18,944	------w	C:\WINDOWS\ServicePackFiles\i386\wbemprox.dll
+ 2008-04-14 02:22:32	43,520	------w	C:\WINDOWS\ServicePackFiles\i386\wbemsvc.dll
+ 2008-04-14 02:23:04	120,320	------w	C:\WINDOWS\ServicePackFiles\i386\wbemtest.exe
+ 2008-04-14 02:22:32	197,120	------w	C:\WINDOWS\ServicePackFiles\i386\wbemupgd.dll
+ 2008-04-14 01:52:40	32,000	------w	C:\WINDOWS\ServicePackFiles\i386\wceusbsh.sys
+ 2004-08-03 20:29:46	23,615	------w	C:\WINDOWS\ServicePackFiles\i386\wch7xxnt.sys
+ 2008-04-14 02:22:32	49,152	------w	C:\WINDOWS\ServicePackFiles\i386\wdigest.dll
+ 2008-04-14 02:23:08	23,552	------w	C:\WINDOWS\ServicePackFiles\i386\wdmaud.drv
+ 2008-04-13 19:17:18	83,072	------w	C:\WINDOWS\ServicePackFiles\i386\wdmaud.sys
+ 2008-04-14 02:22:32	281,088	------w	C:\WINDOWS\ServicePackFiles\i386\webcheck.dll
+ 2008-04-14 02:22:32	68,096	------w	C:\WINDOWS\ServicePackFiles\i386\webclnt.dll
+ 2008-04-14 02:22:32	136,192	------w	C:\WINDOWS\ServicePackFiles\i386\webvw.dll
+ 2008-04-14 02:23:04	67,072	------w	C:\WINDOWS\ServicePackFiles\i386\wextract.exe
+ 2008-04-14 02:23:05	437,760	------w	C:\WINDOWS\ServicePackFiles\i386\wiaacmgr.exe
+ 2008-04-14 02:22:32	464,384	------w	C:\WINDOWS\ServicePackFiles\i386\wiadefui.dll
+ 2008-04-14 02:22:32	124,928	------w	C:\WINDOWS\ServicePackFiles\i386\wiadss.dll
+ 2008-04-14 02:22:32	75,776	------w	C:\WINDOWS\ServicePackFiles\i386\wiascr.dll
+ 2008-04-14 02:22:32	334,336	------w	C:\WINDOWS\ServicePackFiles\i386\wiaservc.dll
+ 2008-04-14 02:22:32	592,896	------w	C:\WINDOWS\ServicePackFiles\i386\wiashext.dll
+ 2008-04-14 02:22:32	111,104	------w	C:\WINDOWS\ServicePackFiles\i386\wiavideo.dll
+ 2008-04-14 02:22:32	712,704	------w	C:\WINDOWS\ServicePackFiles\i386\wic.dll
+ 2008-04-14 02:22:32	346,112	------w	C:\WINDOWS\ServicePackFiles\i386\wicext.dll
+ 2008-04-14 01:53:16	1,845,760	------w	C:\WINDOWS\ServicePackFiles\i386\win32k.sys
+ 2008-04-14 02:22:32	102,400	------w	C:\WINDOWS\ServicePackFiles\i386\win32spl.dll
+ 2008-04-13 16:48:53	1,647,616	------w	C:\WINDOWS\ServicePackFiles\i386\winbrand.dll
+ 2008-04-14 02:23:05	288,768	------w	C:\WINDOWS\ServicePackFiles\i386\winhlp32.exe
+ 2008-04-14 02:22:32	354,304	------w	C:\WINDOWS\ServicePackFiles\i386\winhttp.dll
+ 2008-04-14 02:22:32	671,744	------w	C:\WINDOWS\ServicePackFiles\i386\wininet.dll
+ 2008-04-14 02:22:32	32,256	------w	C:\WINDOWS\ServicePackFiles\i386\winipsec.dll
+ 2008-04-14 02:23:05	513,024	------w	C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
+ 2008-04-14 02:22:32	178,176	------w	C:\WINDOWS\ServicePackFiles\i386\winmm.dll
+ 2006-02-28 12:00:00	5,120	------w	C:\WINDOWS\ServicePackFiles\i386\winnls.dll
+ 2008-04-14 02:21:43	762,368	------w	C:\WINDOWS\ServicePackFiles\i386\winntbbu.dll
+ 2008-04-14 02:22:32	16,896	------w	C:\WINDOWS\ServicePackFiles\i386\winrnr.dll
+ 2008-04-14 02:22:32	100,352	------w	C:\WINDOWS\ServicePackFiles\i386\winscard.dll
+ 2008-04-14 02:22:32	17,408	------w	C:\WINDOWS\ServicePackFiles\i386\winshfhc.dll
+ 2008-04-14 02:23:08	146,944	------w	C:\WINDOWS\ServicePackFiles\i386\winspool.drv
+ 2008-04-14 02:22:32	293,888	------w	C:\WINDOWS\ServicePackFiles\i386\winsrv.dll
+ 2008-04-14 02:22:32	53,760	------w	C:\WINDOWS\ServicePackFiles\i386\winsta.dll
+ 2008-04-14 02:22:32	176,640	------w	C:\WINDOWS\ServicePackFiles\i386\wintrust.dll
+ 2008-04-14 02:23:05	5,632	------w	C:\WINDOWS\ServicePackFiles\i386\winver.exe
+ 2008-04-14 02:22:32	132,096	------w	C:\WINDOWS\ServicePackFiles\i386\wkssvc.dll
+ 2008-04-14 02:22:32	69,120	------w	C:\WINDOWS\ServicePackFiles\i386\wlanapi.dll
+ 2008-04-14 02:22:32	173,056	------w	C:\WINDOWS\ServicePackFiles\i386\wldap32.dll
+ 2004-08-03 20:31:28	154,624	------w	C:\WINDOWS\ServicePackFiles\i386\wlluc48.sys
+ 2008-04-14 02:22:32	93,696	------w	C:\WINDOWS\ServicePackFiles\i386\wlnotify.dll
+ 2008-04-14 02:21:45	5,632	------w	C:\WINDOWS\ServicePackFiles\i386\wmi.dll
+ 2008-04-13 18:36:38	8,832	------w	C:\WINDOWS\ServicePackFiles\i386\wmiacpi.sys
+ 2008-04-14 02:23:06	196,608	------w	C:\WINDOWS\ServicePackFiles\i386\wmiadap.exe
+ 2008-04-14 01:54:35	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\wmiapres.dll
+ 2008-04-14 02:22:32	88,576	------w	C:\WINDOWS\ServicePackFiles\i386\wmiaprpl.dll
+ 2008-04-14 02:23:06	126,464	------w	C:\WINDOWS\ServicePackFiles\i386\wmiapsrv.exe
+ 2008-04-14 02:23:06	370,176	------w	C:\WINDOWS\ServicePackFiles\i386\wmic.exe
+ 2008-04-14 02:22:32	60,928	------w	C:\WINDOWS\ServicePackFiles\i386\wmicookr.dll
+ 2008-04-14 02:22:32	140,800	------w	C:\WINDOWS\ServicePackFiles\i386\wmidcprv.dll
+ 2008-04-14 02:22:32	156,672	------w	C:\WINDOWS\ServicePackFiles\i386\wmipcima.dll
+ 2008-04-14 02:22:32	132,096	------w	C:\WINDOWS\ServicePackFiles\i386\wmipdskq.dll
+ 2008-04-14 02:22:32	61,952	------w	C:\WINDOWS\ServicePackFiles\i386\wmipiprt.dll
+ 2008-04-14 02:22:32	62,464	------w	C:\WINDOWS\ServicePackFiles\i386\wmipjobj.dll
+ 2008-04-14 02:22:32	144,896	------w	C:\WINDOWS\ServicePackFiles\i386\wmiprov.dll
+ 2008-04-14 02:22:32	437,248	------w	C:\WINDOWS\ServicePackFiles\i386\wmiprvsd.dll
+ 2008-04-14 02:23:06	218,112	------w	C:\WINDOWS\ServicePackFiles\i386\wmiprvse.exe
+ 2008-04-14 02:22:32	41,472	------w	C:\WINDOWS\ServicePackFiles\i386\wmipsess.dll
+ 2008-04-14 02:22:32	145,408	------w	C:\WINDOWS\ServicePackFiles\i386\wmisvc.dll
+ 2008-04-14 02:22:32	99,840	------w	C:\WINDOWS\ServicePackFiles\i386\wmiutils.dll
+ 2008-04-14 02:22:32	167,936	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2ae.dll
+ 2008-04-14 02:22:32	4,096	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2eres.dll
+ 2008-04-14 02:22:32	7,680	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2ext.dll
+ 2008-04-14 02:22:32	402,432	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2filt.dll
+ 2008-04-14 02:22:32	502,272	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2fxa.dll
+ 2008-04-14 02:22:32	325,632	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2fxb.dll
+ 2008-04-14 02:22:32	4,293,632	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2res.dll
+ 2008-04-14 02:22:32	6,144	------w	C:\WINDOWS\ServicePackFiles\i386\wmm2res2.dll
+ 2008-04-14 02:22:32	276,992	------w	C:\WINDOWS\ServicePackFiles\i386\wmphoto.dll
+ 2008-04-14 02:23:06	216,064	------w	C:\WINDOWS\ServicePackFiles\i386\wordpad.exe
+ 2008-04-14 02:22:32	264,704	------w	C:\WINDOWS\ServicePackFiles\i386\wow32.dll
+ 2008-04-14 02:23:06	32,256	------w	C:\WINDOWS\ServicePackFiles\i386\wpabaln.exe
+ 2008-04-14 02:23:06	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\wpnpinst.exe
+ 2008-04-14 02:22:32	82,432	------w	C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
+ 2008-04-14 02:22:32	19,968	------w	C:\WINDOWS\ServicePackFiles\i386\ws2help.dll
+ 2008-04-14 02:23:06	13,824	------w	C:\WINDOWS\ServicePackFiles\i386\wscntfy.exe
+ 2008-04-14 02:23:06	155,648	------w	C:\WINDOWS\ServicePackFiles\i386\wscript.exe
+ 2008-04-14 02:22:32	80,896	------w	C:\WINDOWS\ServicePackFiles\i386\wscsvc.dll
+ 2008-04-14 02:22:32	617,472	------w	C:\WINDOWS\ServicePackFiles\i386\wsecedit.dll
+ 2008-04-14 02:22:32	108,032	------w	C:\WINDOWS\ServicePackFiles\i386\wshbth.dll
+ 2008-04-14 02:22:32	36,864	------w	C:\WINDOWS\ServicePackFiles\i386\wshcon.dll
+ 2008-04-14 02:22:32	90,112	------w	C:\WINDOWS\ServicePackFiles\i386\wshext.dll
+ 2008-04-14 02:22:32	14,336	------w	C:\WINDOWS\ServicePackFiles\i386\wship6.dll
+ 2008-04-14 02:22:32	8,192	------w	C:\WINDOWS\ServicePackFiles\i386\wshirda.dll
+ 2008-04-14 02:22:32	11,264	------w	C:\WINDOWS\ServicePackFiles\i386\wshrm.dll
+ 2008-04-14 02:22:32	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\wshtcpip.dll
+ 2004-08-03 20:29:48	12,063	------w	C:\WINDOWS\ServicePackFiles\i386\wsiintxx.sys
+ 2008-04-14 02:22:32	41,984	------w	C:\WINDOWS\ServicePackFiles\i386\wsnmp32.dll
+ 2008-04-14 02:22:32	24,576	------w	C:\WINDOWS\ServicePackFiles\i386\wsock32.dll
+ 2008-04-13 18:46:24	19,200	------w	C:\WINDOWS\ServicePackFiles\i386\wstcodec.sys
+ 2008-04-14 02:22:32	51,200	------w	C:\WINDOWS\ServicePackFiles\i386\wstdecod.dll
+ 2008-04-14 02:22:32	18,432	------w	C:\WINDOWS\ServicePackFiles\i386\wtsapi32.dll
+ 2008-04-14 02:22:33	431,616	------w	C:\WINDOWS\ServicePackFiles\i386\wuapi.dll
+ 2008-04-14 02:23:06	111,616	------w	C:\WINDOWS\ServicePackFiles\i386\wuauclt.exe
+ 2008-04-14 02:23:06	168,448	------w	C:\WINDOWS\ServicePackFiles\i386\wuauclt1.exe
+ 2008-04-14 02:22:33	1,135,616	------w	C:\WINDOWS\ServicePackFiles\i386\wuaueng.dll
+ 2008-04-14 02:22:33	183,808	------w	C:\WINDOWS\ServicePackFiles\i386\wuaueng1.dll
+ 2008-04-14 02:22:33	6,656	------w	C:\WINDOWS\ServicePackFiles\i386\wuauserv.dll
+ 2008-04-14 02:22:33	113,664	------w	C:\WINDOWS\ServicePackFiles\i386\wucltui.dll
+ 2008-04-14 02:22:33	32,256	------w	C:\WINDOWS\ServicePackFiles\i386\wups.dll
+ 2008-04-14 02:22:33	120,320	------w	C:\WINDOWS\ServicePackFiles\i386\wuweb.dll
+ 2004-08-03 20:29:50	19,455	------w	C:\WINDOWS\ServicePackFiles\i386\wvchntxx.sys
+ 2008-04-14 02:22:33	384,512	------w	C:\WINDOWS\ServicePackFiles\i386\wzcdlg.dll
+ 2008-04-14 02:22:33	52,736	------w	C:\WINDOWS\ServicePackFiles\i386\wzcsapi.dll
+ 2008-04-14 02:22:33	483,840	------w	C:\WINDOWS\ServicePackFiles\i386\wzcsvc.dll
+ 2008-04-14 02:22:33	91,648	------w	C:\WINDOWS\ServicePackFiles\i386\xactsrv.dll
+ 2008-04-14 02:23:07	30,720	------w	C:\WINDOWS\ServicePackFiles\i386\xcopy.exe
+ 2006-02-28 12:00:00	176,248	------w	C:\WINDOWS\ServicePackFiles\i386\xenroll.dll
+ 2008-04-14 02:22:33	121,856	------w	C:\WINDOWS\ServicePackFiles\i386\xmllite.dll
+ 2008-04-14 02:22:33	129,024	------w	C:\WINDOWS\ServicePackFiles\i386\xmlprov.dll
+ 2008-04-14 02:22:33	50,176	------w	C:\WINDOWS\ServicePackFiles\i386\xmlprovi.dll
+ 2008-04-14 02:22:33	11,776	------w	C:\WINDOWS\ServicePackFiles\i386\xolehlp.dll
+ 2008-04-13 18:53:32	558,080	------w	C:\WINDOWS\ServicePackFiles\i386\xpnetdg.exe
+ 2008-04-14 02:22:33	19,456	------w	C:\WINDOWS\ServicePackFiles\i386\xrxscnui.dll
+ 2008-04-14 02:22:33	116,736	------w	C:\WINDOWS\ServicePackFiles\i386\xrxwiadr.dll
+ 2008-04-14 02:22:33	341,504	------w	C:\WINDOWS\ServicePackFiles\i386\zipfldr.dll
+ 2008-04-14 02:22:08	33,792	------w	C:\WINDOWS\ServicePackFiles\ServicePackCache\i386\custsat.dll
+ 2008-04-14 02:22:16	82,944	------w	C:\WINDOWS\ServicePackFiles\ServicePackCache\i386\msgsc.dll
+ 2008-04-13 17:30:28	180,224	------w	C:\WINDOWS\ServicePackFiles\ServicePackCache\i386\msgslang.dll
+ 2008-04-14 02:22:54	1,695,232	------w	C:\WINDOWS\ServicePackFiles\ServicePackCache\i386\msmsgs.exe
+ 2008-04-14 02:23:01	32,866	------w	C:\WINDOWS\slrundll.exe
- 2006-02-28 12:00:00	3,166,208	----a-w	C:\WINDOWS\srchasst\msgr3en.dll
+ 2008-04-14 02:22:16	3,166,208	----a-w	C:\WINDOWS\srchasst\msgr3en.dll
- 2006-02-28 12:00:00	58,434	----a-w	C:\WINDOWS\srchasst\srchctls.dll
+ 2008-04-14 02:22:30	58,434	----a-w	C:\WINDOWS\srchasst\srchctls.dll
- 2006-02-28 12:00:00	727,102	----a-w	C:\WINDOWS\srchasst\srchui.dll
+ 2008-04-14 02:22:30	727,614	----a-w	C:\WINDOWS\srchasst\srchui.dll
- 2006-02-28 12:00:00	146,944	----a-w	C:\WINDOWS\system\WINSPOOL.DRV
+ 2008-04-14 02:23:08	146,944	----a-w	C:\WINDOWS\system\winspool.drv
- 2006-08-16 11:58:06	100,352	----a-w	C:\WINDOWS\system32\6to4svc.dll
+ 2008-04-14 02:22:06	100,352	----a-w	C:\WINDOWS\system32\6to4svc.dll
+ 2008-04-14 02:22:06	136,192	------w	C:\WINDOWS\system32\aaclient.dll
- 2006-02-28 12:00:00	188,416	----a-w	C:\WINDOWS\system32\accwiz.exe
+ 2008-04-14 02:22:34	188,928	----a-w	C:\WINDOWS\system32\accwiz.exe
- 2006-02-28 12:00:00	120,320	----a-w	C:\WINDOWS\system32\aclui.dll
+ 2008-04-14 02:22:06	121,344	----a-w	C:\WINDOWS\system32\aclui.dll
- 2006-02-28 12:00:00	194,560	----a-w	C:\WINDOWS\system32\activeds.dll
+ 2008-04-14 02:22:06	193,536	----a-w	C:\WINDOWS\system32\activeds.dll
- 2006-02-28 12:00:00	4,096	----a-w	C:\WINDOWS\system32\actmovie.exe
+ 2008-04-14 02:22:34	4,096	----a-w	C:\WINDOWS\system32\actmovie.exe
- 2006-02-28 12:00:00	101,888	----a-w	C:\WINDOWS\system32\actxprxy.dll
+ 2008-04-14 02:22:06	98,304	----a-w	C:\WINDOWS\system32\actxprxy.dll
- 2006-02-28 12:00:00	175,616	----a-w	C:\WINDOWS\system32\adsldp.dll
+ 2008-04-14 02:22:06	175,616	----a-w	C:\WINDOWS\system32\adsldp.dll
- 2006-02-28 12:00:00	143,360	----a-w	C:\WINDOWS\system32\adsldpc.dll
+ 2008-04-14 02:22:06	143,360	----a-w	C:\WINDOWS\system32\adsldpc.dll
- 2006-02-28 12:00:00	68,096	----a-w	C:\WINDOWS\system32\adsmsext.dll
+ 2008-04-14 02:22:06	68,096	----a-w	C:\WINDOWS\system32\adsmsext.dll
- 2006-02-28 12:00:00	263,680	----a-w	C:\WINDOWS\system32\adsnt.dll
+ 2008-04-14 02:22:06	263,680	----a-w	C:\WINDOWS\system32\adsnt.dll
- 2006-02-28 12:00:00	109,568	----a-w	C:\WINDOWS\system32\adsnw.dll
+ 2008-04-14 02:22:06	123,392	----a-w	C:\WINDOWS\system32\adsnw.dll
- 2006-02-28 12:00:00	677,888	----a-w	C:\WINDOWS\system32\advapi32.dll
+ 2008-04-14 02:22:07	678,400	----a-w	C:\WINDOWS\system32\advapi32.dll
- 2006-02-28 12:00:00	98,304	----a-w	C:\WINDOWS\system32\ahui.exe
+ 2008-04-14 02:22:34	98,304	----a-w	C:\WINDOWS\system32\ahui.exe
- 2006-02-28 12:00:00	44,544	----a-w	C:\WINDOWS\system32\alg.exe
+ 2008-04-14 02:22:34	44,544	----a-w	C:\WINDOWS\system32\alg.exe
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\alrsvc.dll
+ 2008-04-14 02:22:07	17,408	----a-w	C:\WINDOWS\system32\alrsvc.dll
- 2006-02-28 12:00:00	70,656	----a-w	C:\WINDOWS\system32\amstream.dll
+ 2008-04-14 02:22:07	70,656	----a-w	C:\WINDOWS\system32\amstream.dll
- 2006-02-28 12:00:00	126,976	----a-w	C:\WINDOWS\system32\apphelp.dll
+ 2008-04-14 02:22:07	125,952	----a-w	C:\WINDOWS\system32\apphelp.dll
- 2006-02-28 12:00:00	175,616	----a-w	C:\WINDOWS\system32\appmgmts.dll
+ 2008-04-14 02:22:07	175,616	----a-w	C:\WINDOWS\system32\appmgmts.dll
- 2006-02-28 12:00:00	301,568	----a-w	C:\WINDOWS\system32\appmgr.dll
+ 2008-04-14 02:22:07	301,568	----a-w	C:\WINDOWS\system32\appmgr.dll
- 2006-02-28 12:00:00	9,216	----a-w	C:\WINDOWS\system32\asferror.dll
+ 2008-04-14 01:50:30	9,216	----a-w	C:\WINDOWS\system32\asferror.dll
- 2006-02-28 12:00:00	30,208	----a-w	C:\WINDOWS\system32\asr_fmt.exe
+ 2008-04-14 02:22:34	30,208	----a-w	C:\WINDOWS\system32\asr_fmt.exe
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\asr_pfu.exe
+ 2008-04-14 02:22:34	32,768	----a-w	C:\WINDOWS\system32\asr_pfu.exe
- 2006-02-28 12:00:00	65,024	----a-w	C:\WINDOWS\system32\asycfilt.dll
+ 2008-04-14 02:22:07	65,024	----a-w	C:\WINDOWS\system32\asycfilt.dll
- 2006-02-28 12:00:00	25,600	----a-w	C:\WINDOWS\system32\at.exe
+ 2008-04-14 02:22:34	25,600	----a-w	C:\WINDOWS\system32\at.exe
+ 2008-04-14 02:22:07	229,376	------w	C:\WINDOWS\system32\ati2cqag.dll
+ 2008-04-14 02:22:07	377,984	------w	C:\WINDOWS\system32\ati2dvaa.dll
+ 2008-04-14 02:22:07	201,728	------w	C:\WINDOWS\system32\ati2dvag.dll
+ 2008-04-14 02:22:07	870,784	------w	C:\WINDOWS\system32\ati3d1ag.dll
+ 2008-04-14 02:22:07	1,888,992	------w	C:\WINDOWS\system32\ati3duag.dll
+ 2008-04-14 02:22:07	32,768	------w	C:\WINDOWS\system32\ativtmxx.dll
+ 2008-04-14 02:22:07	516,768	------w	C:\WINDOWS\system32\ativvaxx.dll
- 2006-02-28 12:00:00	58,880	----a-w	C:\WINDOWS\system32\atl.dll
+ 2008-04-14 02:22:07	58,880	----a-w	C:\WINDOWS\system32\atl.dll
- 2006-02-28 12:00:00	11,264	----a-w	C:\WINDOWS\system32\atmadm.exe
+ 2008-04-14 02:22:34	11,264	----a-w	C:\WINDOWS\system32\atmadm.exe
- 2006-02-28 12:00:00	285,696	----a-w	C:\WINDOWS\system32\atmfd.dll
+ 2008-04-14 02:20:15	285,696	----a-w	C:\WINDOWS\system32\atmfd.dll
- 2006-02-28 12:00:00	30,208	----a-w	C:\WINDOWS\system32\atmlib.dll
+ 2008-04-14 02:22:07	30,208	----a-w	C:\WINDOWS\system32\atmlib.dll
- 2006-02-28 12:00:00	11,264	----a-w	C:\WINDOWS\system32\attrib.exe
+ 2008-04-14 02:22:34	12,288	----a-w	C:\WINDOWS\system32\attrib.exe
- 2006-02-28 12:00:00	42,496	----a-w	C:\WINDOWS\system32\audiosrv.dll
+ 2008-04-14 02:22:07	42,496	----a-w	C:\WINDOWS\system32\audiosrv.dll
- 2006-02-28 12:00:00	14,336	----a-w	C:\WINDOWS\system32\auditusr.exe
+ 2008-04-14 02:22:35	14,336	----a-w	C:\WINDOWS\system32\auditusr.exe
- 2005-03-02 18:09:46	56,832	----a-w	C:\WINDOWS\system32\authz.dll
+ 2008-04-14 02:22:07	62,464	----a-w	C:\WINDOWS\system32\authz.dll
- 2006-02-28 12:00:00	626,176	----a-w	C:\WINDOWS\system32\autochk.exe
+ 2008-04-14 02:22:35	626,176	----a-w	C:\WINDOWS\system32\autochk.exe
- 2006-02-28 12:00:00	640,000	----a-w	C:\WINDOWS\system32\autoconv.exe
+ 2008-04-14 02:22:35	640,000	----a-w	C:\WINDOWS\system32\autoconv.exe
- 2006-02-28 12:00:00	617,984	----a-w	C:\WINDOWS\system32\autofmt.exe
+ 2008-04-14 02:22:35	617,984	----a-w	C:\WINDOWS\system32\autofmt.exe
- 2006-02-28 12:00:00	11,264	----a-w	C:\WINDOWS\system32\autolfn.exe
+ 2008-04-14 02:22:35	11,264	----a-w	C:\WINDOWS\system32\autolfn.exe
- 2006-02-28 12:00:00	85,504	----a-w	C:\WINDOWS\system32\avifil32.dll
+ 2008-04-14 02:22:07	85,504	----a-w	C:\WINDOWS\system32\avifil32.dll
+ 2008-04-14 02:22:07	233,472	------w	C:\WINDOWS\system32\azroles.dll
- 2006-02-28 12:00:00	52,736	----a-w	C:\WINDOWS\system32\basesrv.dll
+ 2008-04-14 02:22:07	52,736	----a-w	C:\WINDOWS\system32\basesrv.dll
- 2006-02-28 12:00:00	28,672	----a-w	C:\WINDOWS\system32\batmeter.dll
+ 2008-04-14 02:22:07	29,184	----a-w	C:\WINDOWS\system32\batmeter.dll
- 2006-02-28 12:00:00	8,704	----a-w	C:\WINDOWS\system32\batt.dll
+ 2008-04-14 02:22:07	8,704	----a-w	C:\WINDOWS\system32\batt.dll
- 2006-02-28 12:00:00	17,408	----a-w	C:\WINDOWS\system32\bidispl.dll
+ 2008-04-14 02:22:07	17,408	----a-w	C:\WINDOWS\system32\bidispl.dll
+ 2008-04-14 02:22:23	409,088	------w	C:\WINDOWS\system32\bits\qmgr.dll
- 2006-02-28 12:00:00	8,192	----a-w	C:\WINDOWS\system32\bitsprx2.dll
+ 2008-04-14 02:22:07	8,192	----a-w	C:\WINDOWS\system32\bitsprx2.dll
- 2006-02-28 12:00:00	7,168	----a-w	C:\WINDOWS\system32\bitsprx3.dll
+ 2008-04-14 02:22:07	7,168	----a-w	C:\WINDOWS\system32\bitsprx3.dll
+ 2008-04-14 02:22:07	7,168	------w	C:\WINDOWS\system32\bitsprx4.dll
- 2006-02-28 12:00:00	71,680	----a-w	C:\WINDOWS\system32\blastcln.exe
+ 2008-04-14 02:22:36	71,680	----a-w	C:\WINDOWS\system32\blastcln.exe
- 2006-02-28 12:00:00	147,456	----a-w	C:\WINDOWS\system32\bootcfg.exe
+ 2008-04-14 02:22:36	153,600	----a-w	C:\WINDOWS\system32\bootcfg.exe
- 2006-02-28 12:00:00	68,096	----a-w	C:\WINDOWS\system32\browselc.dll
+ 2008-04-14 01:52:35	68,096	----a-w	C:\WINDOWS\system32\browselc.dll
- 2006-02-28 12:00:00	77,312	----a-w	C:\WINDOWS\system32\browser.dll
+ 2008-04-14 02:22:07	77,824	----a-w	C:\WINDOWS\system32\browser.dll
- 2008-02-16 09:30:52	1,024,000	----a-w	C:\WINDOWS\system32\browseui.dll
+ 2008-04-14 02:22:07	1,025,024	----a-w	C:\WINDOWS\system32\browseui.dll
- 2006-02-28 12:00:00	78,336	----a-w	C:\WINDOWS\system32\browsewm.dll
+ 2008-04-14 02:22:07	78,336	----a-w	C:\WINDOWS\system32\browsewm.dll
- 2006-02-28 12:00:00	20,992	----a-w	C:\WINDOWS\system32\bthci.dll
+ 2008-04-14 02:22:07	20,992	----a-w	C:\WINDOWS\system32\bthci.dll
- 2006-02-28 12:00:00	30,208	----a-w	C:\WINDOWS\system32\bthserv.dll
+ 2008-04-14 02:22:07	30,208	----a-w	C:\WINDOWS\system32\bthserv.dll
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\system32\btpanui.dll
+ 2008-04-14 02:22:07	50,688	----a-w	C:\WINDOWS\system32\btpanui.dll

Fako · 13.10.2008, 17:13

Code:

ATTFilter

- 2006-02-28 12:00:00	59,904	----a-w	C:\WINDOWS\system32\cabinet.dll
+ 2008-04-14 02:22:07	60,416	----a-w	C:\WINDOWS\system32\cabinet.dll
- 2006-02-28 12:00:00	84,992	----a-w	C:\WINDOWS\system32\cabview.dll
+ 2008-04-14 02:22:07	84,992	----a-w	C:\WINDOWS\system32\cabview.dll
- 2006-02-28 12:00:00	18,944	----a-w	C:\WINDOWS\system32\cacls.exe
+ 2008-04-14 02:22:37	20,480	----a-w	C:\WINDOWS\system32\cacls.exe
- 2006-02-28 12:00:00	50,688	----a-w	C:\WINDOWS\system32\camocx.dll
+ 2008-04-14 02:22:07	50,688	----a-w	C:\WINDOWS\system32\camocx.dll
- 2006-02-28 12:00:00	146,432	----a-w	C:\WINDOWS\system32\capesnpn.dll
+ 2008-04-14 02:22:07	153,600	----a-w	C:\WINDOWS\system32\capesnpn.dll
- 2005-07-26 04:39:43	225,792	----a-w	C:\WINDOWS\system32\catsrv.dll
+ 2008-04-14 02:22:07	226,304	----a-w	C:\WINDOWS\system32\catsrv.dll
- 2006-02-28 12:00:00	85,504	----a-w	C:\WINDOWS\system32\catsrvps.dll
+ 2008-04-14 02:22:07	85,504	----a-w	C:\WINDOWS\system32\catsrvps.dll
- 2005-07-26 04:39:43	625,152	----a-w	C:\WINDOWS\system32\catsrvut.dll
+ 2008-04-14 02:22:07	625,664	----a-w	C:\WINDOWS\system32\catsrvut.dll
- 2008-02-16 09:30:52	152,064	----a-w	C:\WINDOWS\system32\cdfview.dll
+ 2008-04-14 02:22:07	152,064	----a-w	C:\WINDOWS\system32\cdfview.dll
- 2005-09-10 01:54:27	2,067,968	----a-w	C:\WINDOWS\system32\cdosys.dll
+ 2008-04-14 02:22:07	2,091,520	----a-w	C:\WINDOWS\system32\cdosys.dll
- 2006-02-28 12:00:00	198,144	----a-w	C:\WINDOWS\system32\certcli.dll
+ 2008-04-14 02:22:07	198,144	----a-w	C:\WINDOWS\system32\certcli.dll
- 2006-02-28 12:00:00	466,432	----a-w	C:\WINDOWS\system32\certmgr.dll
+ 2008-04-14 02:22:07	466,432	----a-w	C:\WINDOWS\system32\certmgr.dll
- 2006-02-28 12:00:00	39,424	----a-w	C:\WINDOWS\system32\cfgbkend.dll
+ 2008-04-14 02:22:07	39,424	----a-w	C:\WINDOWS\system32\cfgbkend.dll
- 2006-02-28 12:00:00	16,896	----a-w	C:\WINDOWS\system32\cfgmgr32.dll
+ 2008-04-14 02:20:17	16,896	----a-w	C:\WINDOWS\system32\cfgmgr32.dll
- 2006-02-28 12:00:00	109,568	----a-w	C:\WINDOWS\system32\cic.dll
+ 2008-04-14 02:22:07	148,480	----a-w	C:\WINDOWS\system32\cic.dll
- 2006-06-22 05:06:23	69,120	----a-w	C:\WINDOWS\system32\ciodm.dll
+ 2008-04-14 02:22:07	69,120	----a-w	C:\WINDOWS\system32\ciodm.dll
- 2006-02-28 12:00:00	58,368	----a-w	C:\WINDOWS\system32\cipher.exe
+ 2008-04-14 02:22:38	58,880	----a-w	C:\WINDOWS\system32\cipher.exe
- 2006-02-28 12:00:00	5,632	----a-w	C:\WINDOWS\system32\cisvc.exe
+ 2008-04-14 02:22:38	5,632	----a-w	C:\WINDOWS\system32\cisvc.exe
- 2005-07-26 04:39:43	110,080	----a-w	C:\WINDOWS\system32\clbcatex.dll
+ 2008-04-14 02:22:07	110,592	----a-w	C:\WINDOWS\system32\clbcatex.dll
- 2005-07-26 04:39:44	498,688	----a-w	C:\WINDOWS\system32\clbcatq.dll
+ 2008-04-14 02:22:07	498,688	----a-w	C:\WINDOWS\system32\clbcatq.dll
- 2006-02-28 12:00:00	66,048	----a-w	C:\WINDOWS\system32\cleanmgr.exe
+ 2008-04-14 02:22:38	65,536	----a-w	C:\WINDOWS\system32\cleanmgr.exe
- 2006-02-28 12:00:00	77,824	----a-w	C:\WINDOWS\system32\cliconfg.dll
+ 2008-04-14 02:22:07	77,824	----a-w	C:\WINDOWS\system32\cliconfg.dll
- 2006-02-28 12:00:00	20,480	----a-w	C:\WINDOWS\system32\cliconfg.exe
+ 2008-04-14 02:22:38	20,480	----a-w	C:\WINDOWS\system32\cliconfg.exe
- 2006-02-28 12:00:00	104,448	----a-w	C:\WINDOWS\system32\clipbrd.exe
+ 2008-04-14 02:22:38	104,448	----a-w	C:\WINDOWS\system32\clipbrd.exe
- 2006-02-28 12:00:00	33,280	----a-w	C:\WINDOWS\system32\clipsrv.exe
+ 2008-04-14 02:22:38	33,280	----a-w	C:\WINDOWS\system32\clipsrv.exe
- 2006-02-28 12:00:00	57,856	----a-w	C:\WINDOWS\system32\clusapi.dll
+ 2008-04-14 02:22:07	58,368	----a-w	C:\WINDOWS\system32\clusapi.dll
- 2006-02-28 12:00:00	15,872	----a-w	C:\WINDOWS\system32\cmcfg32.dll
+ 2008-04-14 02:22:07	15,872	----a-w	C:\WINDOWS\system32\cmcfg32.dll
- 2006-02-28 12:00:00	401,408	----a-w	C:\WINDOWS\system32\cmd.exe
+ 2008-04-14 02:22:38	401,920	----a-w	C:\WINDOWS\system32\cmd.exe
- 2006-02-28 12:00:00	353,792	----a-w	C:\WINDOWS\system32\cmdial32.dll
+ 2008-04-14 02:22:07	354,816	----a-w	C:\WINDOWS\system32\cmdial32.dll
- 2006-02-28 12:00:00	47,104	----a-w	C:\WINDOWS\system32\cmdl32.exe
+ 2008-04-14 02:22:38	25,600	----a-w	C:\WINDOWS\system32\cmdl32.exe
- 2006-02-28 12:00:00	40,960	----a-w	C:\WINDOWS\system32\cmmon32.exe
+ 2008-04-14 02:22:39	40,960	----a-w	C:\WINDOWS\system32\cmmon32.exe
- 2006-02-28 12:00:00	189,440	----a-w	C:\WINDOWS\system32\cmprops.dll
+ 2008-04-14 02:22:07	189,440	----a-w	C:\WINDOWS\system32\cmprops.dll
- 2006-02-28 12:00:00	13,824	----a-w	C:\WINDOWS\system32\cmsetACL.dll
+ 2008-04-14 02:22:07	13,312	----a-w	C:\WINDOWS\system32\cmsetacl.dll
- 2006-02-28 12:00:00	65,536	----a-w	C:\WINDOWS\system32\cmstp.exe
+ 2008-04-14 02:22:39	65,536	----a-w	C:\WINDOWS\system32\cmstp.exe
- 2006-02-28 12:00:00	40,960	----a-w	C:\WINDOWS\system32\cmutil.dll
+ 2008-04-14 02:22:07	40,960	----a-w	C:\WINDOWS\system32\cmutil.dll
- 2006-02-28 12:00:00	51,712	----a-w	C:\WINDOWS\system32\cnbjmon.dll
+ 2008-04-14 02:22:07	51,712	----a-w	C:\WINDOWS\system32\cnbjmon.dll
- 2005-07-26 04:39:44	60,416	----a-w	C:\WINDOWS\system32\colbact.dll
+ 2008-04-14 02:22:08	60,416	----a-w	C:\WINDOWS\system32\colbact.dll
- 2005-07-26 04:39:44	195,072	----a-w	C:\WINDOWS\system32\Com\comadmin.dll
+ 2008-04-14 02:22:08	195,072	----a-w	C:\WINDOWS\system32\Com\comadmin.dll
- 2006-02-28 12:00:00	9,728	----a-w	C:\WINDOWS\system32\Com\comrepl.exe
+ 2008-04-14 02:22:39	9,728	----a-w	C:\WINDOWS\system32\Com\comrepl.exe
- 2006-02-28 12:00:00	5,120	----a-w	C:\WINDOWS\system32\Com\comrereg.exe
+ 2008-04-14 02:22:39	6,144	----a-w	C:\WINDOWS\system32\Com\comrereg.exe
- 2006-02-28 12:00:00	25,600	----a-w	C:\WINDOWS\system32\comaddin.dll
+ 2008-04-14 02:22:08	28,160	----a-w	C:\WINDOWS\system32\comaddin.dll
- 2006-08-25 15:46:47	617,472	----a-w	C:\WINDOWS\system32\comctl32.dll
+ 2008-04-14 02:22:08	617,472	----a-w	C:\WINDOWS\system32\comctl32.dll
- 2006-02-28 12:00:00	281,088	----a-w	C:\WINDOWS\system32\comdlg32.dll
+ 2008-04-14 02:22:08	281,600	----a-w	C:\WINDOWS\system32\comdlg32.dll
- 2006-02-28 12:00:00	253,440	----a-w	C:\WINDOWS\system32\compatUI.dll
+ 2008-04-14 02:22:08	253,440	----a-w	C:\WINDOWS\system32\compatui.dll
- 2006-02-28 12:00:00	230,912	----a-w	C:\WINDOWS\system32\compstui.dll
+ 2008-04-14 02:22:08	230,912	----a-w	C:\WINDOWS\system32\compstui.dll
- 2005-07-26 04:39:44	97,792	----a-w	C:\WINDOWS\system32\comrepl.dll
+ 2008-04-14 02:22:08	97,792	----a-w	C:\WINDOWS\system32\comrepl.dll
- 2006-02-28 12:00:00	846,848	----a-w	C:\WINDOWS\system32\comres.dll
+ 2008-04-14 02:22:08	846,848	----a-w	C:\WINDOWS\system32\comres.dll
+ 2008-04-13 18:43:32	9,728	------w	C:\WINDOWS\system32\comsdupd.exe
- 2006-02-28 12:00:00	147,456	----a-w	C:\WINDOWS\system32\comsnap.dll
+ 2008-04-14 02:22:08	167,424	----a-w	C:\WINDOWS\system32\comsnap.dll
- 2005-07-26 04:39:45	1,267,200	----a-w	C:\WINDOWS\system32\comsvcs.dll
+ 2008-04-14 02:22:08	1,267,200	----a-w	C:\WINDOWS\system32\comsvcs.dll
- 2005-07-26 04:39:46	540,160	----a-w	C:\WINDOWS\system32\comuid.dll
+ 2008-04-14 02:20:21	539,648	----a-w	C:\WINDOWS\system32\comuid.dll
- 2008-05-29 14:57:06	16,384	----a-w	C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-10-13 12:06:16	16,384	----a-w	C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-05-29 14:57:06	32,768	----a-w	C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat
+ 2008-10-13 12:06:16	32,768	----a-w	C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat
- 2008-05-29 14:57:06	32,768	----a-w	C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\index.dat
+ 2008-10-13 12:06:16	32,768	----a-w	C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\index.dat
+ 2008-10-13 12:06:04	32,768	--sha-w	C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\MSHist012008101320081014\index.dat
- 2006-02-28 12:00:00	345,600	----a-w	C:\WINDOWS\system32\confmsp.dll
+ 2008-04-14 02:22:08	357,888	----a-w	C:\WINDOWS\system32\confmsp.dll
- 2006-02-28 12:00:00	27,648	----a-w	C:\WINDOWS\system32\conime.exe
+ 2008-04-14 02:22:40	27,648	----a-w	C:\WINDOWS\system32\conime.exe
- 2006-02-28 12:00:00	35,328	------w	C:\WINDOWS\system32\corpol.dll
+ 2008-04-14 02:22:08	35,328	------w	C:\WINDOWS\system32\corpol.dll
+ 2008-04-14 02:22:08	12,800	------w	C:\WINDOWS\system32\credssp.dll
- 2006-02-28 12:00:00	165,376	----a-w	C:\WINDOWS\system32\credui.dll
+ 2008-04-14 02:22:08	165,376	----a-w	C:\WINDOWS\system32\credui.dll
- 2006-02-28 12:00:00	602,624	----a-w	C:\WINDOWS\system32\crypt32.dll
+ 2008-04-14 02:22:08	604,160	----a-w	C:\WINDOWS\system32\crypt32.dll
- 2006-02-28 12:00:00	76,800	----a-w	C:\WINDOWS\system32\cryptdlg.dll
+ 2008-04-14 02:22:08	76,800	----a-w	C:\WINDOWS\system32\cryptdlg.dll
- 2006-02-28 12:00:00	33,280	----a-w	C:\WINDOWS\system32\cryptdll.dll
+ 2008-04-14 02:22:08	33,280	----a-w	C:\WINDOWS\system32\cryptdll.dll
- 2006-02-28 12:00:00	54,784	----a-w	C:\WINDOWS\system32\cryptext.dll
+ 2008-04-14 02:22:08	54,784	----a-w	C:\WINDOWS\system32\cryptext.dll
- 2006-02-28 12:00:00	63,488	----a-w	C:\WINDOWS\system32\cryptnet.dll
+ 2008-04-14 02:22:08	64,512	----a-w	C:\WINDOWS\system32\cryptnet.dll
- 2006-02-28 12:00:00	60,416	----a-w	C:\WINDOWS\system32\cryptsvc.dll
+ 2008-04-14 02:22:08	62,464	----a-w	C:\WINDOWS\system32\cryptsvc.dll
- 2006-02-28 12:00:00	530,944	----a-w	C:\WINDOWS\system32\cryptui.dll
+ 2008-04-14 02:22:08	530,944	----a-w	C:\WINDOWS\system32\cryptui.dll
- 2006-02-28 12:00:00	102,912	----a-w	C:\WINDOWS\system32\cscdll.dll
+ 2008-04-14 02:22:08	102,912	----a-w	C:\WINDOWS\system32\cscdll.dll
- 2006-02-28 12:00:00	98,304	----a-w	C:\WINDOWS\system32\cscript.exe
+ 2008-04-14 02:22:40	139,264	----a-w	C:\WINDOWS\system32\cscript.exe
- 2006-02-28 12:00:00	334,848	----a-w	C:\WINDOWS\system32\cscui.dll
+ 2008-04-14 02:22:08	334,848	----a-w	C:\WINDOWS\system32\cscui.dll
- 2006-02-28 12:00:00	32,768	----a-w	C:\WINDOWS\system32\csrsrv.dll
+ 2008-04-14 02:22:08	32,256	----a-w	C:\WINDOWS\system32\csrsrv.dll
- 2006-02-28 12:00:00	6,144	----a-w	C:\WINDOWS\system32\csrss.exe
+ 2008-04-14 02:22:40	6,144	----a-w	C:\WINDOWS\system32\csrss.exe
- 2006-02-28 12:00:00	15,360	----a-w	C:\WINDOWS\system32\ctfmon.exe
+ 2008-04-14 02:22:40	15,360	----a-w	C:\WINDOWS\system32\ctfmon.exe
- 2006-02-28 12:00:00	1,179,648	----a-w	C:\WINDOWS\system32\d3d8.dll
+ 2008-04-14 02:22:08	1,179,648	----a-w	C:\WINDOWS\system32\d3d8.dll
- 2006-02-28 12:00:00	8,192	----a-w	C:\WINDOWS\system32\d3d8thk.dll
+ 2008-04-14 02:22:08	8,192	----a-w	C:\WINDOWS\system32\d3d8thk.dll
- 2006-02-28 12:00:00	1,689,088	----a-w	C:\WINDOWS\system32\d3d9.dll
+ 2008-04-14 02:22:08	1,689,088	----a-w	C:\WINDOWS\system32\d3d9.dll
- 2006-02-28 12:00:00	825,344	----a-w	C:\WINDOWS\system32\d3dim700.dll
+ 2008-04-14 02:22:08	824,320	----a-w	C:\WINDOWS\system32\d3dim700.dll
- 2008-02-16 09:30:53	1,056,256	----a-w	C:\WINDOWS\system32\danim.dll
+ 2008-04-14 02:22:08	1,056,256	----a-w	C:\WINDOWS\system32\danim.dll
- 2006-02-28 12:00:00	54,784	----a-w	C:\WINDOWS\system32\dataclen.dll
+ 2008-04-14 02:22:08	54,784	----a-w	C:\WINDOWS\system32\dataclen.dll
- 2006-02-28 12:00:00	152,064	----a-w	C:\WINDOWS\system32\datime.dll
+ 2008-04-14 02:22:08	165,376	----a-w	C:\WINDOWS\system32\datime.dll
- 2006-02-28 12:00:00	25,088	----a-w	C:\WINDOWS\system32\davclnt.dll
+ 2008-04-14 02:22:08	25,600	----a-w	C:\WINDOWS\system32\davclnt.dll
- 2006-02-28 12:00:00	640,000	----a-w	C:\WINDOWS\system32\dbghelp.dll
+ 2008-04-14 02:22:08	640,000	----a-w	C:\WINDOWS\system32\dbghelp.dll
- 2006-02-28 12:00:00	24,576	----a-w	C:\WINDOWS\system32\dbmsrpcn.dll
+ 2008-04-14 02:22:08	24,576	----a-w	C:\WINDOWS\system32\dbmsrpcn.dll
- 2006-02-28 12:00:00	110,592	----a-w	C:\WINDOWS\system32\dbnetlib.dll
+ 2008-04-14 02:22:08	110,592	----a-w	C:\WINDOWS\system32\dbnetlib.dll
- 2006-02-28 12:00:00	28,672	----a-w	C:\WINDOWS\system32\dbnmpntw.dll
+ 2008-04-14 02:22:08	28,672	----a-w	C:\WINDOWS\system32\dbnmpntw.dll
- 2006-02-28 12:00:00	1,788	----a-w	C:\WINDOWS\system32\Dcache.bin
+ 2008-04-14 02:36:25	1,804	----a-w	C:\WINDOWS\system32\dcache.bin
- 2006-02-28 12:00:00	8,704	----a-w	C:\WINDOWS\system32\dciman32.dll
+ 2008-04-14 02:22:08	8,704	----a-w	C:\WINDOWS\system32\dciman32.dll
- 2006-02-28 12:00:00	5,120	----a-w	C:\WINDOWS\system32\dcomcnfg.exe
+ 2008-04-14 02:22:40	6,144	----a-w	C:\WINDOWS\system32\dcomcnfg.exe
- 2006-02-28 12:00:00	31,744	----a-w	C:\WINDOWS\system32\ddeshare.exe
+ 2008-04-14 02:22:40	31,744	----a-w	C:\WINDOWS\system32\ddeshare.exe
- 2006-02-28 12:00:00	266,240	----a-w	C:\WINDOWS\system32\ddraw.dll
+ 2008-04-14 02:22:08	279,552	----a-w	C:\WINDOWS\system32\ddraw.dll
- 2006-02-28 12:00:00	27,136	----a-w	C:\WINDOWS\system32\ddrawex.dll
+ 2008-04-14 02:22:08	27,136	----a-w	C:\WINDOWS\system32\ddrawex.dll
+ 2008-04-14 02:22:14	28,672	------w	C:\WINDOWS\system32\de\microsoft.managementconsole.resources.dll
+ 2008-04-14 02:22:14	36,864	------w	C:\WINDOWS\system32\de\mmcex.resources.dll
+ 2008-04-14 02:22:15	5,120	------w	C:\WINDOWS\system32\de\mmcfxcommon.resources.dll
- 2006-02-28 12:00:00	25,088	----a-w	C:\WINDOWS\system32\defrag.exe
+ 2008-04-14 02:22:40	25,088	----a-w	C:\WINDOWS\system32\defrag.exe
- 2006-02-28 12:00:00	59,904	----a-w	C:\WINDOWS\system32\devenum.dll
+ 2008-04-14 02:22:08	59,904	----a-w	C:\WINDOWS\system32\devenum.dll
- 2006-02-28 12:00:00	288,256	----a-w	C:\WINDOWS\system32\devmgr.dll
+ 2008-04-14 02:22:08	287,744	----a-w	C:\WINDOWS\system32\devmgr.dll
- 2006-02-28 12:00:00	82,432	----a-w	C:\WINDOWS\system32\dfrgfat.exe
+ 2008-04-14 02:22:40	82,944	----a-w	C:\WINDOWS\system32\dfrgfat.exe
- 2006-02-28 12:00:00	104,960	----a-w	C:\WINDOWS\system32\dfrgntfs.exe
+ 2008-04-14 02:22:41	105,472	----a-w	C:\WINDOWS\system32\dfrgntfs.exe
- 2006-02-28 12:00:00	38,912	----a-w	C:\WINDOWS\system32\dfrgsnap.dll
+ 2008-04-14 02:22:08	39,424	----a-w	C:\WINDOWS\system32\dfrgsnap.dll
- 2006-02-28 12:00:00	123,904	----a-w	C:\WINDOWS\system32\dfrgui.dll
+ 2008-04-14 02:22:08	124,416	----a-w	C:\WINDOWS\system32\dfrgui.dll
- 2006-02-28 12:00:00	28,672	----a-w	C:\WINDOWS\system32\dfsshlex.dll
+ 2008-04-14 02:22:08	28,672	----a-w	C:\WINDOWS\system32\dfsshlex.dll
- 2006-02-28 12:00:00	113,152	----a-w	C:\WINDOWS\system32\dgnet.dll
+ 2008-04-14 02:22:08	113,152	----a-w	C:\WINDOWS\system32\dgnet.dll
- 2006-05-19 13:09:50	112,128	----a-w	C:\WINDOWS\system32\dhcpcsvc.dll
+ 2008-04-14 02:22:08	127,488	----a-w	C:\WINDOWS\system32\dhcpcsvc.dll
- 2006-02-28 12:00:00	398,848	----a-w	C:\WINDOWS\system32\dhcpmon.dll
+ 2008-04-14 02:22:08	408,576	----a-w	C:\WINDOWS\system32\dhcpmon.dll
+ 2008-04-14 02:22:09	48,640	------w	C:\WINDOWS\system32\dhcpqec.dll
- 2006-02-28 12:00:00	85,504	----a-w	C:\WINDOWS\system32\diantz.exe
+ 2008-04-14 02:22:42	87,040	----a-w	C:\WINDOWS\system32\diantz.exe
- 2006-02-28 12:00:00	68,608	----a-w	C:\WINDOWS\system32\digest.dll
+ 2008-04-14 02:22:09	68,608	----a-w	C:\WINDOWS\system32\digest.dll
+ 2008-04-14 02:22:09	19,456	------w	C:\WINDOWS\system32\dimsntfy.dll
+ 2008-04-14 02:22:09	39,936	------w	C:\WINDOWS\system32\dimsroam.dll
- 2006-02-28 12:00:00	163,328	----a-w	C:\WINDOWS\system32\dinput.dll
+ 2008-04-14 02:22:09	163,328	----a-w	C:\WINDOWS\system32\dinput.dll
- 2006-02-28 12:00:00	186,368	----a-w	C:\WINDOWS\system32\dinput8.dll
+ 2008-04-14 02:22:09	186,368	----a-w	C:\WINDOWS\system32\dinput8.dll
- 2006-02-28 12:00:00	1,502,208	----a-w	C:\WINDOWS\system32\diskcopy.dll
+ 2008-04-14 02:22:09	1,504,768	----a-w	C:\WINDOWS\system32\diskcopy.dll
- 2006-02-28 12:00:00	169,984	----a-w	C:\WINDOWS\system32\diskpart.exe
+ 2008-04-14 02:22:42	169,984	----a-w	C:\WINDOWS\system32\diskpart.exe
- 2006-02-28 12:00:00	45,083	----a-w	C:\WINDOWS\system32\dispex.dll
+ 2008-04-14 02:22:09	32,768	----a-w	C:\WINDOWS\system32\dispex.dll
- 2008-06-20 10:44:38	138,368	-c--a-w	C:\WINDOWS\system32\dllcache\afd.sys
+ 2008-06-20 11:40:08	138,496	-c----w	C:\WINDOWS\system32\dllcache\afd.sys
- 2006-02-28 12:00:00	9,216	-c--a-w	C:\WINDOWS\system32\dllcache\asferror.dll
+ 2008-04-14 01:50:30	9,216	-c--a-w	C:\WINDOWS\system32\dllcache\asferror.dll
- 2008-06-14 17:57:40	273,024	-c----w	C:\WINDOWS\system32\dllcache\bthport.sys
+ 2008-06-14 17:32:01	273,024	-c----w	C:\WINDOWS\system32\dllcache\bthport.sys
- 2006-02-28 12:00:00	97,792	-c--a-w	C:\WINDOWS\system32\dllcache\chtmbx.dll
+ 2008-04-14 02:20:18	97,792	-c--a-w	C:\WINDOWS\system32\dllcache\chtmbx.dll
- 2006-02-28 12:00:00	56,320	-c--a-w	C:\WINDOWS\system32\dllcache\chtskdic.dll
+ 2008-04-14 02:20:18	56,320	-c--a-w	C:\WINDOWS\system32\dllcache\chtskdic.dll
- 2006-02-28 12:00:00	173,568	-c--a-w	C:\WINDOWS\system32\dllcache\chtskf.dll
+ 2008-04-14 02:20:18	173,568	-c--a-w	C:\WINDOWS\system32\dllcache\chtskf.dll
- 2006-02-28 12:00:00	198,656	-c--a-w	C:\WINDOWS\system32\dllcache\cintime.dll
+ 2008-04-14 02:20:18	198,656	-c--a-w	C:\WINDOWS\system32\dllcache\cintime.dll
+ 2008-04-14 02:22:42	294,912	-c----w	C:\WINDOWS\system32\dllcache\dlimport.exe
- 2008-06-20 17:39:48	148,992	-c--a-w	C:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-06-20 17:46:10	147,968	-c----w	C:\WINDOWS\system32\dllcache\dnsapi.dll
- 2006-08-24 11:17:12	500,278	-c--a-w	C:\WINDOWS\system32\dllcache\dxmasf.dll
+ 2008-04-14 02:22:09	500,278	-c--a-w	C:\WINDOWS\system32\dllcache\dxmasf.dll
- 2008-07-07 20:30:55	253,952	-c--a-w	C:\WINDOWS\system32\dllcache\es.dll
+ 2008-07-07 20:26:58	253,952	-c----w	C:\WINDOWS\system32\dllcache\es.dll
- 2006-02-28 12:00:00	13,463,552	-c--a-w	C:\WINDOWS\system32\dllcache\hwxjpn.dll
+ 2008-04-14 02:20:41	13,463,552	-c--a-w	C:\WINDOWS\system32\dllcache\hwxjpn.dll
- 2006-02-28 12:00:00	106,496	-c--a-w	C:\WINDOWS\system32\dllcache\imekrcic.dll
+ 2008-04-14 02:20:43	106,496	-c--a-w	C:\WINDOWS\system32\dllcache\imekrcic.dll
- 2006-02-28 12:00:00	86,016	-c--a-w	C:\WINDOWS\system32\dllcache\imekrmbx.dll
+ 2008-04-14 02:20:43	86,016	-c--a-w	C:\WINDOWS\system32\dllcache\imekrmbx.dll
- 2006-02-28 12:00:00	811,064	-c--a-w	C:\WINDOWS\system32\dllcache\imjp81k.dll
+ 2008-04-14 02:20:44	811,064	-c--a-w	C:\WINDOWS\system32\dllcache\imjp81k.dll
- 2006-02-28 12:00:00	368,696	-c--a-w	C:\WINDOWS\system32\dllcache\imjpcic.dll
+ 2008-04-14 02:20:44	368,696	-c--a-w	C:\WINDOWS\system32\dllcache\imjpcic.dll
- 2006-02-28 12:00:00	716,856	-c--a-w	C:\WINDOWS\system32\dllcache\imjpcus.dll
+ 2008-04-14 02:20:44	716,856	-c--a-w	C:\WINDOWS\system32\dllcache\imjpcus.dll
- 2006-02-28 12:00:00	81,976	-c--a-w	C:\WINDOWS\system32\dllcache\imjpdct.dll
+ 2008-04-14 02:20:44	81,976	-c--a-w	C:\WINDOWS\system32\dllcache\imjpdct.dll
- 2006-02-28 12:00:00	274,489	-c--a-w	C:\WINDOWS\system32\dllcache\imjputyc.dll
+ 2008-04-14 02:20:44	274,489	-c--a-w	C:\WINDOWS\system32\dllcache\imjputyc.dll
- 2006-02-28 12:00:00	102,456	-c--a-w	C:\WINDOWS\system32\dllcache\imlang.dll
+ 2008-04-14 02:20:44	102,456	-c--a-w	C:\WINDOWS\system32\dllcache\imlang.dll
- 2006-02-28 12:00:00	315,452	-c--a-w	C:\WINDOWS\system32\dllcache\imskf.dll
+ 2008-04-14 02:20:45	315,455	-c--a-w	C:\WINDOWS\system32\dllcache\imskf.dll
- 2008-04-11 18:50:09	683,520	-c--a-w	C:\WINDOWS\system32\dllcache\inetcomm.dll
+ 2008-04-11 19:04:24	691,712	-c----w	C:\WINDOWS\system32\dllcache\inetcomm.dll
- 2006-02-28 12:00:00	786,432	-c--a-w	C:\WINDOWS\system32\dllcache\migrate.exe
+ 2008-04-14 02:22:51	786,432	-c--a-w	C:\WINDOWS\system32\dllcache\migrate.exe
- 2006-02-28 12:00:00	310,272	-c--a-w	C:\WINDOWS\system32\dllcache\mp43dmod.dll
+ 2008-04-14 02:22:15	310,272	-c--a-w	C:\WINDOWS\system32\dllcache\mp43dmod.dll
- 2006-02-28 12:00:00	384,512	-c--a-w	C:\WINDOWS\system32\dllcache\mp4sdmod.dll
+ 2008-04-14 02:22:15	384,512	-c--a-w	C:\WINDOWS\system32\dllcache\mp4sdmod.dll
- 2006-02-28 12:00:00	240,640	-c--a-w	C:\WINDOWS\system32\dllcache\mpg4dmod.dll
+ 2008-04-14 02:22:15	240,640	-c--a-w	C:\WINDOWS\system32\dllcache\mpg4dmod.dll
- 2006-02-28 12:00:00	124,928	-c--a-w	C:\WINDOWS\system32\dllcache\mplay32.exe
+ 2008-04-14 02:22:53	124,928	-c--a-w	C:\WINDOWS\system32\dllcache\mplay32.exe
- 2006-02-28 12:00:00	4,639	-c--a-w	C:\WINDOWS\system32\dllcache\mplayer2.exe
+ 2008-04-14 02:22:53	4,639	-c--a-w	C:\WINDOWS\system32\dllcache\mplayer2.exe
- 2006-02-28 12:00:00	368,640	-c--a-w	C:\WINDOWS\system32\dllcache\mpvis.dll
+ 2008-04-14 02:22:15	368,640	-c--a-w	C:\WINDOWS\system32\dllcache\mpvis.dll
- 2008-05-01 14:30:33	331,776	-c--a-w	C:\WINDOWS\system32\dllcache\msadce.dll
+ 2008-05-01 14:34:52	331,776	-c--a-w	C:\WINDOWS\system32\dllcache\msadce.dll
- 2008-06-24 16:22:31	74,240	-c--a-w	C:\WINDOWS\system32\dllcache\mscms.dll
+ 2008-06-24 16:42:48	74,240	-c----w	C:\WINDOWS\system32\dllcache\mscms.dll
- 2006-02-28 12:00:00	4,126	-c--a-w	C:\WINDOWS\system32\dllcache\msdxmlc.dll
+ 2008-04-14 02:20:58	4,126	-c--a-w	C:\WINDOWS\system32\dllcache\msdxmlc.dll
- 2008-06-20 17:39:48	247,296	-c--a-w	C:\WINDOWS\system32\dllcache\mswsock.dll
+ 2008-06-20 17:46:10	247,296	-c----w	C:\WINDOWS\system32\dllcache\mswsock.dll
+ 2008-04-14 02:22:18	1,306,624	-c----w	C:\WINDOWS\system32\dllcache\msxml6.dll
+ 2008-04-14 01:57:41	93,184	-c----w	C:\WINDOWS\system32\dllcache\msxml6r.dll
- 2006-02-28 12:00:00	226,816	-c--a-w	C:\WINDOWS\system32\dllcache\npdrmv2.dll
+ 2008-04-14 02:23:12	226,816	-c--a-w	C:\WINDOWS\system32\dllcache\npdrmv2.dll
- 2005-11-29 14:27:06	364,544	-c--a-w	C:\WINDOWS\system32\dllcache\npdsplay.dll
+ 2008-04-14 02:22:20	364,544	-c--a-w	C:\WINDOWS\system32\dllcache\npdsplay.dll
- 2006-02-28 12:00:00	10,240	-c--a-w	C:\WINDOWS\system32\dllcache\npwmsdrm.dll
+ 2008-04-14 02:22:20	10,240	-c--a-w	C:\WINDOWS\system32\dllcache\npwmsdrm.dll
- 2006-02-28 12:00:00	15,872	-c--a-w	C:\WINDOWS\system32\dllcache\padrs404.dll
+ 2008-04-14 02:21:16	15,872	-c--a-w	C:\WINDOWS\system32\dllcache\padrs404.dll
- 2006-02-28 12:00:00	15,360	-c--a-w	C:\WINDOWS\system32\dllcache\padrs804.dll
+ 2008-04-14 02:21:16	15,360	-c--a-w	C:\WINDOWS\system32\dllcache\padrs804.dll
- 2006-02-28 12:00:00	175,104	-c--a-w	C:\WINDOWS\system32\dllcache\pintlcsa.dll
+ 2008-04-14 02:21:16	175,104	-c--a-w	C:\WINDOWS\system32\dllcache\pintlcsa.dll
- 2006-02-28 12:00:00	53,760	-c--a-w	C:\WINDOWS\system32\dllcache\pintlcsd.dll
+ 2008-04-14 02:21:17	53,760	-c--a-w	C:\WINDOWS\system32\dllcache\pintlcsd.dll
- 2006-02-28 12:00:00	70,144	-c--a-w	C:\WINDOWS\system32\dllcache\pintlphr.exe
+ 2008-04-13 16:43:36	70,144	-c--a-w	C:\WINDOWS\system32\dllcache\pintlphr.exe
- 2006-02-28 12:00:00	67,584	-c--a-w	C:\WINDOWS\system32\dllcache\pmigrate.dll
+ 2008-04-14 02:21:17	67,584	-c--a-w	C:\WINDOWS\system32\dllcache\pmigrate.dll
- 2008-05-07 05:14:45	1,293,312	-c--a-w	C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:10:35	1,293,824	-c----w	C:\WINDOWS\system32\dllcache\quartz.dll
- 2008-05-08 12:28:49	202,752	-c--a-w	C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 14:02:52	203,136	-c----w	C:\WINDOWS\system32\dllcache\rmcast.sys
- 2006-02-28 12:00:00	778,240	-c--a-w	C:\WINDOWS\system32\dllcache\setup_wm.exe