Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-05-2017 01
Ran by fadi (administrator) on FADI-PC (05-05-2017 16:22:49)
Running from C:\Users\fadi\Desktop
Loaded Profiles: fadi (Available Profiles: fadi)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Internet Security\ekrn.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(ESET) C:\Program Files\ESET\ESET Internet Security\egui.exe
(CANON INC.) C:\Windows\System32\CNAB4RPK.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Internet Download Manager, Tonec Inc.) C:\Program Files\Internet Download Manager\idmBroker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP2900 Status Window.lnk [2017-04-07]
ShortcutTarget: Canon LBP2900 Status Window.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE (CANON INC.)
Startup: C:\Users\fadi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2017-03-29]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 198.153.192.50 198.153.194.50
Tcpip\..\Interfaces\{EB4C17DB-9260-407B-881F-C6FEA3A7137B}: [NameServer] 208.67.222.123,208.67.220.123
Tcpip\..\Interfaces\{EB4C17DB-9260-407B-881F-C6FEA3A7137B}: [DhcpNameServer] 198.153.192.50 198.153.194.50
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: j7f5nt8j.default
FF ProfilePath: C:\Users\fadi\AppData\Roaming\Mozilla\Firefox\Profiles\j7f5nt8j.default [2017-05-05]
FF Extension: (Shield Recipe Client) - C:\Users\fadi\AppData\Roaming\Mozilla\Firefox\Profiles\j7f5nt8j.default\features\{9444ba37-bcd6-43e4-856b-09fc59f8f3b8}\shield-recipe-client@mozilla.org.xpi [2017-05-03]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\fadi\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\fadi\AppData\Roaming\IDM\idmmzcc5 [2017-05-04] [not signed]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> chedot.com
CHR NewTab: Default -> Not-active:"chrome-extension://ophpgcjplgoimjgcllegcbljpdcbgkaa/blank.html"
CHR Profile: C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default [2017-05-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-05]
CHR Extension: (IDM Integration Module) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-05-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-05]
CHR Extension: (Chedot new-tab) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ophpgcjplgoimjgcllegcbljpdcbgkaa [2017-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-05]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-02-13]
CHR HKLM\...\Chrome\Extension: [ophpgcjplgoimjgcllegcbljpdcbgkaa] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ekrn; C:\Program Files\ESET\ESET Internet Security\ekrn.exe [2241992 2016-12-14] (ESET)
R2 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659592 2017-02-24] (Foxit Software Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3365624 2017-04-27] (Qualcomm Atheros Communications, Inc.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [113544 2016-12-05] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [91104 2016-12-05] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [140984 2016-12-05] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43920 2016-12-05] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [69304 2016-12-05] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [52680 2016-12-05] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [81264 2016-12-05] (ESET)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-02-20] (REALiX(tm))
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2017-04-27] (Synaptics Incorporated)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2017-03-21] (Anchorfree Inc.)
S3 TGBMPEnum; C:\Windows\System32\DRIVERS\TGBMPEnum.sys [33560 2017-01-02] (TheGreenBow)
S3 TGBVPNVirtM; C:\Windows\System32\DRIVERS\TGBVPNVirtM.sys [129816 2017-01-02] (TheGreenBow)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-05 16:22 - 2017-05-05 16:23 - 00011183 _____ C:\Users\fadi\Desktop\FRST.txt
2017-05-05 16:21 - 2017-05-05 16:22 - 01769984 _____ (Farbar) C:\Users\fadi\Desktop\FRST.exe
2017-05-05 00:15 - 2017-05-05 00:15 - 00000000 ____D C:\Users\fadi\AppData\Roaming\ESET
2017-05-04 23:54 - 2017-05-05 00:01 - 00000828 _____ C:\Users\fadi\Desktop\ZHPCleaner.lnk
2017-05-04 22:15 - 2017-05-04 22:15 - 00046349 _____ C:\Users\fadi\Desktop\ZHPCleaner+.txt
2017-05-04 22:12 - 2017-05-04 22:12 - 00046346 _____ C:\Users\fadi\Desktop\ZHPCleaner.txt
2017-05-04 21:47 - 2017-05-04 21:47 - 00001857 _____ C:\Users\fadi\Desktop\eterterterteterter.txt
2017-05-04 21:28 - 2017-05-04 21:47 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-04 21:28 - 2017-05-04 21:47 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-04 21:28 - 2017-05-04 21:28 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-04 21:27 - 2017-05-04 21:47 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-04 21:27 - 2017-05-04 21:46 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-04 21:27 - 2017-05-04 21:27 - 00002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-04 21:27 - 2017-05-04 21:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-04 21:27 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-05-04 21:26 - 2017-05-04 21:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-04 21:26 - 2017-05-04 21:26 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-04 21:25 - 2017-05-04 21:25 - 00016110 _____ C:\Users\fadi\Desktop\rk_1217.tmp.txt
2017-05-04 21:24 - 2017-05-04 21:24 - 00071008 _____ C:\Users\fadi\Desktop\rk_115B.tmp.txt
2017-05-04 20:17 - 2017-05-04 21:30 - 00000000 ____D C:\ProgramData\RogueKiller
2017-05-04 20:16 - 2017-05-04 20:16 - 00001005 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-05-04 20:16 - 2017-05-04 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-05-04 20:16 - 2017-05-04 20:16 - 00000000 ____D C:\Program Files\RogueKiller
2017-05-04 16:49 - 2017-05-04 16:49 - 00101281 _____ C:\Users\fadi\Desktop\ZHPDiag.txt
2017-05-04 16:45 - 2017-05-04 21:49 - 00000000 ____D C:\Users\fadi\AppData\Local\ZHP
2017-05-04 16:44 - 2017-05-04 16:44 - 02722304 _____ C:\Users\fadi\Desktop\ZHPDiag3.exe
2017-05-03 17:51 - 2017-05-03 17:51 - 00000000 ____D C:\Users\fadi\AppData\LocalLow\Adobe
2017-05-03 17:49 - 2017-05-03 17:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-03 17:49 - 2017-05-03 17:49 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-03 17:48 - 2017-05-03 17:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-03 17:48 - 2017-05-03 17:48 - 00000000 ____D C:\Program Files\Adobe
2017-05-03 17:47 - 2017-05-03 17:58 - 00000000 ____D C:\ProgramData\Adobe
2017-05-03 17:37 - 2017-05-03 17:53 - 00000000 ____D C:\Users\fadi\AppData\Local\Adobe
2017-05-03 17:34 - 2017-05-03 17:34 - 00000000 ____D C:\Users\fadi\AppData\Local\CrashRpt
2017-05-03 17:33 - 2017-05-03 23:08 - 00000000 ____D C:\Program Files\Icecream PDF Split and Merge
2017-05-03 17:33 - 2017-05-03 17:33 - 00000000 ____D C:\Users\fadi\AppData\Local\Icecream
2017-05-03 17:33 - 2017-05-03 17:33 - 00000000 ____D C:\Users\fadi\.Icecream PDF Split and Merge
2017-05-02 18:10 - 2017-05-02 18:10 - 05927784 _____ C:\Users\fadi\Downloads\18255745_147737142430555_4163444634208436224_n.mp4
2017-05-02 08:09 - 2017-05-02 12:06 - 00000000 ____D C:\Users\fadi\Downloads\Yassine_El_Jazairi_Warsh
2017-05-02 08:09 - 2017-05-02 09:35 - 00000000 ____D C:\Users\fadi\Downloads\Fares_Abbad_(MP3_Quran)
2017-05-02 08:09 - 2017-05-02 09:27 - 00000000 ____D C:\Users\fadi\Downloads\Maher_Al-Muaiqly_(MP3_Quran)
2017-05-02 08:08 - 2017-05-02 08:08 - 00039220 _____ C:\Users\fadi\Downloads\Quran-IslamHouse-com-Yassine_El_Jazairi_Warsh.torrent
2017-05-02 08:07 - 2017-05-02 08:08 - 00016935 _____ C:\Users\fadi\Downloads\Maher Al-Muaiqly (Updated).torrent
2017-05-02 08:07 - 2017-05-02 08:07 - 00019105 _____ C:\Users\fadi\Downloads\Fares Abbad.torrent
2017-05-01 18:56 - 2017-05-01 18:58 - 05110106 _____ C:\Users\fadi\Downloads\17300345_687769518073212_2086040825115967488_n.mp4
2017-05-01 08:23 - 2017-05-01 08:24 - 00000000 ____D C:\Users\fadi\AppData\Local\Steam
2017-05-01 08:23 - 2017-05-01 08:23 - 00000000 ____D C:\Users\fadi\AppData\Local\CEF
2017-05-01 08:05 - 2017-05-01 08:05 - 00000000 ____D C:\Program Files\Common Files\Steam
2017-05-01 08:04 - 2017-05-01 08:05 - 01446792 _____ C:\Users\fadi\Downloads\SteamSetup.exe
2017-05-01 00:52 - 2017-05-01 01:00 - 25822996 _____ C:\Users\fadi\Downloads\18141006_416811625358592_6359969833701867520_n.mp4
2017-04-30 14:24 - 2017-04-30 14:24 - 00000000 ____D C:\Windows\system32\directx
2017-04-28 05:59 - 2017-04-28 06:00 - 10018452 _____ C:\Users\fadi\Downloads\إجراءات التحقيق المحاسبي في إطار الرقابة الجبائية.pdf
2017-04-27 23:19 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-04-27 23:19 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-04-27 23:19 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-04-27 23:19 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-04-27 23:19 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-04-27 23:19 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-04-27 23:19 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-04-27 23:19 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-04-27 23:19 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-04-27 23:19 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-04-27 23:19 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-04-27 23:19 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-04-27 23:19 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-04-27 23:19 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-04-27 23:19 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-04-27 23:19 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-04-27 23:19 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-04-27 23:19 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-04-27 23:19 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-04-27 23:19 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-04-27 23:19 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-04-27 23:19 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-04-27 23:19 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-04-27 23:19 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-04-27 23:19 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-04-27 23:19 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-04-27 23:19 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-04-27 23:19 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-04-27 23:19 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-04-27 23:19 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-04-27 23:19 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-04-27 23:19 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-04-27 23:19 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-04-27 23:19 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-04-27 23:19 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-04-27 23:19 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-04-27 23:19 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-04-27 23:19 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-04-27 23:19 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-04-27 23:19 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-04-27 23:19 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-04-27 23:19 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-04-27 23:19 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-04-27 23:19 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-04-27 23:19 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-04-27 23:18 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-04-27 23:18 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-04-27 23:18 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-04-27 23:18 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-04-27 23:18 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-04-27 23:18 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-04-27 23:18 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-04-27 23:18 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-04-27 23:18 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-04-27 23:02 - 2013-01-13 22:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 21:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-04-27 23:02 - 2013-01-13 21:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-04-27 23:02 - 2013-01-13 21:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-04-27 23:02 - 2013-01-13 21:08 - 01504768 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-04-27 23:02 - 2013-01-13 21:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-04-27 23:02 - 2013-01-13 20:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-04-27 23:02 - 2013-01-13 20:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2017-04-27 23:02 - 2013-01-13 20:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-04-27 23:02 - 2013-01-13 20:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-04-27 23:02 - 2013-01-13 19:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-04-27 23:02 - 2013-01-04 07:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-04-27 23:01 - 2013-01-13 21:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-04-27 23:01 - 2013-01-13 21:30 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-04-27 23:01 - 2013-01-13 20:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-04-27 23:01 - 2013-01-13 20:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-04-27 23:01 - 2013-01-13 20:43 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-04-27 23:01 - 2013-01-13 20:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-04-27 23:01 - 2013-01-13 18:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-04-27 22:55 - 2017-04-27 22:55 - 00785920 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2017-04-27 22:55 - 2017-04-27 22:55 - 00109632 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2017-04-27 22:55 - 2017-04-27 22:55 - 00085608 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2017-04-27 22:52 - 2017-04-27 22:52 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2017-04-27 22:52 - 2017-04-27 22:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-27 22:52 - 2012-07-26 04:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-04-27 22:52 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-04-27 22:52 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-04-27 22:52 - 2012-06-02 15:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-04-27 22:51 - 2017-04-27 22:51 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2017-04-27 22:51 - 2017-04-27 22:51 - 00026792 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-27 22:51 - 2017-04-27 22:51 - 00000000 ____D C:\Program Files\Synaptics
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____D C:\Windows\system32\DAX3
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____D C:\Windows\system32\DAX2
2017-04-27 22:37 - 2017-04-27 22:37 - 00000000 ____D C:\Windows\system32\RTCOM
2017-04-27 22:37 - 2017-04-27 22:37 - 00000000 ____D C:\Program Files\Realtek
2017-04-27 22:36 - 2017-04-27 22:36 - 20837904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 20653608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 12016264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 11924336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO40.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 07170864 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 05520480 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 05312848 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 04982552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 04298752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-04-27 22:36 - 2017-04-27 22:36 - 03173736 _____ (DTS, Inc.) C:\Windows\system32\slcnt32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02904576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02800320 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02558352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02149376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01832064 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01791792 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01400800 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01279312 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00965680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00954192 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00936608 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00911080 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00905304 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00868448 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00866096 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00860520 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00836144 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00735920 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00726120 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00571632 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00522704 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00472528 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00459296 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00390936 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00364016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00357152 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00232752 _____ (TODO:) C:\Windows\system32\slprp32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00225040 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00196008 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00183608 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00150552 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00144680 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00116648 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00101616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00083640 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00078480 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00071704 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00067752 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-04-27 22:35 - 2017-04-27 22:36 - 13798176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-04-27 22:35 - 2017-04-27 22:35 - 16373264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-27 22:35 - 2017-04-27 22:35 - 07053688 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2017-04-27 22:35 - 2017-04-27 22:35 - 04244232 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 02946560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-04-27 22:35 - 2017-04-27 22:35 - 02920008 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01948800 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01824928 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01531672 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01527752 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01512312 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01502640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO70.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01313120 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01239800 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01224040 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01201808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01134776 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01029832 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01025040 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00992608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00799008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00669584 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00645816 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00631152 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00615872 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00584888 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00522704 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00471280 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00439600 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00415864 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00402064 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00387624 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00370024 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32APO2.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00369784 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00367352 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00363416 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00357984 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00340816 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00322064 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00316424 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00285624 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00243856 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00232416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229584 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229584 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229032 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00221904 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00214664 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00214664 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00200728 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00197440 _____ C:\Windows\system32\AcpiServiceVnA.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00142320 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00130296 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00098008 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32api.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00096600 _____ C:\Windows\system32\audioLibVc.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2017-04-27 22:35 - 2017-04-27 22:35 - 00000736 _____ C:\Windows\system32\cxapo.prop
2017-04-27 22:14 - 2017-04-28 05:59 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-04-27 22:14 - 2017-04-27 22:14 - 03365624 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys
2017-04-27 21:51 - 2017-04-27 21:51 - 00015013 _____ C:\Users\fadi\Downloads\Counter.Strike.Global.Offensive.v1.35.7.6.torrent
2017-04-27 16:39 - 2016-02-22 22:25 - 00000000 ____D C:\Users\fadi\Desktop\channel1
2017-04-27 06:01 - 2017-04-27 06:01 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Google
2017-04-26 08:05 - 2017-04-26 08:05 - 00011419 _____ C:\Users\fadi\Downloads\Char7-kitab-3a9idet-ahl-suna-Othaimin-Up-By-MusleM_archive.torrent
2017-04-25 18:53 - 2017-04-25 19:58 - 771381956 _____ C:\Users\fadi\Downloads\TO-AOT-v340-v350.zip
2017-04-24 20:16 - 2015-06-07 00:08 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-24 20:15 - 2017-04-30 14:25 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-24 20:13 - 2017-04-24 20:14 - 13767776 _____ (Microsoft Corporation) C:\Users\fadi\Downloads\vc_redist.x86.exe
2017-04-17 04:00 - 2017-04-17 04:04 - 28831622 _____ C:\Users\fadi\Downloads\العلاقة بين البط
2017-04-17 03:55 - 2017-04-17 04:03 - 46493424 _____ C:\Users\fadi\Downloads\علي عزوز.pdf
2017-04-17 03:38 - 2017-04-17 03:38 - 00000000 ____D C:\Users\fadi\Downloads\ThesesDZEngMastr
2017-04-16 18:17 - 2017-05-01 08:31 - 00000000 ____D C:\Users\fadi\AppData\Local\CrashDumps
2017-04-15 16:50 - 2017-04-15 16:50 - 00161820 _____ C:\Users\fadi\Downloads\أدلة الإثبات في المراجعة ووسائل الحصول عليها.pptx
2017-04-14 23:23 - 2017-04-14 23:23 - 00000069 _____ C:\Windows\system32\sboot32.ocx
2017-04-14 23:21 - 2017-04-14 23:21 - 00000000 ____D C:\ProgramData\TheGreenBow
2017-04-14 23:21 - 2017-04-14 23:21 - 00000000 ____D C:\Program Files\Common Files\temp
2017-04-14 10:00 - 2017-04-14 10:00 - 00165684 _____ C:\Users\fadi\Downloads\pdf2doc.zip
2017-04-13 20:01 - 2017-04-11 12:49 - 10718109 ____N C:\Users\fadi\Desktop\Voice 002.m4a
2017-04-13 20:01 - 2017-04-11 12:36 - 55161843 ____N C:\Users\fadi\Desktop\Voice 001.m4a
2017-04-13 20:00 - 2017-04-13 20:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-04-13 07:49 - 2017-04-13 07:49 - 00000000 ____H C:\Users\fadi\Desktop\~WRL1253.tmp
2017-04-09 08:29 - 2017-05-01 00:52 - 00000000 ____D C:\Users\fadi\Documents\MassFaces
2017-04-09 08:29 - 2017-04-09 08:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\MassFaces
2017-04-09 08:29 - 2017-04-09 08:29 - 00001074 _____ C:\Users\Public\Desktop\MassFaces.lnk
2017-04-09 08:29 - 2017-04-09 08:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MassFaces
2017-04-09 08:29 - 2017-04-09 08:29 - 00000000 ____D C:\Program Files\MassFaces
2017-04-06 09:20 - 2017-04-06 11:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2017-04-06 05:13 - 2017-04-06 05:13 - 00033187 _____ C:\Users\fadi\Desktop\Bh-dr7lIIAA6_Hu.jpg-large
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-05 16:22 - 2017-02-21 00:25 - 00000000 ____D C:\FRST
2017-05-05 11:50 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\Downloads\Compressed
2017-05-05 00:02 - 2017-02-20 02:23 - 00000000 ____D C:\Users\fadi\AppData\Roaming\ZHP
2017-05-05 00:02 - 2017-02-09 07:59 - 00000000 ____D C:\Users\fadi\AppData\LocalLow\Mozilla
2017-05-04 21:53 - 2009-07-14 05:34 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-04 21:53 - 2009-07-14 05:34 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-04 21:46 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-04 21:44 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\DMCache
2017-05-04 20:18 - 2017-02-19 23:54 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-05-04 13:16 - 2017-03-02 15:40 - 00000030 _____ C:\Windows\QQPlayer.INI
2017-05-04 11:47 - 2017-02-06 03:35 - 00000000 ____D C:\Tactical Ops
2017-05-03 17:51 - 2017-02-24 16:32 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Adobe
2017-05-03 17:33 - 2017-02-05 18:08 - 00000000 ____D C:\Users\fadi
2017-05-03 08:15 - 2017-02-22 02:44 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-03 08:15 - 2017-02-22 02:44 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-02 16:22 - 2017-02-20 03:33 - 00000000 ____D C:\ProgramData\ProductData
2017-05-02 16:22 - 2017-02-20 02:24 - 00000000 ____D C:\Program Files\IObit
2017-05-02 16:20 - 2009-07-14 03:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-05-02 16:18 - 2009-07-14 05:53 - 00032656 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-05-02 13:55 - 2017-02-24 16:53 - 00000000 ____D C:\Users\fadi\AppData\Roaming\uTorrent
2017-05-01 09:27 - 2017-02-17 14:26 - 00000000 ____D C:\ProgramData\TEMP
2017-04-30 14:44 - 2017-03-18 13:44 - 00000000 ____D C:\Users\fadi\AppData\Local\ElevatedDiagnostics
2017-04-29 10:47 - 2017-02-09 07:59 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-04-27 23:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-04-27 22:18 - 2011-02-07 13:31 - 00742926 _____ C:\Windows\system32\perfh00C.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00476688 _____ C:\Windows\system32\perfh001.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00147812 _____ C:\Windows\system32\perfc00C.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00093310 _____ C:\Windows\system32\perfc001.dat
2017-04-27 22:18 - 2010-11-20 22:01 - 02219686 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-17 22:04 - 2017-02-05 17:42 - 00000000 ____D C:\Users\fadi\AppData\Local\Microsoft Games
2017-04-16 17:44 - 2017-02-25 04:40 - 00000000 ___SD C:\Users\fadi\AppData\LocalLow\Temp
2017-04-12 21:59 - 2017-02-24 16:09 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-04-12 21:59 - 2017-02-24 16:09 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-04-12 21:59 - 2017-02-24 16:08 - 00000000 ____D C:\Windows\system32\Macromed
2017-04-12 06:55 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\Downloads\Video
2017-04-07 06:33 - 2017-02-05 18:01 - 00000000 ____D C:\Program Files\WinRAR
2017-04-07 06:07 - 2017-03-30 12:29 - 00000000 ____D C:\Program Files\EveryonePiano
==================== Files in the root of some directories =======
2017-03-02 15:40 - 2017-03-18 09:41 - 0000056 _____ () C:\Users\fadi\AppData\Roaming\coreavc.ini
2017-04-27 22:38 - 2017-04-27 22:38 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2016-04-15 19:49 - 2016-04-15 19:49 - 0313656 _____ (QQPlayer.NET ) C:\Users\fadi\AppData\Local\Temp\Arabic.lng.exe
2017-05-04 20:17 - 2010-11-20 22:29 - 1288488 _____ (Microsoft Corporation) C:\Users\fadi\AppData\Local\Temp\dllnt_dump.dll
2016-04-16 04:49 - 2016-04-16 04:49 - 0307498 _____ (QQPlayer.NET ) C:\Users\fadi\AppData\Local\Temp\English.lng.exe
2017-02-22 01:30 - 2016-12-23 03:03 - 3698888 _____ (Foxit Corporation) C:\Users\fadi\AppData\Local\Temp\FoxitUpdater.exe
2016-04-15 19:35 - 2016-04-15 19:35 - 32608200 _____ (腾讯科技(深圳)有限公司) C:\Users\fadi\AppData\Local\Temp\QQPlayer_Setup.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-25 21:08
==================== End of FRST.txt ============================
Ran by fadi (administrator) on FADI-PC (05-05-2017 16:22:49)
Running from C:\Users\fadi\Desktop
Loaded Profiles: fadi (Available Profiles: fadi)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Internet Security\ekrn.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(ESET) C:\Program Files\ESET\ESET Internet Security\egui.exe
(CANON INC.) C:\Windows\System32\CNAB4RPK.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Internet Download Manager, Tonec Inc.) C:\Program Files\Internet Download Manager\idmBroker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP2900 Status Window.lnk [2017-04-07]
ShortcutTarget: Canon LBP2900 Status Window.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE (CANON INC.)
Startup: C:\Users\fadi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2017-03-29]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 198.153.192.50 198.153.194.50
Tcpip\..\Interfaces\{EB4C17DB-9260-407B-881F-C6FEA3A7137B}: [NameServer] 208.67.222.123,208.67.220.123
Tcpip\..\Interfaces\{EB4C17DB-9260-407B-881F-C6FEA3A7137B}: [DhcpNameServer] 198.153.192.50 198.153.194.50
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: j7f5nt8j.default
FF ProfilePath: C:\Users\fadi\AppData\Roaming\Mozilla\Firefox\Profiles\j7f5nt8j.default [2017-05-05]
FF Extension: (Shield Recipe Client) - C:\Users\fadi\AppData\Roaming\Mozilla\Firefox\Profiles\j7f5nt8j.default\features\{9444ba37-bcd6-43e4-856b-09fc59f8f3b8}\shield-recipe-client@mozilla.org.xpi [2017-05-03]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\fadi\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\fadi\AppData\Roaming\IDM\idmmzcc5 [2017-05-04] [not signed]
FF HKU\S-1-5-21-2843317728-1395094010-2175450331-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-01-19] (Foxit Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> chedot.com
CHR NewTab: Default -> Not-active:"chrome-extension://ophpgcjplgoimjgcllegcbljpdcbgkaa/blank.html"
CHR Profile: C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default [2017-05-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-05]
CHR Extension: (IDM Integration Module) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-05-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-05]
CHR Extension: (Chedot new-tab) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ophpgcjplgoimjgcllegcbljpdcbgkaa [2017-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\fadi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-05]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-02-13]
CHR HKLM\...\Chrome\Extension: [ophpgcjplgoimjgcllegcbljpdcbgkaa] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ekrn; C:\Program Files\ESET\ESET Internet Security\ekrn.exe [2241992 2016-12-14] (ESET)
R2 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659592 2017-02-24] (Foxit Software Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3365624 2017-04-27] (Qualcomm Atheros Communications, Inc.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [113544 2016-12-05] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [91104 2016-12-05] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [140984 2016-12-05] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43920 2016-12-05] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [69304 2016-12-05] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [52680 2016-12-05] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [81264 2016-12-05] (ESET)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-02-20] (REALiX(tm))
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2017-04-27] (Synaptics Incorporated)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2017-03-21] (Anchorfree Inc.)
S3 TGBMPEnum; C:\Windows\System32\DRIVERS\TGBMPEnum.sys [33560 2017-01-02] (TheGreenBow)
S3 TGBVPNVirtM; C:\Windows\System32\DRIVERS\TGBVPNVirtM.sys [129816 2017-01-02] (TheGreenBow)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-05 16:22 - 2017-05-05 16:23 - 00011183 _____ C:\Users\fadi\Desktop\FRST.txt
2017-05-05 16:21 - 2017-05-05 16:22 - 01769984 _____ (Farbar) C:\Users\fadi\Desktop\FRST.exe
2017-05-05 00:15 - 2017-05-05 00:15 - 00000000 ____D C:\Users\fadi\AppData\Roaming\ESET
2017-05-04 23:54 - 2017-05-05 00:01 - 00000828 _____ C:\Users\fadi\Desktop\ZHPCleaner.lnk
2017-05-04 22:15 - 2017-05-04 22:15 - 00046349 _____ C:\Users\fadi\Desktop\ZHPCleaner+.txt
2017-05-04 22:12 - 2017-05-04 22:12 - 00046346 _____ C:\Users\fadi\Desktop\ZHPCleaner.txt
2017-05-04 21:47 - 2017-05-04 21:47 - 00001857 _____ C:\Users\fadi\Desktop\eterterterteterter.txt
2017-05-04 21:28 - 2017-05-04 21:47 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-04 21:28 - 2017-05-04 21:47 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-04 21:28 - 2017-05-04 21:28 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-04 21:27 - 2017-05-04 21:47 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-04 21:27 - 2017-05-04 21:46 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-04 21:27 - 2017-05-04 21:27 - 00002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-04 21:27 - 2017-05-04 21:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-04 21:27 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-05-04 21:26 - 2017-05-04 21:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-04 21:26 - 2017-05-04 21:26 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-04 21:25 - 2017-05-04 21:25 - 00016110 _____ C:\Users\fadi\Desktop\rk_1217.tmp.txt
2017-05-04 21:24 - 2017-05-04 21:24 - 00071008 _____ C:\Users\fadi\Desktop\rk_115B.tmp.txt
2017-05-04 20:17 - 2017-05-04 21:30 - 00000000 ____D C:\ProgramData\RogueKiller
2017-05-04 20:16 - 2017-05-04 20:16 - 00001005 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-05-04 20:16 - 2017-05-04 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-05-04 20:16 - 2017-05-04 20:16 - 00000000 ____D C:\Program Files\RogueKiller
2017-05-04 16:49 - 2017-05-04 16:49 - 00101281 _____ C:\Users\fadi\Desktop\ZHPDiag.txt
2017-05-04 16:45 - 2017-05-04 21:49 - 00000000 ____D C:\Users\fadi\AppData\Local\ZHP
2017-05-04 16:44 - 2017-05-04 16:44 - 02722304 _____ C:\Users\fadi\Desktop\ZHPDiag3.exe
2017-05-03 17:51 - 2017-05-03 17:51 - 00000000 ____D C:\Users\fadi\AppData\LocalLow\Adobe
2017-05-03 17:49 - 2017-05-03 17:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-03 17:49 - 2017-05-03 17:49 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-03 17:48 - 2017-05-03 17:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-03 17:48 - 2017-05-03 17:48 - 00000000 ____D C:\Program Files\Adobe
2017-05-03 17:47 - 2017-05-03 17:58 - 00000000 ____D C:\ProgramData\Adobe
2017-05-03 17:37 - 2017-05-03 17:53 - 00000000 ____D C:\Users\fadi\AppData\Local\Adobe
2017-05-03 17:34 - 2017-05-03 17:34 - 00000000 ____D C:\Users\fadi\AppData\Local\CrashRpt
2017-05-03 17:33 - 2017-05-03 23:08 - 00000000 ____D C:\Program Files\Icecream PDF Split and Merge
2017-05-03 17:33 - 2017-05-03 17:33 - 00000000 ____D C:\Users\fadi\AppData\Local\Icecream
2017-05-03 17:33 - 2017-05-03 17:33 - 00000000 ____D C:\Users\fadi\.Icecream PDF Split and Merge
2017-05-02 18:10 - 2017-05-02 18:10 - 05927784 _____ C:\Users\fadi\Downloads\18255745_147737142430555_4163444634208436224_n.mp4
2017-05-02 08:09 - 2017-05-02 12:06 - 00000000 ____D C:\Users\fadi\Downloads\Yassine_El_Jazairi_Warsh
2017-05-02 08:09 - 2017-05-02 09:35 - 00000000 ____D C:\Users\fadi\Downloads\Fares_Abbad_(MP3_Quran)
2017-05-02 08:09 - 2017-05-02 09:27 - 00000000 ____D C:\Users\fadi\Downloads\Maher_Al-Muaiqly_(MP3_Quran)
2017-05-02 08:08 - 2017-05-02 08:08 - 00039220 _____ C:\Users\fadi\Downloads\Quran-IslamHouse-com-Yassine_El_Jazairi_Warsh.torrent
2017-05-02 08:07 - 2017-05-02 08:08 - 00016935 _____ C:\Users\fadi\Downloads\Maher Al-Muaiqly (Updated).torrent
2017-05-02 08:07 - 2017-05-02 08:07 - 00019105 _____ C:\Users\fadi\Downloads\Fares Abbad.torrent
2017-05-01 18:56 - 2017-05-01 18:58 - 05110106 _____ C:\Users\fadi\Downloads\17300345_687769518073212_2086040825115967488_n.mp4
2017-05-01 08:23 - 2017-05-01 08:24 - 00000000 ____D C:\Users\fadi\AppData\Local\Steam
2017-05-01 08:23 - 2017-05-01 08:23 - 00000000 ____D C:\Users\fadi\AppData\Local\CEF
2017-05-01 08:05 - 2017-05-01 08:05 - 00000000 ____D C:\Program Files\Common Files\Steam
2017-05-01 08:04 - 2017-05-01 08:05 - 01446792 _____ C:\Users\fadi\Downloads\SteamSetup.exe
2017-05-01 00:52 - 2017-05-01 01:00 - 25822996 _____ C:\Users\fadi\Downloads\18141006_416811625358592_6359969833701867520_n.mp4
2017-04-30 14:24 - 2017-04-30 14:24 - 00000000 ____D C:\Windows\system32\directx
2017-04-28 05:59 - 2017-04-28 06:00 - 10018452 _____ C:\Users\fadi\Downloads\إجراءات التحقيق المحاسبي في إطار الرقابة الجبائية.pdf
2017-04-27 23:19 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-04-27 23:19 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-04-27 23:19 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-04-27 23:19 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-04-27 23:19 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-04-27 23:19 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-04-27 23:19 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-04-27 23:19 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-04-27 23:19 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-04-27 23:19 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-04-27 23:19 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-04-27 23:19 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-04-27 23:19 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-04-27 23:19 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-04-27 23:19 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-04-27 23:19 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-04-27 23:19 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-04-27 23:19 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-04-27 23:19 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-04-27 23:19 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-04-27 23:19 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-04-27 23:19 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-04-27 23:19 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-04-27 23:19 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-04-27 23:19 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-04-27 23:19 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-04-27 23:19 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-04-27 23:19 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-04-27 23:19 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-04-27 23:19 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-04-27 23:19 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-04-27 23:19 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-04-27 23:19 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-04-27 23:19 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-04-27 23:19 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-04-27 23:19 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-04-27 23:19 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-04-27 23:19 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-04-27 23:19 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-04-27 23:19 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-04-27 23:19 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-04-27 23:19 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-04-27 23:19 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-04-27 23:19 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-04-27 23:19 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-04-27 23:19 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-04-27 23:19 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-04-27 23:19 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-04-27 23:19 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-04-27 23:19 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-04-27 23:19 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-04-27 23:19 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-04-27 23:19 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-04-27 23:19 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-04-27 23:19 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-04-27 23:18 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-04-27 23:18 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-04-27 23:18 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-04-27 23:18 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-04-27 23:18 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-04-27 23:18 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-04-27 23:18 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-04-27 23:18 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-04-27 23:18 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-04-27 23:02 - 2013-01-13 22:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 22:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-04-27 23:02 - 2013-01-13 21:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-04-27 23:02 - 2013-01-13 21:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-04-27 23:02 - 2013-01-13 21:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-04-27 23:02 - 2013-01-13 21:08 - 01504768 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-04-27 23:02 - 2013-01-13 21:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-04-27 23:02 - 2013-01-13 20:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-04-27 23:02 - 2013-01-13 20:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2017-04-27 23:02 - 2013-01-13 20:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-04-27 23:02 - 2013-01-13 20:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-04-27 23:02 - 2013-01-13 19:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-04-27 23:02 - 2013-01-04 07:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-04-27 23:01 - 2013-01-13 21:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-04-27 23:01 - 2013-01-13 21:30 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-04-27 23:01 - 2013-01-13 20:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-04-27 23:01 - 2013-01-13 20:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-04-27 23:01 - 2013-01-13 20:43 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-04-27 23:01 - 2013-01-13 20:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-04-27 23:01 - 2013-01-13 18:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-04-27 22:55 - 2017-04-27 22:55 - 00785920 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2017-04-27 22:55 - 2017-04-27 22:55 - 00109632 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2017-04-27 22:55 - 2017-04-27 22:55 - 00085608 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2017-04-27 22:52 - 2017-04-27 22:52 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2017-04-27 22:52 - 2017-04-27 22:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-27 22:52 - 2012-07-26 04:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-04-27 22:52 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-04-27 22:52 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-04-27 22:52 - 2012-06-02 15:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-04-27 22:51 - 2017-04-27 22:51 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2017-04-27 22:51 - 2017-04-27 22:51 - 00026792 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-27 22:51 - 2017-04-27 22:51 - 00000000 ____D C:\Program Files\Synaptics
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____D C:\Windows\system32\DAX3
2017-04-27 22:38 - 2017-04-27 22:38 - 00000000 ____D C:\Windows\system32\DAX2
2017-04-27 22:37 - 2017-04-27 22:37 - 00000000 ____D C:\Windows\system32\RTCOM
2017-04-27 22:37 - 2017-04-27 22:37 - 00000000 ____D C:\Program Files\Realtek
2017-04-27 22:36 - 2017-04-27 22:36 - 20837904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 20653608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 12016264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO30.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 11924336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO40.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 07170864 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 05520480 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 05312848 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 04982552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 04298752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-04-27 22:36 - 2017-04-27 22:36 - 03173736 _____ (DTS, Inc.) C:\Windows\system32\slcnt32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02904576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02800320 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02558352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 02149376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01832064 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01791792 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01400800 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01279312 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 01074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00965680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00954192 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00936608 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00911080 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00905304 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00868448 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00866096 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00860520 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo2.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00836144 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00735920 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00726120 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00571632 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00522704 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00472528 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00459296 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00390936 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00364016 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00357152 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00232752 _____ (TODO:
2017-04-27 22:36 - 2017-04-27 22:36 - 00225040 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00196008 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00183608 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00150552 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00144680 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00116648 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00101616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00083640 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00078480 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00071704 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00067752 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\TepeqAPO.dll
2017-04-27 22:36 - 2017-04-27 22:36 - 00022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-04-27 22:35 - 2017-04-27 22:36 - 13798176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-04-27 22:35 - 2017-04-27 22:35 - 16373264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-27 22:35 - 2017-04-27 22:35 - 07053688 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2017-04-27 22:35 - 2017-04-27 22:35 - 04244232 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 02946560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-04-27 22:35 - 2017-04-27 22:35 - 02920008 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01948800 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01824928 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01531672 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01527752 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01512312 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01502640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO70.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01313120 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01239800 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01224040 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01201808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO60.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01134776 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01029832 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 01025040 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00992608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00799008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00669584 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00645816 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00631152 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00615872 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00584888 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00522704 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00471280 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00439600 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00415864 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00402064 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00387624 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00370024 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32APO2.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00369784 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00367352 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00363416 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00357984 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00340816 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00322064 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00316424 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00285624 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00243856 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00232416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229584 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229584 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00229032 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00221904 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00214664 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00214664 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00200728 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00197440 _____ C:\Windows\system32\AcpiServiceVnA.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00142320 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00130296 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00098008 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32api.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00096600 _____ C:\Windows\system32\audioLibVc.dll
2017-04-27 22:35 - 2017-04-27 22:35 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2017-04-27 22:35 - 2017-04-27 22:35 - 00000736 _____ C:\Windows\system32\cxapo.prop
2017-04-27 22:14 - 2017-04-28 05:59 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-04-27 22:14 - 2017-04-27 22:14 - 03365624 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys
2017-04-27 21:51 - 2017-04-27 21:51 - 00015013 _____ C:\Users\fadi\Downloads\Counter.Strike.Global.Offensive.v1.35.7.6.torrent
2017-04-27 16:39 - 2016-02-22 22:25 - 00000000 ____D C:\Users\fadi\Desktop\channel1
2017-04-27 06:01 - 2017-04-27 06:01 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Google
2017-04-26 08:05 - 2017-04-26 08:05 - 00011419 _____ C:\Users\fadi\Downloads\Char7-kitab-3a9idet-ahl-suna-Othaimin-Up-By-MusleM_archive.torrent
2017-04-25 18:53 - 2017-04-25 19:58 - 771381956 _____ C:\Users\fadi\Downloads\TO-AOT-v340-v350.zip
2017-04-24 20:16 - 2015-06-07 00:08 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-24 20:16 - 2015-06-07 00:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-24 20:15 - 2017-04-30 14:25 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-24 20:13 - 2017-04-24 20:14 - 13767776 _____ (Microsoft Corporation) C:\Users\fadi\Downloads\vc_redist.x86.exe
2017-04-17 04:00 - 2017-04-17 04:04 - 28831622 _____ C:\Users\fadi\Downloads\العلاقة بين البط
2017-04-17 03:55 - 2017-04-17 04:03 - 46493424 _____ C:\Users\fadi\Downloads\علي عزوز.pdf
2017-04-17 03:38 - 2017-04-17 03:38 - 00000000 ____D C:\Users\fadi\Downloads\ThesesDZEngMastr
2017-04-16 18:17 - 2017-05-01 08:31 - 00000000 ____D C:\Users\fadi\AppData\Local\CrashDumps
2017-04-15 16:50 - 2017-04-15 16:50 - 00161820 _____ C:\Users\fadi\Downloads\أدلة الإثبات في المراجعة ووسائل الحصول عليها.pptx
2017-04-14 23:23 - 2017-04-14 23:23 - 00000069 _____ C:\Windows\system32\sboot32.ocx
2017-04-14 23:21 - 2017-04-14 23:21 - 00000000 ____D C:\ProgramData\TheGreenBow
2017-04-14 23:21 - 2017-04-14 23:21 - 00000000 ____D C:\Program Files\Common Files\temp
2017-04-14 10:00 - 2017-04-14 10:00 - 00165684 _____ C:\Users\fadi\Downloads\pdf2doc.zip
2017-04-13 20:01 - 2017-04-11 12:49 - 10718109 ____N C:\Users\fadi\Desktop\Voice 002.m4a
2017-04-13 20:01 - 2017-04-11 12:36 - 55161843 ____N C:\Users\fadi\Desktop\Voice 001.m4a
2017-04-13 20:00 - 2017-04-13 20:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-04-13 07:49 - 2017-04-13 07:49 - 00000000 ____H C:\Users\fadi\Desktop\~WRL1253.tmp
2017-04-09 08:29 - 2017-05-01 00:52 - 00000000 ____D C:\Users\fadi\Documents\MassFaces
2017-04-09 08:29 - 2017-04-09 08:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\MassFaces
2017-04-09 08:29 - 2017-04-09 08:29 - 00001074 _____ C:\Users\Public\Desktop\MassFaces.lnk
2017-04-09 08:29 - 2017-04-09 08:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MassFaces
2017-04-09 08:29 - 2017-04-09 08:29 - 00000000 ____D C:\Program Files\MassFaces
2017-04-06 09:20 - 2017-04-06 11:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2017-04-06 05:13 - 2017-04-06 05:13 - 00033187 _____ C:\Users\fadi\Desktop\Bh-dr7lIIAA6_Hu.jpg-large
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-05 16:22 - 2017-02-21 00:25 - 00000000 ____D C:\FRST
2017-05-05 11:50 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\Downloads\Compressed
2017-05-05 00:02 - 2017-02-20 02:23 - 00000000 ____D C:\Users\fadi\AppData\Roaming\ZHP
2017-05-05 00:02 - 2017-02-09 07:59 - 00000000 ____D C:\Users\fadi\AppData\LocalLow\Mozilla
2017-05-04 21:53 - 2009-07-14 05:34 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-04 21:53 - 2009-07-14 05:34 - 00022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-04 21:46 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-04 21:44 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\AppData\Roaming\DMCache
2017-05-04 20:18 - 2017-02-19 23:54 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-05-04 13:16 - 2017-03-02 15:40 - 00000030 _____ C:\Windows\QQPlayer.INI
2017-05-04 11:47 - 2017-02-06 03:35 - 00000000 ____D C:\Tactical Ops
2017-05-03 17:51 - 2017-02-24 16:32 - 00000000 ____D C:\Users\fadi\AppData\Roaming\Adobe
2017-05-03 17:33 - 2017-02-05 18:08 - 00000000 ____D C:\Users\fadi
2017-05-03 08:15 - 2017-02-22 02:44 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-03 08:15 - 2017-02-22 02:44 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-02 16:22 - 2017-02-20 03:33 - 00000000 ____D C:\ProgramData\ProductData
2017-05-02 16:22 - 2017-02-20 02:24 - 00000000 ____D C:\Program Files\IObit
2017-05-02 16:20 - 2009-07-14 03:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-05-02 16:18 - 2009-07-14 05:53 - 00032656 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-05-02 13:55 - 2017-02-24 16:53 - 00000000 ____D C:\Users\fadi\AppData\Roaming\uTorrent
2017-05-01 09:27 - 2017-02-17 14:26 - 00000000 ____D C:\ProgramData\TEMP
2017-04-30 14:44 - 2017-03-18 13:44 - 00000000 ____D C:\Users\fadi\AppData\Local\ElevatedDiagnostics
2017-04-29 10:47 - 2017-02-09 07:59 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-04-27 23:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-04-27 22:18 - 2011-02-07 13:31 - 00742926 _____ C:\Windows\system32\perfh00C.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00476688 _____ C:\Windows\system32\perfh001.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00147812 _____ C:\Windows\system32\perfc00C.dat
2017-04-27 22:18 - 2011-02-07 13:31 - 00093310 _____ C:\Windows\system32\perfc001.dat
2017-04-27 22:18 - 2010-11-20 22:01 - 02219686 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-17 22:04 - 2017-02-05 17:42 - 00000000 ____D C:\Users\fadi\AppData\Local\Microsoft Games
2017-04-16 17:44 - 2017-02-25 04:40 - 00000000 ___SD C:\Users\fadi\AppData\LocalLow\Temp
2017-04-12 21:59 - 2017-02-24 16:09 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-04-12 21:59 - 2017-02-24 16:09 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-04-12 21:59 - 2017-02-24 16:08 - 00000000 ____D C:\Windows\system32\Macromed
2017-04-12 06:55 - 2017-02-05 17:30 - 00000000 ____D C:\Users\fadi\Downloads\Video
2017-04-07 06:33 - 2017-02-05 18:01 - 00000000 ____D C:\Program Files\WinRAR
2017-04-07 06:07 - 2017-03-30 12:29 - 00000000 ____D C:\Program Files\EveryonePiano
==================== Files in the root of some directories =======
2017-03-02 15:40 - 2017-03-18 09:41 - 0000056 _____ () C:\Users\fadi\AppData\Roaming\coreavc.ini
2017-04-27 22:38 - 2017-04-27 22:38 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2016-04-15 19:49 - 2016-04-15 19:49 - 0313656 _____ (QQPlayer.NET ) C:\Users\fadi\AppData\Local\Temp\Arabic.lng.exe
2017-05-04 20:17 - 2010-11-20 22:29 - 1288488 _____ (Microsoft Corporation) C:\Users\fadi\AppData\Local\Temp\dllnt_dump.dll
2016-04-16 04:49 - 2016-04-16 04:49 - 0307498 _____ (QQPlayer.NET ) C:\Users\fadi\AppData\Local\Temp\English.lng.exe
2017-02-22 01:30 - 2016-12-23 03:03 - 3698888 _____ (Foxit Corporation) C:\Users\fadi\AppData\Local\Temp\FoxitUpdater.exe
2016-04-15 19:35 - 2016-04-15 19:35 - 32608200 _____ (腾讯科技(深圳)有限公司) C:\Users\fadi\AppData\Local\Temp\QQPlayer_Setup.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-25 21:08
==================== End of FRST.txt ============================