FRST.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-05-2017
Ran by منير (administrator) on WERFLLAH (15-05-2017 00:44:55)
Running from C:\Users\منير\Desktop
Loaded Profiles: منير (Available Profiles: منير)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: العربية (السعودية)‏
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(Tenorshare Co,Ltd) D:\Any Data Recovery Pro\service\TenorshareDataRecoveryService.exe
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(HUAWEI) C:\Program Files\Cela.C.M_HW\Cela.C.M.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-3139794459-3927556288-4145378674-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-11] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => D:\نسخة محمولة IDMan 6.28 Build 1\App\IDM\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 12.lnk [2017-05-08]
ShortcutTarget: Snagit 12.lnk -> C:\Program Files\TechSmith\Snagit 12\Snagit32.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{04BCD300-FABE-4578-B60B-D50A3888E9F3}: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{0AC26475-E91C-4E24-B494-9444090870B1}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0AC26475-E91C-4E24-B494-9444090870B1}: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{2CC34DF0-E726-41BE-8A08-A27AF3FF37E3}: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{5F0384D5-9992-4991-879F-1ED6A81B3F08}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5F0384D5-9992-4991-879F-1ED6A81B3F08}: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{D09ADE6F-0DAE-4BE5-BA46-E2B91FA7C94F}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{D09ADE6F-0DAE-4BE5-BA46-E2B91FA7C94F}: [DhcpNameServer] 62.240.32.5 62.68.42.2
Tcpip\..\Interfaces\{D5710367-1935-48EC-BA55-B21EB59103CF}: [DhcpNameServer] 62.240.32.5 62.68.42.2

Internet Explorer:
==================

FireFox:
========
FF HKU\S-1-5-21-3139794459-3927556288-4145378674-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - D:\نسخة محمولة IDMan 6.28 Build 1\Data\IDM\idmmzcc5
FF Extension: (IDM CC) - D:\نسخة محمولة IDMan 6.28 Build 1\Data\IDM\idmmzcc5 [2017-04-21] [not signed]
FF HKU\S-1-5-21-3139794459-3927556288-4145378674-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - D:\نسخة محمولة IDMan 6.28 Build 1\App\IDM\idmmzcc2.xpi
FF Extension: (IDM integration) - D:\نسخة محمولة IDMan 6.28 Build 1\App\IDM\idmmzcc2.xpi [2017-01-26]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\منير\AppData\Local\Google\Chrome\User Data\Default [2017-05-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\منير\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-12]
CHR Extension: (Chrome Media Router) - C:\Users\منير\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\نسخة محمولة IDMan 6.28 Build 1\App\IDM\IDMGCExt.crx [2017-04-21]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2069424 2017-03-09] (ESET)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 TenorshareDataRecoveryService; D:\Any Data Recovery Pro\service\TenorshareDataRecoveryService [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 bcm; C:\Windows\System32\DRIVERS\drxvi314.sys [324096 2010-06-18] (Beceem communications pvt ltd.)
R3 bcmbusctr; C:\Windows\System32\DRIVERS\BcmBusCtr.sys [51072 2010-06-18] (Beceem communications pvt ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [113032 2017-03-09] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [90656 2017-03-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [139384 2017-03-09] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43920 2017-03-09] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [69304 2017-03-09] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [52680 2017-03-09] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [86504 2017-03-09] (ESET)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [220088 2017-05-15] (Malwarebytes)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2017-05-12] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-15 00:22 - 2017-05-15 00:44 - 00007557 _____ C:\Users\منير\Desktop\FRST.txt
2017-05-15 00:20 - 2017-05-15 00:22 - 00020726 _____ C:\Users\منير\Desktop\Addition.txt
2017-05-15 00:14 - 2017-05-15 00:15 - 00000000 ____D C:\Users\منير\Desktop\FRST-OlderVersion
2017-05-15 00:12 - 2017-05-15 00:44 - 00000000 ____D C:\FRST
2017-05-15 00:12 - 2017-05-15 00:14 - 01770496 _____ (Farbar) C:\Users\منير\Desktop\FRST.exe
2017-05-14 18:49 - 2017-05-14 18:49 - 00000000 _____ C:\Users\منير\Desktop\مستند نصي جديد ‫(2)‬.txt
2017-05-14 18:43 - 2017-05-14 18:44 - 00004552 _____ C:\TDSSKiller.3.1.0.15_14.05.2017_18.43.57_log.txt
2017-05-14 18:33 - 2017-05-14 18:33 - 00000000 ____D C:\TDSSKiller_Quarantine
2017-05-14 18:28 - 2017-05-14 18:39 - 00539420 _____ C:\TDSSKiller.3.1.0.15_14.05.2017_18.28.17_log.txt
2017-05-14 18:21 - 2017-05-14 18:23 - 00004682 _____ C:\TDSSKiller.3.1.0.15_14.05.2017_18.21.21_log.txt
2017-05-14 13:34 - 2017-05-14 13:34 - 00000819 _____ C:\Users\منير\Desktop\ZHPDiag.lnk
2017-05-14 00:07 - 2017-05-14 13:37 - 00000000 ____D C:\Users\منير\AppData\Local\ZHP
2017-05-13 17:12 - 2017-05-13 17:13 - 00000000 ____D C:\Users\منير\AppData\Local\ElevatedDiagnostics
2017-05-13 12:48 - 2017-05-13 17:15 - 00508138 _____ C:\Windows\ntbtlog.txt
2017-05-13 12:15 - 2017-05-14 14:25 - 00000093 _____ C:\Users\منير\Desktop\مستند نصي جديد ‫‬.txt
2017-05-12 17:40 - 2017-05-12 17:41 - 00000000 ____D C:\Program Files\Cela.C.M_HW
2017-05-12 17:40 - 2017-05-12 17:40 - 00000996 _____ C:\Users\Public\Desktop\Cela.C.M.lnk
2017-05-12 17:40 - 2017-05-12 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cela.C.M
2017-05-12 15:29 - 2017-05-12 15:29 - 00000000 ____D C:\Users\منير\AppData\Local\MiniService
2017-05-12 15:29 - 2017-05-12 15:29 - 00000000 ____D C:\Users\Public\Documents\Baidu
2017-05-12 13:57 - 2017-05-12 13:57 - 00000000 ____D C:\Users\منير\AppData\Roaming\Tenorshare
2017-05-12 13:42 - 2017-05-12 13:42 - 00000829 _____ C:\Users\منير\Desktop\ZHPCleaner.lnk
2017-05-12 10:38 - 2017-05-12 12:23 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-05-12 02:44 - 2017-05-12 12:11 - 00000000 ____D C:\ProgramData\RogueKiller
2017-05-12 00:25 - 2017-05-12 00:25 - 00267016 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-12 00:22 - 2017-05-12 00:22 - 00058016 _____ C:\Users\منير\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-11 18:58 - 2017-05-11 19:03 - 02725376 _____ C:\Users\منير\Documents\ZHPDiag3.exe
2017-05-11 18:48 - 2017-05-11 18:45 - 02725376 _____ C:\Users\منير\ZHPDiag3.exe
2017-05-11 16:45 - 2017-05-11 16:42 - 00310432 _____ C:\Users\منير\Desktop\كل عام وانت بالف خير.mp4
2017-05-10 00:55 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-05-10 00:55 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 00:55 - 2017-04-28 02:36 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-05-10 00:55 - 2017-04-28 02:36 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-05-10 00:55 - 2017-04-28 02:34 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-05-10 00:55 - 2017-04-26 16:51 - 02400768 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-10 00:55 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 00:55 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 00:55 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 00:55 - 2017-04-17 17:12 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 00:55 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-05-10 00:55 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-10 00:55 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 00:55 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 00:55 - 2017-04-16 09:47 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-10 00:55 - 2017-04-16 09:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-05-10 00:55 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 00:55 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 00:55 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 00:55 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 00:55 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-05-10 00:55 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 00:55 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 00:55 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 00:55 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 00:55 - 2017-04-07 17:26 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 00:55 - 2017-04-07 17:26 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-10 00:55 - 2017-04-07 17:21 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-10 00:55 - 2017-04-05 17:00 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 00:55 - 2017-04-05 17:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 00:55 - 2017-04-04 17:25 - 01309928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-05-10 00:55 - 2017-04-04 17:25 - 00240872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-05-10 00:55 - 2017-04-04 17:25 - 00187624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 00:55 - 2017-04-04 16:52 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-05-10 00:55 - 2017-04-04 16:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-05-10 00:54 - 2017-04-28 02:32 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-05-10 00:54 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-05-10 00:54 - 2017-04-28 02:11 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-05-10 00:54 - 2017-04-28 02:11 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-05-10 00:54 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-05-10 00:54 - 2017-04-28 02:11 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-05-10 00:54 - 2017-04-28 02:11 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-05-10 00:54 - 2017-04-28 02:09 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-05-10 00:54 - 2017-04-28 02:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-10 00:54 - 2017-04-28 02:07 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-10 00:54 - 2017-04-28 02:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-10 00:54 - 2017-04-28 02:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-05-10 00:54 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-05-10 00:54 - 2017-04-28 02:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-05-10 00:54 - 2017-04-28 02:07 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-05-10 00:54 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 17:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-05-10 00:54 - 2017-04-17 16:51 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-05-10 00:54 - 2017-04-17 16:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 16:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 16:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 00:54 - 2017-04-17 16:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 00:54 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-05-10 00:54 - 2017-04-16 10:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-05-10 00:54 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-05-10 00:54 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-05-10 00:54 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-05-10 00:54 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 00:54 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-05-10 00:54 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-05-10 00:54 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-05-10 00:54 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-10 00:54 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-05-10 00:54 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-05-10 00:54 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-05-10 00:54 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 00:54 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-05-10 00:54 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-05-10 00:54 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 00:54 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-05-10 00:54 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-10 00:54 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 00:54 - 2017-04-16 09:10 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 00:54 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-10 00:54 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-05-10 00:54 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-05-10 00:54 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-05-10 00:54 - 2017-04-07 17:20 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-05-10 00:54 - 2017-04-05 17:00 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-05-09 21:13 - 2017-05-09 21:13 - 00000000 ____D C:\Users\منير\AppData\Roaming\ESET
2017-05-09 21:12 - 2017-05-09 21:12 - 00000000 ____D C:\Users\منير\AppData\Local\ESET
2017-05-09 21:06 - 2017-05-09 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-05-09 21:06 - 2017-05-09 21:06 - 00000000 ____D C:\ProgramData\ESET
2017-05-09 21:06 - 2017-05-09 21:06 - 00000000 ____D C:\Program Files\ESET
2017-05-08 19:25 - 2017-05-08 19:25 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2017-05-08 19:22 - 2017-05-08 19:22 - 00000000 ____D C:\Program Files\Common Files\TechSmith Shared
2017-05-08 19:21 - 2017-05-08 19:22 - 00000000 ____D C:\ProgramData\TechSmith
2017-05-08 19:21 - 2017-05-08 19:21 - 00000000 ____D C:\Users\منير\AppData\Local\TechSmith
2017-05-08 19:17 - 2017-05-08 19:54 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-08 18:21 - 2017-05-15 00:00 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-08 18:19 - 2017-05-08 18:19 - 00002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-08 18:19 - 2017-05-08 18:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-08 18:19 - 2017-05-08 18:19 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-08 18:19 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-05-08 15:49 - 2017-05-08 15:49 - 00031616 _____ (Connectify) C:\Windows\system32\Drivers\cfywlan1.sys
2017-05-07 09:22 - 2017-05-07 09:22 - 00000374 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-05-04 11:50 - 2017-05-04 11:50 - 00000000 ____D C:\Users\منير\AppData\Roaming\Notepad++
2017-05-04 11:50 - 2017-05-04 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-05-04 11:50 - 2017-05-04 11:50 - 00000000 ____D C:\Program Files\Notepad++
2017-05-02 16:38 - 2017-05-02 16:38 - 00023244 _____ C:\Users\منير\Documents\cc_20170502_173810.reg
2017-04-30 00:42 - 2017-04-30 00:42 - 00015281 _____ C:\Users\diakov\Downloads\driver-booster.htm
2017-04-30 00:42 - 2017-04-30 00:42 - 00000000 ____D C:\Users\diakov
2017-04-29 15:12 - 2017-04-29 15:12 - 00000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2017-04-27 11:56 - 2017-05-04 14:00 - 00000150 _____ C:\Users\منير\Documents\مستند نصي جديد ‫‬.txt
2017-04-26 20:48 - 2017-01-20 15:01 - 00000364 _____ C:\Users\منير\config.txt
2017-04-26 13:40 - 2017-04-26 17:59 - 00000000 ____D C:\Users\منير\AppData\Roaming\MPC-HC
2017-04-26 13:39 - 2017-04-26 13:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2017-04-26 13:39 - 2017-04-26 13:39 - 00000000 ____D C:\Program Files\MPC-HC
2017-04-26 10:57 - 2017-04-26 10:57 - 00000000 ____D C:\Users\منير\AppData\Local\CEF
2017-04-26 10:46 - 2017-04-26 21:27 - 00000000 ____D C:\Users\منير\AppData\Local\AvgSetupLog
2017-04-26 10:46 - 2017-04-26 11:27 - 00000000 ____D C:\Users\منير\AppData\Local\Avg
2017-04-25 23:19 - 2017-04-25 23:19 - 00000000 ____D C:\Windows\erdnt
2017-04-25 21:55 - 2017-05-14 13:37 - 00000000 ____D C:\Users\منير\AppData\Roaming\ZHP
2017-04-24 02:37 - 2017-04-24 02:37 - 00000000 ____D C:\Users\منير\Desktop\Picosmos Capture
2017-04-23 12:31 - 2017-04-23 12:31 - 00000000 ___SD C:\Windows\system32\CompatTel
2017-04-23 12:31 - 2017-04-23 12:31 - 00000000 ____D C:\Windows\system32\appraiser
2017-04-23 11:10 - 2012-02-11 07:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2017-04-23 11:10 - 2011-03-11 07:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2017-04-23 11:10 - 2011-03-11 07:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2017-04-23 11:10 - 2011-03-11 07:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2017-04-23 11:10 - 2011-03-11 07:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2017-04-23 11:10 - 2011-03-11 07:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2017-04-23 11:10 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2017-04-23 11:10 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2017-04-23 11:09 - 2017-02-23 01:29 - 00071400 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-04-23 11:09 - 2017-02-23 01:24 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-04-23 11:09 - 2017-02-18 16:05 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-04-23 11:09 - 2017-02-18 16:05 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-04-23 11:09 - 2016-12-31 17:36 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-04-23 11:09 - 2016-12-31 17:36 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-04-23 11:09 - 2016-12-31 17:36 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-04-23 11:09 - 2016-12-31 17:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-04-23 11:09 - 2016-12-31 17:36 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-04-23 11:09 - 2016-03-24 00:39 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2017-04-23 11:09 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2017-04-23 11:09 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2017-04-23 11:09 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2017-04-23 11:09 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2017-04-23 11:09 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2017-04-22 10:58 - 2017-04-22 10:58 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-04-21 21:27 - 2016-09-21 18:43 - 00140936 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmtdi32.sys
2017-04-21 19:32 - 2017-05-02 17:39 - 00000000 ____D C:\Users\منير\AppData\Roaming\DMCache
2017-04-21 19:00 - 2016-10-17 17:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp32.sys
2017-04-21 19:00 - 2016-09-21 18:43 - 00140936 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmtdi.sys
2017-04-21 18:58 - 2016-10-17 17:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2017-04-21 18:21 - 2017-04-21 19:31 - 00000000 ____D C:\Users\منير\AppData\Roaming\IDM
2017-04-21 18:21 - 2017-04-21 18:21 - 00000000 ____D C:\ProgramData\IDM
2017-04-21 17:56 - 2017-04-21 17:56 - 00000632 _____ C:\Users\منير\Desktop\Any Data Recovery Pro.lnk
2017-04-21 17:56 - 2017-04-21 17:56 - 00000000 ____D C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Any Data Recovery Pro
2017-04-21 09:12 - 2017-04-21 09:15 - 19808256 _____ C:\Windows\system32\config\COMPONENTS.tmp
2017-04-21 09:12 - 2017-04-21 09:12 - 00081920 _____ C:\Windows\system32\config\DEFAULT.tmp
2017-04-21 09:12 - 2017-04-21 09:12 - 00028672 _____ C:\Windows\system32\config\SAM.tmp
2017-04-21 09:08 - 2017-04-21 09:12 - 34127872 _____ C:\Windows\system32\config\SOFTWARE.tmp
2017-04-21 08:56 - 2017-04-21 09:08 - 12226560 _____ C:\Windows\system32\config\SYSTEM.tmp
2017-04-21 08:20 - 2017-04-21 08:20 - 00000000 ____D C:\Program Files\CONEXANT
2017-04-21 08:17 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-04-21 08:17 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-04-21 08:17 - 2017-03-10 17:52 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-04-21 08:17 - 2017-03-10 17:51 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-04-21 08:17 - 2017-03-10 17:51 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-04-21 08:17 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-04-21 07:55 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-04-20 14:05 - 2017-05-02 16:01 - 00000000 ____D C:\ProgramData\ProductData
2017-04-20 14:05 - 2017-04-29 15:14 - 00000000 ____D C:\Program Files\Common Files\IObit
2017-04-20 14:04 - 2017-05-02 16:01 - 00000000 ____D C:\ProgramData\IObit
2017-04-20 11:04 - 2017-04-20 11:08 - 00000000 ____D C:\Users\منير\AppData\Local\SquirrelTemp
2017-04-20 08:23 - 2017-02-10 16:33 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-04-20 08:23 - 2017-02-10 16:33 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-04-20 08:23 - 2016-10-11 15:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2017-04-20 08:22 - 2017-03-22 17:24 - 02953216 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-04-20 08:22 - 2017-03-22 17:24 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-04-20 08:22 - 2017-03-22 17:20 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-04-20 08:22 - 2017-03-22 17:06 - 02091520 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-20 08:22 - 2017-03-22 17:05 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-04-20 08:22 - 2017-03-22 17:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-04-20 08:22 - 2017-03-22 17:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-04-20 08:22 - 2017-03-22 17:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-04-20 08:22 - 2017-03-22 17:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-04-20 08:22 - 2017-03-22 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-04-20 08:22 - 2017-03-22 17:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-04-20 08:22 - 2017-03-10 18:27 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-04-20 08:22 - 2017-03-10 18:19 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-04-20 08:22 - 2017-03-10 18:19 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-04-20 08:22 - 2017-03-10 18:19 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-04-20 08:22 - 2017-03-10 17:53 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-04-20 08:22 - 2017-03-07 18:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-04-20 08:22 - 2017-03-04 03:14 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-04-20 08:22 - 2017-03-04 03:14 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2017-04-20 08:22 - 2017-02-14 18:19 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-04-20 08:22 - 2017-02-10 18:17 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-04-20 08:22 - 2017-02-09 18:14 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-04-20 08:22 - 2017-02-09 18:14 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2017-04-20 08:22 - 2017-02-09 18:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-04-20 08:22 - 2017-02-09 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2017-04-20 08:22 - 2017-02-09 17:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2017-04-20 08:22 - 2017-02-06 18:03 - 00497152 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-04-20 08:22 - 2017-01-18 17:35 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-20 08:22 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-20 08:22 - 2017-01-13 19:45 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-04-20 08:22 - 2017-01-13 19:45 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-04-20 08:22 - 2017-01-11 19:43 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-04-20 08:22 - 2017-01-11 19:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2017-04-20 08:22 - 2016-11-20 18:19 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2017-04-20 08:22 - 2016-11-20 16:07 - 00373896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-04-20 08:22 - 2016-11-17 18:27 - 00250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-04-20 08:22 - 2016-11-10 18:19 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-04-20 08:22 - 2016-11-09 18:24 - 00105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2017-04-20 08:22 - 2016-11-09 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2017-04-20 08:22 - 2016-11-09 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2017-04-20 08:22 - 2016-11-09 18:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2017-04-20 08:22 - 2016-11-09 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2017-04-20 08:22 - 2016-11-09 17:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2017-04-20 08:22 - 2016-10-11 17:18 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2017-04-20 08:22 - 2016-10-11 17:18 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-04-20 08:22 - 2016-10-11 17:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2017-04-20 08:22 - 2016-10-11 17:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-04-20 08:22 - 2016-10-11 17:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2017-04-20 08:22 - 2016-10-11 17:18 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2017-04-20 08:22 - 2016-10-11 15:18 - 00419648 _____ C:\Windows\system32\locale.nls
2017-04-20 08:22 - 2016-10-08 15:05 - 00534600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-04-20 08:22 - 2016-10-07 17:12 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2017-04-20 08:22 - 2016-10-07 17:12 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2017-04-20 08:22 - 2016-10-05 16:50 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2017-04-20 08:22 - 2016-09-15 16:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2017-04-20 08:22 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2017-04-20 08:22 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2017-04-20 08:22 - 2016-09-08 16:49 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2017-04-20 08:22 - 2016-09-08 16:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-04-20 08:22 - 2016-08-21 15:05 - 00935424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-04-20 08:22 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-04-20 08:22 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-04-20 08:22 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-04-20 08:22 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-04-20 08:22 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-04-20 08:22 - 2016-08-12 18:21 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2017-04-20 08:22 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-04-20 08:22 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2017-04-20 08:22 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-04-20 08:22 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2017-04-20 08:22 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2017-04-20 08:22 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2017-04-20 08:22 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2017-04-20 08:22 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2017-04-20 08:22 - 2016-06-14 17:25 - 00078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2017-04-20 08:22 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2017-04-20 08:22 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-04-20 08:22 - 2016-06-14 17:17 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2017-04-20 08:22 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-04-20 08:22 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-04-20 08:22 - 2016-06-14 17:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2017-04-20 08:21 - 2016-11-09 18:17 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-04-20 08:21 - 2016-10-11 16:51 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2017-04-20 08:21 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2017-04-20 08:21 - 2016-06-14 17:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2017-04-20 08:21 - 2016-06-14 17:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2017-04-20 08:21 - 2016-06-14 16:55 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2017-04-20 08:21 - 2016-06-14 16:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2017-04-20 08:21 - 2016-06-14 16:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2017-04-19 16:13 - 2017-05-10 02:09 - 00000000 ____D C:\Windows\system32\MRT
2017-04-19 16:13 - 2017-05-10 01:49 - 153591048 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-19 15:30 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-04-19 15:29 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2017-04-19 15:29 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2017-04-19 15:29 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2017-04-19 15:29 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2017-04-19 15:29 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2017-04-19 15:29 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2017-04-19 15:29 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2017-04-19 15:29 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2017-04-19 15:29 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2017-04-19 15:28 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2017-04-19 15:28 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-04-19 15:28 - 2014-07-17 03:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-04-19 15:28 - 2014-07-17 03:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2017-04-19 15:28 - 2014-07-17 03:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2017-04-19 15:28 - 2014-07-17 03:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-04-19 15:26 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-04-19 15:26 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2017-04-19 15:24 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-04-19 15:10 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-04-19 15:06 - 2017-05-12 00:19 - 00007649 _____ C:\Users\منير\AppData\Local\Resmon.ResmonCfg
2017-04-19 13:39 - 2014-06-19 00:23 - 01131664 _____ (شركة Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-04-19 13:39 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2017-04-19 13:39 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2017-04-19 13:36 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2017-04-19 13:36 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2017-04-19 13:36 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2017-04-19 13:36 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2017-04-19 13:05 - 2017-04-19 13:05 - 00000000 ____D C:\Users\منير\AppData\Roaming\Adobe
2017-04-19 12:54 - 2017-04-19 12:54 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2017-04-19 12:54 - 2017-04-19 12:54 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2017-04-19 12:54 - 2017-04-19 12:54 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2017-04-19 12:54 - 2017-04-19 12:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2017-04-19 12:54 - 2017-04-19 12:54 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2017-04-19 12:54 - 2017-04-19 12:54 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2017-04-19 12:54 - 2017-04-19 12:54 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2017-04-19 12:54 - 2017-04-19 12:54 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2017-04-19 12:52 - 2017-04-19 12:52 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2017-04-19 12:52 - 2017-04-19 12:52 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2017-04-19 02:59 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2017-04-19 02:58 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2017-04-19 02:58 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2017-04-19 02:58 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2017-04-19 00:51 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-04-19 00:51 - 2016-03-24 00:42 - 00409272 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-04-19 00:51 - 2016-03-24 00:39 - 00470704 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-04-19 00:41 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2017-04-19 00:41 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2017-04-19 00:40 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2017-04-19 00:38 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-04-19 00:38 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2017-04-19 00:34 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2017-04-19 00:34 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2017-04-19 00:34 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2017-04-19 00:33 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2017-04-19 00:33 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2017-04-19 00:33 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2017-04-19 00:07 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-04-19 00:06 - 2016-06-25 21:53 - 00779776 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-04-19 00:06 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-04-19 00:06 - 2016-06-25 21:53 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-04-19 00:06 - 2016-06-25 21:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-04-19 00:06 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-04-19 00:06 - 2016-06-25 21:41 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2017-04-19 00:06 - 2015-07-15 04:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2017-04-19 00:02 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-04-19 00:01 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2017-04-19 00:01 - 2015-11-05 11:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2017-04-19 00:00 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-04-19 00:00 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2017-04-19 00:00 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2017-04-19 00:00 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2017-04-19 00:00 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2017-04-19 00:00 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2017-04-19 00:00 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2017-04-18 23:59 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2017-04-18 23:59 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2017-04-18 23:59 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-04-18 23:59 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2017-04-18 23:59 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2017-04-18 23:59 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2017-04-18 23:59 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2017-04-18 23:59 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2017-04-18 23:59 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2017-04-18 23:59 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2017-04-18 23:59 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2017-04-18 23:59 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2017-04-18 23:59 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2017-04-18 23:59 - 2015-12-08 23:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2017-04-18 23:59 - 2015-12-08 23:11 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2017-04-18 23:59 - 2015-12-08 23:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2017-04-18 23:53 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2017-04-18 23:53 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2017-04-18 23:53 - 2012-10-03 18:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-04-18 23:51 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2017-04-18 23:34 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-04-18 23:34 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2017-04-18 23:34 - 2012-04-26 06:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2017-04-18 23:34 - 2012-04-26 06:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2017-04-18 23:30 - 2014-12-19 04:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-04-18 23:27 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2017-04-18 23:27 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2017-04-18 23:27 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2017-04-18 23:27 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2017-04-18 23:26 - 2013-06-26 00:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-04-18 23:25 - 2012-07-04 21:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2017-04-18 23:25 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2017-04-18 23:25 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2017-04-18 23:22 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-04-18 23:22 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-04-18 23:22 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2017-04-18 23:20 - 2015-10-29 19:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2017-04-18 23:20 - 2015-10-29 19:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2017-04-18 23:20 - 2015-10-29 19:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2017-04-18 23:20 - 2015-10-29 19:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2017-04-18 23:20 - 2015-07-15 19:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2017-04-18 23:20 - 2012-08-21 22:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2017-04-18 23:14 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-04-18 23:11 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2017-04-18 23:11 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2017-04-18 22:32 - 2016-07-07 16:57 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-04-18 22:12 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-04-18 20:18 - 2015-01-09 04:48 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2017-04-18 20:18 - 2015-01-09 04:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2017-04-18 20:18 - 2015-01-09 04:48 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2017-04-18 20:13 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-04-18 20:12 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-04-18 20:12 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-04-18 20:06 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-04-18 20:05 - 2012-07-26 05:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2017-04-18 20:05 - 2012-07-26 05:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2017-04-18 20:05 - 2012-07-26 05:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2017-04-18 20:05 - 2012-07-26 05:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2017-04-18 20:05 - 2012-07-26 05:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2017-04-18 20:05 - 2012-07-26 04:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2017-04-18 20:05 - 2012-07-26 04:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2017-04-18 20:05 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2017-04-18 19:53 - 2016-05-12 17:18 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2017-04-18 19:53 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2017-04-18 19:53 - 2016-05-12 17:18 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2017-04-18 19:53 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2017-04-18 19:53 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2017-04-18 19:53 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2017-04-18 19:53 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2017-04-18 19:53 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2017-04-18 19:53 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2017-04-18 19:53 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-04-18 19:53 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2017-04-18 19:53 - 2015-08-05 19:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2017-04-18 19:52 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2017-04-18 19:52 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2017-04-18 19:52 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2017-04-18 19:52 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2017-04-18 19:51 - 2013-07-03 05:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2017-04-18 19:51 - 2013-07-03 05:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2017-04-18 19:51 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-04-18 19:51 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2017-04-18 19:50 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-04-18 19:50 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2017-04-18 19:43 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-04-18 19:43 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-04-18 19:43 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-04-18 19:41 - 2016-08-16 22:27 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-04-18 19:41 - 2016-08-16 22:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-04-18 19:41 - 2016-08-16 22:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-04-18 19:41 - 2016-08-16 22:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-04-18 19:41 - 2016-08-16 22:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-04-18 19:41 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-04-18 19:41 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-04-18 19:41 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2017-04-18 19:40 - 2016-08-16 22:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-04-18 19:40 - 2016-08-16 22:26 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-04-18 19:40 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2017-04-18 19:40 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2017-04-18 19:40 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2017-04-18 19:40 - 2013-02-12 05:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2017-04-18 19:39 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2017-04-18 19:38 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-04-18 19:38 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2017-04-18 19:38 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2017-04-18 19:38 - 2013-01-24 06:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-04-18 19:38 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2017-04-18 19:38 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-04-18 19:38 - 2011-03-03 07:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-04-18 19:38 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2017-04-18 19:36 - 2015-06-11 19:57 - 00919552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-04-18 19:36 - 2015-06-11 19:15 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-04-18 19:36 - 2015-06-11 19:15 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-04-18 19:36 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2017-04-18 19:36 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2017-04-18 19:36 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2017-04-18 19:36 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2017-04-18 19:35 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2017-04-18 19:33 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2017-04-18 19:33 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2017-04-18 19:33 - 2015-10-13 06:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-04-18 19:33 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-04-18 19:33 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2017-04-18 19:33 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2017-04-18 19:33 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2017-04-18 19:33 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2017-04-18 19:33 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2017-04-18 19:33 - 2014-01-28 04:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-04-18 19:33 - 2013-03-19 05:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2017-04-18 19:33 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2017-04-18 19:33 - 2012-07-04 23:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2017-04-18 19:33 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2017-04-18 19:31 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-04-18 19:31 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2017-04-18 19:29 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-04-18 19:29 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-04-18 19:29 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2017-04-18 19:29 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2017-04-18 14:32 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2017-04-18 13:39 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-04-18 13:39 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-04-18 13:39 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-04-18 13:39 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-04-18 13:39 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-04-18 13:39 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-04-18 13:39 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-04-18 13:39 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-04-18 13:39 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-04-18 13:39 - 2011-02-12 07:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2017-04-18 13:10 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-04-18 13:10 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2017-04-18 13:10 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2017-04-18 13:10 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2017-04-18 13:10 - 2016-05-11 16:52 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-04-18 13:10 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2017-04-18 13:08 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-04-18 13:08 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-04-18 13:07 - 2014-10-14 03:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-04-18 12:12 - 2014-12-11 19:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-04-18 12:12 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2017-04-18 12:12 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2017-04-18 12:12 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2017-04-18 12:12 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2017-04-18 12:12 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2017-04-18 12:12 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2017-04-18 12:10 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2017-04-18 12:10 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2017-04-18 12:10 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2017-04-18 12:10 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2017-04-18 12:10 - 2014-12-08 04:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2017-04-18 12:10 - 2014-12-06 05:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2017-04-18 12:10 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-04-18 12:10 - 2013-10-12 04:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-04-18 12:10 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2017-04-18 12:10 - 2013-07-12 12:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2017-04-18 12:10 - 2013-07-12 12:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2017-04-18 12:10 - 2012-11-23 04:48 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2017-04-18 12:10 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2017-04-18 12:10 - 2012-10-03 18:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2017-04-18 12:10 - 2012-03-17 09:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-04-18 12:10 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2017-04-18 12:10 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2017-04-18 11:20 - 2017-04-18 11:20 - 00000824 _____ C:\Windows\system32\Drivers\etc\master.mbr
2017-04-18 11:18 - 2017-04-18 11:18 - 00000000 ____D C:\Users\منير\AppData\Roaming\WinRAR
2017-04-18 11:06 - 2012-03-01 07:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2017-04-18 11:06 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2017-04-18 11:02 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-18 08:52 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2017-04-18 08:52 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2017-04-18 03:15 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-04-18 03:14 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-04-18 03:13 - 2014-10-30 03:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2017-04-18 03:13 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2017-04-18 03:12 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2017-04-18 03:11 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2017-04-18 03:10 - 2011-05-24 12:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2017-04-18 02:53 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-04-18 02:35 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-04-18 02:35 - 2012-02-17 06:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2017-04-17 22:26 - 2017-04-17 22:26 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-17 22:26 - 2017-04-17 22:26 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-17 21:57 - 2017-05-14 17:21 - 00000666 _____ C:\Users\منير\Desktop\puk.txt
2017-04-17 21:57 - 2017-04-17 21:57 - 00001142 _____ C:\Users\منير\Desktop\pes6 - رمز اختصار.lnk
2017-04-17 21:56 - 2010-06-18 10:07 - 00324096 _____ (Beceem communications pvt ltd.) C:\Windows\system32\Drivers\drxvi314.sys
2017-04-17 21:56 - 2010-06-18 10:07 - 00051072 _____ (Beceem communications pvt ltd.) C:\Windows\system32\Drivers\BcmBusCtr.sys
2017-04-17 21:55 - 2010-06-18 10:07 - 02039848 _____ C:\Windows\system32\Drivers\macxvi200.bin
2017-04-17 21:55 - 2010-01-11 16:03 - 00000144 _____ C:\Windows\system32\Drivers\macxvi.cfg
2017-04-17 21:53 - 2017-05-08 18:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-17 21:52 - 2017-05-08 17:28 - 00000973 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-17 21:52 - 2017-05-03 19:14 - 00000000 ____D C:\Program Files\CCleaner
2017-04-17 21:52 - 2017-04-17 21:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-04-17 21:50 - 2017-05-14 18:40 - 00000000 ____D C:\Program Files\Antirun
2017-04-17 21:50 - 2017-04-17 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antirun
2017-04-17 21:40 - 2017-05-14 18:40 - 00000000 ____D C:\Program Files\Unlocker
2017-04-17 21:40 - 2017-04-17 21:40 - 00000185 _____ C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
2017-04-17 21:40 - 2017-04-17 21:40 - 00000000 ____D C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2017-04-17 21:36 - 2017-04-26 13:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-17 21:36 - 2017-04-26 13:21 - 00000000 ____D C:\Program Files\7-Zip
2017-04-17 21:35 - 2017-04-17 21:35 - 00000000 ____D C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-17 21:35 - 2017-04-17 21:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-17 21:35 - 2017-04-17 21:35 - 00000000 ____D C:\Program Files\WinRAR
2017-04-17 21:33 - 2017-05-11 18:48 - 00000000 ____D C:\Users\منير
2017-04-17 21:33 - 2017-04-17 21:33 - 00001405 _____ C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-17 21:33 - 2017-04-17 21:33 - 00000020 ___SH C:\Users\منير\ntuser.ini
2017-04-17 21:33 - 2017-04-17 21:33 - 00000000 _SHDL C:\Users\منير\قائمة ابدأ
2017-04-17 21:33 - 2017-04-17 21:33 - 00000000 _SHDL C:\Users\منير\My Documents
2017-04-17 21:33 - 2017-04-17 21:33 - 00000000 _SHDL C:\Users\منير\AppData\Roaming\Microsoft\Windows\Start Menu\البرامج
2017-04-17 21:33 - 2017-04-17 21:33 - 00000000 ____D C:\Users\منير\AppData\Local\VirtualStore
2017-04-17 21:33 - 2010-11-21 15:46 - 00000000 ____D C:\Users\منير\AppData\Roaming\Media Center Programs
2017-04-17 21:32 - 2017-04-17 21:32 - 00300766 __RSH C:\JOANH
2017-04-17 21:32 - 2017-04-17 21:32 - 00000020 __RSH C:\win7.ld
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\Users\Default\قائمة ابدأ
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\البرامج
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\البرامج
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\ProgramData\قائمة ابدأ
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\ProgramData\سطح المكتب
2017-04-17 21:31 - 2017-04-17 21:31 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\البرامج
2017-04-17 21:20 - 2017-04-17 21:20 - 00008192 __RSH C:\BOOTSECT.BAK
2017-04-17 21:20 - 2016-03-24 00:39 - 00399860 __RSH C:\bootmgr
2017-04-17 21:17 - 2017-05-07 09:42 - 00000000 ____D C:\Users\منير\AppData\Local\Google
2017-04-17 21:15 - 2017-04-17 21:15 - 00002145 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-17 21:15 - 2017-04-17 21:15 - 00002133 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-17 21:14 - 2017-04-17 21:14 - 00000000 ____D C:\Program Files\Google
2017-04-17 21:11 - 2017-04-17 21:11 - 00000000 ____D C:\Users\منير\AppData\Roaming\Opera Software
2017-04-17 21:11 - 2017-04-17 21:11 - 00000000 ____D C:\Users\منير\AppData\Local\Opera Software
2017-04-17 21:10 - 2017-04-27 09:39 - 00000000 ____D C:\Program Files\Opera
2017-04-17 21:10 - 2017-04-17 21:10 - 00001101 _____ C:\Users\Public\Desktop\Opera.lnk
2017-04-17 21:10 - 2017-04-17 21:10 - 00001101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-15 00:14 - 2009-07-14 06:34 - 00030080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-15 00:14 - 2009-07-14 06:34 - 00030080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-14 23:59 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-13 21:53 - 2010-11-21 15:46 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-05-13 21:50 - 2010-11-21 15:37 - 00682426 _____ C:\Windows\system32\perfh00C.dat
2017-05-13 21:50 - 2010-11-21 15:37 - 00478926 _____ C:\Windows\system32\perfh001.dat
2017-05-13 21:50 - 2010-11-21 15:37 - 00130098 _____ C:\Windows\system32\perfc00C.dat
2017-05-13 21:50 - 2010-11-21 15:37 - 00094720 _____ C:\Windows\system32\perfc001.dat
2017-05-13 21:50 - 2010-11-20 23:01 - 02155420 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-13 21:49 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2017-05-12 00:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2017-05-11 16:03 - 2009-07-14 06:53 - 00032564 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-05-10 02:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-02 16:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2017-05-02 16:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\AppCompat
2017-04-26 14:08 - 2009-07-14 06:41 - 00000749 ___RH C:\Windows\WindowsShell.Manifest
2017-04-26 14:08 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-26 12:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sysprep
2017-04-21 09:16 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\SAM.tmp.bak
2017-04-21 09:16 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\DEFAULT.tmp.bak
2017-04-21 09:15 - 2009-07-14 04:03 - 30932992 _____ C:\Windows\system32\config\COMPONENTS.tmp.bak
2017-04-20 08:42 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\DVD Maker
2017-04-20 08:42 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\Dism
2017-04-19 12:27 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\tracing
2017-04-19 12:27 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-04-19 12:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2017-04-19 12:25 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-17 22:30 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2017-04-17 22:26 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-17 22:22 - 2010-11-21 15:46 - 00000000 ____D C:\Windows\CSC
2017-04-17 21:20 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template

==================== Files in the root of some directories =======

2017-04-19 15:06 - 2017-05-12 00:19 - 0007649 _____ () C:\Users\منير\AppData\Local\Resmon.ResmonCfg

Files to move or delete:
====================
C:\Users\منير\ZHPDiag3.exe

Some files in TEMP:
====================
2017-05-12 02:44 - 2017-04-28 02:34 - 1310528 _____ (Microsoft Corporation) C:\Users\منير\AppData\Local\Temp\dllnt_dump.dll
2017-05-12 15:29 - 2017-05-12 15:29 - 48191592 _____ () C:\Users\منير\AppData\Local\Temp\spark_install.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-04-17 22:21

==================== End of FRST.txt ============================

Signaler le contenu de ce document