Jump to content

how do i get attachment fixlist.txt for fix FRST64.exe


Recommended Posts

Where can i get the fixlist.txt ...
Thanks :)
This is my FRST.txt after Scan ...

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Ran by SYSTEM on MININT-E51VOS3 (27-06-2016 10:24:25)
Running from h:\
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-24] (Qualcomm Atheros Commnucations)
HKU\Default\...\RunOnce: [Lenovo.ShowBand] => C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [57906 2013-08-08] (Lenovo)
HKU\Default User\...\RunOnce: [Lenovo.ShowBand] => C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [57906 2013-08-08] (Lenovo)
HKU\lenovo\...\Run: [Serverx] => C:\Windows\system32\Serverx.exe
HKU\lenovo\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [947042 2016-06-15] (Google Inc.)
HKU\lenovo\...\Policies\Explorer: [TaskbarNoThumbnail] 0
HKU\lenovo\...\Winlogon: [Shell] Explorer.exe <==== ATTENTION
HKU\UpdatusUser\...\Policies\Explorer: [TaskbarNoThumbnail] 0
HKU\UpdatusUser\...\Winlogon: [Shell] Explorer.exe <==== ATTENTION
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-03-21] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153392 2016-03-21] (NVIDIA Corporation)

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros Commnucations)
S2 BangoneP; C:\ProgramData\Bangone\Bangone.exe [365952 2016-05-19] ()
S2 BangoneU; C:\Program Files (x86)\Bangone\Update\BangoneUpdate.exe [497738 2016-05-19] ()
S2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173792 2014-06-02] (Microsoft Corp.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S2 IhPul; C:\Users\lenovo\AppData\Roaming\TSv\TSvr.exe [301296 2016-06-22] (tsvr.com)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-11-06] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [35506 2013-08-08] ()
S2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [69964448 2015-04-03] (Microsoft Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
S4 OracleJobSchedulerXE; c:\oraclexe\app\oracle\product\10.2.0\server\Bin\extjob.exe [107722 2006-02-01] ()
S3 OracleMTSRecoveryService; C:\oraclexe\app\oracle\product\10.2.0\server\BIN\omtsreco.exe [62938 2006-02-01] (Oracle Corporation)
S2 OracleServiceXE; c:\oraclexe\app\oracle\product\10.2.0\server\bin\ORACLE.EXE [59064320 2006-02-01] (Oracle Corporation)
S3 OracleXEClrAgent; C:\oraclexe\app\oracle\product\10.2.0\server\bin\OraClrAgnt.exe [50378 2006-02-01] ()
S2 OracleXETNSListener; C:\oraclexe\app\oracle\product\10.2.0\server\BIN\tnslsnr.exe [204800 2006-02-01] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [123842 2013-02-28] (Riverbed Technology, Inc.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [446834 2015-04-03] (Microsoft Corporation)
S2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [137440 2016-06-22] ()
S2 TDataSvr; C:\Program Files (x86)\TData\TData.exe [135880 2016-06-11] (TData.com)
S2 UDisk Monitor; C:\Program Files\Smartfren Connex AC81B UI\bin\MonServiceUDisk.exe [405504 2012-05-09] ()
S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [27338 2014-04-30] (Apache Software Foundation)
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10964682 2014-04-30] ()
S2 WdMan; C:\ProgramData\twinpt\WFini.exe [210152 2016-06-22] (WFini LIMITED)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [1140856 2016-06-11] (Winziper Pvt Ltd.) <==== ATTENTION
S2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-24] (Atheros)
S2 Apache2.4; "C:\xampp\apache\bin\httpd.exe" -k runservice [X]
S2 Change Modem Device Service; "C:\Windows\SysWOW64\ChgService.exe" -service [X]
S2 FileZilla Server; "C:\xampp\filezillaftp\filezillaserver.exe" [X]
S2 MySQL; "C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.1\my.ini" MySQL
S2 QQPCRTP; "C:\Program Files (x86)\Tencent\QQPCMgr\10.7.16066.216\QQPCRtp.exe" -r [X]
S2 SAService; %SystemRoot%\system32\SAsrv.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
S3 CT_QUALCOMM_U_drv; C:\Windows\System32\DRIVERS\CT_QUALCOMM_U_drv.sys [118016 2009-04-27] (QUALCOMM Incorporated)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 GadmeiBDA; C:\Windows\System32\DRIVERS\UTVAD.sys [1410952 2011-07-14] (Gadmei Electronic Technology Corporation)
S0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
S2 IntelHaxm; C:\Windows\System32\DRIVERS\IntelHaxm.sys [84992 2015-09-28] (Intel  Corporation)
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2012-11-19] (Qualcomm Atheros Co., Ltd.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-23] (Malwarebytes)
S3 NANMp50; C:\Windows\System32\Drivers\NANMp50.sys [46776 2010-03-24] (Printing Communications Assoc., Inc. (PCAUSA))
S3 NANSp50; C:\Windows\System32\Drivers\NANSp50.sys [45752 2010-03-24] (Printing Communications Assoc., Inc. (PCAUSA))
S2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-27] (NVIDIA Corporation)
S0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2015-04-14] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-20] (Anchorfree Inc.)
S3 TSSKX64; C:\Windows\System32\drivers\tsskx64.sys [45368 2015-12-28] (电脑管家)
S3 UsbModemDriver; C:\Windows\System32\DRIVERS\USB_MODEM_H.sys [28160 2011-04-07] ()
S3 USB_BusEnum_H; C:\Windows\System32\DRIVERS\USB_BusEnum_H.sys [44544 2009-11-04] ()
S3 USB_ETS_H; C:\Windows\System32\DRIVERS\USB_ETS_H.sys [21760 2008-05-29] (Via Telecom, Inc.)
S3 USB_WinMux_H; C:\Windows\System32\DRIVERS\USB_WinMux_H.sys [37376 2009-10-26] ()
S1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-15] (BigNox Corporation)
S0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
S3 wsvd; C:\Windows\System32\DRIVERS\wsvd.sys [101840 2012-07-05] ("CyberLink)
S1 XQHDrv; C:\Windows\System32\DRIVERS\XQHDrv.sys [253384 2015-09-15] (BigNox Corporation)
S1 XQHDrv; C:\Windows\SysWOW64\DRIVERS\XQHDrv.sys [253384 2015-09-15] (BigNox Corporation)
S3 ztemtusbser; C:\Windows\System32\DRIVERS\CT_ZTEMT_U_USBSER.sys [120704 2012-05-08] (ZTEMT Incorporated)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 BM0523; system32\DRIVERS\BM0523.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S3 cmntusbser; system32\DRIVERS\cmntusbser.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFApiUtil64.sys [X]
S3 PROLiNKusbdiag; system32\DRIVERS\PROLiNKusbdiag.sys [X]
S3 PROLiNKusbmodem; system32\DRIVERS\PROLiNKusbmodem.sys [X]
S3 PROLiNKusbnmea; system32\DRIVERS\PROLiNKusbnmea.sys [X]
S1 QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.7.16066.216\QMUdisk64.sys [X]
S1 TsDefenseBt; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.7.16066.216\TsDefenseBT64.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-27 10:00 - 2016-06-27 10:24 - 00000000 ____D C:\FRST
2016-06-26 01:35 - 2016-06-26 01:40 - 00504718 _____ C:\Windows\ntbtlog.txt
2016-06-26 01:20 - 2016-06-26 01:21 - 00002607 _____ C:\Users\lenovo\Downloads\FRST64.exe
2016-06-25 02:39 - 2016-06-25 02:39 - 00004200 _____ C:\Users\lenovo\Downloads\Win32-Sality Remover .exe
2016-06-25 02:27 - 2016-06-25 02:27 - 00001297 _____ C:\Users\lenovo\Downloads\WinXP_EXE_Fix.reg
2016-06-25 02:23 - 2016-06-25 02:23 - 00000000 ____D C:\Windows\System32\Tasks\Event Viewer Tasks
2016-06-25 02:03 - 2016-06-25 02:04 - 00027632 _____ C:\Users\lenovo\Downloads\NDP461-KB3102438-Web.exe
2016-06-24 08:07 - 2016-06-24 08:07 - 00002988 _____ C:\Windows\System32\Tasks\{D994D8AC-38A4-45CD-885C-439D3BADD088}
2016-06-24 08:07 - 2016-06-24 08:07 - 00002988 _____ C:\Windows\System32\Tasks\{B367F578-B618-4E9C-884F-16DE6D5F95C9}
2016-06-24 08:07 - 2016-06-24 08:07 - 00002946 _____ C:\Windows\System32\Tasks\{8698A8B8-E1F9-412F-B90F-9E0A98DFB433}
2016-06-23 23:13 - 2011-06-18 17:54 - 00001823 _____ C:\Users\lenovo\Downloads\exe_fix_w7.reg
2016-06-23 20:09 - 2016-06-23 22:04 - 00009418 __RSH C:\Windows\SysWOW64\Serverx.exe
2016-06-23 19:35 - 2016-06-23 19:35 - 00000000 ____H C:\Windows\System32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2016-06-23 08:37 - 2016-06-23 08:37 - 00000072 _____ C:\Windows\SysWOW64\EN_328382.html
2016-06-23 08:37 - 2016-06-23 08:37 - 00000072 _____ C:\Windows\SysWOW64\EN_325698.html
2016-06-23 08:37 - 2016-06-23 08:37 - 00000072 _____ C:\Windows\SysWOW64\EN_325277.html
2016-06-23 08:37 - 2016-06-23 08:37 - 00000072 _____ C:\Windows\SysWOW64\EN_289896.html
2016-06-23 08:37 - 2016-06-23 08:37 - 00000072 _____ C:\Windows\SysWOW64\EN_279803.html
2016-06-23 08:36 - 2016-06-26 00:42 - 00000000 ____D C:\Program Files (x86)\SFK
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_271129.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_270802.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_243158.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_242643.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_239757.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000072 _____ C:\Windows\SysWOW64\EN_239165.html
2016-06-23 08:36 - 2016-06-23 08:36 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\TSv
2016-06-23 08:36 - 2016-06-23 08:36 - 00000000 ____D C:\ProgramData\twinpt
2016-06-23 08:34 - 2016-06-23 08:34 - 00000072 _____ C:\Windows\SysWOW64\us_141477.html
2016-06-23 08:34 - 2016-06-23 08:34 - 00000072 _____ C:\Windows\SysWOW64\EN_143770.html
2016-06-23 08:34 - 2016-06-23 08:34 - 00000000 ____D C:\Windows\SysWOW64\_TSpm
2016-06-21 15:15 - 2016-06-21 15:16 - 03955393 _____ C:\Users\lenovo\Downloads\Download Microsoft Office 2013   Activator.rar
2016-06-21 15:12 - 2016-06-21 15:12 - 00989874 _____ ( ) C:\Users\lenovo\Downloads\microsoft-word.exe
2016-06-20 21:37 - 2016-06-20 21:37 - 00000000 ____D C:\Program Files (x86)\TData
2016-06-20 21:36 - 2016-06-20 21:37 - 00000000 ____D C:\Program Files (x86)\se7fl13y
2016-06-20 06:10 - 2016-06-20 06:11 - 02247136 _____ (DriverPack) C:\Users\lenovo\Downloads\DriverPack-Online_1486712266.1466414606.exe
2016-06-20 01:09 - 2016-05-23 15:37 - 00394960 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2016-06-20 01:09 - 2016-05-23 14:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-06-20 01:09 - 2016-05-21 09:28 - 25802752 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2016-06-20 01:09 - 2016-05-21 08:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-06-20 01:09 - 2016-05-20 14:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2016-06-20 01:09 - 2016-05-20 14:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2016-06-20 01:09 - 2016-05-20 14:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-06-20 01:09 - 2016-05-20 14:10 - 00066560 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2016-06-20 01:09 - 2016-05-20 14:09 - 00572416 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2016-06-20 01:09 - 2016-05-20 14:09 - 00417792 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2016-06-20 01:09 - 2016-05-20 14:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2016-06-20 01:09 - 2016-05-20 14:08 - 02895360 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2016-06-20 01:09 - 2016-05-20 14:08 - 00088064 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2016-06-20 01:09 - 2016-05-20 14:02 - 06051328 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2016-06-20 01:09 - 2016-05-20 14:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2016-06-20 01:09 - 2016-05-20 13:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2016-06-20 01:09 - 2016-05-20 13:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-06-20 01:09 - 2016-05-20 13:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-06-20 01:09 - 2016-05-20 13:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-06-20 01:09 - 2016-05-20 13:56 - 00615936 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2016-06-20 01:09 - 2016-05-20 13:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-06-20 01:09 - 2016-05-20 13:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-06-20 01:09 - 2016-05-20 13:54 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2016-06-20 01:09 - 2016-05-20 13:54 - 00814080 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2016-06-20 01:09 - 2016-05-20 13:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2016-06-20 01:09 - 2016-05-20 13:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2016-06-20 01:09 - 2016-05-20 13:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-06-20 01:09 - 2016-05-20 13:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-06-20 01:09 - 2016-05-20 13:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-06-20 01:09 - 2016-05-20 13:45 - 00968704 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2016-06-20 01:09 - 2016-05-20 13:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-06-20 01:09 - 2016-05-20 13:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-06-20 01:09 - 2016-05-20 13:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-06-20 01:09 - 2016-05-20 13:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-06-20 01:09 - 2016-05-20 13:41 - 00489984 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2016-06-20 01:09 - 2016-05-20 13:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-06-20 01:09 - 2016-05-20 13:33 - 00077824 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2016-06-20 01:09 - 2016-05-20 13:32 - 00107520 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2016-06-20 01:09 - 2016-05-20 13:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-06-20 01:09 - 2016-05-20 13:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2016-06-20 01:09 - 2016-05-20 13:27 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2016-06-20 01:09 - 2016-05-20 13:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-06-20 01:09 - 2016-05-20 13:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-06-20 01:09 - 2016-05-20 13:25 - 00315392 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2016-06-20 01:09 - 2016-05-20 13:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-06-20 01:09 - 2016-05-20 13:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-06-20 01:09 - 2016-05-20 13:22 - 00152064 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2016-06-20 01:09 - 2016-05-20 13:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-06-20 01:09 - 2016-05-20 13:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-06-20 01:09 - 2016-05-20 13:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-06-20 01:09 - 2016-05-20 13:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-06-20 01:09 - 2016-05-20 13:11 - 15420928 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2016-06-20 01:09 - 2016-05-20 13:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2016-06-20 01:09 - 2016-05-20 13:09 - 00725504 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2016-06-20 01:09 - 2016-05-20 13:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-06-20 01:09 - 2016-05-20 13:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-06-20 01:09 - 2016-05-20 13:08 - 00806400 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2016-06-20 01:09 - 2016-05-20 13:07 - 01359360 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2016-06-20 01:09 - 2016-05-20 13:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-06-20 01:09 - 2016-05-20 13:06 - 02131968 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2016-06-20 01:09 - 2016-05-20 12:46 - 02597888 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2016-06-20 01:09 - 2016-05-20 12:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-06-20 01:09 - 2016-05-20 12:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-20 01:09 - 2016-05-20 12:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-06-20 01:09 - 2016-05-20 12:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2016-06-20 01:09 - 2016-05-20 12:23 - 00800768 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2016-06-20 01:09 - 2016-05-12 09:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2016-06-20 01:09 - 2016-05-12 09:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2016-06-20 01:09 - 2016-05-12 09:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2016-06-20 01:09 - 2016-05-12 09:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2016-06-20 01:09 - 2016-05-12 09:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2016-06-20 01:09 - 2016-05-12 09:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2016-06-20 01:09 - 2016-05-12 09:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\System32\certcli.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\System32\rpchttp.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\System32\msaudite.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\System32\msobjs.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\System32\cryptbase.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2016-06-20 01:09 - 2016-05-12 09:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-06-20 01:09 - 2016-05-12 07:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-06-20 01:09 - 2016-05-12 07:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\System32\auditpol.exe
2016-06-20 01:09 - 2016-05-12 06:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2016-06-20 01:09 - 2016-05-12 06:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2016-06-20 01:09 - 2016-05-12 06:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2016-06-20 01:09 - 2016-05-12 06:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2016-06-20 01:09 - 2016-05-12 06:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2016-06-20 01:09 - 2016-05-12 06:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2016-06-20 01:09 - 2016-05-12 06:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2016-06-20 01:09 - 2016-05-12 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-06-20 01:09 - 2016-05-12 06:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-06-20 01:09 - 2016-05-12 05:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2016-06-20 01:09 - 2016-05-12 05:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\System32\bcryptprimitives.dll
2016-06-20 01:09 - 2016-05-12 05:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-20 01:06 - 2016-05-12 09:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\System32\winipsec.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\System32\gpsvc.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\System32\IPSECSVC.DLL
2016-06-20 01:06 - 2016-05-12 09:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\System32\polstore.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\System32\gpapi.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\System32\FwRemoteSvr.dll
2016-06-20 01:06 - 2016-05-12 09:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\System32\gpscript.dll
2016-06-20 01:06 - 2016-05-12 07:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-06-20 01:06 - 2016-05-12 07:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-20 01:06 - 2016-05-12 07:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-20 01:06 - 2016-05-12 07:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-06-20 01:06 - 2016-05-12 07:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-20 01:06 - 2016-05-12 07:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\System32\gpscript.exe
2016-06-20 01:06 - 2016-05-12 06:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-06-20 01:06 - 2016-05-12 06:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-06-20 00:50 - 2016-06-06 08:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
2016-06-20 00:50 - 2016-06-06 08:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2016-06-20 00:50 - 2016-06-03 05:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2016-06-20 00:50 - 2016-05-27 05:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2016-06-20 00:50 - 2016-05-27 05:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\System32\devinv.dll
2016-06-20 00:50 - 2016-05-27 05:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\System32\invagent.dll
2016-06-20 00:50 - 2016-05-27 05:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\System32\centel.dll
2016-06-20 00:50 - 2016-05-22 05:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\System32\acmigration.dll
2016-06-20 00:48 - 2016-05-18 08:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-20 00:48 - 2016-05-18 08:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2016-06-20 00:48 - 2016-05-13 14:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2016-06-20 00:48 - 2016-05-13 14:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\System32\fontsub.dll
2016-06-20 00:48 - 2016-05-13 14:09 - 00046080 _____ (Adobe Systems) C:\Windows\System32\atmlib.dll
2016-06-20 00:48 - 2016-05-13 14:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\System32\lpk.dll
2016-06-20 00:48 - 2016-05-13 14:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\System32\dciman32.dll
2016-06-20 00:48 - 2016-05-13 13:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-20 00:48 - 2016-05-13 13:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-06-20 00:48 - 2016-05-13 13:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-06-20 00:48 - 2016-05-13 13:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-06-20 00:48 - 2016-05-13 13:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-20 00:48 - 2016-05-12 07:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2016-06-20 00:48 - 2016-05-11 09:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll
2016-06-20 00:48 - 2016-05-11 09:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2016-06-20 00:48 - 2016-05-11 09:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\System32\mswsock.dll
2016-06-20 00:48 - 2016-05-11 09:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\System32\ws2_32.dll
2016-06-20 00:48 - 2016-05-11 07:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-20 00:48 - 2016-05-11 07:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-20 00:48 - 2016-05-11 07:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-20 00:48 - 2016-05-11 07:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-20 00:48 - 2016-05-11 07:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\System32\netbtugc.exe
2016-06-20 00:48 - 2016-05-11 07:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-06-20 00:48 - 2016-05-11 06:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2016-06-20 00:48 - 2016-04-14 08:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\System32\consent.exe
2016-06-20 00:48 - 2016-04-14 08:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
2016-06-20 00:48 - 2016-04-14 08:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2016-06-20 00:48 - 2016-04-14 08:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\System32\msihnd.dll
2016-06-20 00:48 - 2016-04-14 08:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2016-06-20 00:48 - 2016-04-14 08:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\System32\msimsg.dll
2016-06-20 00:48 - 2016-04-14 07:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-06-20 00:48 - 2016-04-14 07:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-06-20 00:48 - 2016-04-14 07:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-06-20 00:48 - 2016-04-14 07:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-06-20 00:48 - 2016-04-14 07:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\System32\msiexec.exe
2016-06-20 00:48 - 2016-04-14 07:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-06-20 00:48 - 2016-04-08 22:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2016-06-20 00:48 - 2016-04-08 22:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\System32\ExplorerFrame.dll
2016-06-20 00:48 - 2016-04-08 22:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-06-20 00:48 - 2016-04-08 22:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-06-20 00:48 - 2016-04-08 21:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-20 00:48 - 2016-04-08 21:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-20 00:48 - 2016-03-09 11:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\System32\webio.dll
2016-06-20 00:48 - 2016-03-09 10:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-06-20 00:12 - 2016-06-20 00:12 - 09717952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-06-17 22:20 - 2016-06-17 22:20 - 00000000 ____D C:\Users\lenovo\.AndroidStudio2.1
2016-06-15 22:46 - 2016-06-15 22:46 - 00294151 _____ C:\Users\lenovo\Downloads\20160612_kelompok kkn.pdf
2016-06-12 08:24 - 2016-06-12 08:26 - 06610964 _____ C:\Users\lenovo\Downloads\Affi-EDS.zip
2016-06-02 22:09 - 2016-06-02 22:11 - 10080312 _____ C:\Users\lenovo\Downloads\PrimingKanban-JesperBoeg-Version2.rar
2016-06-02 18:01 - 2016-06-02 18:01 - 02802414 _____ C:\Users\lenovo\Downloads\Sound-Horror.rar
2016-06-01 16:49 - 2016-06-01 16:49 - 00001891 _____ C:\Users\Public\Desktop\SilentEye.lnk
2016-06-01 16:49 - 2016-06-01 16:49 - 00000000 ____D C:\Program Files (x86)\silenteye
2016-06-01 16:05 - 2016-06-01 16:05 - 00010169 _____ C:\Users\lenovo\Desktop\jadwal ujian smt 6.pdf
2016-06-01 00:01 - 2016-06-01 00:01 - 00289486 _____ C:\Users\lenovo\Downloads\20160519_FORM_UMUM.rar
2016-05-31 23:06 - 2016-05-31 23:06 - 00000000 ____D C:\ProgramData\owinpo
2016-05-31 23:06 - 2016-05-31 23:06 - 00000000 ____D C:\Program Files (x86)\TXQQBrowser
2016-05-30 01:56 - 2016-06-14 22:15 - 00000776 _____ C:\report.dat
2016-05-29 19:05 - 2016-05-29 19:05 - 00003229 _____ C:\Users\lenovo\AppData\Local\recently-used.xbel
2016-05-29 01:48 - 2016-05-29 01:49 - 06619007 _____ C:\Users\lenovo\Documents\coba_koma.exe
2016-05-29 01:48 - 2016-05-29 01:48 - 00000383 _____ C:\Users\lenovo\Documents\coba_koma.cpp
2016-05-29 01:20 - 2016-05-29 02:25 - 06653295 _____ C:\Users\lenovo\Documents\topi.exe
2016-05-29 00:19 - 2016-05-29 02:25 - 00000847 _____ C:\Users\lenovo\Documents\topi.cpp
2016-05-28 23:25 - 2016-05-29 00:17 - 06635825 _____ C:\Users\lenovo\Documents\Stiker.exe
2016-05-28 23:20 - 2016-05-29 00:17 - 00000637 _____ C:\Users\lenovo\Documents\Stiker.cpp
2016-05-28 22:28 - 2016-05-28 22:35 - 06612335 _____ C:\Users\lenovo\Documents\bonoContoh.exe
2016-05-28 22:27 - 2016-05-28 22:28 - 00000645 _____ C:\Users\lenovo\Documents\bonoContoh.cpp
2016-05-28 22:03 - 2016-05-28 23:16 - 06612867 _____ C:\Users\lenovo\Documents\bonoV2.exe
2016-05-28 21:53 - 2016-05-28 23:17 - 00001263 _____ C:\Users\lenovo\Documents\bonoV2.cpp
2016-05-28 20:08 - 2016-05-28 20:13 - 00000378 _____ C:\Users\lenovo\Documents\ITE.cpp
2016-05-28 09:50 - 2016-05-28 09:51 - 00378560 _____ C:\Users\lenovo\Downloads\bbr7z21jri80-Training-doll.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-26 18:56 - 2014-10-11 23:41 - 00327680 _____ C:\Windows\System32\Ikeext.etl
2016-06-26 18:56 - 2009-07-13 20:45 - 00032768 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-26 18:56 - 2009-07-13 20:45 - 00032768 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-26 18:55 - 2014-03-08 11:16 - 00000000 ____D C:\ProgramData\VMware
2016-06-26 18:55 - 2013-09-05 04:57 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-26 18:55 - 2013-09-02 01:17 - 00000000 ____D C:\Users\lenovo\AppData\Local\CrashDumps
2016-06-26 18:54 - 2016-05-19 05:06 - 00000000 ____D C:\Program Files (x86)\WinZipper
2016-06-26 18:54 - 2015-11-26 16:13 - 00000093 _____ C:\HaxLogs.txt
2016-06-26 18:54 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-26 02:16 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\tracing
2016-06-26 01:34 - 2016-05-20 02:39 - 00000034 _____ C:\Users\Public\Documents\report.dat
2016-06-26 01:20 - 2009-07-13 21:13 - 00882130 _____ C:\Windows\System32\PerfStringBackup.INI
2016-06-26 01:20 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\inf
2016-06-26 01:14 - 2015-11-11 21:09 - 00000402 _____ C:\Windows\Tasks\WpsNotifyTask_lenovo.job
2016-06-26 01:14 - 2013-09-12 19:04 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-26 00:58 - 2013-09-05 04:57 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-26 00:54 - 2015-10-20 17:38 - 00000402 _____ C:\Windows\Tasks\WpsUpdateTask_lenovo.job
2016-06-26 00:48 - 2013-09-08 06:37 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{189A21D9-FC40-4B0A-8E81-140F7649ACDB}
2016-06-26 00:40 - 2015-06-27 14:40 - 00000372 _____ C:\Windows\Tasks\HomeStudio.job
2016-06-25 15:18 - 2015-09-21 14:32 - 00000000 ____D C:\ProgramData\Atheros
2016-06-25 15:18 - 2015-04-04 11:13 - 00000000 ___SD C:\Windows\System32\GWX
2016-06-25 15:18 - 2009-07-13 19:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-06-25 15:17 - 2011-04-12 00:28 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-06-25 15:17 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration
2016-06-25 02:10 - 2015-08-05 15:18 - 00000538 __RSH C:\ProgramData\ntuser.pol
2016-06-25 00:46 - 2013-09-01 19:28 - 00000000 ____D C:\users\UpdatusUser
2016-06-25 00:45 - 2013-09-01 18:43 - 00000000 ____D C:\users\lenovo
2016-06-24 00:03 - 2013-12-02 22:53 - 00000000 ____D C:\Program Files\WinRAR
2016-06-23 22:06 - 2015-11-27 18:52 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\Nox
2016-06-23 22:06 - 2014-01-25 19:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-23 22:06 - 2014-01-25 19:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-23 21:53 - 2016-05-05 07:18 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\apachelogsview
2016-06-23 21:23 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2016-06-23 20:09 - 2015-11-27 18:54 - 00000000 ____D C:\Users\lenovo\AppData\Local\Nox
2016-06-23 20:06 - 2016-04-27 19:53 - 00018432 ___SH C:\Users\lenovo\Thumbs.db
2016-06-23 19:12 - 2015-09-18 01:26 - 00000000 ____D C:\Users\lenovo\AndroidStudioProjects
2016-06-23 09:02 - 2016-05-20 03:51 - 00192216 _____ (Malwarebytes) C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2016-06-21 16:00 - 2013-10-26 15:23 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\Free Download Manager
2016-06-21 15:04 - 2016-05-16 21:03 - 00000000 ____D C:\Program Files (x86)\Phcatqoping
2016-06-20 21:37 - 2016-05-19 05:06 - 00009430 _____ C:\Windows\System32\Tasks\Browser Updater Task(Core)
2016-06-20 14:55 - 2014-05-08 16:51 - 00000000 ___RD C:\Users\lenovo\Podcasts
2016-06-20 14:53 - 2009-07-13 20:45 - 00686408 _____ C:\Windows\System32\FNTCACHE.DAT
2016-06-20 14:50 - 2014-12-09 16:57 - 00000000 ____D C:\Windows\System32\appraiser
2016-06-20 09:07 - 2013-09-23 14:45 - 00000000 ____D C:\Windows\System32\MRT
2016-06-20 09:01 - 2013-09-23 14:45 - 142482544 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2016-06-20 00:12 - 2013-09-12 19:04 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-20 00:12 - 2013-09-12 19:04 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-20 00:12 - 2013-09-12 19:04 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-06-17 22:17 - 2015-09-20 19:20 - 00000000 ____D C:\Users\lenovo\.android
2016-06-17 22:09 - 2015-09-07 17:54 - 00000000 ____D C:\Users\lenovo\AppData\Local\Android
2016-06-17 22:06 - 2015-09-18 01:08 - 00000000 ____D C:\Program Files\Android
2016-06-17 21:56 - 2016-05-20 02:44 - 00003464 _____ C:\Windows\System32\Tasks\BangoneUpdateTaskMachineUA
2016-06-17 20:42 - 2015-01-13 23:37 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-13 14:09 - 2016-05-16 21:18 - 00054156 ____H C:\Windows\QTFont.qfn
2016-06-13 14:09 - 2016-04-17 17:47 - 00000000 ____D C:\ProgramData\Apple Computer
2016-06-12 00:44 - 2015-06-18 22:24 - 00000000 ____D C:\Users\lenovo\AppData\Local\atom
2016-06-12 00:43 - 2015-06-18 22:25 - 00002159 _____ C:\Users\lenovo\Desktop\Atom.lnk
2016-06-12 00:39 - 2015-06-18 22:24 - 00000000 ____D C:\Users\lenovo\AppData\Local\SquirrelTemp
2016-06-10 23:18 - 2016-05-16 18:35 - 00000000 ____D C:\Users\Public\Documents\MobilEdit!
2016-06-10 23:17 - 2016-05-16 18:37 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\MOBILedit
2016-06-10 19:27 - 2016-05-16 22:42 - 00001031 _____ C:\Users\Public\Desktop\MOBILedit!.lnk
2016-06-10 19:27 - 2016-05-16 22:41 - 00000000 ____D C:\Program Files (x86)\MOBILedit!
2016-06-04 07:46 - 2016-05-10 06:07 - 00000000 ____D C:\Users\lenovo\Documents\Resolume Arena 4
2016-06-04 07:46 - 2016-05-10 06:07 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\Resolume Arena 4
2016-06-02 07:57 - 2015-09-02 01:05 - 00000000 ____D C:\tmp
2016-06-02 04:56 - 2013-09-10 21:48 - 00000000 ____D C:\Users\lenovo\AppData\Roaming\vlc
2016-05-29 16:26 - 2016-04-23 20:36 - 00000597 _____ C:\Users\lenovo\Documents\Workspace.sws
2016-05-29 16:26 - 2016-04-23 20:25 - 00000000 ____D C:\Users\lenovo\Documents\project_KP
2016-05-28 22:08 - 2016-03-17 19:30 - 00644298 _____ C:\Users\Public\Downloads\Downloads.exe
2016-05-28 22:05 - 2016-03-17 18:58 - 00644298 _____ C:\Users\Public\Public.exe

Files to move or delete:
====================
C:\ProgramData\BavPro_Setup_Mini_GL1.exe
C:\Users\Public\Public.exe


Some files in TEMP:
====================
C:\Users\lenovo\AppData\Local\Temp\atdl.exe
C:\Users\lenovo\AppData\Local\Temp\avg-4fad9c1c-ef1f-4716-a401-862accfe8861.exe
C:\Users\lenovo\AppData\Local\Temp\BaiduAn.Setup.0528.4.0.0.8029_1050123301.exe
C:\Users\lenovo\AppData\Local\Temp\Baidu_Secure_SystemUp_5.0.4.86014.exe
C:\Users\lenovo\AppData\Local\Temp\eauninstall.exe
C:\Users\lenovo\AppData\Local\Temp\edb_psqlodbc.exe
C:\Users\lenovo\AppData\Local\Temp\jre-8u20-windows-au.exe
C:\Users\lenovo\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\lenovo\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\lenovo\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\lenovo\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\lenovo\AppData\Local\Temp\MSETUP4.EXE
C:\Users\lenovo\AppData\Local\Temp\npp.6.7.7.Installer.exe
C:\Users\lenovo\AppData\Local\Temp\npp.6.8.6.Installer.exe
C:\Users\lenovo\AppData\Local\Temp\OfficeAssist.0744.80.1211.exe
C:\Users\lenovo\AppData\Local\Temp\ose00000.exe
C:\Users\lenovo\AppData\Local\Temp\PCMgr_AndroidServer.exe
C:\Users\lenovo\AppData\Local\Temp\qing_update.exe
C:\Users\lenovo\AppData\Local\Temp\qqpcmgr_v10.7.16066.216_71715_Silence.exe
C:\Users\lenovo\AppData\Local\Temp\shutdown1459928123.exe
C:\Users\lenovo\AppData\Local\Temp\SpOrder.dll
C:\Users\lenovo\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\lenovo\AppData\Local\Temp\sqlite3.dll
C:\Users\lenovo\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\lenovo\AppData\Local\Temp\Uninstall.exe
C:\Users\lenovo\AppData\Local\Temp\vlc-2.1.5-win64.exe
C:\Users\lenovo\AppData\Local\Temp\VPEnYsNRFl.exe
C:\Users\lenovo\AppData\Local\Temp\xmlUpdater.exe
C:\Users\lenovo\AppData\Local\Temp\{65DAE9EE-6187-4B82-91D9-BDF54EB91006}-45.0.2454.99_45.0.2454.93_chrome_updater.exe
C:\Users\lenovo\AppData\Local\Temp\{A6C452BF-ADFE-48CD-8B52-204E7A7655FB}-44.0.2403.107_43.0.2357.134_chrome_updater.exe
C:\Users\lenovo\AppData\Local\Temp\{EAEE98C9-3C7C-46FA-B98E-C82FC4BC055C}-45.0.2454.101_45.0.2454.93_chrome_updater.exe


==================== Known DLLs (Whitelisted) =========================


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2016-06-20 00:48] - [2016-04-08 21:53] - 3231232 ____A (Microsoft Corporation) 9DA3B83F80E205B6C601EEE1312FD0A0

C:\Windows\SysWOW64\explorer.exe
[2016-06-20 00:48] - [2016-04-08 21:44] - 2973184 ____A (Microsoft Corporation) 3DA48EA028AD771C5B71727F0C3984E9

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Association (Whitelisted) =============


==================== Restore Points =========================

Restore point date: 2016-06-21 15:20
Restore point date: 2016-06-23 19:03
Restore point date: 2016-06-23 20:09
Restore point date: 2016-06-23 21:52
Restore point date: 2016-06-24 08:09
Restore point date: 2016-06-24 23:35

==================== Memory info =========================== 

Percentage of memory in use: 18%
Total physical RAM: 3964.85 MB
Available physical RAM: 3243.95 MB
Total Virtual: 3963.05 MB
Available Virtual: 3250.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:221.52 GB) (Free:41.36 GB) NTFS
Drive d: (Other) (Fixed) (Total:117.19 GB) (Free:36.7 GB) NTFS
Drive f: (Master) (Fixed) (Total:126.95 GB) (Free:53.87 GB) NTFS
Drive h: () (Removable) (Total:7.54 GB) (Free:7.53 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=221.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=127 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=117.2 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 7.6 GB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.


LastRegBack: 2016-06-17 20:31

==================== End of FRST.txt ============================

Link to post
Share on other sites

Hello 3sd and :welcome:

1. Please reply with a brief synopsis as to what you believe is wrong with your system.

2. If you are able to boot the system into the Normal or Safe mode, please rerun FRST64.exe from the desktop of an Administrators account (or Run as administrator) and tick Additional scan.  Then, please attach the 2 files, FRST.txt and Addition.txt to your next reply for the most Expert analysis.

Thank you.

Edited by 1PW
Link to post
Share on other sites

  • Root Admin

Also please note that you have what appears to be pirated content on this computer.

C:\Users\lenovo\Downloads\Download Microsoft Office 2013   Activator.rar

Please remove all pirated content if you wish to obtain further assistance.

Our current Piracy Policy

https://forums.malwarebytes.org/topic/97700-piracy/

Thank you

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.