
za 01-07-2017 14:06:42,16 Begin Logging

v4.6.0 compiled EXE
v4.6.0 compiled EXE
v4.6.0 compiled EXE
v4.6.0 compiled EXE

za 01-07-2017 14:06:42,17 Finished set commands                     - error level - 0


za 01-07-2017 14:06:42,18 Changed the title of the screen           - error level - 0
za 01-07-2017 14:06:42,19 Did a PushD to HomeDrive:HomePath\Document- error level - 0
za 01-07-2017 14:06:42,20 Checked for existance of TSE Sub-Dir      - error level - 0
za 01-07-2017 14:06:42,21 Created user Dir                          - error level - 0
za 01-07-2017 14:06:42,24 Copying mini-kernel dump files            - error level - 0
za 01-07-2017 14:06:42,28 Copying mini-kernel dump files Done       - error level - 0
-
* * *    B S O D    F I L E    C O L L E C T I O N    S C R I P T    * * *
         Authors:
            jcgriff2 - J. C. Griffith, Microsoft MVP
            TheOutcaste - Jerry Wines, Microsoft MVP
            Patrick - Patrick Barker, Microsoft MVP
            niemiro - Richard
            Tekno Venus - Stephen
           http://www.sysnative.com/
           sysnative.com - MVP
          2008 - 2014 sysnative.com
            Last Update: July 2014
         New Jersey, USA; Oregon, USA; New York, USA
         ALL RIGHTS RESERVED
-
  za 01-07-2017   14:06:37,02  ----- Actual Start execution time
-
      B E G I N      jcgriff2    B A T C H   E X E C U T I O N
      B E G I N      jcgriff2    B A T C H   E X E C U T I O N
-
-
za 01-07-2017 14:06:42,31 
-
Original home drive =  C:
home path           =  \Users\Dhoek
current directory   =  C:\Users\Dhoek\Documents
-
za 01-07-2017 14:06:42,32 Running WHOAMI command                    - error level - 0
-
ALL user SIDs ------

USER INFORMATION
----------------

User Name             SID                                         
===================== ============================================
desktop-lgnpvqj\dhoek S-1-5-21-520326962-3177835698-915860111-1001


GROUP INFORMATION
-----------------

Group Name                                                     Type             SID                                                                                                          Attributes                                                     
============================================================== ================ ============================================================================================================ ===============================================================
Verplicht niveau\Hoog verplicht niveau                         Label            S-1-16-12288                                                                                                                                                                
Iedereen                                                       Well-known group S-1-1-0                                                                                                      Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Lokaal account en lid van de groep Administrators Well-known group S-1-5-114                                                                                                    Mandatory group, Enabled by default, Enabled group             
INGEBOUWD\Administrators                                       Alias            S-1-5-32-544                                                                                                 Mandatory group, Enabled by default, Enabled group, Group owner
INGEBOUWD\Gebruikers                                           Alias            S-1-5-32-545                                                                                                 Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\INTERACTIEF                                       Well-known group S-1-5-4                                                                                                      Mandatory group, Enabled by default, Enabled group             
AANMELDEN OP DE CONSOLE                                        Well-known group S-1-2-1                                                                                                      Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Geverifieerde gebruikers                          Well-known group S-1-5-11                                                                                                     Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Deze organisatie                                  Well-known group S-1-5-15                                                                                                     Mandatory group, Enabled by default, Enabled group             
MicrosoftAccount\dhoeken_14@live.be                            User             S-1-11-96-3623454863-58364-18864-2661722203-1597581903-1127270317-1197421099-2077364756-867197547-3489596397 Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Lokaal account                                    Well-known group S-1-5-113                                                                                                    Mandatory group, Enabled by default, Enabled group             
LOKAAL                                                         Well-known group S-1-2-0                                                                                                      Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Authenticatie van cloudaccount                    Well-known group S-1-5-64-36                                                                                                  Mandatory group, Enabled by default, Enabled group             
                                                               Unknown SID type S-1-5-32-4028125388-2803578072-1053907958-341417128-2434011155-477421480-740873757-3973419746                Mandatory group, Enabled by default, Enabled group             
                                                               Unknown SID type S-1-5-32-2745667521-2937320506-1424439867-4164262144-2333007343-2599685697-2993844191-2003921822             Mandatory group, Enabled by default, Enabled group             
                                                               Unknown SID type S-1-5-32-1034403361-4122601751-838272506-684212390-1217345422-475792769-1698384238-1075311541                Mandatory group, Enabled by default, Enabled group             


PRIVILEGES INFORMATION
----------------------

Privilege Name                            Description                                                               State   
========================================= ========================================================================= ========
SeIncreaseQuotaPrivilege                  Geheugenquota voor een proces verhogen                                    Disabled
SeSecurityPrivilege                       Controlebeleid en beveiligingslogboek beheren                             Disabled
SeTakeOwnershipPrivilege                  Eigenaar worden van bestanden of andere objecten                          Disabled
SeLoadDriverPrivilege                     Stuurprogramma's laden en verwijderen                                     Disabled
SeSystemProfilePrivilege                  Systeemprestaties bekijken                                                Disabled
SeSystemtimePrivilege                     Systeemtijd wijzigen                                                      Disabled
SeProfileSingleProcessPrivilege           Een enkel proces bekijken                                                 Disabled
SeIncreaseBasePriorityPrivilege           Prioriteit verhogen voor planning                                         Disabled
SeCreatePagefilePrivilege                 Wisselbestand maken                                                       Disabled
SeBackupPrivilege                         Back-ups van bestanden en mappen maken                                    Disabled
SeRestorePrivilege                        Bestanden en mappen terugzetten                                           Disabled
SeShutdownPrivilege                       Systeem afsluiten                                                         Disabled
SeDebugPrivilege                          Fouten in programma's opsporen                                            Disabled
SeSystemEnvironmentPrivilege              Omgevingswaarden in firmware wijzigen                                     Disabled
SeChangeNotifyPrivilege                   Controle op bladeren negeren                                              Enabled 
SeRemoteShutdownPrivilege                 Afsluiten vanaf een extern systeem                                        Disabled
SeUndockPrivilege                         Computer uit basisstation verwijderen                                     Disabled
SeManageVolumePrivilege                   Onderhoudstaken op volume uitvoeren                                       Disabled
SeImpersonatePrivilege                    Een client nabootsen na authenticatie                                     Enabled 
SeCreateGlobalPrivilege                   Globale objecten maken                                                    Enabled 
SeIncreaseWorkingSetPrivilege             Een proceswerkset vergroten                                               Disabled
SeTimeZonePrivilege                       Tijdzone wijzigen                                                         Disabled
SeCreateSymbolicLinkPrivilege             Symbolische koppelingen maken                                             Disabled
SeDelegateSessionUserImpersonatePrivilege Een imitatietoken verkrijgen voor een andere gebruiker in dezelfde sessie Disabled

-
za 01-07-2017 14:06:42,38 WHOAMI Command Done                       - error level - 0
-
-
Get basic system information . . .
Number of processors . . . . 8
PC Brand . . . . . . . . . . 
Platform . . . . . . . . . . 
Processor Architecture . . . AMD64
Processor Identifier . . . . Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
Processor Level. . . . . . . 6
Processor Revision . . . . . 3a09
Operating system . . . . . . Windows_NT
Windows Dir. . . . . . . . . C:\WINDOWS
User Profile Dir . . . . . . C:\Users\Dhoek
-
za 01-07-2017 14:06:42,40 Starting msinfo32 - save in NFO format
-
za 01-07-2017 14:06:42,43 msinfo32 Started                          - error level - 0
-
-
za 01-07-2017 14:06:42,44 Starting dxdiag
-
za 01-07-2017 14:06:42,46 dxdiag Started                            - error level - -
-
-
za 01-07-2017 14:06:42,47 Copy Hosts File
-
za 01-07-2017 14:06:42,48 Copy Hosts File Done                      - error level - 0
-
-
za 01-07-2017 14:06:42,50 Starting Driver Query #1
-
za 01-07-2017 14:06:42,54 Driver Query #1 Started                   - error level - 0
-
-
za 01-07-2017 14:06:42,55 Starting Driver Query #2
-
za 01-07-2017 14:06:42,58 Driver Query #2 Started                   - error level - 0
-
-
za 01-07-2017 14:06:42,59 Starting Driver Query #3
-
za 01-07-2017 14:06:42,62 Driver Query #3 Started                   - error level - 0
-
-
         D R I V E R      Q U E R Y      E N D
-
-
za 01-07-2017 14:06:42,66 Starting Event Viewer log dump - apps
-
za 01-07-2017 14:06:42,71 Event Viewer log dump - apps - Started    - error level - 0
-
-
za 01-07-2017 14:06:42,72 Starting Event Viewer log dump - System
-
za 01-07-2017 14:06:42,76 Event Viewer log dump - System - Started  - error level - 0
-
-
za 01-07-2017 14:06:42,77 Starting TRACERT and IPCONFIG
-
-
za 01-07-2017 14:06:42,82 TRACERT Started                           - error level - 0
-
za 01-07-2017 14:06:42,99 Running IPCONFIG Done                     - error level - 0
-
-
za 01-07-2017 14:06:43,00 Starting SystemInfo
-
za 01-07-2017 14:06:43,03 SystemInfo Started                        - error level - 0
-
-
za 01-07-2017 14:06:43,05 Starting SysInfo e-mail removing vbs script
-
-)
za 01-07-2017 14:06:43,11 Export current variables Done             - error level - 0
-
-
za 01-07-2017 14:06:43,12 Starting WHERE *.sys Command
-
-)
za 01-07-2017 14:06:44,05 NETSH Commands Done                       - error level - 1
-
-
za 01-07-2017 14:06:44,06 Running NETSTAT Command
-
za 01-07-2017 14:08:02,27 NETSTAT Command Done                      - error level - 0
-
-
za 01-07-2017 14:08:02,28 Obtaining Windows Error Reporting information
-
za 01-07-2017 14:08:02,38 Windows Error Reporting Done              - error level - 0
-
-
za 01-07-2017 14:08:02,39 Running Windows Management Instrumentation
-
za 01-07-2017 14:08:02,74 Windows Management Instrumentation Done   - error level - 0
-
-
za 01-07-2017 14:08:02,74 Listing running Tasks
-
za 01-07-2017 14:08:04,12 Running executing Tasks Listing . . . DONE

Issue cd cmd - Where are we? . . .
C:\Users\Dhoek\Documents
za 01-07-2017 14:08:04,13 cd command issued                         - error level - 0


za 01-07-2017 14:08:04,14 Downloading and executing autorunsc.exe. . .


za 01-07-2017 14:08:06,28 Downloading and executing autorunsc.exe. . . DONE


za 01-07-2017 14:08:06,29 Copy dumps - 2nd time

za 01-07-2017 14:08:06,30 Copy dumps - 2nd time . . . Done          - error level - 0

za 01-07-2017 14:08:06,31 Begin registry dump - program un-install strings in case needed

za 01-07-2017 14:08:10,84 Regquery 1 . . .  D O N E                 - error level - 0

za 01-07-2017 14:08:10,87 Regquery 2 . . .  D O N E                 - error level - 0

za 01-07-2017 14:08:10,98 Regquery 3 . . .  D O N E                 - error level - 0

 Volume in drive C is Acer
 Volume Serial Number is 4E1F-23EC

 Directory of C:\Users\Dhoek\Documents\SysnativeFileCollectionApp

01-07-2017  14:08    <DIR>          .
01-07-2017  14:08    <DIR>          ..
30-06-2017  19:32         1.407.956 063017-27453-01.dmp
01-07-2017  14:08             4.394 Autoruns.txt
01-07-2017  14:06            51.477 DriverqFo.txt
01-07-2017  14:06            10.208 DriverqSi.txt
01-07-2017  14:06            90.209 DriverqV.txt
01-07-2017  14:06            98.657 DxDiagx86.txt
01-07-2017  14:06           904.584 EvtxAppDump.txt
01-07-2017  14:06           573.534 EvtxSysDump.txt
01-07-2017  14:08               741 HKCUSoftMSWinCVUninstall.txt
01-07-2017  14:08             7.492 HKLMSoftMSA-SInstalledComponents.txt
01-07-2017  14:08           169.535 HKLMSoftMSWinCVUninstall.txt
27-06-2017  22:49               824 Hosts.txt
01-07-2017  14:06             6.282 IPconfigAll.txt
01-07-2017  14:08            13.801 Jcgriff2Log.txt
01-07-2017  14:06             1.109 KernelDumpList.txt
01-07-2017  14:07         2.040.032 MSInfo32.nfo
01-07-2017  14:06            14.454 NetSHLAN1.txt
01-07-2017  14:08            37.193 NetstatJcgriff2
01-07-2017  14:06                 0 NetstatJcgriff2.StdErr
01-07-2017  14:08            10.512 RAMInfo.html
01-07-2017  14:06             3.493 SetEnvironmentVar.txt
01-07-2017  14:06           192.539 SysList.txt
01-07-2017  14:06             2.586 SystemInfo.txt
01-07-2017  14:08           291.945 TasklistSVCHOST.txt
01-07-2017  14:06               937 Tracert.txt
01-07-2017  14:08                28 WERALL.txt
01-07-2017  14:08               722 WERLocalAppData
01-07-2017  14:08             2.222 WERProgramData
01-07-2017  14:08             1.320 WMICRecoveros.txt
              29 File(s)      5.938.786 bytes
               2 Dir(s)  432.816.279.552 bytes free

za 01-07-2017 14:08:10,99 Dir command . . . Done                    - error level - 0

za 01-07-2017 14:08:11,00 -- E  O  J  -  End of Job . . .
za 01-07-2017 14:08:11,00 -- E  O  J  -  End of Job . . .
za 01-07-2017 14:08:11,01 -- E  O  J  -  End of Job . . .


* * *    B S O D    F I L E    C O L L E C T I O N    S C R I P T    * * *
         Authors:
            jcgriff2 - J. C. Griffith, Microsoft MVP
            TheOutcaste - Jerry Wines, Microsoft MVP
            Patrick - Patrick Barker, Microsoft MVP
            niemiro - Richard
            Tekno Venus - Stephen
           http://www.sysnative.com/
           sysnative.com - MVP
          2008 - 2014 sysnative.com
            Last Update: July 2014
         New Jersey, USA; Oregon, USA; New York, USA
         ALL RIGHTS RESERVED

za 01-07-2017 14:08:11,08 -- E  O  J  -  End of Job . . .
za 01-07-2017 14:08:11,08 -- E  O  J  -  End of Job . . .

