system
August 22, 2014, 5:39pm
1
Hi,
Reading thru the forum i see some issues with booting windows and getting stuck at the driver aswRvrt.sys. I got the same problem and followed steps that essexboy provides. Here is my scan i made with frst64 (or how this is called).
Hope you can help me out. Many thanks in advanced!
Kind regards,
Johan
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2014
Ran by SYSTEM on MININT-M5S8K37 on 22-08-2014 19:50:55
Running from H:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Nederlands (Nederland)
Internet Explorer Version 11
Boot Mode: Recovery
The current controlset is ControlSet001
[b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b]
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => "E:\iTunes\iTunesHelper.exe"
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [fst_nl_30] => [X]
HKLM-x32\...\Run: [M-Audio Panel Launcher] => C:\Program Files (x86)\M-Audio\M-Track\MAPanel.exe [1190096 2013-04-24] (M-Audio)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-14] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKU\Jodie\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-15] (Google Inc.)
HKU\Jodie\...\Run: [AdobeBridge] => [X]
HKU\Jodie\...\Run: [PC_GIZMOS] => C:\Users\Jodie\AppData\Roaming\PC-Gizmos\SoundcloudDLD-PC_136528.en_88.exe [2165248 2014-05-13] (PC Gizmos)
HKU\Jodie\...\Run: [LiveSupport] => "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
HKU\Jodie\...\Run: [Google Update] => C:\Users\Jodie\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-14] (AVAST Software)
S2 emaudsv; C:\Windows\system32\emaudsv.exe [26624 2010-10-06] (E-MU Systems)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MTrackAudioDevMon; C:\Program Files (x86)\M-Audio\M-Track\AudioDevMon.exe [546816 2013-04-24] (M-Audio)
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [303104 2012-10-03] ()
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-05-01] ()
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-02-12] ()
S2 Realtek11nSU; C:\Program Files (x86)\Sitecom\Sitecom WiFi USB adapter N150 Driver and Utility\RtlService.exe [36864 2010-04-16] (Realtek)
S2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-03] (VIA Technologies, Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-14] ()
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-14] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-14] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-14] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-14] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-14] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-14] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-14] ()
S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2011-02-23] ()
S3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2014-03-01] (DT Soft Ltd)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-24] (Symantec Corporation)
S3 emusba10; C:\Windows\System32\DRIVERS\emusba10.sys [215000 2010-10-06] (E-MU Systems)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-24] (Symantec Corporation)
S3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20140212.001\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
S3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)
S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [128000 2011-04-27] ()
S3 MTRACK; C:\Windows\System32\DRIVERS\MAudioMTrack.sys [471040 2013-04-24] (M-Audio)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140213.002\ENG64.SYS [126040 2013-11-15] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140213.002\EX64.SYS [2099288 2013-11-15] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
S3 SRTSPX; C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
S3 SymDS; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
S3 SymEFA; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-11-16] (Symantec Corporation)
S3 SymIRON; C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
S3 SymNetS; C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [104568 2012-11-13] (WIBU-SYSTEMS AG)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-22 19:44 - 2014-08-22 19:50 - 00000000 ____D () C:\FRST
2014-08-15 23:30 - 2014-08-15 23:30 - 00000000 __SHD () C:\found.001
2014-08-14 23:02 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\System32\icardres.dll
2014-08-14 23:02 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 23:02 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 23:02 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\System32\TsWpfWrp.exe
2014-08-14 23:02 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\System32\icardagt.exe
2014-08-14 23:02 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\System32\infocardapi.dll
2014-08-14 23:02 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 23:02 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 22:06 - 2014-08-14 22:06 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-14 22:06 - 2014-08-14 22:06 - 00029208 _____ () C:\Windows\System32\Drivers\aswHwid.sys
2014-08-14 15:53 - 2014-08-14 15:53 - 00000384 _____ () C:\Users\Jodie\Downloads\export_tc_cvwanzeebusreisheenenterug_alles.csv
2014-08-14 14:09 - 2014-08-07 03:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-08-14 14:09 - 2014-08-07 03:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-08-14 14:09 - 2014-08-01 00:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2014-08-14 14:09 - 2014-08-01 00:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 14:09 - 2014-07-25 15:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-08-14 14:09 - 2014-07-25 15:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-08-14 14:09 - 2014-07-25 15:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-08-14 14:09 - 2014-07-25 14:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 14:09 - 2014-07-25 14:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-08-14 14:09 - 2014-07-25 14:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-08-14 14:09 - 2014-07-25 14:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-08-14 14:09 - 2014-07-25 14:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-08-14 14:09 - 2014-07-25 14:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2014-08-14 14:09 - 2014-07-25 14:11 - 00051200 _____ () C:\Windows\System32\jsproxy.dll
2014-08-14 14:09 - 2014-07-25 14:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-08-14 14:09 - 2014-07-25 14:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 14:09 - 2014-07-25 14:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-08-14 14:09 - 2014-07-25 14:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-08-14 14:09 - 2014-07-25 14:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-08-14 14:09 - 2014-07-25 13:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-08-14 14:09 - 2014-07-25 13:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-08-14 14:09 - 2014-07-25 13:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2014-08-14 14:09 - 2014-07-25 13:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-14 14:09 - 2014-07-25 13:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 14:09 - 2014-07-25 13:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-14 14:09 - 2014-07-25 13:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-14 14:09 - 2014-07-25 13:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-08-14 14:09 - 2014-07-25 13:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-08-14 14:09 - 2014-07-25 13:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 14:09 - 2014-07-25 13:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-08-14 14:09 - 2014-07-25 13:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 14:09 - 2014-07-25 13:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-08-14 14:09 - 2014-07-25 13:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 14:09 - 2014-07-25 13:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 14:09 - 2014-07-25 13:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-08-14 14:09 - 2014-07-25 13:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-14 14:09 - 2014-07-25 13:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-14 14:09 - 2014-07-25 13:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 14:09 - 2014-07-25 12:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 14:09 - 2014-07-25 12:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-08-14 14:09 - 2014-07-25 12:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 14:09 - 2014-07-25 12:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-08-14 14:09 - 2014-07-25 12:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-08-14 14:09 - 2014-07-25 12:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2014-08-14 14:09 - 2014-07-25 12:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 14:09 - 2014-07-25 12:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 14:09 - 2014-07-25 12:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 14:09 - 2014-07-25 12:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-08-14 14:09 - 2014-07-25 12:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 14:09 - 2014-07-25 12:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 14:09 - 2014-07-25 12:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-14 14:09 - 2014-07-25 12:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 14:09 - 2014-07-25 11:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-08-14 14:09 - 2014-07-25 11:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-08-14 14:09 - 2014-07-25 11:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-08-14 14:09 - 2014-07-25 11:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-14 14:09 - 2014-07-25 11:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 14:09 - 2014-07-25 11:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
system
August 22, 2014, 5:40pm
2
2014-08-14 14:09 - 2014-07-16 04:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2014-08-14 14:09 - 2014-07-16 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2014-08-14 14:09 - 2014-07-16 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 14:09 - 2014-07-16 03:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 14:09 - 2014-07-16 03:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-08-14 14:09 - 2014-07-14 03:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2014-08-14 14:09 - 2014-07-14 02:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-14 14:09 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDYAK.DLL
2014-08-14 14:09 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDTAT.DLL
2014-08-14 14:09 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDRU1.DLL
2014-08-14 14:09 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\System32\KBDBASH.DLL
2014-08-14 14:09 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\System32\KBDRU.DLL
2014-08-14 14:09 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 14:09 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 14:09 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 14:09 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 14:09 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 14:09 - 2014-07-08 23:38 - 00419992 _____ () C:\Windows\System32\locale.nls
2014-08-14 14:09 - 2014-07-08 23:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 14:09 - 2014-06-25 03:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2014-08-14 14:09 - 2014-06-25 02:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 14:09 - 2014-06-16 03:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2014-08-14 14:09 - 2014-06-03 11:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
2014-08-14 14:09 - 2014-06-03 11:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\System32\authui.dll
2014-08-14 14:09 - 2014-06-03 11:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\System32\msihnd.dll
2014-08-14 14:09 - 2014-06-03 11:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\System32\consent.exe
2014-08-14 14:09 - 2014-06-03 10:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 14:09 - 2014-06-03 10:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 14:09 - 2014-06-03 10:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-13 17:53 - 2014-08-13 17:53 - 00000000 __SHD () C:\found.000
2014-07-29 21:58 - 2014-07-29 21:59 - 166542434 _____ () C:\Users\Jodie\Downloads\CVW AN ZEE de pit 2.avi
2014-07-28 17:32 - 2014-07-28 17:32 - 00000000 ____D () C:\Users\Jodie\AppData\Roaming\ATI
2014-07-27 12:49 - 2014-07-27 12:52 - 72384184 _____ () C:\Users\Jodie\Downloads\149488__juskiddink__waves-and-seagulls.wav
2014-07-27 12:48 - 2014-07-27 12:49 - 14807786 _____ () C:\Users\Jodie\Downloads\59490__dobroide__20080807-beach.flac
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-22 19:50 - 2014-08-22 19:44 - 00000000 ____D () C:\FRST
2014-08-15 23:36 - 2013-11-16 11:16 - 00224256 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2014-08-15 23:36 - 2013-11-16 11:15 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-08-15 23:36 - 2013-11-16 11:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-08-15 23:35 - 2013-11-16 11:16 - 00158208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2014-08-15 23:35 - 2013-11-16 11:15 - 00569344 _____ (Microsoft Corporation) C:\Windows\System32\iphlpsvc.dll
2014-08-15 23:35 - 2013-11-16 11:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\System32\srcore.dll
2014-08-15 23:35 - 2013-11-16 11:15 - 00000000 _____ () C:\Windows\System32\oleacc.dll
2014-08-15 23:34 - 2013-11-16 11:15 - 00183296 _____ (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2014-08-15 23:34 - 2013-11-16 11:15 - 00000000 _____ () C:\Windows\System32\dnscacheugc.exe
2014-08-15 23:32 - 2013-11-16 11:10 - 00023408 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2014-08-15 23:30 - 2014-08-15 23:30 - 00000000 __SHD () C:\found.001
2014-08-15 22:29 - 2013-11-15 19:10 - 01667303 _____ () C:\Windows\WindowsUpdate.log
2014-08-15 22:28 - 2014-03-01 18:09 - 00000000 ____D () C:\ProgramData\YoutubeAdblocker
2014-08-15 22:28 - 2014-03-01 18:09 - 00000000 ____D () C:\ProgramData\weebSave
2014-08-15 22:19 - 2014-03-30 21:52 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-822539142-3477657392-1232116304-1000UA.job
2014-08-15 22:08 - 2014-03-01 18:01 - 00000344 _____ () C:\Windows\Tasks\bench-sys.job
2014-08-15 21:59 - 2013-11-27 21:14 - 00000000 ____D () C:\Users\Jodie\AppData\Local\SoulseekQt
2014-08-15 21:56 - 2013-11-15 19:17 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-15 20:12 - 2014-05-01 20:18 - 00000000 ____D () C:\Users\Jodie\AppData\Roaming\Raptr
2014-08-15 20:11 - 2014-05-01 20:18 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-15 20:11 - 2009-07-14 05:45 - 00028944 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-15 20:11 - 2009-07-14 05:45 - 00028944 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-15 20:05 - 2011-04-12 14:00 - 00745424 _____ () C:\Windows\System32\perfh013.dat
2014-08-15 20:05 - 2011-04-12 14:00 - 00153376 _____ () C:\Windows\System32\perfc013.dat
2014-08-15 20:05 - 2009-07-14 06:13 - 01669560 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-08-15 19:58 - 2009-07-14 05:45 - 04892232 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-08-15 19:57 - 2014-03-02 15:08 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job
2014-08-15 19:57 - 2013-11-15 19:17 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-15 19:56 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-15 19:56 - 2009-07-14 05:51 - 00051761 _____ () C:\Windows\setupact.log
2014-08-15 18:19 - 2014-03-30 21:52 - 00001014 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-822539142-3477657392-1232116304-1000Core.job
2014-08-15 11:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-08-15 09:57 - 2014-03-12 20:21 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-15 09:17 - 2010-11-21 04:47 - 00048084 _____ () C:\Windows\PFRO.log
2014-08-15 09:17 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-14 23:02 - 2014-05-07 21:54 - 00000000 ___SD () C:\Windows\System32\CompatTel
2014-08-14 22:06 - 2014-08-14 22:06 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-14 22:06 - 2014-08-14 22:06 - 00029208 _____ () C:\Windows\System32\Drivers\aswHwid.sys
2014-08-14 22:06 - 2014-03-01 18:13 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-14 22:06 - 2014-03-01 18:12 - 01041168 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00427360 _____ (AVAST Software) C:\Windows\System32\Drivers\aswsp.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00307344 _____ (AVAST Software) C:\Windows\System32\aswBoot.exe
2014-08-14 22:06 - 2014-03-01 18:12 - 00224896 _____ () C:\Windows\System32\Drivers\aswVmm.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00093568 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00092008 _____ (AVAST Software) C:\Windows\System32\Drivers\aswStm.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00079184 _____ (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00065776 _____ () C:\Windows\System32\Drivers\aswRvrt.sys
2014-08-14 22:06 - 2014-03-01 18:12 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-14 15:53 - 2014-08-14 15:53 - 00000384 _____ () C:\Users\Jodie\Downloads\export_tc_cvwanzeebusreisheenenterug_alles.csv
2014-08-13 17:53 - 2014-08-13 17:53 - 00000000 __SHD () C:\found.000
2014-08-07 03:06 - 2014-08-14 14:09 - 00529920 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-08-07 03:01 - 2014-08-14 14:09 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-08-05 08:20 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2014-08-01 00:41 - 2014-08-14 14:09 - 00348856 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2014-08-01 00:16 - 2014-08-14 14:09 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-30 17:54 - 2014-02-18 20:42 - 00000132 _____ () C:\Users\Jodie\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-07-29 21:59 - 2014-07-29 21:58 - 166542434 _____ () C:\Users\Jodie\Downloads\CVW AN ZEE de pit 2.avi
2014-07-28 17:32 - 2014-07-28 17:32 - 00000000 ____D () C:\Users\Jodie\AppData\Roaming\ATI
2014-07-28 17:32 - 2013-11-15 19:39 - 00000000 ____D () C:\Users\Jodie\AppData\Local\ATI
2014-07-28 17:31 - 2014-03-03 22:21 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 19:05 - 2014-03-03 22:21 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-27 14:51 - 2014-01-21 20:18 - 00000000 ____D () C:\Users\Jodie\AppData\Roaming\PC-Gizmos
2014-07-27 12:52 - 2014-07-27 12:49 - 72384184 _____ () C:\Users\Jodie\Downloads\149488__juskiddink__waves-and-seagulls.wav
2014-07-27 12:49 - 2014-07-27 12:48 - 14807786 _____ () C:\Users\Jodie\Downloads\59490__dobroide__20080807-beach.flac
2014-07-25 15:52 - 2014-08-14 14:09 - 23645696 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-07-25 15:02 - 2014-08-14 14:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-07-25 15:01 - 2014-08-14 14:09 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-07-25 14:51 - 2014-08-14 14:09 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 14:30 - 2014-08-14 14:09 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-07-25 14:28 - 2014-08-14 14:09 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-07-25 14:28 - 2014-08-14 14:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-07-25 14:25 - 2014-08-14 14:09 - 02774528 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-07-25 14:25 - 2014-08-14 14:09 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2014-07-25 14:11 - 2014-08-14 14:09 - 00051200 _____ () C:\Windows\System32\jsproxy.dll
2014-07-25 14:10 - 2014-08-14 14:09 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-07-25 14:04 - 2014-08-14 14:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 14:03 - 2014-08-14 14:09 - 00598016 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-07-25 14:00 - 2014-08-14 14:09 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-07-25 14:00 - 2014-08-14 14:09 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-07-25 13:59 - 2014-08-14 14:09 - 00758272 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-07-25 13:47 - 2014-08-14 14:09 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-07-25 13:40 - 2014-08-14 14:09 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2014-07-25 13:34 - 2014-08-14 14:09 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 13:34 - 2014-08-14 14:09 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 13:33 - 2014-08-14 14:09 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 13:30 - 2014-08-14 14:09 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 13:28 - 2014-08-14 14:09 - 05824512 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-07-25 13:28 - 2014-08-14 14:09 - 00072704 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-07-25 13:21 - 2014-08-14 14:09 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 13:19 - 2014-08-14 14:09 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-07-25 13:18 - 2014-08-14 14:09 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 13:17 - 2014-08-14 14:09 - 00085504 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-07-25 13:17 - 2014-08-14 14:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 13:12 - 2014-08-14 14:09 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 13:10 - 2014-08-14 14:09 - 00292864 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-07-25 13:10 - 2014-08-14 14:09 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 13:08 - 2014-08-14 14:09 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 13:06 - 2014-08-14 14:09 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 12:52 - 2014-08-14 14:09 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 12:47 - 2014-08-14 14:09 - 00631808 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-07-25 12:43 - 2014-08-14 14:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 12:42 - 2014-08-14 14:09 - 00692736 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-07-25 12:39 - 2014-08-14 14:09 - 02087936 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-07-25 12:39 - 2014-08-14 14:09 - 01249280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2014-07-25 12:36 - 2014-08-14 14:09 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 12:34 - 2014-08-14 14:09 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 12:29 - 2014-08-14 14:09 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 12:23 - 2014-08-14 14:09 - 13547008 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-07-25 12:13 - 2014-08-14 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 12:07 - 2014-08-14 14:09 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 12:07 - 2014-08-14 14:09 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 12:03 - 2014-08-14 14:09 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 11:52 - 2014-08-14 14:09 - 02266624 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-07-25 11:26 - 2014-08-14 14:09 - 01431040 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-07-25 11:17 - 2014-08-14 14:09 - 00846336 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-07-25 11:09 - 2014-08-14 14:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 11:05 - 2014-08-14 14:09 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 11:00 - 2014-08-14 14:09 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
system
August 22, 2014, 5:41pm
3
sorry for the 3 posts, but got a limit of 200000 characters
Some content of TEMP:
====================
C:\Users\Jodie\AppData\Local\Temp\Ableton Swapper.exe
C:\Users\Jodie\AppData\Local\Temp\bitool.dll
C:\Users\Jodie\AppData\Local\Temp\down.5168.newtab_setup.exe
C:\Users\Jodie\AppData\Local\Temp\LiveSupport_setup.exe
C:\Users\Jodie\AppData\Local\Temp\PlaySound.dll
C:\Users\Jodie\AppData\Local\Temp\raptr_stub.exe
C:\Users\Jodie\AppData\Local\Temp\setup_somoto_fst_nl_30.exe
C:\Users\Jodie\AppData\Local\Temp\sonarinst.exe
C:\Users\Jodie\AppData\Local\Temp\Tsu0EE7D581.dll
C:\Users\Jodie\AppData\Local\Temp\ubi1D60.tmp.exe
C:\Users\Jodie\AppData\Local\Temp\_is673A.exe
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Restore Points =========================
==================== BCD ================================
Windows-opstartbeheer
---------------------
id {bootmgr}
device partition=D:
description Windows Boot Manager
locale nl-NL
inherit {globalsettings}
default {default}
resumeobject {91f2e0c0-37ee-11e2-b83a-b5d467f0531e}
displayorder {default}
toolsdisplayorder {memdiag}
timeout 30
Windows-opstartlaadprogramma
----------------------------
id {default}
device partition=F:
path \Windows\system32\winload.exe
description Windows 7
locale nl-NL
inherit {bootloadersettings}
recoverysequence {91f2e0c2-37ee-11e2-b83a-b5d467f0531e}
recoveryenabled Yes
osdevice partition=F:
systemroot \Windows
resumeobject {91f2e0c0-37ee-11e2-b83a-b5d467f0531e}
nx OptIn
Windows-opstartlaadprogramma
----------------------------
id {91f2e0c2-37ee-11e2-b83a-b5d467f0531e}
device ramdisk=[F:]\Recovery\91f2e0c2-37ee-11e2-b83a-b5d467f0531e\Winre.wim,{91f2e0c3-37ee-11e2-b83a-b5d467f0531e}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[F:]\Recovery\91f2e0c2-37ee-11e2-b83a-b5d467f0531e\Winre.wim,{91f2e0c3-37ee-11e2-b83a-b5d467f0531e}
systemroot \windows
nx OptIn
winpe Yes
Hervatten uit sluimerstand
--------------------------
id {91f2e0c0-37ee-11e2-b83a-b5d467f0531e}
device partition=F:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale nl-NL
inherit {resumeloadersettings}
filedevice partition=F:
filepath \hiberfil.sys
debugoptionenabled No
Windows-geheugentest
--------------------
id {memdiag}
device partition=D:
path \boot\memtest.exe
description Windows Geheugencontrole
locale nl-NL
inherit {globalsettings}
badmemoryaccess Yes
EMS-instellingen
----------------
id {emssettings}
bootems Yes
Debugger-instellingen
---------------------
id {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
RAM-defecten
------------
id {badmemory}
Globale instellingen
--------------------
id {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Instellingen voor opstartlaadprogramma
--------------------------------------
id {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor-instellingen
-------------------
id {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Instellingen voor hervattingslaadprogramma
------------------------------------------
id {resumeloadersettings}
inherit {globalsettings}
Apparaatopties
--------------
id {91f2e0c3-37ee-11e2-b83a-b5d467f0531e}
description Ramdisk Options
ramdisksdidevice partition=F:
ramdisksdipath \Recovery\91f2e0c2-37ee-11e2-b83a-b5d467f0531e\boot.sdi
==================== Memory info ===========================
Percentage of memory in use: 9%
Total physical RAM: 12246.18 MB
Available physical RAM: 11090.9 MB
Total Pagefile: 12244.38 MB
Available Pagefile: 11185.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.69 GB) (Free:9.08 GB) NTFS
Drive d: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: () (Fixed) (Total:931.41 GB) (Free:74.99 GB) NTFS
Drive g: (GSP1RMCHPXFREO_NL_DVD) (CDROM) (Total:2.97 GB) (Free:0 GB) UDF
Drive h: (KINGSTON) (Removable) (Total:14.53 GB) (Free:14.52 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: C59B2B31)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 91FD0E70)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 14.5 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=14.5 GB) - (Type=0C)
LastRegBack: 2014-08-13 19:44
==================== End Of Log ============================
This looks to have been just after a windows update
Download the attached fixlist.txt to the same location as FRST
system
August 22, 2014, 6:06pm
5
Hi Essexboy,
Thanks for your message, but it didnt do the job. Any other idea?
Greetings Johan
OK next trick…
After this fix has run then from the recovery console select startup repair and run that three times
Download the attached fixlist.txt to the same location as FRST
system
August 22, 2014, 6:39pm
7
Hi,
Nope it didn’t do the trick. I runned it 3 times, the first it gave no error. Second and third time it did gave a message that there are problems with my startup.
Hope there is a solution, otherwise i should reinstall windows.
When you start normally do you get a blue screen ? If so what is the stop code and does it reference a file
system
August 23, 2014, 3:44pm
9
Well there is a blue screen, but just for 0,001 second. So impossible to read it. Seems i am doomed
Well i will reinstall windows for now. Really need that desktop tomorrow for work. Many thanks for the help.
Have a nice weekend!
Greetings,
Johan
This is where a backup comes in handy
If you use OTLPE you can backup data https://forum.avast.com/index.php?topic=53253.0
