
Tue 08/08/2017  8:33:28.15 Begin Logging

v4.6.0 compiled EXE
v4.6.0 compiled EXE
v4.6.0 compiled EXE
v4.6.0 compiled EXE

Tue 08/08/2017  8:33:28.16 Finished set commands                     - error level - 0


Tue 08/08/2017  8:33:28.18 Changed the title of the screen           - error level - 0
Tue 08/08/2017  8:33:28.19 Did a PushD to HomeDrive:HomePath\Document- error level - 0
Tue 08/08/2017  8:33:28.21 Checked for existance of TSE Sub-Dir      - error level - 0
Tue 08/08/2017  8:33:28.23 Created user Dir                          - error level - 0
Tue 08/08/2017  8:33:28.41 Copying mini-kernel dump files            - error level - 0
Tue 08/08/2017  8:33:28.57 Copying mini-kernel dump files Done       - error level - 1
-
* * *    B S O D    F I L E    C O L L E C T I O N    S C R I P T    * * *
         Authors:
            jcgriff2 - J. C. Griffith, Microsoft MVP
            TheOutcaste - Jerry Wines, Microsoft MVP
            Patrick - Patrick Barker, Microsoft MVP
            niemiro - Richard
            Tekno Venus - Stephen
           http://www.sysnative.com/
           sysnative.com - MVP
          2008 - 2014 sysnative.com
            Last Update: July 2014
         New Jersey, USA; Oregon, USA; New York, USA
         ALL RIGHTS RESERVED
-
  Tue 08/08/2017    8:33:23.34  ----- Actual Start execution time
-
      B E G I N      jcgriff2    B A T C H   E X E C U T I O N
      B E G I N      jcgriff2    B A T C H   E X E C U T I O N
-
-
Tue 08/08/2017  8:33:28.66 
-
Original home drive =  C:
home path           =  \Users\Morgan Pierce Parker
current directory   =  C:\Users\Morgan Pierce Parker\Documents
-
Tue 08/08/2017  8:33:28.74 Running WHOAMI command                    - error level - 1
-
ALL user SIDs ------

USER INFORMATION
----------------

User Name                            SID                                           
==================================== ==============================================
m764-140-dq64g3\morgan pierce parker S-1-5-21-2396228472-3482715812-2186985281-1006


GROUP INFORMATION
-----------------

Group Name                                                    Type             SID                                            Attributes                                                     
============================================================= ================ ============================================== ===============================================================
Everyone                                                      Well-known group S-1-1-0                                        Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Local account and member of Administrators group Well-known group S-1-5-114                                      Mandatory group, Enabled by default, Enabled group             
M764-140-DQ64G3\Debugger Users                                Alias            S-1-5-21-2396228472-3482715812-2186985281-1001 Mandatory group, Enabled by default, Enabled group             
BUILTIN\Administrators                                        Alias            S-1-5-32-544                                   Mandatory group, Enabled by default, Enabled group, Group owner
BUILTIN\Users                                                 Alias            S-1-5-32-545                                   Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\INTERACTIVE                                      Well-known group S-1-5-4                                        Mandatory group, Enabled by default, Enabled group             
CONSOLE LOGON                                                 Well-known group S-1-2-1                                        Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Authenticated Users                              Well-known group S-1-5-11                                       Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\This Organization                                Well-known group S-1-5-15                                       Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\Local account                                    Well-known group S-1-5-113                                      Mandatory group, Enabled by default, Enabled group             
LOCAL                                                         Well-known group S-1-2-0                                        Mandatory group, Enabled by default, Enabled group             
NT AUTHORITY\NTLM Authentication                              Well-known group S-1-5-64-10                                    Mandatory group, Enabled by default, Enabled group             
Mandatory Label\High Mandatory Level                          Label            S-1-16-12288                                   Mandatory group, Enabled by default, Enabled group             


PRIVILEGES INFORMATION
----------------------

Privilege Name                  Description                               State   
=============================== ========================================= ========
SeIncreaseQuotaPrivilege        Adjust memory quotas for a process        Disabled
SeSecurityPrivilege             Manage auditing and security log          Disabled
SeTakeOwnershipPrivilege        Take ownership of files or other objects  Disabled
SeLoadDriverPrivilege           Load and unload device drivers            Disabled
SeSystemProfilePrivilege        Profile system performance                Disabled
SeSystemtimePrivilege           Change the system time                    Disabled
SeProfileSingleProcessPrivilege Profile single process                    Disabled
SeIncreaseBasePriorityPrivilege Increase scheduling priority              Disabled
SeCreatePagefilePrivilege       Create a pagefile                         Disabled
SeBackupPrivilege               Back up files and directories             Disabled
SeRestorePrivilege              Restore files and directories             Disabled
SeShutdownPrivilege             Shut down the system                      Disabled
SeDebugPrivilege                Debug programs                            Enabled 
SeSystemEnvironmentPrivilege    Modify firmware environment values        Disabled
SeChangeNotifyPrivilege         Bypass traverse checking                  Enabled 
SeRemoteShutdownPrivilege       Force shutdown from a remote system       Disabled
SeUndockPrivilege               Remove computer from docking station      Disabled
SeManageVolumePrivilege         Perform volume maintenance tasks          Disabled
SeImpersonatePrivilege          Impersonate a client after authentication Enabled 
SeCreateGlobalPrivilege         Create global objects                     Enabled 
SeIncreaseWorkingSetPrivilege   Increase a process working set            Disabled
SeTimeZonePrivilege             Change the time zone                      Disabled
SeCreateSymbolicLinkPrivilege   Create symbolic links                     Disabled
-
Tue 08/08/2017  8:33:28.90 WHOAMI Command Done                       - error level - 1
-
-
Get basic system information . . .
Number of processors . . . . 16
PC Brand . . . . . . . . . . 
Platform . . . . . . . . . . 
Processor Architecture . . . AMD64
Processor Identifier . . . . Intel64 Family 6 Model 26 Stepping 5, GenuineIntel
Processor Level. . . . . . . 6
Processor Revision . . . . . 1a05
Operating system . . . . . . Windows_NT
Windows Dir. . . . . . . . . C:\Windows
User Profile Dir . . . . . . C:\Users\Morgan Pierce Parker
-
Tue 08/08/2017  8:33:28.99 Starting msinfo32 - save in NFO format
-
Tue 08/08/2017  8:33:29.21 msinfo32 Started                          - error level - 0
-
-
Tue 08/08/2017  8:33:29.22 Starting dxdiag
-
Tue 08/08/2017  8:33:29.29 dxdiag Started                            - error level - -
-
-
Tue 08/08/2017  8:33:29.30 Copy Hosts File
-
Tue 08/08/2017  8:33:29.32 Copy Hosts File Done                      - error level - 0
-
-
Tue 08/08/2017  8:33:29.33 Starting Driver Query #1
-
Tue 08/08/2017  8:33:29.57 Driver Query #1 Started                   - error level - 0
-
-
Tue 08/08/2017  8:33:29.58 Starting Driver Query #2
-
Tue 08/08/2017  8:33:29.68 Driver Query #2 Started                   - error level - 0
-
-
Tue 08/08/2017  8:33:29.71 Starting Driver Query #3
-
Tue 08/08/2017  8:33:29.80 Driver Query #3 Started                   - error level - 0
-
-
         D R I V E R      Q U E R Y      E N D
-
-
Tue 08/08/2017  8:33:29.93 Starting Event Viewer log dump - apps
-
Tue 08/08/2017  8:33:30.08 Event Viewer log dump - apps - Started    - error level - 0
-
-
Tue 08/08/2017  8:33:30.10 Starting Event Viewer log dump - System
-
Tue 08/08/2017  8:33:30.22 Event Viewer log dump - System - Started  - error level - 0
-
-
Tue 08/08/2017  8:33:30.24 Starting TRACERT and IPCONFIG
-
-
Tue 08/08/2017  8:33:30.39 TRACERT Started                           - error level - 0
-
Tue 08/08/2017  8:33:31.33 Running IPCONFIG Done                     - error level - 0
-
-
Tue 08/08/2017  8:33:31.35 Starting SystemInfo
-
Tue 08/08/2017  8:33:31.56 SystemInfo Started                        - error level - 0
-
-
Tue 08/08/2017  8:33:31.58 Starting SysInfo e-mail removing vbs script
-
-)
Tue 08/08/2017  8:33:31.74 Export current variables Done             - error level - 0
-
-
Tue 08/08/2017  8:33:31.75 Starting WHERE *.sys Command
-
-)
Tue 08/08/2017  8:33:47.71 NETSH Commands Done                       - error level - 1
-
-
Tue 08/08/2017  8:33:47.73 Running NETSTAT Command
-
Tue 08/08/2017  8:34:03.03 NETSTAT Command Done                      - error level - 0
-
-
Tue 08/08/2017  8:34:03.05 Obtaining Windows Error Reporting information
-
Tue 08/08/2017  8:34:04.96 Windows Error Reporting Done              - error level - 0
-
-
Tue 08/08/2017  8:34:04.98 Running Windows Management Instrumentation
-
Tue 08/08/2017  8:34:08.41 Windows Management Instrumentation Done   - error level - 0
-
-
Tue 08/08/2017  8:34:08.49 Listing running Tasks
-
Tue 08/08/2017  8:34:12.56 Running executing Tasks Listing . . . DONE

Issue cd cmd - Where are we? . . .
C:\Users\Morgan Pierce Parker\Documents
Tue 08/08/2017  8:34:12.58 cd command issued                         - error level - 0


Tue 08/08/2017  8:34:12.59 Downloading and executing autorunsc.exe. . .


Tue 08/08/2017  8:34:14.87 Downloading and executing autorunsc.exe. . . DONE


Tue 08/08/2017  8:34:14.89 Copy dumps - 2nd time

Tue 08/08/2017  8:34:14.92 Copy dumps - 2nd time . . . Done          - error level - 0

Tue 08/08/2017  8:34:14.93 Begin registry dump - program un-install strings in case needed

Tue 08/08/2017  8:34:20.97 Regquery 1 . . .  D O N E                 - error level - 0

Tue 08/08/2017  8:34:21.06 Regquery 2 . . .  D O N E                 - error level - 0

Tue 08/08/2017  8:34:21.34 Regquery 3 . . .  D O N E                 - error level - 0

 Volume in drive C has no label.
 Volume Serial Number is 2AF4-281E

 Directory of C:\Users\Morgan Pierce Parker\Documents\SysnativeFileCollectionApp

08/08/2017  08:34 AM    <DIR>          .
08/08/2017  08:34 AM    <DIR>          ..
08/04/2017  10:35 PM           358,260 080417-162319-01.dmp
08/05/2017  10:19 AM           358,260 080517-105456-01.dmp
08/05/2017  04:52 PM           358,260 080517-90901-01.dmp
08/06/2017  11:54 AM           358,260 080617-159433-01.dmp
08/07/2017  09:05 AM           358,260 080717-140822-01.dmp
08/07/2017  08:44 PM           358,260 080717-93023-01.dmp
08/07/2017  08:26 PM           358,260 080717-97266-01.dmp
08/07/2017  02:32 AM           358,260 080717-99466-01.dmp
08/08/2017  08:34 AM                 0 Autoruns.txt
08/08/2017  08:33 AM            46,685 DriverqFo.txt
08/08/2017  08:33 AM            19,037 DriverqSi.txt
08/08/2017  08:33 AM            81,010 DriverqV.txt
08/08/2017  08:34 AM        17,738,746 EvtxAppDump.txt
08/08/2017  08:33 AM        13,193,267 EvtxSysDump.txt
08/08/2017  08:34 AM            31,511 HKCUSoftMSWinCVUninstall.txt
08/08/2017  08:34 AM            10,958 HKLMSoftMSA-SInstalledComponents.txt
08/08/2017  08:34 AM           261,327 HKLMSoftMSWinCVUninstall.txt
08/07/2017  08:28 PM             2,053 Hosts.txt
08/08/2017  08:33 AM             5,359 IPconfigAll.txt
08/08/2017  08:34 AM            11,081 Jcgriff2Log.txt
08/08/2017  08:33 AM             1,625 KernelDumpList.txt
08/08/2017  08:33 AM            12,562 NetSHLAN1.txt
08/08/2017  08:34 AM            24,799 NetstatJcgriff2
08/08/2017  08:33 AM                 0 NetstatJcgriff2.StdErr
08/08/2017  08:34 AM            36,188 RAMInfo.html
08/08/2017  08:33 AM             5,474 SetEnvironmentVar.txt
08/08/2017  08:33 AM               153 SysList.txt
08/08/2017  08:33 AM                 0 SystemInfo1.txt
08/08/2017  08:34 AM            74,664 TasklistSVCHOST.txt
08/08/2017  08:34 AM             1,053 Tracert.txt
08/08/2017  08:34 AM                29 WERALL.txt
08/08/2017  08:34 AM             6,873 WERLocalAppData
08/08/2017  08:34 AM             2,744 WERProgramData
08/08/2017  08:34 AM             1,326 WMICRecoveros.txt
              34 File(s)     34,434,604 bytes
               2 Dir(s)  561,969,229,824 bytes free

Tue 08/08/2017  8:34:21.42 Dir command . . . Done                    - error level - 0

Tue 08/08/2017  8:34:21.44 -- E  O  J  -  End of Job . . .
Tue 08/08/2017  8:34:21.45 -- E  O  J  -  End of Job . . .
Tue 08/08/2017  8:34:21.47 -- E  O  J  -  End of Job . . .


* * *    B S O D    F I L E    C O L L E C T I O N    S C R I P T    * * *
         Authors:
            jcgriff2 - J. C. Griffith, Microsoft MVP
            TheOutcaste - Jerry Wines, Microsoft MVP
            Patrick - Patrick Barker, Microsoft MVP
            niemiro - Richard
            Tekno Venus - Stephen
           http://www.sysnative.com/
           sysnative.com - MVP
          2008 - 2014 sysnative.com
            Last Update: July 2014
         New Jersey, USA; Oregon, USA; New York, USA
         ALL RIGHTS RESERVED

Tue 08/08/2017  8:34:21.86 -- E  O  J  -  End of Job . . .
Tue 08/08/2017  8:34:21.87 -- E  O  J  -  End of Job . . .

