Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 64x Unbootable, Problem code 6.1.7600.16385


  • This topic is locked This topic is locked
18 replies to this topic

#1 Phelps54

Phelps54

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:37 PM

Posted 23 April 2013 - 06:09 AM

Thank you for taking the time to see my request. I was up most of last night attempting to find a solution to my problem.

 

In the past month there have been a few times where I have jumped into the game Borderlands 2 only to have a bunch of red lines appear on the screen and the computer freezes up. Usually after I validate the files with Steam it seems to be okay, but when it happened last night I was unable to get my computer booted into Windows again.

 

After letting Startup Repair attempt to solve it several times (unsuccessful) I attempted to go for a System Restore. I tried it but all it did was hang my computer again. I attempted a second System Restore to an earlier point, but it came up with the error code 0x80070002.

 

I then tried to run an offline scan using Windows Defender Offline from a USB, but it turned up nothing.

 

Most of what I have tried came from the following page, which I found by googling the problem code 6.1.7600.16385, which is the same problem code I received.

 

http://www.bleepingcomputer.com/forums/t/448339/windows-failed-to-start-system-repair-cant-discover-problem/

 

 

I followed the steps in order and ran a frst64.exe from my command line and then did the fixlist that was in the post, but it did not find any "Zero Access" file/program/task.

 

I'm not sure what to do next, but I'm thankful for any help I can get. I could to a fresh install of Windows, but at the very least I want to save some important files (resume, etc.) if at all possible.

 

(I have a copy of my frst64.txt and my fixlog.txt, but I didn't want to post them until I know if someone might find them useful)



BC AdBot (Login to Remove)

 


#2 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 26 April 2013 - 05:15 AM

Hi Phelps54. Welcome to BC.

I will be helping you.
 

 

(I have a copy of my frst64.txt and my fixlog.txt, but I didn't want to post them until I know if someone might find them useful)

Yes! Please post the two logs.

 

Do you have your Window CD? That's the CD that you used to install your copy of Windows on your machine.

Also have you done anything else with the computer since you posted your topic?

White Warrior.
 


Edited by White Warrior, 26 April 2013 - 05:23 AM.


#3 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 26 April 2013 - 02:54 PM

White Warrior,

 

Thanks for your help. Yes, I do have the Windows Install Disk (I used it once to try to repair the broken files.

 

Here is the FRST64.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-04-2013 01
Ran by SYSTEM on 22-04-2013 21:20:55
Running from E:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Recovery
The current controlset is ControlSet001

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe" [415752 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE [4195848 2009-08-13] (Logitech Inc.)
HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-20] (Microsoft Corporation)
HKLM-x32\...\Run: [McAfeeUpdaterUI] "C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey [136512 2009-08-25] (McAfee, Inc.)
HKLM-x32\...\Run: [ShStatEXE] "C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE [124224 2010-10-22] (McAfee, Inc.)
HKLM-x32\...\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe" [74752 2011-12-09] (Nullsoft, Inc.)
HKLM-x32\...\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [5123216 2012-06-08] (VIA)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: []  [x]
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-18] (Adobe Systems Incorporated)
HKU\Aaron\...\Run: [bluebirds] C:\Users\Aaron\Bluebirds\BlueBirds.exe [270336 2009-04-29] (LG Electronics)
Startup: C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:ProgramData\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)

==================== Services (Whitelisted) =================

S2 McAfeeEngineService; C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\engineserver.exe [20792 2010-10-22] (McAfee, Inc.)
S2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [103744 2009-08-25] (McAfee, Inc.)
S2 McShield; C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\mcshield.exe [181480 2010-10-22] (McAfee, Inc.)
S2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe [66880 2010-10-22] (McAfee, Inc.)
S2 mfevtp; C:\Windows\system32\mfevtps.exe [77968 2010-10-22] (McAfee, Inc.)
S2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)
S2 dlbc_device; C:\Windows\system32\dlbccoms.exe -service [x]

==================== Drivers (Whitelisted) ====================

S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [98088 2010-10-22] (McAfee, Inc.)
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [120224 2010-10-22] (McAfee, Inc.)
S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [470808 2010-10-22] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [78768 2010-10-22] (McAfee, Inc.)
S1 mfetdik; C:\Windows\System32\drivers\mfetdik.sys [84424 2010-10-22] (McAfee, Inc.)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15680 2006-10-31] ()
S3 rt61x64; C:\Windows\System32\DRIVERS\WMP54Gv41x64.sys [446304 2010-04-07] (Ralink Technology, Corp.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-04-22 21:20 - 2013-04-22 21:20 - 00000000 ____D C:\FRST
2013-04-22 17:06 - 2013-04-22 17:06 - 00003360 ____N C:\bootsqm.dat
2013-04-16 15:22 - 2013-04-16 15:33 - 00000000 ____D C:\Users\Aaron\Documents\AaronJobHunt
2013-04-11 16:27 - 2013-04-22 20:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-04-10 17:18 - 2013-02-21 22:57 - 17817088 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-04-10 17:18 - 2013-02-21 22:29 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-04-10 17:18 - 2013-02-21 22:27 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-04-10 17:18 - 2013-02-21 22:21 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-04-10 17:18 - 2013-02-21 22:20 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-04-10 17:18 - 2013-02-21 22:19 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-04-10 17:18 - 2013-02-21 22:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-04-10 17:18 - 2013-02-21 22:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-04-10 17:18 - 2013-02-21 22:15 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-04-10 17:18 - 2013-02-21 22:15 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-04-10 17:18 - 2013-02-21 22:15 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-04-10 17:18 - 2013-02-21 22:14 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-04-10 17:18 - 2013-02-21 22:13 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-04-10 17:18 - 2013-02-21 22:13 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-04-10 17:18 - 2013-02-21 22:12 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-04-10 17:18 - 2013-02-21 22:09 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-04-10 17:18 - 2013-02-21 20:05 - 12324352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-04-10 17:18 - 2013-02-21 19:47 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-04-10 17:18 - 2013-02-21 19:46 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-04-10 17:18 - 2013-02-21 19:38 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-04-10 17:18 - 2013-02-21 19:38 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-04-10 17:18 - 2013-02-21 19:37 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-04-10 17:18 - 2013-02-21 19:36 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-04-10 17:18 - 2013-02-21 19:35 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-04-10 17:18 - 2013-02-21 19:34 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-04-10 17:18 - 2013-02-21 19:34 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-04-10 17:18 - 2013-02-21 19:34 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-04-10 17:18 - 2013-02-21 19:33 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-04-10 17:18 - 2013-02-21 19:32 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-04-10 17:18 - 2013-02-21 19:31 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-04-10 17:18 - 2013-02-21 19:31 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-04-10 17:18 - 2013-02-21 19:28 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-04-10 13:11 - 2013-03-01 22:04 - 01655656 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-10 13:11 - 2013-02-28 19:36 - 03153408 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-04-10 13:06 - 2013-03-18 22:04 - 05550424 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-04-10 13:06 - 2013-03-18 21:46 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2013-04-10 13:06 - 2013-03-18 21:04 - 03968856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-04-10 13:06 - 2013-03-18 21:04 - 03913560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-04-10 13:06 - 2013-03-18 20:47 - 00006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-04-10 13:06 - 2013-03-18 19:06 - 00112640 ____A (Microsoft Corporation) C:\Windows\System32\smss.exe
2013-04-10 13:06 - 2013-01-23 22:01 - 00223752 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2013-04-06 14:23 - 2013-04-06 14:26 - 00000000 ____D C:\Users\Aaron\AppData\Local\Ubisoft Game Launcher
2013-04-06 14:18 - 2013-04-06 14:18 - 00000000 ____D C:ProgramData\Ubisoft
2013-04-06 14:18 - 2013-04-06 14:18 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Ubisoft
2013-04-06 14:01 - 2013-04-06 14:01 - 520311297 ____A C:\Windows\MEMORY.DMP
2013-04-06 14:01 - 2013-04-06 14:01 - 00754176 ____A C:\Windows\Minidump\040613-23743-01.dmp
2013-04-06 14:01 - 2013-04-06 14:01 - 00000000 ____D C:\Windows\Minidump
2013-03-30 08:27 - 2013-03-30 08:27 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-03-30 07:52 - 2013-03-30 07:52 - 05115208 ____A C:\Users\Aaron\Downloads\HPPSdr(1).exe
2013-03-30 07:46 - 2013-03-30 07:46 - 00002272 ____A C:\Users\Public\Desktop\HP Deskjet 1000 J110 series.lnk
2013-03-30 07:46 - 2013-03-30 07:46 - 00000000 ____D C:\Program Files\HP
2013-03-30 07:45 - 2013-03-30 07:45 - 00000057 ____A C:ProgramData\Ament.ini
2013-03-30 07:40 - 2013-03-30 07:44 - 48425056 ____A C:\Users\Aaron\Downloads\DJ1000_J110_1313.exe
2013-03-30 05:57 - 2013-03-30 05:57 - 00000000 ____D C:\Users\Aaron\Documents\TurboTax
2013-03-30 05:56 - 2013-03-30 05:56 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Intuit
2013-03-30 05:56 - 2013-03-30 05:56 - 00000000 ____D C:\Users\Aaron\AppData\Local\IsolatedStorage
2013-03-30 05:55 - 2013-03-30 05:56 - 00000464 ____A C:ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2013-03-30 05:53 - 2013-03-30 05:53 - 00000000 ____D C:\Program Files (x86)\TurboTax
2013-03-30 05:52 - 2013-03-30 05:54 - 00000000 ____D C:ProgramData\Intuit
2013-03-29 16:48 - 2013-03-29 16:48 - 00575179 ____A C:\Users\Aaron\Downloads\prior-year-return.tax2011
2013-03-27 06:12 - 2013-03-27 06:12 - 00000000 ____D C:\Users\Aaron\Documents\Klei
2013-03-27 05:12 - 2013-02-11 20:12 - 00019968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys

==================== One Month Modified Files and Folders =======

2013-04-22 21:20 - 2013-04-22 21:20 - 00000000 ____D C:\FRST
2013-04-22 20:51 - 2013-04-11 16:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-04-22 20:51 - 2013-03-12 16:12 - 00000000 ____D C:\Users\Aaron\Downloads\DangeroustoGoAlone_files
2013-04-22 20:51 - 2012-11-17 11:53 - 00000000 ____D C:ProgramData\NVIDIA
2013-04-22 20:51 - 2012-05-28 07:50 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Winamp
2013-04-22 20:51 - 2012-05-28 06:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-04-22 20:51 - 2012-05-28 05:16 - 00000000 ____D C:\Program Files (x86)\Steam
2013-04-22 20:51 - 2012-05-28 04:37 - 00000000 ____D C:\users\Aaron
2013-04-22 20:51 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\AppCompat
2013-04-22 20:51 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-04-22 20:50 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration
2013-04-22 20:49 - 2013-01-01 16:54 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Skype
2013-04-22 20:49 - 2012-05-28 19:42 - 00000000 ____D C:\Users\Aaron\Documents\my games
2013-04-22 17:06 - 2013-04-22 17:06 - 00003360 ____N C:\bootsqm.dat
2013-04-20 04:19 - 2012-05-28 07:03 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-04-20 04:19 - 2009-07-13 20:51 - 313876070 ____A C:\Windows\setupact.log
2013-04-20 04:18 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-04-19 17:38 - 2012-05-28 04:50 - 01392043 ____A C:\Windows\WindowsUpdate.log
2013-04-19 14:48 - 2012-05-28 04:34 - 00011104 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-04-19 14:48 - 2012-05-28 04:34 - 00011104 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-04-16 15:33 - 2013-04-16 15:22 - 00000000 ____D C:\Users\Aaron\Documents\AaronJobHunt
2013-04-11 02:00 - 2009-07-13 20:45 - 00319896 ____A C:\Windows\System32\FNTCACHE.DAT
2013-04-10 17:19 - 2012-05-31 09:17 - 72702784 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-04-07 12:41 - 2012-06-25 10:10 - 00000000 ____D C:\Users\Aaron\Documents\SavedGames
2013-04-07 12:38 - 2009-07-13 21:13 - 00792712 ____A C:\Windows\System32\PerfStringBackup.INI
2013-04-06 14:26 - 2013-04-06 14:23 - 00000000 ____D C:\Users\Aaron\AppData\Local\Ubisoft Game Launcher
2013-04-06 14:18 - 2013-04-06 14:18 - 00000000 ____D C:ProgramData\Ubisoft
2013-04-06 14:18 - 2013-04-06 14:18 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Ubisoft
2013-04-06 14:01 - 2013-04-06 14:01 - 520311297 ____A C:\Windows\MEMORY.DMP
2013-04-06 14:01 - 2013-04-06 14:01 - 00754176 ____A C:\Windows\Minidump\040613-23743-01.dmp
2013-04-06 14:01 - 2013-04-06 14:01 - 00000000 ____D C:\Windows\Minidump
2013-03-31 17:07 - 2012-05-28 04:41 - 00030838 ____A C:\Windows\PFRO.log
2013-03-30 08:27 - 2013-03-30 08:27 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-03-30 07:52 - 2013-03-30 07:52 - 05115208 ____A C:\Users\Aaron\Downloads\HPPSdr(1).exe
2013-03-30 07:46 - 2013-03-30 07:46 - 00002272 ____A C:\Users\Public\Desktop\HP Deskjet 1000 J110 series.lnk
2013-03-30 07:46 - 2013-03-30 07:46 - 00000000 ____D C:\Program Files\HP
2013-03-30 07:46 - 2013-03-03 14:04 - 00000000 ____D C:\Program Files (x86)\HP
2013-03-30 07:45 - 2013-03-30 07:45 - 00000057 ____A C:ProgramData\Ament.ini
2013-03-30 07:44 - 2013-03-30 07:40 - 48425056 ____A C:\Users\Aaron\Downloads\DJ1000_J110_1313.exe
2013-03-30 05:57 - 2013-03-30 05:57 - 00000000 ____D C:\Users\Aaron\Documents\TurboTax
2013-03-30 05:56 - 2013-03-30 05:56 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\Intuit
2013-03-30 05:56 - 2013-03-30 05:56 - 00000000 ____D C:\Users\Aaron\AppData\Local\IsolatedStorage
2013-03-30 05:56 - 2013-03-30 05:55 - 00000464 ____A C:ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2013-03-30 05:56 - 2012-06-10 16:41 - 00070936 ____A C:\Users\Aaron\AppData\Local\GDIPFONTCACHEV1.DAT
2013-03-30 05:54 - 2013-03-30 05:52 - 00000000 ____D C:ProgramData\Intuit
2013-03-30 05:53 - 2013-03-30 05:53 - 00000000 ____D C:\Program Files (x86)\TurboTax
2013-03-29 17:00 - 2012-05-31 04:31 - 00000000 ____D C:\Users\Aaron\AppData\Roaming\uTorrent
2013-03-29 16:51 - 2013-03-20 17:21 - 00000000 ____D C:\Users\Aaron\Downloads\Season 09 - Complete
2013-03-29 16:48 - 2013-03-29 16:48 - 00575179 ____A C:\Users\Aaron\Downloads\prior-year-return.tax2011
2013-03-27 06:12 - 2013-03-27 06:12 - 00000000 ____D C:\Users\Aaron\Documents\Klei
2013-03-27 06:12 - 2012-05-29 11:18 - 00208736 ____A C:\Windows\DirectX.log

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-03-27 18:56:17
Restore point made on: 2013-03-30 05:54:14
Restore point made on: 2013-04-06 15:53:05
Restore point made on: 2013-04-07 12:40:35
Restore point made on: 2013-04-10 17:17:58
Restore point made on: 2013-04-20 04:20:48

==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 8191.18 MB
Available physical RAM: 7412.88 MB
Total Pagefile: 8189.33 MB
Available Pagefile: 7400.55 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:698.63 GB) (Free:429.43 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)]
Drive d: (GRMCHPXFREO_EN_DVD) (CDROM) (Total:3 GB) (Free:0 GB) UDF
Drive e: (Cruzer) (Removable) (Total:3.74 GB) (Free:2.88 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

  Disk ###  Status         Size     Free     Dyn  Gpt
  --------  -------------  -------  -------  ---  ---
  Disk 0    Online          698 GB      0 B         
  Disk 1    Online         3835 MB      0 B         

Partitions of Disk 0:
===============

Disk ID: A258D7A7

  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    Primary            698 GB  1024 KB

==================================================================================

Disk: 0
Partition 1
Type  : 07
Hidden: No
Active: Yes

  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 1     C                NTFS   Partition    698 GB  Healthy            

=========================================================

Partitions of Disk 1:
===============

Disk ID: 00000000

  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    Primary           3827 MB    19 KB

==================================================================================

Disk: 1
Partition 1
Type  : 0B
Hidden: No
Active: No

  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 2     E   Cruzer       FAT32  Removable   3827 MB  Healthy            

=========================================================
============================== MBR & Partition Table ==================

====================================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: A258D7A7)

Partition 1: (Active) - (Size=699 GB) - (Type=07) (NTFS)

====================================================================
Disk: 1 (Size: 4 GB) (Disk ID: 00000000)

Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)


Last Boot: 2013-04-14 06:09

==================== End Of Log ============================

 

 

 

 

 

 

And here is the Fix Log:

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-04-2013 01
Ran by SYSTEM at 2013-04-22 21:51:43 Run:2
Running from E:\
Boot Mode: Recovery
==============================================

HKLM\System\ControlSet001\Control\Session Manager\SubSystems\\Windows No ZeroAccess entry found.

=========  Del /q C:\Windows\Tasks\At*.job =========

Could Not Find C:\Windows\Tasks\At*.job

========= End of CMD: =========

C:\Windows\system64 not found.

==== End of Fixlog ====

 

 

Let me know if there is anything else I need. Thanks again for your help!

 

Phelps54



#4 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 28 April 2013 - 04:43 PM

Hi Phelps54.

It is possible that the red lines could be caused by bad video hardware. We'll check that out later if necessary.

I need some information.
Can you boot into safe mode?
If you can then please uninstall McAfee to see if that makes any difference to the system.

Also, some links I found suggested that an unbootable machine could be caused by steam not shutting down correctly. It must be shut down manually.

Possible solution: allow it to validate till it says "All files were successfully validated", and then making sure to exit steam manually(right click on the tray icon -> exit)
Then check the task manager to be doubly sure steam has closed properly before shutting down windows.

Now, let's see if we can save your files for you.

We are going to try to salvage your data using PuppyLinux.

Please go here It gives detailed instructions on what to do.

Let me know how you get on.

White Warrior



#5 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:37 PM

Posted 29 April 2013 - 08:21 PM

Thanks for your help White Warrior. I am unable to boot into safe mode I don't even have the option to do so

I am starting to agree that the symptoms look like they are cause by a problem with the video card which is four and a half years old.


I will check out the Puppy Linux link when I get to my laptop at work


I am trying a few different things to try and get into safe mode tonight and will let you know if I have any success

#6 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 01 May 2013 - 06:49 PM

Well, I tried puppy linux but the screen was still way too distorted to do anything so I pulled the graphics card. Sure enough, that was it so I tried to load Windows 7 normally but after the windows icon came up it dropped me on a black screen with just a mouse cursor to move around (desktop not loading). It does the same thing if I boot in Safe Mode. Launching the Windows Install CD to do repairs is also unsuccessful (Now it says there are no restore points available to use. I'm going to finish the Memory Diagnostic I am doing right now (won't be it but I might as well check) and I am going to attempt to use Puppy Linux to save my more valuable files before I do anything else. Would a clean reinstall be the only option?

 

At least I figured out the graphics problems... :)

 

 

Though now I am back in the market for a graphics card :mellow: . Time to hit Newegg...



#7 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 02 May 2013 - 01:20 AM

Hi Phelps54

 

 

Would a clean reinstall be the only option?

 

 

No. There are tools we can use that may gain us access to the system.

I'll wait until you post back again.

 

White Warrior.


Edited by White Warrior, 02 May 2013 - 01:20 AM.


#8 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:37 PM

Posted 02 May 2013 - 07:17 PM

I am just finishing the transfer of some of my files to a back up hard drive. what would be the next step?

#9 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 02 May 2013 - 07:45 PM

Hi Phelps54

Let's see if we can get windows back.

Load Recovery console from the Windows CD.
Log in to your Administrator account
Select Command Prompt
Now we need to change the drive letter to d
Type in cd /c d:\
Press Enter
Next
Type in CHKDSK /R
Press Enter
Note This scan may take a long time.

When it is finished reboot the computer to see if that fixed it.
If that has not fixed it, then please continue with the following instructions.

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the flashdrive as fixlist.txt

Last Boot: 2013-04-14 06:09
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now please enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

White Warrior

#10 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:37 PM

Posted 04 May 2013 - 06:04 AM

Here is the Fixlog.

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-04-2013 01
Ran by SYSTEM at 2013-05-04 06:56:55 Run:3
Running from E:\
Boot Mode: Recovery
==============================================

DEFAULT hive was successfully copied to System32\config\HiveBackup
DEFAULT hive was successfully restored from registry back up.
SAM hive was successfully copied to System32\config\HiveBackup
SAM hive was successfully restored from registry back up.
SECURITY hive was successfully copied to System32\config\HiveBackup
SECURITY hive was successfully restored from registry back up.
SOFTWARE hive was successfully copied to System32\config\HiveBackup
SOFTWARE hive was successfully restored from registry back up.
SYSTEM hive was successfully copied to System32\config\HiveBackup
SYSTEM hive was successfully restored from registry back up.

==== End of Fixlog ====



#11 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 04 May 2013 - 08:09 PM

Hi Phelps54

 

How's the computer running now? Can you boot into windows now? Has that fixed your problem? Exactly what happens when you reboot the computer now?

 

White Warrior



#12 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 05 May 2013 - 12:19 PM

White Warrior,

 

When I boot it up, the windows icon will come swirling in on a black background, then it just leaves me a mouse cursor on a black screen. I can move the mouse cursor, but no imputs make a difference (CTR ALT DEL, right click, left click, etc.). It appears to be at a much lower resolution (probably because of the lack of graphics card (only the onboard one is being used because I took out my EVGA that had died). I can't seem to do anything, so I have to cut the power from the machine. When I try all of the Safe Mode options, I get the same response.

 

Thanks for all your help,

 

Phelps 54



#13 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 06 May 2013 - 06:58 PM

Hi Phelps54

To get your desktop back, let's try this:
Download Unhide.exe by Grinler, and save it to your desktop.
Double click on the file to run the tool.

Next go Start>>My Computer>>Tools>>Folder Options>>View>>Restore Defaults.

Has this improved matters?
If it hasn't then---

Let's check that your onboard card is enabled. The following link has instructions on how to disable the onboard card, please replace "disable" with "enable" in the instructions.

http://www.ehow.com/how_6804375_disable-onboard-graphics-card-bios.html

Let me know if this works.

White Warrior

#14 Phelps54

Phelps54
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:11:37 PM

Posted 07 May 2013 - 08:40 PM

White Warrior

 

How do you want me to run the unhide.exe? I cannot get to the desktop of my computer (won't load)... I can download it on my work laptop, but how do I then run it on the other computer? load it on a jump drive and run it from a command line from the recovery disk?



#15 Guest_White Warrior_*

Guest_White Warrior_*

  • Guests
  • OFFLINE
  •  

Posted 07 May 2013 - 09:16 PM

Hi Phelps54

Don't worry about Unhide. Just check that your onboard card is enabled.

White Warrior




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users