New
#1
Is there any way to tell who is accessing the registry?
Log Name: Application
Source: Microsoft-Windows-User Profiles Service
Date: 8/26/2009 6:00:03 AM
Event ID: 1530
Task Category: None
Level: Warning
Keywords:
User: SYSTEM
Computer: Home01
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-783115880-3742272611-1246857717-1000_Classes:
Process 2164 (\Device\HarddiskVolume7\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-783115880-3742272611-1246857717-1000_CLASSES
Event Xml:
1530
0
3
0
0
0x8000000000000000
1111
Application
Home01
1 user registry handles leaked from \Registry\User\S-1-5-21-783115880-3742272611-1246857717-1000_Classes:
Process 2164 (\Device\HarddiskVolume7\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-783115880-3742272611-1246857717-1000_CLASSES
I'm getting two of these yellow warnings everyday and according to MS it's OK or it's well expected to get these type of warnings in Event Viewer....but just for the sake of it, is there anyway to tell which program/software is causing these yellow warnings?
Thanks.