HELP - Computer doesn't boot right

ZenixNet

ZenixNet

Student IT
Power User
Local time
3:01 PM
Messages
331
Location
Ohio - U.S.A
I've got a Dell Insprion 1470 and it never worked right (I would return it for a new one but first Freak Squad has to "fix" it).

When booting it will sometimes freeze at the windows logo, just go black, go into start up repair, go into safe mode, all kinds of stuff.

I have ran many tests/programs and they all say nothing is wrong...
sfc /scannow
chkdisk
start up repair
memory test/diagnostics

I've updated BIOS and all drivers, Ive defragged and ran CCleaner.
I ran the full system scan in Dell Support Center

I can't think of anything else to do! Ive done everything I can possibly think of!
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2
Let's see if 'VEW' shows anything relevant.... download VEW by Vino Rosso http://images.malwareremoval.com/vino/VEW.exe
and save it to your desktop
Double click it to start it Note: If running Windows Vista or Windows 7 you will need to right click the file and select Run as administrator and click Continue or Allow at the User Account Control Prompt.
Click the check boxes next to Application and System located under Select log to query on the upper left
Under Select type to list on the right click the boxes next to Error and Warning Note: If running Windows Vista or Windows 7 also click the box next to Critical (not XP).
Under Number or date of events select Number of events and type 20 in the box next to 1 to 20 and click Run
Once it finishes it will display a log file in notepad
Please copy and paste its entire contents into your next reply
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 30/07/2011 1:23:20 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 30/07/2011 8:52:22 AM
Type: Error Category: 0
Event: 72 Source: SideBySide
Activation context generation failed for "c:\program files\microsoft security client\MSESysprep.dll".Error in manifest or policy file "c:\program files\microsoft security client\MSESysprep.dll" on line 10. The element imaging appears as a child of element urn:schemas-microsoft-com:asm.v1^assembly which is not supported by this version of Windows.

Log: 'Application' Date/Time: 30/07/2011 6:41:58 AM
Type: Error Category: 0
Event: 8194 Source: VSS
Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied. . This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {1041b26f-ac00-4874-895d-eda61d131daf}

Log: 'Application' Date/Time: 30/07/2011 5:35:35 AM
Type: Error Category: 3
Event: 3079 Source: Microsoft-Windows-Search
Notifications for the volume C:\ are not active.

Context: Windows Application

Details:
Insufficient quota to complete the requested service. (HRESULT : 0x800705ad) (0x800705ad)


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:2680)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 446 getDirectoryContents(C:\ProgramData\PCDr\5830/performance) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:2670)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 348 getDirectoryContents(C:\ProgramData\PCDr\5830/performance) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:1550)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 446 getDirectoryContents(C:\ProgramData\PCDr\5830/smartdata) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:1550)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 348 getDirectoryContents(C:\ProgramData\PCDr\5830/smartdata) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:0510)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 446 getDirectoryContents(C:\ProgramData\PCDr\5830/software) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:52 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:52:0340)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 348 getDirectoryContents(C:\ProgramData\PCDr\5830/software) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:51 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:51:8290)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 446 getDirectoryContents(C:\ProgramData\PCDr\5830/hardware) failed


Log: 'Application' Date/Time: 30/07/2011 3:29:51 AM
Type: Error Category: 0
Event: 1 Source: PC-Doctor
(4900) Asapi: (23:29:51:8020)(4900) libMatrix.profiler.ProfilerSnapshots - Error -- 348 getDirectoryContents(C:\ProgramData\PCDr\5830/hardware) failed


Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send lb._dns-sd._udp.h†\018\001\016Ñ\016\001. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send dr._dns-sd._udp.h†\018\001\016Ñ\016\001. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send r._dns-sd._udp.h†\018\001\016Ñ\016\001. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send db._dns-sd._udp.h†\018\001\016Ñ\016\001. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send b._dns-sd._udp.h†\018\001\016Ñ\016\001. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send lb._dns-sd._udp.0.1.168.192.in-addr.arpa. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send dr._dns-sd._udp.0.1.168.192.in-addr.arpa. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send db._dns-sd._udp.0.1.168.192.in-addr.arpa. (PTR)

Log: 'Application' Date/Time: 17/07/2011 3:41:31 PM
Type: Error Category: 0
Event: 100 Source: Bonjour Service
mDNS_Execute: SendQueries didn't send b._dns-sd._udp.0.1.168.192.in-addr.arpa. (PTR)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 30/07/2011 6:56:41 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Program Files\Dell\QuickSet\quickset.exe' (pid 2536) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 6:56:41 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Windows\explorer.exe' (pid 1000) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 5:10:37 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2012 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 30/07/2011 4:35:20 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Program Files (x86)\iTunes\iTunesHelper.exe' (pid 5640) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 4:26:26 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe' (pid 988) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 4:26:26 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Windows\SysWOW64\dllhost.exe' (pid 4248) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 4:26:23 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe' (pid 988) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 4:26:23 AM
Type: Warning Category: 0
Event: 10010 Source: Microsoft-Windows-RestartManager
Application 'C:\Windows\SysWOW64\dllhost.exe' (pid 4248) cannot be restarted - Application SID does not match Conductor SID..

Log: 'Application' Date/Time: 30/07/2011 4:20:15 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1992 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 30/07/2011 3:33:09 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 46 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1004 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 4304 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1928 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 30/07/2011 2:45:50 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 996 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 19/07/2011 6:00:55 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1000 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 18/07/2011 1:01:17 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 112 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 17/07/2011 3:41:29 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
wuaueng.dll (296) SUS20ClientDataStore: A request to write to the file "C:\Windows\SoftwareDistribution\DataStore\DataStore.edb" at offset 26443776 (0x0000000001938000) for 32768 (0x00008000) bytes succeeded, but took an abnormally long time (147561 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Log: 'Application' Date/Time: 07/07/2011 2:02:50 AM
Type: Warning Category: 3
Event: 3036 Source: Microsoft-Windows-Search
The content source <file:C:/Program Files (x86)/Microsoft Office/Office14/Visio Content/> cannot be accessed.

Context: Windows Application, SystemIndex Catalog

Details:
The object was not found. (HRESULT : 0x80041201) (0x80041201)


Log: 'Application' Date/Time: 07/07/2011 1:57:30 AM
Type: Warning Category: 3
Event: 3036 Source: Microsoft-Windows-Search
The content source <file:C:/Program Files (x86)/Microsoft Office/Office14/Visio Content/> cannot be accessed.

Context: Windows Application, SystemIndex Catalog

Details:
The object was not found. (HRESULT : 0x80041201) (0x80041201)


Log: 'Application' Date/Time: 07/07/2011 1:56:24 AM
Type: Warning Category: 1
Event: 1008 Source: Microsoft-Windows-Search
The Windows Search Service is starting up and attempting to remove the old search index {Reason: Application Requested}.


Log: 'Application' Date/Time: 27/06/2011 1:45:25 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 30 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 108 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 1028 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 14/06/2011 4:35:35 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 15 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Root
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\TrustedPeople
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\My
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\CA
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\Disallowed
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\trust
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates
Process 2000 (\Device\HarddiskVolume2\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Policies\Microsoft\SystemCertificates


Log: 'Application' Date/Time: 13/06/2011 3:16:30 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1191241379-903218302-1466511418-1000:
Process 4028 (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) has opened key \REGISTRY\USER\S-1-5-21-1191241379-903218302-1466511418-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 29/07/2011 11:40:03 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 15/06/2011 7:16:40 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 02/05/2011 3:18:10 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 13/04/2011 3:44:10 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 11/04/2011 1:51:28 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 16/03/2011 11:39:47 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 26/02/2011 10:35:46 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 14/02/2011 1:58:53 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 11/02/2011 2:52:45 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 09/02/2011 2:30:02 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 27/01/2011 4:10:33 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 25/01/2011 4:14:43 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 02/01/2011 5:55:39 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 28/12/2010 1:54:39 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 22/12/2010 4:08:11 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 18/12/2010 6:34:24 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 08/12/2010 2:36:57 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 06/12/2010 3:03:11 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 15/11/2010 3:28:30 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 06/11/2010 2:15:06 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 30/07/2011 8:11:12 AM
Type: Error Category: 0
Event: 36 Source: volsnap
The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Log: 'System' Date/Time: 30/07/2011 6:24:36 AM
Type: Error Category: 0
Event: 3002 Source: Microsoft Antimalware
Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.

Log: 'System' Date/Time: 30/07/2011 5:52:25 AM
Type: Error Category: 0
Event: 10010 Source: Microsoft-Windows-DistributedCOM
The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The OMCI service failed to start due to the following error: This driver has been blocked from loading

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 1060 Source: Application Popup
\SystemRoot\SysWow64\DRIVERS\OMCI.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The OMCI service failed to start due to the following error: This driver has been blocked from loading

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 1060 Source: Application Popup
\SystemRoot\SysWow64\DRIVERS\OMCI.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The OMCI service failed to start due to the following error: This driver has been blocked from loading

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 1060 Source: Application Popup
\SystemRoot\SysWow64\DRIVERS\OMCI.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The OMCI service failed to start due to the following error: This driver has been blocked from loading

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 1060 Source: Application Popup
\SystemRoot\SysWow64\DRIVERS\OMCI.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The OMCI service failed to start due to the following error: This driver has been blocked from loading

Log: 'System' Date/Time: 30/07/2011 4:51:25 AM
Type: Error Category: 0
Event: 1060 Source: Application Popup
\SystemRoot\SysWow64\DRIVERS\OMCI.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Log: 'System' Date/Time: 30/07/2011 4:04:36 AM
Type: Error Category: 0
Event: 3002 Source: Microsoft Antimalware
Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.

Log: 'System' Date/Time: 30/07/2011 4:01:56 AM
Type: Error Category: 0
Event: 13 Source: ACPI
: The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Log: 'System' Date/Time: 30/07/2011 4:01:51 AM
Type: Error Category: 0
Event: 13 Source: ACPI
: The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Log: 'System' Date/Time: 30/07/2011 4:01:46 AM
Type: Error Category: 0
Event: 13 Source: ACPI
: The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Log: 'System' Date/Time: 30/07/2011 4:01:41 AM
Type: Error Category: 0
Event: 13 Source: ACPI
: The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Log: 'System' Date/Time: 30/07/2011 4:01:36 AM
Type: Error Category: 0
Event: 13 Source: ACPI
: The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Log: 'System' Date/Time: 30/07/2011 3:35:15 AM
Type: Error Category: 0
Event: 3002 Source: Microsoft Antimalware
Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: Behavior Monitoring Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest definition updates in order to enable real-time protection.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 30/07/2011 5:17:20 PM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 3:52:56 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 3:26:16 PM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 2:51:40 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 2:47:48 PM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 1:26:18 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 6:24:00 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 6:23:33 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 6:07:32 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 6:06:57 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 5:53:05 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 5:52:35 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 5:30:44 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 5:10:46 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 4:20:54 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 4:20:18 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 30/07/2011 4:11:16 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 4:11:08 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 4:04:06 AM
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe GBE Family Controller is disconnected from network.

Log: 'System' Date/Time: 30/07/2011 4:03:34 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
So how do I fix this computer?
I already have SP1 installed, and this problem was happening before SP1.
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
I have already ran chkdsk, and I can't be out of space - I have over 240 GB free.

I can't find anything about this anywere, when my laptop comes out of sleep mode or after a reboot the screen flashes, Intel Graphics Properties pops up and says "This is not the optical resolution for a clone display" and if i click that really fast I can see that my laptop is connecting to a nonsexist display and cloning it. It says its connecting in the 800x600 resolution but my resolution doesn't change, the screen just flashes a lot for a few minutes.
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2
Here is what event viewer has for event 36:
The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
- System

- Provider


[ Name] volsnap


- EventID 36


[ Qualifiers] 49158



Level 2


Task 0


Keywords 0x80000000000000

- TimeCreated


[ SystemTime] 2011-07-30T08:11:12.879199200Z



EventRecordID 39772


Channel System


Computer user-PC


Security
- EventData


\Device\HarddiskVolumeShadowCopy24


C:


000000000200300000000000240006C0020000000000000017000000000000000000000000000000
Binary data:

In Words
0000: 00000000 00300002 00000000 C0060024
0008: 00000002 00000000 00000017 00000000
0010: 00000000 00000000

In Bytes
0000: 00 00 00 00 02 00 30 00 ......0.
0008: 00 00 00 00 24 00 06 C0 ....$..À
0010: 02 00 00 00 00 00 00 00 ........
0018: 17 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........
Click to expand...

And it has this twice:
The time service has not synchronized the system time for 86400 seconds because none of the time service providers provided a usable time stamp. The time service will not update the local system time until it is able to synchronize with a time source. If the local system is configured to act as a time server for clients, it will stop advertising as a time source to clients. The time service will continue to retry and sync time with its time sources. Check system event log for other W32time events for more details. Run 'w32tm /resync' to force an instant time synchronization.

- System

- Provider


[ Name] Microsoft-Windows-Time-Service


[ Guid] {06EDCFEB-0FD0-4E53-ACCA-A6F8BBF81BCB}



EventID 36


Version 0


Level 3


Task 0


Opcode 0


Keywords 0x8000000000000000

- TimeCreated


[ SystemTime] 2010-12-24T04:24:41.922153400Z



EventRecordID 10094


Correlation

- Execution


[ ProcessID] 280


[ ThreadID] 404



Channel System


Computer user-PC

- Security


[ UserID] S-1-5-19

- EventData

UnsynchronizedTimeSeconds 86400
Click to expand...
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2
anyone have any ideas?
 

My Computer

Computer Manufacturer/Model Number
Dell XPS 8100
OS
Windows 7 Home Premium 64-bit
CPU
Intel Core i7 860 @ 2.80GHz
Motherboard
Dell Inc. 0T568R
Memory
8.0GB Dual-Channel DDR3 @ 529MHz 4-7-7-20
Graphics Card(s)
ATI Radeon HD 5770
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
3 Widescreen HD Monitors
Screen Resolution
1600x800
Hard Drives
1000GB Seagate ST31000528AS (SCSI)
1500GB Western Digital WDC WD1001FALS-00J7B1 (SCSI)
PSU
750W
Case
-
Cooling
Fans
Keyboard
Logitech Illuminated Keyboard
Mouse
Logitech MX
Internet Speed
6MBS-15MBS Upload
Other Info
Laptop (Dell Studio 1537)
Intel Mobile Core 2 Duo T6400 @ 2.00GHz
4.0GB Dual-Channel DDR2
You must log in or register to reply here.
Back
Top