Windows 7 freezes randomly, 1 BSOD, and runs/loads very slowly

Toggle sidebar Toggle sidebar
B

bbiagllla

Honorable
Mar 17, 2013
21
0
10,510
up until friday night my laptop was running fine. I am using an Asus g73jw ROG edition laptop. The only thing i have noticed is when i load games the screen would go white for a brief second while it loaded the game then it would load game and everything was A ok.

However Friday night while playing my game in full windowed mode as i always do, the computer crashed and gave me the BSOD with a debugcode_usb_driver error of some sort. I restarted windows normally and it booted up and about 1-2 minutes later it froze. I started it into safe mode with networking and once it booted up about 1-2 minutes later it froze. I booted up into safe mode w/o networking and everything worked fine without freezes or BSOD. I went to device manager and seen a usb driver had a yellow exclamation mark. i uninstalled this and it has not returned since. after Restarting windows normal and safe mode with networking quite a few times after and it still froze everytime. sometimes when i clicked something and sometimes it froze on the welcome screen.

i read that network adapters might cause this so i unisntalled my ethernet, braodband, and wireless adapter and restarted windows normally. Though it seemed like it help for a bit the computer still froze. Thinking it might still be a wireless issue i disabled my wireless adapter and plugged in an ethernet cord. I was able to boot safe mode with networking without it freezing at all. So i tried windows normal and instead of it freezing it just took forever to load things. at one point the start menu wouldn't even let me click on things. when i could click on items they just wouldnt load no matter how many times i double clicked them.

My cpu runs at about 60-70 and spikes rarely to no higher than 76 max load which its rated to 90-100. i use cpuid monitor for temps and msiafterburner for VGA whicch runs 32 idle and 60 full game mode.

I have run my uniblue driverscanner and all drivers are up to date. I have manually downloaded new nvidia and atheros wireless adapter drivers and they don't work.

I ran tssdkiller (for rootkits and it was clean0, malware bytes, super anti spyware, reg cleaner, cc cleaner, spybot, and Avast while in safe mode. they found somethings but the one thing found was a virus. I quarantened it immediately did a restart and nothing has changed. i read somewhere avast and firefox can cause alot of freezing. I uninstalled both of them and nothing has changed.

Currently everytime i boot in windows normal mode and type in my password. the welcome words come up and then it goes into a blue screen wth just my mouse pointer. It has not moved past this since. Thinking it was hanging on a driver i have enabled the os boot log while starting up from under msconfig boot. Twice while trying to boot safe mode with networking it hung up on amddmk.something? and i restarted but it loads safe mode without networking fine.

I have been reading and researching all day everyday since friday night. I have ran sfc scan now, memory diagnostics, memtest86, antivirus that boots from thumb drive, ultimate boot cd, hard drive tests, cpu tests, and just about everything i could tihnk of or find even though i am forgetting some of them now. I have two hard drives both seagte 500 gb. They are partitioned into four drives: C:, D:, F:, and G:. I only use C:" for windows related items, anit virus programs, and anything used to debug windows. F and G are use for torrents, video games, etc... I ran a check disk on D: and it completed without any errors( D i think is my recovery drive). I schedule C: to run on next start up. I restarted my computer and once i seen it start checking i left to go out to eat tonight. I came back 1.5 hours later and it was still on 2% complete. Assuming it froze i restarted comp and canceld the second scheduled scan. I attempted to correct somethings and got some advice from my brother.

While talking to my brother we came to an agreement that it is either hardware or software (obviously) he thinks it is most likely driver related because it hangs after the welcome screen. So i restart and press F8 to get into safe mode and it freezes. i can't move the cursor up or down. I restart and get into safe mode where it randomly freezes at some point. i restart again and finally delete my nvideo 460m driver and my wireless adapter again. i restart and try to boot normal mode and it froze on the enter password screen. i rebooted and entered password but it still hung on the blue screen after welcome.
Windows
He decides i need to create a new profile and give it admin rights. I do this in safe mode without network and restart computer. I click other user when it loads and enter the first two letters of the name and it freezes. i restart and enter name and password for other account and it still hangs at the blue scree after welcome.

I have tried many times restore last known configuration, startup in low resolution, disable driver signatures or w/e, system recovery (which never works), system startup repair (nothing), and a few others i can't remember at the moment.

currently right now as of 1 hour ago I started a checkdisk for drive C: again and it is at 0 percent complete (6340 of 331008 file records processed).

I have run out of ideas. Please help. if there is anything you want to know if i have tried or can try let me know.

my full specs are from what i remember:
asus g73jw-ROG laptop
intel core i7-740qm, 1.73ghz
nvidia geforce gtx 460m (clocked but i dont remember exactly to what; nothing outrageous)
HDD''s 500gb + 500gb
memory 16gb
Windows 7 Home premium.
 
Sort by date Sort by votes
B

bbiagllla

Honorable
Mar 17, 2013
21
0
10,510
well i have turned the computer on after powering off just now because it was still stuck at 0 percent chkdsk scan.

i booted into safe mode no networking and it is hung up with the last loaded being: \windows\system32\drivers\amdkmpfd.sys. gonna reboot.

reboooted into safe mode and the same thing happened.

can't get it to load safe mode or get past the welcome screen without freezing.

from what i remember the event viewer only showed dcom something and service something errors.
 
Upvote 0 Downvote
B

bbiagllla

Honorable
Mar 17, 2013
21
0
10,510
i finally got windows safe mode and saf mode with networking to work. been running stable for about 1.5 hours now. my event viewer has a bunch of errors and criticals. ill list the one from friday to today.

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 7:14:25 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Computer Browser service depends on the Server service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T23:14:25.612607100Z" />
<EventRecordID>109746</EventRecordID>
<Correlation />
<Execution ProcessID="536" ThreadID="3192" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Computer Browser</Data>
<Data Name="param2">Server</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

that one shows up aboalot today

Log Name: Microsoft-Windows-Dhcp-Client/Admin
Source: Microsoft-Windows-Dhcp-Client
Date: 3/19/2013 6:49:04 PM
Event ID: 1001
Task Category: Address Configuration State Event
Level: Error
Keywords:
User: LOCAL SERVICE
Computer: ChrisHammond-PC
Description:
Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 0x2A5D607215BD. The following error occurred: 0x79. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Dhcp-Client" Guid="{15A7A4F8-0072-4EAB-ABAD-F98A4D666AED}" />
<EventID>1001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>3</Task>
<Opcode>75</Opcode>
<Keywords>0x4000000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:49:04.717841000Z" />
<EventRecordID>6622</EventRecordID>
<Correlation />
<Execution ProcessID="852" ThreadID="1088" />
<Channel>Microsoft-Windows-Dhcp-Client/Admin</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-19" />
</System>
<EventData>
<Data Name="HWLength">6</Data>
<Data Name="HWAddress">2A5D607215BD</Data>
<Data Name="StatusCode">121</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:47:18 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:18.185253900Z" />
<EventRecordID>109721</EventRecordID>
<Correlation />
<Execution ProcessID="536" ThreadID="804" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">HomeGroup Provider</Data>
<Data Name="param2">Function Discovery Provider Host</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:47:17 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server:
{9E175B6D-F52A-11D8-B9A5-505054503030}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:17.000000000Z" />
<EventRecordID>109717</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1084</Data>
<Data Name="param2">WSearch</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{9E175B6D-F52A-11D8-B9A5-505054503030}</Data>
</EventData>
</Event>

That one twice so far

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:47:16 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:16.000000000Z" />
<EventRecordID>109716</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1084</Data>
<Data Name="param2">EventSystem</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{1BE1F766-5536-11D1-B726-00C04FB926AF}</Data>
</EventData>
</Event>

Log Name: Application
Source: Microsoft-Windows-Winlogon
Date: 3/19/2013 6:47:10 PM
Event ID: 6000
Task Category: None
Level: Warning
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The winlogon notification subscriber <GPClient> was unavailable to handle a notification event.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Winlogon" Guid="{DBE9B383-7CF3-4331-91CC-A3CB16A3B538}" EventSourceName="Wlclntfy" />
<EventID Qualifiers="32768">6000</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:10.000000000Z" />
<EventRecordID>22038</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>GPClient</Data>
<Binary>D9060000</Binary>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:47:10 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:10.000000000Z" />
<EventRecordID>109715</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1084</Data>
<Data Name="param2">ShellHWDetection</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{DD522ACC-F821-461A-A407-50B198B896DC}</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:47:00 PM
Event ID: 7026
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The following boot-start or system-start driver(s) failed to load:
58024589
discache
HWiNFO32
SASDIFSV
SASKUTIL
spldr
Wanarpv6
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7026</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:00.354422600Z" />
<EventRecordID>109694</EventRecordID>
<Correlation />
<Execution ProcessID="536" ThreadID="540" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">
58024589
discache
HWiNFO32
SASDIFSV
SASKUTIL
spldr
Wanarpv6</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:47:00 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:47:00.276422500Z" />
<EventRecordID>109690</EventRecordID>
<Correlation />
<Execution ProcessID="536" ThreadID="540" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Client Virtualization Handler</Data>
<Data Name="param2">Application Virtualization Client</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:43:43 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:43:43.422519300Z" />
<EventRecordID>109637</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="640" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Network List Service</Data>
<Data Name="param2">Network Location Awareness</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>


This one i have seen a bunch of times

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:43:43 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:43:43.000000000Z" />
<EventRecordID>109636</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1068</Data>
<Data Name="param2">netprofm</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{A47979D2-C419-11D9-A5B4-001185AD2B89}</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:43:43 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server:
{BA126AD1-2166-11D1-B1D0-00805FC1270E}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:43:43.000000000Z" />
<EventRecordID>109635</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1068</Data>
<Data Name="param2">netman</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{BA126AD1-2166-11D1-B1D0-00805FC1270E}</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/19/2013 6:43:42 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:43:42.000000000Z" />
<EventRecordID>109634</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1084</Data>
<Data Name="param2">EventSystem</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{1BE1F766-5536-11D1-B726-00C04FB926AF}</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7026
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The following boot-start or system-start driver(s) failed to load:
58024589
AFD
DfsC
discache
HWiNFO32
NetBIOS
NetBT
nsiproxy
Psched
rdbss
SASDIFSV
SASKUTIL
spldr
tdx
vwififlt
Wanarpv6
WfpLwf
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7026</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.841219900Z" />
<EventRecordID>109631</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">
58024589
AFD
DfsC
discache
HWiNFO32
NetBIOS
NetBT
nsiproxy
Psched
rdbss
SASDIFSV
SASKUTIL
spldr
tdx
vwififlt
Wanarpv6
WfpLwf</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.794419800Z" />
<EventRecordID>109624</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">SMB MiniRedirector Wrapper and Engine</Data>
<Data Name="param2">Redirected Buffering Sub Sysytem</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>
Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.794419800Z" />
<EventRecordID>109623</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Workstation</Data>
<Data Name="param2">Network Store Interface Service</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.794419800Z" />
<EventRecordID>109626</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">SMB 2.0 MiniRedirector</Data>
<Data Name="param2">SMB MiniRedirector Wrapper and Engine</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.794419800Z" />
<EventRecordID>109625</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">SMB 1.x MiniRedirector</Data>
<Data Name="param2">SMB MiniRedirector Wrapper and Engine</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.763219800Z" />
<EventRecordID>109618</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">DHCP Client</Data>
<Data Name="param2">Ancillary Function Driver for Winsock</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.763219800Z" />
<EventRecordID>109619</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">DNS Client</Data>
<Data Name="param2">NetIO Legacy TDI Support Driver</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.763219800Z" />
<EventRecordID>109621</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Network Store Interface Service</Data>
<Data Name="param2">NSI proxy service driver.</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/19/2013 6:42:46 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.763219800Z" />
<EventRecordID>109620</EventRecordID>
<Correlation />
<Execution ProcessID="508" ThreadID="512" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">TCP/IP NetBIOS Helper</Data>
<Data Name="param2">Ancillary Function Driver for Winsock</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>

Log Name: System
Source: EventLog
Date: 3/19/2013 6:42:46 PM
Event ID: 6008
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The previous system shutdown at 6:41:12 PM on ‎3/‎19/‎2013 was unexpected.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="EventLog" />
<EventID Qualifiers="32768">6008</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:46.000000000Z" />
<EventRecordID>109603</EventRecordID>
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>6:41:12 PM</Data>
<Data>‎3/‎19/‎2013</Data>
<Data>
</Data>
<Data>
</Data>
<Data>7380</Data>
<Data>
</Data>
<Data>
</Data>
<Binary>DD07030002001300120029000C009500DD07030002001300160029000C009500201C00003C00000001000000201C000000000000100E00000100000000000000</Binary>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-Kernel-Power
Date: 3/19/2013 6:42:41 PM
Event ID: 41
Task Category: (63)
Level: Critical
Keywords: (2)
User: SYSTEM
Computer: ChrisHammond-PC
Description:
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-Power" Guid="{331C3B3A-2005-44C2-AC5E-77220C37D6B4}" />
<EventID>41</EventID>
<Version>2</Version>
<Level>1</Level>
<Task>63</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000002</Keywords>
<TimeCreated SystemTime="2013-03-19T22:42:41.240810100Z" />
<EventRecordID>109607</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="8" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="BugcheckCode">0</Data>
<Data Name="BugcheckParameter1">0x0</Data>
<Data Name="BugcheckParameter2">0x0</Data>
<Data Name="BugcheckParameter3">0x0</Data>
<Data Name="BugcheckParameter4">0x0</Data>
<Data Name="SleepInProgress">true</Data>
<Data Name="PowerButtonTimestamp">130082065095114257</Data>
</EventData>
</Event>

 
Upvote 0 Downvote
B

bbiagllla

Honorable
Mar 17, 2013
21
0
10,510
Log Name: System
Source: Service Control Manager
Date: 3/19/2013 4:38:39 PM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The iPodDrv service failed to start due to the following error:
The system cannot find the file specified.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T20:38:39.144846800Z" />
<EventRecordID>109588</EventRecordID>
<Correlation />
<Execution ProcessID="672" ThreadID="676" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">iPodDrv</Data>
<Data Name="param2">%%2</Data>
</EventData>
</Event>

Log Name: Security
Source: Microsoft-Windows-Eventlog
Date: 3/19/2013 4:38:38 PM
Event ID: 1101
Task Category: Event processing
Level: Error
Keywords: Audit Success
User: N/A
Computer: ChrisHammond-PC
Description:
Audit events have been dropped by the transport. 0
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Eventlog" Guid="{fc65ddd8-d6ef-4962-83d5-6e5cfe9ce148}" />
<EventID>1101</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>101</Task>
<Opcode>0</Opcode>
<Keywords>0x4020000000000000</Keywords>
<TimeCreated SystemTime="2013-03-19T20:38:38.848446200Z" />
<EventRecordID>32805</EventRecordID>
<Correlation />
<Execution ProcessID="980" ThreadID="1292" />
<Channel>Security</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<UserData>
<AuditEventsDropped xmlns:auto-ns3="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://manifests.microsoft.com/win/2004/08/windows/eventlog">
<Reason>0</Reason>
</AuditEventsDropped>
</UserData>
</Event>


^ those are all from 3/19/13

most of the ones from 3/16 to 3/18 are exactly the same but a few and they appear often and many.

Log Name: System
Source: Service Control Manager
Date: 3/18/2013 1:31:14 AM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The aswFsBlk service failed to start due to the following error:
The system cannot find the file specified.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-18T05:31:14.795253200Z" />
<EventRecordID>109530</EventRecordID>
<Correlation />
<Execution ProcessID="680" ThreadID="684" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">aswFsBlk</Data>
<Data Name="param2">%%2</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/18/2013 1:31:14 AM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The aswMonFlt service failed to start due to the following error:
The system cannot find the file specified.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-18T05:31:14.764053200Z" />
<EventRecordID>109528</EventRecordID>
<Correlation />
<Execution ProcessID="680" ThreadID="684" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">aswMonFlt</Data>
<Data Name="param2">%%2</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-Kernel-PnP
Date: 3/18/2013 1:31:14 AM
Event ID: 219
Task Category: (212)
Level: Warning
Keywords:
User: SYSTEM
Computer: ChrisHammond-PC
Description:
The driver \Driver\dtsoftbus01 failed to load for the device Root\SYSTEM\0002.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-PnP" Guid="{9C205A39-1250-487D-ABD7-E831C6290539}" />
<EventID>219</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>212</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2013-03-18T05:31:14.654853000Z" />
<EventRecordID>109525</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="44" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="DriverNameLength">16</Data>
<Data Name="DriverName">Root\SYSTEM\0002</Data>
<Data Name="Status">3221226092</Data>
<Data Name="FailureNameLength">19</Data>
<Data Name="FailureName">\Driver\dtsoftbus01</Data>
<Data Name="Version">0</Data>
</EventData>
</Event>

^ twice ina row.

Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 3/17/2013 10:02:28 PM
Event ID: 10005
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />
<EventID Qualifiers="49152">10005</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-18T02:02:28.000000000Z" />
<EventRecordID>109481</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">1084</Data>
<Data Name="param2">EventSystem</Data>
<Data Name="param3">
</Data>
<Data Name="param4">{1BE1F766-5536-11D1-B726-00C04FB926AF}</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/17/2013 10:02:12 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error:
A device attached to the system is not functioning.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-18T02:02:12.498019300Z" />
<EventRecordID>109466</EventRecordID>
<Correlation />
<Execution ProcessID="504" ThreadID="508" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">DNS Client</Data>
<Data Name="param2">NetIO Legacy TDI Support Driver</Data>
<Data Name="param3">%%31</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/17/2013 6:16:54 PM
Event ID: 7001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
The dependency service or group failed to start.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T22:16:54.922485100Z" />
<EventRecordID>109145</EventRecordID>
<Correlation />
<Execution ProcessID="520" ThreadID="1192" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">HomeGroup Provider</Data>
<Data Name="param2">Function Discovery Provider Host</Data>
<Data Name="param3">%%1068</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/17/2013 12:48:30 PM
Event ID: 7043
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Group Policy Client service did not shut down properly after receiving a preshutdown control.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7043</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T16:48:30.743523900Z" />
<EventRecordID>108204</EventRecordID>
<Correlation />
<Execution ProcessID="700" ThreadID="2720" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Group Policy Client</Data>
</EventData>
</Event>

Log Name: Microsoft-Windows-PrintService/Admin
Source: Microsoft-Windows-PrintService
Date: 3/17/2013 2:29:54 AM
Event ID: 509
Task Category: Routing print spooler command(s)
Level: Error
Keywords: Router,Classic Spooler Event
User: SYSTEM
Computer: ChrisHammond-PC
Description:
The print spooler cannot start because the PrinterBusEnumerator could not start. Error code 0xd. This can occur because of system instability or a lack of system resources.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-PrintService" Guid="{747EF6FD-E535-4D16-B510-42C90F6873A1}" />
<EventID>509</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>39</Task>
<Opcode>12</Opcode>
<Keywords>0x8000000000002800</Keywords>
<TimeCreated SystemTime="2013-03-17T06:29:54.641266000Z" />
<EventRecordID>31</EventRecordID>
<Correlation />
<Execution ProcessID="1420" ThreadID="1464" />
<Channel>Microsoft-Windows-PrintService/Admin</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<UserData>
<RouterError xmlns:auto-ns3="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://manifests.microsoft.com/win/2005/08/windows/printing/spooler/core/events">
<Name>-</Name>
<Error>0xd</Error>
</RouterError>
</UserData>
</Event>

Log Name: Microsoft-Windows-Kernel-EventTracing/Admin
Source: Microsoft-Windows-Kernel-EventTracing
Date: 3/17/2013 1:40:25 AM
Event ID: 3
Task Category: Session
Level: Error
Keywords: Session
User: SYSTEM
Computer: ChrisHammond-PC
Description:
Session "ReadyBoot" stopped due to the following error: 0xC0000188
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-EventTracing" Guid="{B675EC37-BDB6-4648-BC92-F3FDC74D3CA2}" />
<EventID>3</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>2</Task>
<Opcode>14</Opcode>
<Keywords>0x8000000000000010</Keywords>
<TimeCreated SystemTime="2013-03-17T05:40:25.706770800Z" />
<EventRecordID>97</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="196" />
<Channel>Microsoft-Windows-Kernel-EventTracing/Admin</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="SessionName">ReadyBoot</Data>
<Data Name="FileName">C:\Windows\system32\Logfiles\WMI\ReadyBoot.etl</Data>
<Data Name="ErrorCode">3221225864</Data>
<Data Name="LoggingMode">0</Data>
</EventData>
</Event>


Log Name: System
Source: Microsoft-Windows-DNS-Client
Date: 3/17/2013 12:45:19 AM
Event ID: 1014
Task Category: None
Level: Warning
Keywords:
User: NETWORK SERVICE
Computer: ChrisHammond-PC
Description:
Name resolution for the name inferno.demonoid.me timed out after none of the configured DNS servers responded.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-DNS-Client" Guid="{1C95126E-7EEA-49A9-A3FE-A378B03DDB4D}" />
<EventID>1014</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x4000000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T04:45:19.730534800Z" />
<EventRecordID>107447</EventRecordID>
<Correlation />
<Execution ProcessID="988" ThreadID="1844" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-20" />
</System>
<EventData>
<Data Name="QueryName">inferno.demonoid.me</Data>
<Data Name="AddressLength">16</Data>
<Data Name="Address">02000035C0A802010000000000000000</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/16/2013 10:58:23 PM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Google Update Service (gupdate) service failed to start due to the following error:
The system cannot find the path specified.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:58:23.729501400Z" />
<EventRecordID>106689</EventRecordID>
<Correlation />
<Execution ProcessID="732" ThreadID="876" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Google Update Service (gupdate)</Data>
<Data Name="param2">%%3</Data>
</EventData>
</Event>

Log Name: Application
Source: Application Virtualization Client
Date: 3/16/2013 10:57:03 PM
Event ID: 3211
Task Category: (11)
Level: Warning
Keywords: Classic
User: N/A
Computer: CHRISHAMMOND-PC
Description:
{tid=71C}
Attempting Transport Connection URL: http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft Error: 12B0310A-00000124
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Application Virtualization Client" />
<EventID Qualifiers="16384">3211</EventID>
<Level>3</Level>
<Task>11</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:57:03.000000000Z" />
<EventRecordID>21604</EventRecordID>
<Channel>Application</Channel>
<Computer>CHRISHAMMOND-PC</Computer>
<Security />
</System>
<EventData>
<Data>{tid=71C}
</Data>
<Data>http://c2r.microsoft.com/ConsumerC2R/en-us/14.0.4763.1000/ConsumerC2R.en-us_14.0.6131.5001.sft</Data>
<Data>12B0310A-00000124</Data>
</EventData>
</Event>

Log Name: Application
Source: CVHSVC
Date: 3/16/2013 10:57:03 PM
Event ID: 100
Task Category: Client Virtualization Handler
Level: Warning
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
Information only. Error: failed to launch Type: 96::SoftGridApplicationFailure. Stopping task (Stream product id=0x0066) because of fatal error.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="CVHSVC" />
<EventID Qualifiers="16384">100</EventID>
<Level>3</Level>
<Task>1</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:57:03.000000000Z" />
<EventRecordID>21606</EventRecordID>
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>Error: failed to launch Type: 96::SoftGridApplicationFailure. Stopping task (Stream product id=0x0066) because of fatal error.</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/16/2013 10:56:33 PM
Event ID: 7024
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Windows Search service terminated with service-specific error %%-2147218173.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7024</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:56:33.550511500Z" />
<EventRecordID>106677</EventRecordID>
<Correlation />
<Execution ProcessID="732" ThreadID="2080" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Windows Search</Data>
<Data Name="param2">%%-2147218173</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/16/2013 10:56:33 PM
Event ID: 7031
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7031</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:56:33.550511500Z" />
<EventRecordID>106678</EventRecordID>
<Correlation />
<Execution ProcessID="732" ThreadID="4424" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Windows Search</Data>
<Data Name="param2">1</Data>
<Data Name="param3">30000</Data>
<Data Name="param4">1</Data>
<Data Name="param5">Restart the service</Data>
</EventData>
</Event>

Log Name: Application
Source: Microsoft-Windows-Search
Date: 3/16/2013 10:56:33 PM
Event ID: 7010
Task Category: Gatherer
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The index cannot be initialized.

Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index. (HRESULT : 0x80040d03) (0x80040d03)

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Search" Guid="{CA4E628D-8567-4896-AB6B-835B221F373F}" EventSourceName="Windows Search Service" />
<EventID Qualifiers="49152">7010</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>3</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:56:33.000000000Z" />
<EventRecordID>21600</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="ExtraInfo">

Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index. (HRESULT : 0x80040d03) (0x80040d03)
</Data>
</EventData>
</Event>

Log Name: Application
Source: Microsoft-Windows-Search
Date: 3/16/2013 10:56:30 PM
Event ID: 7040
Task Category: Gatherer
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The search service has detected corrupted data files in the index {id=431}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Search" Guid="{CA4E628D-8567-4896-AB6B-835B221F373F}" EventSourceName="Windows Search Service" />
<EventID Qualifiers="49152">7040</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>3</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:56:30.000000000Z" />
<EventRecordID>21592</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="ExtraInfo">

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
</Data>
<Data Name="CorruptionId">431</Data>
</EventData>
</Event>

Log Name: Application
Source: LMS
Date: 3/16/2013 10:56:17 PM
Event ID: 1
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: CHRISHAMMOND-PC
Description:
LMS Service cannot connect to Intel(R) MEI driver
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="LMS" />
<EventID Qualifiers="32768">1</EventID>
<Level>3</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-17T02:56:17.000000000Z" />
<EventRecordID>21577</EventRecordID>
<Channel>Application</Channel>
<Computer>CHRISHAMMOND-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data>LMS Service cannot connect to Intel(R) MEI driver</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-Kernel-PnP
Date: 3/16/2013 7:46:08 PM
Event ID: 219
Task Category: (212)
Level: Warning
Keywords:
User: SYSTEM
Computer: ChrisHammond-PC
Description:
The driver \Driver\sxuptp failed to load for the device Root\SYSTEM\0001.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-PnP" Guid="{9C205A39-1250-487D-ABD7-E831C6290539}" />
<EventID>219</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>212</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T23:46:08.955214900Z" />
<EventRecordID>106005</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="52" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="DriverNameLength">16</Data>
<Data Name="DriverName">Root\SYSTEM\0001</Data>
<Data Name="Status">3221226341</Data>
<Data Name="FailureNameLength">14</Data>
<Data Name="FailureName">\Driver\sxuptp</Data>
<Data Name="Version">0</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/16/2013 7:44:59 PM
Event ID: 7024
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The Background Intelligent Transfer Service service terminated with service-specific error %%-2147023781.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7024</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T23:44:59.656087000Z" />
<EventRecordID>105992</EventRecordID>
<Correlation />
<Execution ProcessID="736" ThreadID="840" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">Background Intelligent Transfer Service</Data>
<Data Name="param2">%%-2147023781</Data>
</EventData>
</Event>

Log Name: System
Source: Service Control Manager
Date: 3/16/2013 7:44:59 PM
Event ID: 7038
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
The SSDPSRV service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
The request is not supported.

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
<EventID Qualifiers="49152">7038</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8080000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T23:44:59.640487000Z" />
<EventRecordID>105987</EventRecordID>
<Correlation />
<Execution ProcessID="736" ThreadID="840" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">SSDPSRV</Data>
<Data Name="param2">NT AUTHORITY\LocalService</Data>
<Data Name="param3">%%50</Data>
</EventData>
</Event>

Log Name: Application
Source: VSS
Date: 3/16/2013 7:44:59 PM
Event ID: 8230
Task Category: None
Level: Warning
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
Volume Shadow Copy Service error: Failed resolving account SYSTEM with status 2226. Check connection to domain controller and VssAccessControl registry key.

Operation:
Initializing Writer

Context:
Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Writer Name: WMI Writer

Error-specific details:
Error: NetLocalGroupGetMemebers(SYSTEM), 0x800708b2, This operation is only allowed on the primary domain controller of the domain.

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="VSS" />
<EventID Qualifiers="0">8230</EventID>
<Level>3</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T23:44:59.000000000Z" />
<EventRecordID>21438</EventRecordID>
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>SYSTEM</Data>
<Data>2226</Data>
<Data>

Operation:
Initializing Writer

Context:
Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
Writer Name: WMI Writer

Error-specific details:
Error: NetLocalGroupGetMemebers(SYSTEM), 0x800708b2, This operation is only allowed on the primary domain controller of the domain.
</Data>
<Binary>2D20436F64653A20534543534543524330303030313937322D2043616C6C3A20534543534543524330303030313735362D205049443A202030303030313034382D205449443A202030303030313037362D20434D443A2020433A5C57696E646F77735C73797374656D33325C737663686F73742E657865202D6B206E6574737663732020202020202D20557365723A204E616D653A204E5420415554484F524954595C53595354454D2C205349443A532D312D352D313820</Binary>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-Kernel-PnP
Date: 3/16/2013 2:00:36 PM
Event ID: 219
Task Category: (212)
Level: Warning
Keywords:
User: SYSTEM
Computer: ChrisHammond-PC
Description:
The driver \Driver\sxuptp failed to load for the device Root\SYSTEM\0001.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-PnP" Guid="{9C205A39-1250-487D-ABD7-E831C6290539}" />
<EventID>219</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>212</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T18:00:36.228024100Z" />
<EventRecordID>105729</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="60" />
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="DriverNameLength">16</Data>
<Data Name="DriverName">Root\SYSTEM\0001</Data>
<Data Name="Status">3221226341</Data>
<Data Name="FailureNameLength">14</Data>
<Data Name="FailureName">\Driver\sxuptp</Data>
<Data Name="Version">0</Data>
</EventData>
</Event>

Log Name: System
Source: Microsoft-Windows-WER-SystemErrorReporting
Date: 3/16/2013 1:32:27 AM
Event ID: 1001
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: CHRISHAMMOND-PC
Description:
The computer has rebooted from a bugcheck. The bugcheck was: 0x000000fe (0x0000000000000008, 0x0000000000000006, 0x0000000000000005, 0xfffffa800f463b20). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 031613-26582-01.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-WER-SystemErrorReporting" Guid="{ABCE23E7-DE45-4366-8631-84FA6C525952}" EventSourceName="BugCheck" />
<EventID Qualifiers="16384">1001</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T05:32:27.000000000Z" />
<EventRecordID>105383</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>CHRISHAMMOND-PC</Computer>
<Security />
</System>
<EventData>
<Data Name="param1">0x000000fe (0x0000000000000008, 0x0000000000000006, 0x0000000000000005, 0xfffffa800f463b20)</Data>
<Data Name="param2">C:\Windows\MEMORY.DMP</Data>
<Data Name="param3">031613-26582-01</Data>
</EventData>
</Event>

^the initial BSOD

Log Name: Application
Source: VSS
Date: 3/16/2013 12:00:00 AM
Event ID: 12348
Task Category: None
Level: Warning
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
Volume Shadow Copy Service warning: VSS was denied access to the root of volume \\?\Volume{fed03ff7-6284-11e0-b02d-74f06dbbf5bb}\. Denying administrators from accessing volume roots can cause many unexpected failures, and will prevent VSS from functioning properly. Check security on the volume, and try the operation again.

Operation:
Removing auto-release shadow copies
Loading provider

Context:
Execution Context: System Provider
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="VSS" />
<EventID Qualifiers="0">12348</EventID>
<Level>3</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-16T04:00:00.000000000Z" />
<EventRecordID>21314</EventRecordID>
<Channel>Application</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>\\?\Volume{fed03ff7-6284-11e0-b02d-74f06dbbf5bb}\</Data>
<Data>

Operation:
Removing auto-release shadow copies
Loading provider

Context:
Execution Context: System Provider</Data>
<Binary>2D20436F64653A2053505250524F564330303030323333312D2043616C6C3A2053505250524F564330303030323237332D205049443A202030303030323536382D205449443A202030303030373032382D20434D443A2020433A5C57696E646F77735C53797374656D33325C737663686F73742E657865202D6B2073777072762D20557365723A204E616D653A204E5420415554484F524954595C53595354454D2C205349443A532D312D352D313820</Binary>
</EventData>
</Event>

^the night of as well.

Log Name: System
Source: ACPI
Date: 3/7/2013 12:53:31 AM
Event ID: 10
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ChrisHammond-PC
Description:
ACPI: ACPI BIOS is attempting to write to an illegal PCI Operation Region (0x4), Please contact your system vendor for technical assistance.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="ACPI" />
<EventID Qualifiers="49157">10</EventID>
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-03-07T05:53:31.510000000Z" />
<EventRecordID>104636</EventRecordID>
<Channel>System</Channel>
<Computer>ChrisHammond-PC</Computer>
<Security />
</System>
<EventData>
<Data>
</Data>
<Data>ACPI</Data>
<Data>0x4</Data>
<Binary>0000000003003000000000000A0005C0000000000000000000000000000000000000000000000000</Binary>
</EventData>
</Event>
 
Upvote 0 Downvote
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom