|
|
Welcome to Vista Banter. You are currently viewing our boards as a guest which gives you limited access to view most discussions, articles and access our other FREE features. By joining our free community you will have access to ask questions and reply to others posts, upload your own photos and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
|
|||||||
| Performance and Maintainance of Windows Vista A forum for performance and maintenance tasks in Windows Vista. (microsoft.public.windows.vista.performance_maintainance) |
|
|
LinkBack | Thread Tools | Display Modes |
December 10th 08, 02:18 PM
posted to microsoft.public.windows.vista.performance_maintenance
|
|||
|
|||
please,whon can help on this!!!,thanks in advance!
Log Name: Application
Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:57 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "WmiApRpl" in DLL "C:\Windows\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:57.000Z" / EventRecordID53201/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1WmiApRpl/param1 param2C:\Windows\system32\wbem\wmiaprpl.dll/param2 binaryDataSize4/binaryDataSize binaryData15000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:54 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "MSDTC" in DLL "C:\Windows\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:54.000Z" / EventRecordID53200/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1MSDTC/param1 param2C:\Windows\system32\msdtcuiu.DLL/param2 binaryDataSize4/binaryDataSize binaryData02000780/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:53 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\system32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:53.000Z" / EventRecordID53199/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1Lsa/param1 param2C:\Windows\system32\Secur32.dll/param2 binaryDataSize4/binaryDataSize binaryData05000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:53 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "ESENT" in DLL "C:\Windows\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:53.000Z" / EventRecordID53198/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1ESENT/param1 param2C:\Windows\system32\esentprf.dll/param2 binaryDataSize4/binaryDataSize binaryData02000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:52 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "BITS" in DLL "C:\Windows\system32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:52.000Z" / EventRecordID53197/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1BITS/param1 param2C:\Windows\system32\bitsperf.dll/param2 binaryDataSize4/binaryDataSize binaryData05000000/binaryData /EventXML /UserData /Event Log Name: System Source: Microsoft-Windows-LanguagePackSetup Date: 10/12/08 22:55:39 Event ID: 1001 Task Category: Language Pack Setup Wizard functionality Level: Error Keywords: User: SYSTEM Computer: Sunny-Notebook Description: Application initialization failed. Last error: 0x80070032 Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-LanguagePackSetup" Guid="{7237fff9-a08a-4804-9c79-4a8704b70b87}" / EventID1001/EventID Version0/Version Level2/Level Task30/Task Opcode31/Opcode Keywords0x8000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:39.174Z" / EventRecordID45191/EventRecordID Correlation / Execution ProcessID="352" ThreadID="400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Data Name="Error"0x80070032/Data /EventData /Event Log Name: Application Source: VzCdbSvc Date: 10/12/08 22:54:57 Event ID: 7 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019) Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="VzCdbSvc" / EventID Qualifiers="0"7/EventID Level2/Level Task0/Task Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:57.000Z" / EventRecordID53192/EventRecordID ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data{56F9312C-C989-4E04-8C23-299DEE3A36F5}/Data Data0x80042019/Data /EventData /Event Log Name: System Source: Service Control Manager Date: 10/12/08 22:54:50 Event ID: 7000 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourceName="Service Control Manager" / EventID Qualifiers="49152"7000/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:50.000Z" / EventRecordID45133/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="param1"Parallel port driver/Data Data Name="param2"%%1058/Data /EventData /Event Log Name: Application Source: Microsoft-Windows-WMI Date: 10/12/08 22:54:50 Event ID: 10 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage 99" could not be reactivated in namespace "//./root/cimv2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WMI" Guid="{1edeee53-0afe-4609-b846-d8c0b2075b1f}" EventSourceName="WinMgmt" / EventID Qualifiers="49152"10/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:50.000Z" / EventRecordID53185/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data//./root/cimv2/Data DataSELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage 99/Data Data0x80041003/Data /EventData /Event Log Name: Application Source: SQLBrowser Date: 10/12/08 22:54:24 Event ID: 3 Task Category: None Level: Warning Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The configuration of the AdminConnection\TCP protocol in the SQL instance MSSMLBIZ is not valid. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="SQLBrowser" / EventID Qualifiers="49230"3/EventID Level3/Level Task0/Task Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:24.000Z" / EventRecordID53154/EventRecordID ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData DataAdminConnection\TCP/Data DataMSSMLBIZ/Data /EventData /Event Log Name: System Source: Microsoft-Windows-ResourcePublication Date: 10/12/08 22:54:22 Event ID: 1002 Task Category: None Level: Error Keywords: Event originating from the fdrespub service User: LOCAL SERVICE Computer: Sunny-Notebook Description: Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-ResourcePublication" Guid="{74c2135f-cc76-45c3-879a-ef3bb1eeaf86}" / EventID1002/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x8000000000000040/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.501Z" / EventRecordID45092/EventRecordID Correlation / Execution ProcessID="1472" ThreadID="2664" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-19" / /System UserData ErrorData xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://manifests.microsoft.com/win/2004/08/windows/eventlog" ArgumentProvider\Microsoft.Base.Publication/Publication/Computer/Argument /ErrorData /UserData /Event Log Name: System Source: Microsoft-Windows-Dhcp-Client Date: 10/12/08 22:54:22 Event ID: 1002 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The IP address lease 192.168.0.111 for the Network Card with network address 00215D8539E0 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message). Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Dhcp-Client" Guid="{15A7A4F8-0072-4EAB-ABAD-F98A4D666AED}" EventSourceName="Dhcp" / EventID Qualifiers="0"1002/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.000Z" / EventRecordID45089/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data192.168.0.111/Data Data00215D8539E0/Data Data192.168.0.1/Data /EventData /Event Log Name: System Source: Microsoft-Windows-Dhcp-Client Date: 10/12/08 22:54:22 Event ID: 1003 Task Category: None Level: Warning Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The description for Event ID 1003 from source Microsoft-Windows-Dhcp-Client cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer. If the event originated on another computer, the display information had to be saved with the event. The following information was included with the event: 00215D8539E0 %%2163146757 The resource loader failed to find MUI file Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Dhcp-Client" Guid="{15A7A4F8-0072-4EAB-ABAD-F98A4D666AED}" EventSourceName="Dhcp" / EventID Qualifiers="0"1003/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.000Z" / EventRecordID45088/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data00215D8539E0/Data Data%%2163146757/Data /EventData /Event Log Name: System Source: Microsoft-Windows-HttpEvent Date: 10/12/08 22:54:16 Event ID: 15016 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Unable to initialize the security package Kerberos for server side authentication. The data field contains the error number. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-HttpEvent" Guid="{7b6bc78c-898b-4170-bbf8-1a469ea43fc5}" EventSourceName="HTTP" / EventID Qualifiers="49152"15016/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:16.407Z" / EventRecordID45086/EventRecordID Correlation / Execution ProcessID="4" ThreadID="60" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="DeviceObject"\Device\Http\ReqQueue/Data Data Name="SecurityPackage"Kerberos/Data Binary000004000200300000000000A83A00C00000000000 000000000000000000000000000000000000000E030980/Binary /EventData /Event Log Name: System Source: Microsoft-Windows-WLAN-AutoConfig Date: 10/12/08 22:52:58 Event ID: 4001 Task Category: None Level: Warning Keywords: User: SYSTEM Computer: Sunny-Notebook Description: WLAN AutoConfig service has successfully stopped. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WLAN-AutoConfig" Guid="{9580d7dd-0379-4658-9870-d5be7d52d6de}" / EventID4001/EventID Version0/Version Level3/Level Task0/Task Opcode2/Opcode Keywords0x4000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:58.617Z" / EventRecordID45074/EventRecordID Correlation / Execution ProcessID="1204" ThreadID="7400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData /EventData /Event Log Name: System Source: Microsoft-Windows-WLAN-AutoConfig Date: 10/12/08 22:52:58 Event ID: 10002 Task Category: None Level: Warning Keywords: User: SYSTEM Computer: Sunny-Notebook Description: WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WLAN-AutoConfig" Guid="{9580d7dd-0379-4658-9870-d5be7d52d6de}" / EventID10002/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x4000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:58.617Z" / EventRecordID45073/EventRecordID Correlation / Execution ProcessID="1204" ThreadID="7400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Data Name="ExtensibleModulePath"C:\Windows\System32\IW MSSvc.dll/Data /EventData /Event Log Name: Application Source: Microsoft-Windows-User Profiles Service Date: 10/12/08 22:52:56 Event ID: 1530 Task Category: None Level: Warning Keywords: Classic User: SYSTEM Computer: Sunny-Notebook Description: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003_Classes: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003_CLASSES Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourceName="profsvc" / EventID Qualifiers="32768"1530/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:56.000Z" / EventRecordID53114/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Name="EVENT_HIVE_LEAK" Data Name="Detail"1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003_Classes: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003_CLASSES /Data /EventData /Event Log Name: Application Source: Microsoft-Windows-User Profiles Service Date: 10/12/08 22:52:56 Event ID: 1530 Task Category: None Level: Warning Keywords: Classic User: SYSTEM Computer: Sunny-Notebook Description: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003 Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourceName="profsvc" / EventID Qualifiers="32768"1530/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:56.000Z" / EventRecordID53113/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Name="EVENT_HIVE_LEAK" Data Name="Detail"1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003 /Data /EventData /Event Log Name: Application Source: Microsoft-Windows-EventSystem Date: 10/12/08 22:52:53 Event ID: 4621 Task Category: Event System Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The COM+ Event System could not remove the EventSystem.EventSubscription object {CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. The HRESULT was 80070005. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-EventSystem" Guid="{899daace-4868-4295-afcd-9eb8fb497561}" EventSourceName="EventSystem" / EventID Qualifiers="49152"4621/EventID Version0/Version Level2/Level Task16/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:53.000Z" / EventRecordID53110/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="param1"80070005/Data Data Name="param2"EventSystem.EventSubscription/Data Data Name="param3"{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}/Data /EventData /Event 
|
|
December 11th 08, 12:57 AM
posted to microsoft.public.windows.vista.performance_maintenance
|
|||
|
|||
|
please,whon can help on this!!!,thanks in advance!
While details from the system logs can be useful in diagnosing and issue,
you haven't told us exactly what problem you're having. Please describe in your own terms exactly what's going wrong for you. -- Best of Luck, Rick Rogers, aka "Nutcase" - Microsoft MVP http://mvp.support.microsoft.com/ Windows help - www.rickrogers.org My thoughts http://rick-mvp.blogspot.com "Sunny" wrote in message ... snip
|
|
December 20th 08, 09:20 PM
posted to microsoft.public.windows.vista.performance_maintenance
|
|||
|
|||
|
please,whon can help on this!!!,thanks in advance!
Some day there will be a computer to really analyze all of this and send
back the code to fix it peachy clean!  "Sunny" wrote in message ... Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:57 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "WmiApRpl" in DLL "C:\Windows\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:57.000Z" / EventRecordID53201/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1WmiApRpl/param1 param2C:\Windows\system32\wbem\wmiaprpl.dll/param2 binaryDataSize4/binaryDataSize binaryData15000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:54 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "MSDTC" in DLL "C:\Windows\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:54.000Z" / EventRecordID53200/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1MSDTC/param1 param2C:\Windows\system32\msdtcuiu.DLL/param2 binaryDataSize4/binaryDataSize binaryData02000780/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:53 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\system32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:53.000Z" / EventRecordID53199/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1Lsa/param1 param2C:\Windows\system32\Secur32.dll/param2 binaryDataSize4/binaryDataSize binaryData05000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:53 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "ESENT" in DLL "C:\Windows\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:53.000Z" / EventRecordID53198/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1ESENT/param1 param2C:\Windows\system32\esentprf.dll/param2 binaryDataSize4/binaryDataSize binaryData02000000/binaryData /EventXML /UserData /Event Log Name: Application Source: Microsoft-Windows-Perflib Date: 10/12/08 22:55:52 Event ID: 1008 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Open Procedure for service "BITS" in DLL "C:\Windows\system32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Perflib" Guid="{13B197BD-7CEE-4B4E-8DD0-59314CE374CE}" EventSourceName="Perflib" / EventID Qualifiers="49152"1008/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:52.000Z" / EventRecordID53197/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System UserData EventXML xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="Perflib" param1BITS/param1 param2C:\Windows\system32\bitsperf.dll/param2 binaryDataSize4/binaryDataSize binaryData05000000/binaryData /EventXML /UserData /Event Log Name: System Source: Microsoft-Windows-LanguagePackSetup Date: 10/12/08 22:55:39 Event ID: 1001 Task Category: Language Pack Setup Wizard functionality Level: Error Keywords: User: SYSTEM Computer: Sunny-Notebook Description: Application initialization failed. Last error: 0x80070032 Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-LanguagePackSetup" Guid="{7237fff9-a08a-4804-9c79-4a8704b70b87}" / EventID1001/EventID Version0/Version Level2/Level Task30/Task Opcode31/Opcode Keywords0x8000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:55:39.174Z" / EventRecordID45191/EventRecordID Correlation / Execution ProcessID="352" ThreadID="400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Data Name="Error"0x80070032/Data /EventData /Event Log Name: Application Source: VzCdbSvc Date: 10/12/08 22:54:57 Event ID: 7 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019) Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="VzCdbSvc" / EventID Qualifiers="0"7/EventID Level2/Level Task0/Task Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:57.000Z" / EventRecordID53192/EventRecordID ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data{56F9312C-C989-4E04-8C23-299DEE3A36F5}/Data Data0x80042019/Data /EventData /Event Log Name: System Source: Service Control Manager Date: 10/12/08 22:54:50 Event ID: 7000 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourceName="Service Control Manager" / EventID Qualifiers="49152"7000/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:50.000Z" / EventRecordID45133/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="param1"Parallel port driver/Data Data Name="param2"%%1058/Data /EventData /Event Log Name: Application Source: Microsoft-Windows-WMI Date: 10/12/08 22:54:50 Event ID: 10 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage 99" could not be reactivated in namespace "//./root/cimv2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WMI" Guid="{1edeee53-0afe-4609-b846-d8c0b2075b1f}" EventSourceName="WinMgmt" / EventID Qualifiers="49152"10/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:50.000Z" / EventRecordID53185/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data//./root/cimv2/Data DataSELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage 99/Data Data0x80041003/Data /EventData /Event Log Name: Application Source: SQLBrowser Date: 10/12/08 22:54:24 Event ID: 3 Task Category: None Level: Warning Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The configuration of the AdminConnection\TCP protocol in the SQL instance MSSMLBIZ is not valid. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="SQLBrowser" / EventID Qualifiers="49230"3/EventID Level3/Level Task0/Task Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:24.000Z" / EventRecordID53154/EventRecordID ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData DataAdminConnection\TCP/Data DataMSSMLBIZ/Data /EventData /Event Log Name: System Source: Microsoft-Windows-ResourcePublication Date: 10/12/08 22:54:22 Event ID: 1002 Task Category: None Level: Error Keywords: Event originating from the fdrespub service User: LOCAL SERVICE Computer: Sunny-Notebook Description: Element Provider\Microsoft.Base.Publication/Publication/Computer failed to publish. Ensure that both PKEY_PUBSVCS_METADATA and PKEY_PUBSVCS_TYPE are set properly on the function instance and there were no errors adding the function instance. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-ResourcePublication" Guid="{74c2135f-cc76-45c3-879a-ef3bb1eeaf86}" / EventID1002/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x8000000000000040/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.501Z" / EventRecordID45092/EventRecordID Correlation / Execution ProcessID="1472" ThreadID="2664" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-19" / /System UserData ErrorData xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://manifests.microsoft.com/win/2004/08/windows/eventlog" ArgumentProvider\Microsoft.Base.Publication/Publication/Computer/Argument /ErrorData /UserData /Event Log Name: System Source: Microsoft-Windows-Dhcp-Client Date: 10/12/08 22:54:22 Event ID: 1002 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The IP address lease 192.168.0.111 for the Network Card with network address 00215D8539E0 has been denied by the DHCP server 192.168.0.1 (The DHCP Server sent a DHCPNACK message). Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Dhcp-Client" Guid="{15A7A4F8-0072-4EAB-ABAD-F98A4D666AED}" EventSourceName="Dhcp" / EventID Qualifiers="0"1002/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.000Z" / EventRecordID45089/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data192.168.0.111/Data Data00215D8539E0/Data Data192.168.0.1/Data /EventData /Event Log Name: System Source: Microsoft-Windows-Dhcp-Client Date: 10/12/08 22:54:22 Event ID: 1003 Task Category: None Level: Warning Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The description for Event ID 1003 from source Microsoft-Windows-Dhcp-Client cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer. If the event originated on another computer, the display information had to be saved with the event. The following information was included with the event: 00215D8539E0 %%2163146757 The resource loader failed to find MUI file Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-Dhcp-Client" Guid="{15A7A4F8-0072-4EAB-ABAD-F98A4D666AED}" EventSourceName="Dhcp" / EventID Qualifiers="0"1003/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:22.000Z" / EventRecordID45088/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data00215D8539E0/Data Data%%2163146757/Data /EventData /Event Log Name: System Source: Microsoft-Windows-HttpEvent Date: 10/12/08 22:54:16 Event ID: 15016 Task Category: None Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: Unable to initialize the security package Kerberos for server side authentication. The data field contains the error number. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-HttpEvent" Guid="{7b6bc78c-898b-4170-bbf8-1a469ea43fc5}" EventSourceName="HTTP" / EventID Qualifiers="49152"15016/EventID Version0/Version Level2/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:54:16.407Z" / EventRecordID45086/EventRecordID Correlation / Execution ProcessID="4" ThreadID="60" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="DeviceObject"\Device\Http\ReqQueue/Data Data Name="SecurityPackage"Kerberos/Data Binary000004000200300000000000A83A00C00000000000 000000000000000000000000000000000000000E030980/Binary /EventData /Event Log Name: System Source: Microsoft-Windows-WLAN-AutoConfig Date: 10/12/08 22:52:58 Event ID: 4001 Task Category: None Level: Warning Keywords: User: SYSTEM Computer: Sunny-Notebook Description: WLAN AutoConfig service has successfully stopped. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WLAN-AutoConfig" Guid="{9580d7dd-0379-4658-9870-d5be7d52d6de}" / EventID4001/EventID Version0/Version Level3/Level Task0/Task Opcode2/Opcode Keywords0x4000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:58.617Z" / EventRecordID45074/EventRecordID Correlation / Execution ProcessID="1204" ThreadID="7400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData /EventData /Event Log Name: System Source: Microsoft-Windows-WLAN-AutoConfig Date: 10/12/08 22:52:58 Event ID: 10002 Task Category: None Level: Warning Keywords: User: SYSTEM Computer: Sunny-Notebook Description: WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-WLAN-AutoConfig" Guid="{9580d7dd-0379-4658-9870-d5be7d52d6de}" / EventID10002/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x4000000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:58.617Z" / EventRecordID45073/EventRecordID Correlation / Execution ProcessID="1204" ThreadID="7400" / ChannelSystem/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Data Name="ExtensibleModulePath"C:\Windows\System32\IW MSSvc.dll/Data /EventData /Event Log Name: Application Source: Microsoft-Windows-User Profiles Service Date: 10/12/08 22:52:56 Event ID: 1530 Task Category: None Level: Warning Keywords: Classic User: SYSTEM Computer: Sunny-Notebook Description: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003_Classes: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003_CLASSES Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourceName="profsvc" / EventID Qualifiers="32768"1530/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:56.000Z" / EventRecordID53114/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Name="EVENT_HIVE_LEAK" Data Name="Detail"1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003_Classes: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003_CLASSES /Data /EventData /Event Log Name: Application Source: Microsoft-Windows-User Profiles Service Date: 10/12/08 22:52:56 Event ID: 1530 Task Category: None Level: Warning Keywords: Classic User: SYSTEM Computer: Sunny-Notebook Description: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003 Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourceName="profsvc" / EventID Qualifiers="32768"1530/EventID Version0/Version Level3/Level Task0/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:56.000Z" / EventRecordID53113/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security UserID="S-1-5-18" / /System EventData Name="EVENT_HIVE_LEAK" Data Name="Detail"1 user registry handles leaked from \Registry\User\S-1-5-21-1971929391-261153460-2548609172-1003: Process 1060 (\Device\HarddiskVolume2\Windows\System32\svchost. exe) has opened key \REGISTRY\USER\S-1-5-21-1971929391-261153460-2548609172-1003 /Data /EventData /Event Log Name: Application Source: Microsoft-Windows-EventSystem Date: 10/12/08 22:52:53 Event ID: 4621 Task Category: Event System Level: Error Keywords: Classic User: N/A Computer: Sunny-Notebook Description: The COM+ Event System could not remove the EventSystem.EventSubscription object {CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. The HRESULT was 80070005. Event Xml: Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event" System Provider Name="Microsoft-Windows-EventSystem" Guid="{899daace-4868-4295-afcd-9eb8fb497561}" EventSourceName="EventSystem" / EventID Qualifiers="49152"4621/EventID Version0/Version Level2/Level Task16/Task Opcode0/Opcode Keywords0x80000000000000/Keywords TimeCreated SystemTime="2008-12-10T14:52:53.000Z" / EventRecordID53110/EventRecordID Correlation / Execution ProcessID="0" ThreadID="0" / ChannelApplication/Channel ComputerSunny-Notebook/Computer Security / /System EventData Data Name="param1"80070005/Data Data Name="param2"EventSystem.EventSubscription/Data Data Name="param3"{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}/Data /EventData /Event
|
Linear Mode
