[Jake85r]

Okay, so I built my computer about a year and a half ago with the help of this forum. It has been really trustworthy and not had too many problems or issues, and they were all minor problems. But this one I think might be hardware related. The problem is that when I go to sleep, or when I leave it idle for an extended period of time, it seems the computer blackscreens and won't respond no matter how long I wait, and requires a hard restart. It can also freeze when performing any activity, whether it be gaming, or just sitting at idle. Seems to happen randomly and always requires a hard restart. This has led me to believe that it is a RAM issue, but i'm not sure if it could be conflicting programs or something of that nature. Happens at least once per day, and the one time I was able to get it to respond in some way was when I got the computer to wake up, but the desktop background was black, pretty much everything was black, except for a dialogue box that stated something along the lines of "Not enough System resources," when I tried to Ctrl, Alt, Delete, to get into task manager. I also don't think it is malware related because I have Bitdefender and Malwarebytes installed, and am REALLY careful not to go to any "risky" websites, but if you think this might be the case then say so. I want to save reinstallation of windows as a last resort kind of deal. Thanks so much everyone! Also there is one more thing I could mention. Sometimes my RAM usage spikes to 80%, and when I go into the task manager or even the resource manager, the amount of data doesn't even begin to equal 80% of 8 gb, so I'm not sure what is eating the RAM and if that may be the problem. When I first boot up, it uses about 30-35% until it randomly starts using 80-85%.

 

Specs:

Cpu: i5-4670k

Gpu: gtx 760

Motherboard: MSI Z87 g45

RAM: 8GB Corsair Vengence

Edit: PSU: Corsair CS650m

Edited by Jake85r, 26 October 2015 - 09:51 PM.

[Advertisements]

After the PC has been on for at least an hour:

 

Get the free version of Speccy:

 

http://www.filehippo...download_speccy (Look in the upper right for the Download

Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Download, Save and Install it.  

 

Close all browsers and open progrms before running Speccy.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  (It will be near the top about 10 lines down.)  Save the file and close notepad  Attach the file to your next post as it is usually too large for the forum (Click on More Reply Options then Choose file, select the file, Open, Attach this File) Uninstall Speccy.

 

Also:

 

Get Process Explorer

 

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  

 

View, Select Column, check Verified Signer, OK

Options, Verify Image Signatures

 

 

Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

 

Wait a full minute then:

 

File, Save As, Save.  Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

 

[RKinner]

After the PC has been on for at least an hour:

 

Get the free version of Speccy:

 

http://www.filehippo...download_speccy (Look in the upper right for the Download

Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Download, Save and Install it.  

 

Close all browsers and open progrms before running Speccy.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  (It will be near the top about 10 lines down.)  Save the file and close notepad  Attach the file to your next post as it is usually too large for the forum (Click on More Reply Options then Choose file, select the file, Open, Attach this File) Uninstall Speccy.

 

Also:

 

Get Process Explorer

 

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  

 

View, Select Column, check Verified Signer, OK

Options, Verify Image Signatures

 

 

Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

 

Wait a full minute then:

 

File, Save As, Save.  Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

 

[Jake85r]

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer

System Idle Process 96.03 0 K 4 K 0

KillerService.exe 1.37 6,176 K 10,084 K 2332 Qualcomm Atheros Killer Network Service Qualcomm Atheros (No signature was present in the subject) Qualcomm Atheros

procexp64.exe 0.70 40,308 K 56,536 K 102700 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation

RzSurroundVADStreamingService.exe 0.65 25,236 K 30,684 K 2560 RazerSurround VAD Streaming Service A-Volute (No signature was present in the subject) A-Volute

System 0.20 152 K 21,836 K 4

Interrupts 0.20 0 K 0 K n/a Hardware Interrupts and DPCs

chrome.exe 0.18 85,684 K 111,360 K 47156 Google Chrome Google Inc. (Verified) Google Inc

audiodg.exe 0.13 9,804 K 13,876 K 1976 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows

gzserv.exe 0.11 267,716 K 32,296 K 904 Bitdefender Antivirus Free Edition Bitdefender (Verified) Bitdefender SRL

svchost.exe 0.09 16,556 K 22,116 K 1164 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

dwm.exe 0.06 126,488 K 42,172 K 944 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows

lsass.exe 0.03 4,528 K 11,664 K 668 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher

chrome.exe 0.03 116,840 K 148,492 K 5036 Google Chrome Google Inc. (Verified) Google Inc

NvStreamNetworkService.exe 0.03 8,552 K 15,052 K 3212 NVIDIA Network Stream Service NVIDIA Corporation (Verified) NVIDIA Corporation

explorer.exe 0.02 52,320 K 92,596 K 3904 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows

csrss.exe 0.02 1,840 K 4,136 K 536 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher

TabTip.exe 0.02 3,848 K 10,528 K 3008 Touch Keyboard and Handwriting Panel Microsoft Corporation (Verified) Microsoft Windows

csrss.exe 0.02 2,188 K 6,720 K 616 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Publisher

NvStreamUserAgent.exe 0.02 8,348 K 18,236 K 3724 NVIDIA Streamer User Agent NVIDIA Corporation (Verified) NVIDIA Corporation

svchost.exe 0.02 10,292 K 20,620 K 1356 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

gziface.exe 0.02 71,980 K 8,292 K 3732 Bitdefender Antivirus Free Edition Bitdefender (Verified) Bitdefender SRL

FastBootService.exe 0.01 1,168 K 4,964 K 2148 FastBootService MSI (Verified) MICRO-STAR INTERNATIONAL CO.

MSIControlService.exe 0.01 1,448 K 5,148 K 2088 (No signature was present in the subject)

svchost.exe 0.01 4,876 K 11,680 K 792 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 0.01 4,172 K 7,732 K 828 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

NvStreamService.exe 0.01 2,548 K 8,888 K 2224 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation

taskhostex.exe < 0.01 7,700 K 14,496 K 3752 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows

SearchIndexer.exe < 0.01 22,336 K 23,284 K 4204 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows

chrome.exe < 0.01 34,696 K 36,804 K 4660 Google Chrome Google Inc. (Verified) Google Inc

chrome.exe < 0.01 80,844 K 75,828 K 4128 Google Chrome Google Inc. (Verified) Google Inc

PnkBstrA.exe < 0.01 1,060 K 4,328 K 2308 (Verified) Even Balance

NvBackend.exe < 0.01 18,872 K 25,092 K 4224 NVIDIA Backend NVIDIA Corporation (Verified) NVIDIA Corporation

ipoint.exe < 0.01 5,312 K 4,408 K 3768 IPoint.exe Microsoft Corporation (Verified) Microsoft Corporation

nvvsvc.exe < 0.01 4,108 K 11,800 K 732 NVIDIA Driver Helper Service, Version 355.82 NVIDIA Corporation (Verified) NVIDIA Corporation

GameScannerService.exe < 0.01 16,624 K 22,600 K 2372 GameScannerService (Verified) Razer Inc.

SkyDrive.exe < 0.01 10,240 K 19,164 K 4436 OneDrive Sync Engine Microsoft Corporation (Verified) Microsoft Windows

WmiPrvSE.exe 9,136 K 16,760 K 2512 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows

WmiPrvSE.exe 19,336 K 25,408 K 91692 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows

winlogon.exe 1,444 K 8,528 K 736 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows

wininit.exe 808 K 3,772 K 608 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows

TabTip32.exe 1,812 K 4,068 K 3536 Touch Keyboard and Handwriting Panel Helper Microsoft Corporation (Verified) Microsoft Windows

svchost.exe 8,268 K 16,760 K 1504 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 30,592 K 48,308 K 1196 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 13,728 K 20,968 K 1692 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 2,464 K 7,100 K 3320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 8,560 K 13,992 K 1248 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 1,408 K 5,836 K 91336 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

svchost.exe 4,252 K 12,816 K 1832 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher

SuperRAIDSvc.exe 18,164 K 24,800 K 2672 SuperRAIDSvc Micro-Star International (Verified) MICRO-STAR INTERNATIONAL CO.

spoolsv.exe 3,452 K 9,288 K 1648 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows

smss.exe 276 K 1,048 K 312 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows Publisher

SettingSyncHost.exe 5,996 K 6,788 K 5200 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows

services.exe 2,656 K 6,484 K 660 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows Publisher

Samsung Magician.exe 18,960 K 6,424 K 7068 Samsung Magician Application Samsung Electronics. (Verified) Samsung Electronics Co.

procexp.exe 3,384 K 9,348 K 102652 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation

nvxdsync.exe 7,316 K 18,612 K 652 NVIDIA User Experience Driver Component NVIDIA Corporation (Verified) NVIDIA Corporation

nvvsvc.exe 2,044 K 7,096 K 280 NVIDIA Driver Helper Service, Version 355.82 NVIDIA Corporation (Verified) NVIDIA Corporation

nvtray.exe 4,904 K 11,012 K 5008 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation

nvSCPAPISvr.exe 2,564 K 6,044 K 284 Stereo Vision Control Panel API Server NVIDIA Corporation (Verified) NVIDIA Corporation

NvNetworkService.exe 3,384 K 8,372 K 2172 NVIDIA Network Service NVIDIA Corporation (Verified) NVIDIA Corporation

itype.exe 5,372 K 4,028 K 3760 IType.exe Microsoft Corporation (Verified) Microsoft Corporation

iSCTAgent.exe 3,296 K 10,888 K 2004 ISCT Agent Application (Verified) Intel CASE

HeciServer.exe 1,216 K 5,120 K 1948 Intel® Capability Licensing Service Interface Intel® Corporation (No signature was present in the subject) Intel® Corporation

GWX.exe 4,748 K 3,612 K 6716 GWX Microsoft Corporation (Verified) Microsoft Windows

GfExperienceService.exe 3,528 K 10,160 K 1860 NVIDIA GeForce ExperienceService NVIDIA Corporation (Verified) NVIDIA Corporation

conhost.exe 748 K 3,048 K 3224 Console Window Host Microsoft Corporation (Verified) Microsoft Windows

conhost.exe 840 K 3,768 K 3776 Console Window Host Microsoft Corporation (Verified) Microsoft Windows

chrome.exe 27,724 K 25,908 K 5060 Google Chrome Google Inc. (Verified) Google Inc

chrome.exe 37,356 K 36,892 K 4956 Google Chrome Google Inc. (Verified) Google Inc

chrome.exe 80,872 K 76,360 K 4952 Google Chrome Google Inc. (Verified) Google Inc

 

 

Right now its looking pretty normal. I just had to restart it just about an hour ago, so if you want, I can do it again tomorrow after its had a bit more time to sit as it is almost midnight here. Thanks again!

Attached Files

•  JAKESPCSPECCY.txt   285KB   600 downloads

[RKinner]

None of the usual suspects (hi temps, bad hard drive, CPU hog.)   No suspicious processes so I doubt it's malware.   Let's look at your error logs:

 

 

 

1. Please download the Event Viewer Tool by Vino Rosso

http://images.malwar...om/vino/VEW.exe

and save it to your Desktop:

2. Right-click VEW.exe and Run AS Administrator

3. Under 'Select log to query', select:

 

* System

4. Under 'Select type to list', select:

* Error

* Warning

 

 

Then use the 'Number of events' as follows:

 

 

1. Click the radio button for 'Number of events'

Type 20 in the 1 to 20 box

Then click the Run button.

Notepad will open with the output log.

 

 

Please post the Output log in your next reply then repeat but select Application.

 

 (Second time you run vew it will overwrite the first log so copy it to a reply or rename it first.)

 

Going to bed now.

[Jake85r]

ino's Event Viewer v01c run on Windows 7 in English

Report run at 26/10/2015 11:45:21 PM

 

Note: All dates below are in the format dd/mm/yyyy

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Critical Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 27/10/2015 3:14:54 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 26/10/2015 4:42:33 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 26/10/2015 4:23:49 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 25/10/2015 3:12:49 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 24/10/2015 8:14:27 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 23/10/2015 9:59:39 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 22/10/2015 7:29:30 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 21/10/2015 5:25:36 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 20/10/2015 5:00:15 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 20/10/2015 12:17:01 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 19/10/2015 12:46:58 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 18/10/2015 7:04:54 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 25/09/2015 4:14:47 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 14/09/2015 1:19:42 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 08/09/2015 3:52:43 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 07/09/2015 4:36:26 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 03/09/2015 4:22:30 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 24/08/2015 5:30:27 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 05/07/2015 11:34:08 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 05/07/2015 11:32:20 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 27/10/2015 3:26:57 AM

Type: Error Category: 1

Event: 20 Source: Microsoft-Windows-WindowsUpdateClient

Installation Failure: Windows failed to install the following update with error 0x80070003: Microsoft.WindowsReadingList.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Extreme Tuning Utility Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Management and Security Application Local Management Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Dynamic Application Loader Host Interface Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:15:00 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The iocbios2 service failed to start due to the following error:  The system cannot find the path specified.

 

Log: 'System' Date/Time: 27/10/2015 3:14:59 AM

Type: Error Category: 0

Event: 6008 Source: EventLog

The previous system shutdown at 10:14:05 PM on ?10/?26/?2015 was unexpected.

 

 

 

Vino's Event Viewer v01c run on Windows 7 in English

Report run at 26/10/2015 11:45:21 PM

 

Note: All dates below are in the format dd/mm/yyyy

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Critical Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 27/10/2015 3:14:54 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 26/10/2015 4:42:33 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 26/10/2015 4:23:49 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 25/10/2015 3:12:49 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 24/10/2015 8:14:27 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 23/10/2015 9:59:39 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 22/10/2015 7:29:30 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 21/10/2015 5:25:36 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 20/10/2015 5:00:15 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 20/10/2015 12:17:01 AM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 19/10/2015 12:46:58 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 18/10/2015 7:04:54 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 25/09/2015 4:14:47 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 14/09/2015 1:19:42 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 08/09/2015 3:52:43 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 07/09/2015 4:36:26 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 03/09/2015 4:22:30 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 24/08/2015 5:30:27 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 05/07/2015 11:34:08 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

Log: 'System' Date/Time: 05/07/2015 11:32:20 PM

Type: Critical Category: 63

Event: 41 Source: Microsoft-Windows-Kernel-Power

The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 27/10/2015 3:26:57 AM

Type: Error Category: 1

Event: 20 Source: Microsoft-Windows-WindowsUpdateClient

Installation Failure: Windows failed to install the following update with error 0x80070003: Microsoft.WindowsReadingList.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Extreme Tuning Utility Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Management and Security Application Local Management Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:17:10 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The Intel® Dynamic Application Loader Host Interface Service service failed to start due to the following error:  The system cannot find the file specified.

 

Log: 'System' Date/Time: 27/10/2015 3:15:00 AM

Type: Error Category: 0

Event: 7000 Source: Service Control Manager

The iocbios2 service failed to start due to the following error:  The system cannot find the path specified.

 

Log: 'System' Date/Time: 27/10/2015 3:14:59 AM

Type: Error Category: 0

[RKinner]

You posted the System events twice.  Can you run VEW again for Applications?

 

It appears that  Intel® Extreme Tuning Utility Service and Intel® Management and Security Application Local Management Service are not working.  (iocbios2  is part of the Intel® Extreme Tuning Utility Service )  For some reason the files can't be found.  Could one of your security apps have removed them as a false positive?  Can you uninstall and reinstall them?  (Or if you are not overclocking just uninstall it?)

[Jake85r]

Vino's Event Viewer v01c run on Windows 7 in English

Report run at 27/10/2015 11:53:46 AM

 

Note: All dates below are in the format dd/mm/yyyy

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Critical Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'Application' Date/Time: 27/10/2015 1:47:31 PM

Type: Error Category: 1

Event: 104 Source: ESENT

taskhostex (3752) WebCacheLocal: The database engine stopped the instance (0) with error (-510).    Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.015, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.

 

Log: 'Application' Date/Time: 27/10/2015 1:47:30 PM

Type: Error Category: 1

Event: 104 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: The database engine stopped the instance (1) with error (-1011).    Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.078, [6] 0.000, [7] 0.000, [8] 0.000, [9] 10.515, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.

 

Log: 'Application' Date/Time: 27/10/2015 1:47:19 PM

Type: Error Category: 1

Event: 482 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: An attempt to write to the file "C:\Users\jake\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 1540096 (0x0000000000178000) for 32768 (0x00008000) bytes failed after 0.000 seconds with system error 1453 (0x000005ad): "Insufficient quota to complete the requested service. ".  The write operation will fail with error -1011 (0xfffffc0d).  If this error persists then the file may be damaged and may need to be restored from a previous backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:47:19 PM

Type: Error Category: 1

Event: 482 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: An attempt to write to the file "C:\Users\jake\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" at offset 1409024 (0x0000000000158000) for 32768 (0x00008000) bytes failed after 0.000 seconds with system error 1453 (0x000005ad): "Insufficient quota to complete the requested service. ".  The write operation will fail with error -1011 (0xfffffc0d).  If this error persists then the file may be damaged and may need to be restored from a previous backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:47:19 PM

Type: Error Category: 3

Event: 492 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: The logfile sequence in "C:\Users\jake\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\" has been halted due to a fatal error.  No further updates are possible for the databases that use this logfile sequence.  Please correct the problem and restart or restore from backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:47:19 PM

Type: Error Category: 3

Event: 416 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: Unable to write to section 2 while flushing logfile C:\Users\jake\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\edb.log. Error -1011 (0xfffffc0d).

 

Log: 'Application' Date/Time: 27/10/2015 1:47:19 PM

Type: Error Category: 1

Event: 482 Source: ESENT

SettingSyncHost (5200) {DA4C3C34-DB0E-4B59-B819-4B615CAFB344}: An attempt to write to the file "C:\Users\jake\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\edb.log" at offset 450560 (0x000000000006e000) for 4096 (0x00001000) bytes failed after 0.000 seconds with system error 1453 (0x000005ad): "Insufficient quota to complete the requested service. ".  The write operation will fail with error -1011 (0xfffffc0d).  If this error persists then the file may be damaged and may need to be restored from a previous backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:45:02 PM

Type: Error Category: 3

Event: 492 Source: ESENT

taskhostex (3752) WebCacheLocal: The logfile sequence in "C:\Users\jake\AppData\Local\Microsoft\Windows\WebCache\" has been halted due to a fatal error.  No further updates are possible for the databases that use this logfile sequence.  Please correct the problem and restart or restore from backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:45:02 PM

Type: Error Category: 3

Event: 417 Source: ESENT

taskhostex (3752) WebCacheLocal: Unable to write to section 3 while flushing logfile C:\Users\jake\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error -1011 (0xfffffc0d).

 

Log: 'Application' Date/Time: 27/10/2015 1:45:02 PM

Type: Error Category: 1

Event: 482 Source: ESENT

taskhostex (3752) WebCacheLocal: An attempt to write to the file "C:\Users\jake\AppData\Local\Microsoft\Windows\WebCache\V01.log" at offset 110592 (0x000000000001b000) for 4096 (0x00001000) bytes failed after 0.000 seconds with system error 1453 (0x000005ad): "Insufficient quota to complete the requested service. ".  The write operation will fail with error -1011 (0xfffffc0d).  If this error persists then the file may be damaged and may need to be restored from a previous backup.

 

Log: 'Application' Date/Time: 27/10/2015 1:45:02 PM

Type: Error Category: 3

Event: 3079 Source: Microsoft-Windows-Search

Notifications for the volume C:\ are not active. 

 

Context: Windows Application

 

Details:

Insufficient quota to complete the requested service.  (HRESULT : 0x800705ad) (0x800705ad)

 

 

Log: 'Application' Date/Time: 27/10/2015 1:43:17 PM

Type: Error Category: 0

Event: 1008 Source: Microsoft-Windows-Perflib

The Open Procedure for service ".NETFramework" in DLL "C:\Windows\system32\mscoree.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

 

Log: 'Application' Date/Time: 27/10/2015 4:53:03 AM

Type: Error Category: 1

Event: 2006 Source: Microsoft-Windows-LocationProvider

There was an error with the Windows Location Provider database

 

Log: 'Application' Date/Time: 27/10/2015 4:32:42 AM

Type: Error Category: 0

Event: 1008 Source: Microsoft-Windows-Perflib

The Open Procedure for service ".NETFramework" in DLL "C:\Windows\system32\mscoree.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

 

Log: 'Application' Date/Time: 27/10/2015 4:29:37 AM

Type: Error Category: 0

Event: 1008 Source: Microsoft-Windows-Perflib

The Open Procedure for service ".NETFramework" in DLL "C:\Windows\system32\mscoree.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

 

Log: 'Application' Date/Time: 27/10/2015 4:21:56 AM

Type: Error Category: 0

Event: 1008 Source: Microsoft-Windows-Perflib

The Open Procedure for service ".NETFramework" in DLL "C:\Windows\system32\mscoree.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

 

Log: 'Application' Date/Time: 26/10/2015 2:54:20 PM

Type: Error Category: 3

Event: 3079 Source: Microsoft-Windows-Search

Notifications for the volume C:\ are not active. 

 

Context: Windows Application

 

Details:

Insufficient quota to complete the requested service.  (HRESULT : 0x800705ad) (0x800705ad)

 

 

Log: 'Application' Date/Time: 26/10/2015 4:21:38 AM

Type: Error Category: 0

Event: 59 Source: SideBySide

Activation context generation failed for "C:\Windows\system32\wpdshext.dll".Error in manifest or policy file "C:\Windows\system32\wpdshext.dll" on line 0. Invalid Xml syntax.

 

Log: 'Application' Date/Time: 26/10/2015 2:04:43 AM

Type: Error Category: 5973

Event: 5973 Source: Microsoft-Windows-Immersive-Shell

Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail failed with error: Only part of a ReadProcessMemory or WriteProcessMemory request was completed. See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Log: 'Application' Date/Time: 26/10/2015 2:04:34 AM

Type: Error Category: 1

Event: 104 Source: ESENT

SettingSyncHost (928772) {F08BADE1-732B-46F3-8058-2AA471DE15FC}: The database engine stopped the instance (0) with error (-1090).    Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Warning Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'Application' Date/Time: 27/10/2015 4:51:38 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 27/10/2015 3:15:00 AM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 26/10/2015 4:42:38 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 26/10/2015 4:23:54 AM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 25/10/2015 3:12:53 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 25/10/2015 3:02:09 AM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 24/10/2015 8:14:33 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 23/10/2015 9:59:46 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 22/10/2015 7:29:34 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 21/10/2015 5:25:40 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 21/10/2015 9:08:07 AM

Type: Warning Category: 3

Event: 3061 Source: Microsoft-Windows-Search

The gatherer log cannot be created.

 

Context: Windows Application, SystemIndex Catalog

 

Details:

Not enough storage is available to process this command.  (HRESULT : 0x80070008) (0x80070008)

 

 

Log: 'Application' Date/Time: 20/10/2015 8:07:10 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 20/10/2015 7:55:19 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 20/10/2015 5:00:20 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 20/10/2015 12:17:05 AM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 19/10/2015 12:47:02 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 18/10/2015 7:04:59 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 17/10/2015 5:50:00 PM

Type: Warning Category: 1

Event: 1000 Source: ISCTAgent

ISCT - CAgentService::AgentServiceInit   NetDetect is now disabled since this is not a mobile platform

 

Log: 'Application' Date/Time: 14/10/2015 5:35:58 PM

Type: Warning Category: 0

Event: 10010 Source: Microsoft-Windows-RestartManager

Application 'C:\Windows\explorer.exe' (pid 839676) cannot be restarted - Application SID does not match Conductor SID..

 

Log: 'Application' Date/Time: 14/10/2015 5:35:58 PM

Type: Warning Category: 0

Event: 10010 Source: Microsoft-Windows-RestartManager

Application 'C:\Windows\System32\dwm.exe' (pid 834084) cannot be restarted - Application SID does not match Conductor SID..

 

 

Sorry about that! I have now posted the "Application" logs, and have uninstalled "Intel Extreme Tuning Utility Service" as I wanted to overclock, but never got around to it.

Edit: Also sorry for the sporadic response times, I am currently attending University and have classes that I have to work around!

Edited by Jake85r, 27 October 2015 - 11:00 AM.

[RKinner]

Delays are no problem as I don't keep track.  I was away all day anyway.

 

The esent errors make it look like there may be some corruption.

 

Probably a good idea to rule out bad memory first so run the built-in memory test

 

http://windows.micro...n-your-computer

 

Then let's do a disk check:

 

 

1. Double-click My Computer, and then right-click the hard disk that you want to check. C:

2. Click Properties, and then click Tools.

3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,

4. Check both boxes and then click Start.

You will receive the following message:

The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?

Click Yes to schedule the disk check, but don't restart yet.

 

Right click on (My) Computer and select Manage (Continue) Then the Event Viewer. Next select Windows Logs.  Right click on System and Clear Log, Clear. Repeat for Application. Reboot. The disk check will run and will probably take an hour or more to finish.

 

 

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).

 

sfc /scannow

 

(SPACE after sfc.  This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:

 

Copy the next two lines:

 

findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \windows\logs\cbs\junk.txt 

notepad \windows\logs\cbs\junk.txt 

 

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.

Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.  Close nOtepad.  Close the Command Window.

 

 

1. Please download the Event Viewer Tool by Vino Rosso

http://images.malwar...om/vino/VEW.exe

and save it to your Desktop:

2. Right-click VEW.exe and Run AS Administrator

3. Under 'Select log to query', select:

 

* System

4. Under 'Select type to list', select:

* Error

* Warning

 

 

Then use the 'Number of events' as follows:

 

 

1. Click the radio button for 'Number of events'

Type 20 in the 1 to 20 box

Then click the Run button.

Notepad will open with the output log.

 

 

Please post the Output log in your next reply then repeat but select Application. (Second time you run vew it will overwrite the first log so copy it to a reply or rename it first.)

 

Ron

[Jake85r]

The built in memory test showed nothing. Everything was all good according to it.

 

The disk check also showed no errors.

 

sfc /scannow - Went through the whole thing and it said this, "Windows Resource Protection found corrupt files and successfully repaired them. Details are included in the CBS.Log windir\Logs\CBS\CBS.log. For example C:\Windows\Logs\CBS\CBS.log. Note that logging is currently not supported in offline servicing scenarios."

 

So I did not use these lines: findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt notepad \windows\logs\cbs\junk.txt

 

Let me know if you want me to do that part. 

 

Vino's Event Viewer v01c run on Windows 7 in English

Report run at 27/10/2015 10:24:39 PM

 

Note: All dates below are in the format dd/mm/yyyy

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Critical Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log: 'System' Date/Time: 28/10/2015 3:07:32 AM

Type: Error Category: 1

Event: 20 Source: Microsoft-Windows-WindowsUpdateClient

Installation Failure: Windows failed to install the following update with error 0x80070003: Microsoft.WindowsReadingList.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'System' Log - Warning Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Vino's Event Viewer v01c run on Windows 7 in English

Report run at 27/10/2015 10:25:41 PM

 

Note: All dates below are in the format dd/mm/yyyy

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Critical Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Error Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

'Application' Log - Warning Type

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

So the only error I got was for a windows update, which supposedly happened at 3 am Tomorrow? Can it read the future or am I reading this wrong hahaha.

[RKinner]

Event logs use UTC they don't bother with the time zone offset.

 

There is a fixit for your error.  Use IE and go to https://support.micr...en-us/kb/910336and run the appropriate fixit for your computer.

 

I expect the esent errors will come back but until they do there is nothing to do for it.

 

Let's see if we have any dumps:

 

 

Download BlueScreenView

http://www.nirsoft.net/utils/blue_screen_view.html 

 

Double click on BlueScreenView.exe file to run the program.

When scanning is done, go Edit, Select All.

 

Go File, Save Selected Items, and save the report as BSOD.txt.

Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

[Jake85r]

Okay, I used the fixit, and everything came back good on that front.

 

Here is the BSOD text:

 

==================================================

Dump File         : 102715-9296-01.dmp

Crash Time        : 10/27/2015 11:50:24 AM

Bug Check String  : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED

Bug Check Code    : 0x1000007e

Parameter 1       : ffffffff`c0000005

Parameter 2       : fffff800`a3b86823

Parameter 3       : ffffd001`27007cd8

Parameter 4       : ffffd001`270074e0

Caused By Driver  : dfsc.sys

Caused By Address : dfsc.sys+77a14b

File Description  : 

Product Name      : 

Company           : 

File Version      : 

Processor         : x64

Crash Address     : dfsc.sys+77a823

Stack Address 1   : 

Stack Address 2   : 

Stack Address 3   : 

Computer Name     : 

Full Path         : C:\Windows\Minidump\102715-9296-01.dmp

Processors Count  : 4

Major Version     : 15

Minor Version     : 9600

Dump File Size    : 360,984

Dump File Time    : 10/27/2015 11:51:32 AM

==================================================

[RKinner]

Download OTL from

http://www.geekstogo...timers-list-it/

and Save it to your desktop.

 

 

Copy the text in the code box by highlighting and Ctrl + c 

 

 
/md5start
dfsc.sys
ntoskrnl.exe 
/md5stop
 

then run OTL and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text.  Verify that you got it all and Then click the Run SCAN button at the top

Let the program run unhindered, OTL will not reboot the PC when it is done.  I'm not supposed to run OTL outside the malware forum so don't paste it in a reply.  Instead, click on my rocket picture then on Send Me A Message and copy and paste the log into the message.  (If you also get an Extras log, I do not need that one)

[Jake85r]

Okay, I sent you a message!

[RKinner]

It looks to me like you have an older version of the dfsc.sys file.  Go in to Control Panel, Windows Updates and see if you are up to date on your patches.

[Jake85r]

I tried to update windows through, windows update, but it said that I had the latest version and that there were no updates available to download.

 

Also, I made it to where my computer screen would never go into sleep mode, and got this after leaving my computer on for an extended period of time (Overnight).

 

These were taken on two separate occasions, so tell me what you think.

 

Edit: This is what happens when it crashes. The screen was flickering, and if you try to do anything it just locks up. Also everytime it crashes it makes me put in my most recent Microsoft password.

Attached Thumbnails

• 
• 

Edited by Jake85r, 28 October 2015 - 01:29 PM.