Help
After a few weeks ago, I have continually had this problem where 4-7 hours after a restart Steam (valve's digital distribution software) keeps logging out of friends and saying It has lost its connection and will try to connect. 2-4 mins later it will reconnect but it will continue to do this over and over. I try and get into game's but either it fails to connect or as soon as I do connect it gives me a connection problem. I've tried different ways to run steam, compatible mode's, admin, not as admin But nothing seems to work. Also, once this connection problem happens I have trouble streaming videos and downloads stop and will not continue, they give an error and I have to restart my computer to get the downloads to work again. The only solution I know of is to restart my computer, but it just happens again between 4-7 hours. I also keep getting a warning about windows blocking start up problems but the only 2 programs it seems to block is xfire and steam. They worked before but now I have to manually start the program's to get them to run.
I was also told to post a link to my previous attempt at fixing this in the hjt and malware removal part of this forum. Link
m0le stated it might be a driver problem, but I am not entirely sure since I can't really "describe" my problem so I can't really find a solution online to this.
Page 1 of 1
Told to come here Computer internet connection keeps on resetting
Back to top
#2
- Computer Masochist
-
- Group: Staff Emeritus
- Posts: 27,809
- Joined: 27-January 07
- Location:Cleveland, Ohio
Posted 06 August 2009 - 12:27 PM
What type of connection do you have, DSL or cable?
Are you on a network behind a router or stand-alone?
Is the problem only with Steam or all sites?
Possibly need different codecs
And that error says .....?
Are you on a network behind a router or stand-alone?
Is the problem only with Steam or all sites?
Quote
I have trouble streaming videos and downloads stop
Possibly need different codecs
Quote
they give an error and I have to restart my computer to get the downloads to work again.
And that error says .....?
Mark
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
#3
- Member
-
- Group: Members
- Posts: 77
- Joined: 27-March 09
Posted 06 August 2009 - 06:30 PM
What type of connection do you have, DSL or cable?
Are you on a network behind a router or stand-alone?
Is the problem only with Steam or all sites?
DSL: A speedstream 4100 connected to a Linksys WRT160n v1 Router.
Possibly need different codecs
From youtube? They start playing and stop in the middle and won't load unless i refresh the page. An anime streaming site called crunchyroll gives the error that my connection closed and I have to refresh the page or restart the computer.
And that error says .....?
Can't remember exactly since it was 2 days ago, something like it couldn't connect to the file? I was using firefox so after it stopped downloading I was able to hit the refresh button to attempt to download it but it wouldn't work.
Are you on a network behind a router or stand-alone?
Is the problem only with Steam or all sites?
DSL: A speedstream 4100 connected to a Linksys WRT160n v1 Router.
Quote
I have trouble streaming videos and downloads stop
Possibly need different codecs
From youtube? They start playing and stop in the middle and won't load unless i refresh the page. An anime streaming site called crunchyroll gives the error that my connection closed and I have to refresh the page or restart the computer.
Quote
they give an error and I have to restart my computer to get the downloads to work again.
And that error says .....?
Can't remember exactly since it was 2 days ago, something like it couldn't connect to the file? I was using firefox so after it stopped downloading I was able to hit the refresh button to attempt to download it but it wouldn't work.
#4
- Member
-
- Group: Members
- Posts: 77
- Joined: 27-March 09
Posted 17 August 2009 - 01:52 PM
Still having this problem...Is there some sort of program I can use that logs everything my computer is doing so that when this starts happening I can see what my computer is doing incase some error or what ever happens gets logged and I can home in on what ever the solution is?
#5
- Computer Masochist
-
- Group: Staff Emeritus
- Posts: 27,809
- Joined: 27-January 07
- Location:Cleveland, Ohio
Posted 17 August 2009 - 04:40 PM
Quote
.Is there some sort of program I can use that logs everything my computer is doing so that when this starts happening I can see what my computer is doing incase some error or what ever happens gets logged
Yes, it's called the Event Viewer
http://www.bleepingcomputer.com/forums/topic40108.html
Mark
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
#6
- Member
-
- Group: Members
- Posts: 77
- Joined: 27-March 09
Posted 17 August 2009 - 05:25 PM
Don't know what I am looking for exactly, but I guess I can wait till I get my problem again and see if a new error log is made.
One error that stands out is this. It is dated about the same time I had the problem around the same time, but since I wasn't looking at the time I don't know how close it is to the time of the error
One error that stands out is this. It is dated about the same time I had the problem around the same time, but since I wasn't looking at the time I don't know how close it is to the time of the error
Quote
Log Name: System
Source: Service Control Manager
Date: 8/17/2009 11:49:26 AM
Event ID: 7026
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
The following boot-start or system-start driver(s) failed to load:
avipbb
i8042prt
ssmdrv
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourcename="Service Control Manager" />
<EventID Qualifiers="49152">7026</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:26.000Z" />
<EventRecordID>120304</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">
avipbb
i8042prt
ssmdrv</Data>
</EventData>
</Event>
Source: Service Control Manager
Date: 8/17/2009 11:49:26 AM
Event ID: 7026
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
The following boot-start or system-start driver(s) failed to load:
avipbb
i8042prt
ssmdrv
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourcename="Service Control Manager" />
<EventID Qualifiers="49152">7026</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:26.000Z" />
<EventRecordID>120304</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">
avipbb
i8042prt
ssmdrv</Data>
</EventData>
</Event>
Quote
Log Name: System
Source: Service Control Manager
Date: 8/17/2009 11:49:26 AM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
The Parallel port driver service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourcename="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:26.000Z" />
<EventRecordID>120254</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">Parallel port driver</Data>
<Data name="param2">%%1058</Data>
</EventData>
</Event>
Source: Service Control Manager
Date: 8/17/2009 11:49:26 AM
Event ID: 7000
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
The Parallel port driver service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Service Control Manager" Guid="{555908D1-A6D7-4695-8E1E-26931D2012F4}" EventSourcename="Service Control Manager" />
<EventID Qualifiers="49152">7000</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:26.000Z" />
<EventRecordID>120254</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">Parallel port driver</Data>
<Data name="param2">%%1058</Data>
</EventData>
</Event>
Quote
Log Name: System
Source: Microsoft-Windows-HttpEvent
Date: 8/17/2009 11:49:04 AM
Event ID: 15016
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
Unable to initialize the security package Kerberos for server side authentication. The data field contains the error number.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-HttpEvent" Guid="{7b6bc78c-898b-4170-bbf8-1a469ea43fc5}" EventSourcename="HTTP" />
<EventID Qualifiers="49152">15016</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:04.585Z" />
<EventRecordID>120218</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="72" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="DeviceObject">\Device\Http\ReqQueue</Data>
<Data name="SecurityPackage">Kerberos</Data>
<Binary>000004000200300000000000A83A00C00000000000000000000000000000000000000000000000000E030980</Binary>
</EventData>
</Event>
Source: Microsoft-Windows-HttpEvent
Date: 8/17/2009 11:49:04 AM
Event ID: 15016
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
Unable to initialize the security package Kerberos for server side authentication. The data field contains the error number.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-HttpEvent" Guid="{7b6bc78c-898b-4170-bbf8-1a469ea43fc5}" EventSourcename="HTTP" />
<EventID Qualifiers="49152">15016</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:04.585Z" />
<EventRecordID>120218</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="72" />
<Channel>System</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="DeviceObject">\Device\Http\ReqQueue</Data>
<Data name="SecurityPackage">Kerberos</Data>
<Binary>000004000200300000000000A83A00C00000000000000000000000000000000000000000000000000E030980</Binary>
</EventData>
</Event>
Quote
Log Name: Application
Source: Microsoft-Windows-SpoolerSpoolss
Date: 8/17/2009 11:49:12 AM
Event ID: 1036
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
InitializePrintProvider failed for provider win32spl.dll. This can occur because of system instability or a lack of system resources.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-SpoolerSpoolss" />
<EventID Qualifiers="32768">1036</EventID>
<Level>3</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:12.000Z" />
<EventRecordID>57653</EventRecordID>
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data>win32spl.dll</Data>
</EventData>
</Event>
Source: Microsoft-Windows-SpoolerSpoolss
Date: 8/17/2009 11:49:12 AM
Event ID: 1036
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
InitializePrintProvider failed for provider win32spl.dll. This can occur because of system instability or a lack of system resources.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-SpoolerSpoolss" />
<EventID Qualifiers="32768">1036</EventID>
<Level>3</Level>
<Task>0</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:49:12.000Z" />
<EventRecordID>57653</EventRecordID>
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data>win32spl.dll</Data>
</EventData>
</Event>
This post has been edited by Kenai: 17 August 2009 - 05:30 PM
#7
- Member
-
- Group: Members
- Posts: 77
- Joined: 27-March 09
Posted 17 August 2009 - 05:33 PM
Quote
Log Name: Application
Source: Microsoft-Windows-User Profiles Service
Date: 8/17/2009 11:47:34 AM
Event ID: 1530
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
2 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001_Classes:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES
Process 2024 (\Device\HarddiskVolume1\WINDOWS\System32\spoolsv.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourcename="profsvc" />
<EventID Qualifiers="32768">1530</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:34.000Z" />
<EventRecordID>57643</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData name="EVENT_HIVE_LEAK">
<Data name="Detail">2 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001_Classes:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES
Process 2024 (\Device\HarddiskVolume1\WINDOWS\System32\spoolsv.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
</Data>
</EventData>
</Event>
Source: Microsoft-Windows-User Profiles Service
Date: 8/17/2009 11:47:34 AM
Event ID: 1530
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
2 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001_Classes:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES
Process 2024 (\Device\HarddiskVolume1\WINDOWS\System32\spoolsv.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourcename="profsvc" />
<EventID Qualifiers="32768">1530</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:34.000Z" />
<EventRecordID>57643</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData name="EVENT_HIVE_LEAK">
<Data name="Detail">2 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001_Classes:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES
Process 2024 (\Device\HarddiskVolume1\WINDOWS\System32\spoolsv.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001_CLASSES\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
</Data>
</EventData>
</Event>
Quote
Log Name: Application
Source: Application Error
Date: 8/17/2009 11:47:33 AM
Event ID: 1000
Task Category: (100)
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
Faulting application EKDiscovery.exe, version 3.2.1.29, time stamp 0x48ef91f1, faulting module EKDiscovery.exe, version 3.2.1.29, time stamp 0x48ef91f1, exception code 0xc0000005, fault offset 0x00008c54, process id 0x%9, application start time 0x%10.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Application Error" />
<EventID Qualifiers="0">1000</EventID>
<Level>2</Level>
<Task>100</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:33.000Z" />
<EventRecordID>57642</EventRecordID>
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data>EKDiscovery.exe</Data>
<Data>3.2.1.29</Data>
<Data>48ef91f1</Data>
<Data>EKDiscovery.exe</Data>
<Data>3.2.1.29</Data>
<Data>48ef91f1</Data>
<Data>c0000005</Data>
<Data>00008c54</Data>
</EventData>
</Event>
Source: Application Error
Date: 8/17/2009 11:47:33 AM
Event ID: 1000
Task Category: (100)
Level: Error
Keywords: Classic
User: N/A
Computer: TommysRealm
Description:
Faulting application EKDiscovery.exe, version 3.2.1.29, time stamp 0x48ef91f1, faulting module EKDiscovery.exe, version 3.2.1.29, time stamp 0x48ef91f1, exception code 0xc0000005, fault offset 0x00008c54, process id 0x%9, application start time 0x%10.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Application Error" />
<EventID Qualifiers="0">1000</EventID>
<Level>2</Level>
<Task>100</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:33.000Z" />
<EventRecordID>57642</EventRecordID>
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data>EKDiscovery.exe</Data>
<Data>3.2.1.29</Data>
<Data>48ef91f1</Data>
<Data>EKDiscovery.exe</Data>
<Data>3.2.1.29</Data>
<Data>48ef91f1</Data>
<Data>c0000005</Data>
<Data>00008c54</Data>
</EventData>
</Event>
Quote
Log Name: Application
Source: Microsoft-Windows-User Profiles Service
Date: 8/17/2009 11:47:33 AM
Event ID: 1530
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourcename="profsvc" />
<EventID Qualifiers="32768">1530</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:33.000Z" />
<EventRecordID>57641</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData name="EVENT_HIVE_LEAK">
<Data name="Detail">1 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001
</Data>
</EventData>
</Event>
Source: Microsoft-Windows-User Profiles Service
Date: 8/17/2009 11:47:33 AM
Event ID: 1530
Task Category: None
Level: Warning
Keywords: Classic
User: SYSTEM
Computer: TommysRealm
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" EventSourcename="profsvc" />
<EventID Qualifiers="32768">1530</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2009-08-17T18:47:33.000Z" />
<EventRecordID>57641</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>TommysRealm</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData name="EVENT_HIVE_LEAK">
<Data name="Detail">1 user registry handles leaked from \Registry\User\S-1-5-21-543014975-2786251972-929394339-1001:
Process 1088 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-543014975-2786251972-929394339-1001
</Data>
</EventData>
</Event>
Quote
Log Name: Security
Source: Microsoft-Windows-Security-Auditing
Date: 8/17/2009 5:05:14 PM
Event ID: 5038
Task Category: System Integrity
Level: Information
Keywords: Audit Failure
User: N/A
Computer: TommysRealm
Description:
Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.
File Name: \Device\HarddiskVolume1\Program Files\SUPERAntiSpyware\SASENUM.SYS
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-a5ba-3e3b0328c30d}" />
<EventID>5038</EventID>
<Version>0</Version>
<Level>0</Level>
<Task>12290</Task>
<Opcode>0</Opcode>
<Keywords>0x8010000000000000</Keywords>
<TimeCreated SystemTime="2009-08-18T00:05:14.638Z" />
<EventRecordID>30218</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="52" />
<Channel>Security</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">\Device\HarddiskVolume1\Program Files\SUPERAntiSpyware\SASENUM.SYS</Data>
</EventData>
</Event>
Source: Microsoft-Windows-Security-Auditing
Date: 8/17/2009 5:05:14 PM
Event ID: 5038
Task Category: System Integrity
Level: Information
Keywords: Audit Failure
User: N/A
Computer: TommysRealm
Description:
Code integrity determined that the image hash of a file is not valid. The file could be corrupt due to unauthorized modification or the invalid hash could indicate a potential disk device error.
File Name: \Device\HarddiskVolume1\Program Files\SUPERAntiSpyware\SASENUM.SYS
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-a5ba-3e3b0328c30d}" />
<EventID>5038</EventID>
<Version>0</Version>
<Level>0</Level>
<Task>12290</Task>
<Opcode>0</Opcode>
<Keywords>0x8010000000000000</Keywords>
<TimeCreated SystemTime="2009-08-18T00:05:14.638Z" />
<EventRecordID>30218</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="52" />
<Channel>Security</Channel>
<Computer>TommysRealm</Computer>
<Security />
</System>
<EventData>
<Data name="param1">\Device\HarddiskVolume1\Program Files\SUPERAntiSpyware\SASENUM.SYS</Data>
</EventData>
</Event>
I am also not sure if this is where I should be posting this, If it needs to be moved I am sorry...I really don't know what I am doing here and these are just shots in the dark to fix this problem.
Also what I have noticed is that I don't get errors DURING the problem but when i restart all these errors repeat on start up. I had a feeling it was a problem that something started or failed to start that caused this and after a certain amount of time what ever had failed to open or work properly causes my connection to drop and causes it to drop repeatedly over and over. Not sure if any of those errors and warnings are significant though, but I hope they are.
Could this possibly be caused by dust inside the computer? I haven't dusted this since I bought it about a year ago and my mom keeps forgetting to bring home some canned air. I haven't done it before so next time im at a store that sells it I will buy a can, anything I need to know before I open the case and spray (I know about grounding my hands and turning off and unplugging the computer and all the connections, but just want to be sure I do it right
This post has been edited by Kenai: 17 August 2009 - 07:58 PM
#8
- Computer Masochist
-
- Group: Staff Emeritus
- Posts: 27,809
- Joined: 27-January 07
- Location:Cleveland, Ohio
Posted 17 August 2009 - 08:12 PM
Quote
Could this possibly be caused by dust inside the computer?
I wouldn't rule it out, but usually the computer just shuts off when overheated or if the graphics card is overheating you'll get funny lines on the screen
The only way to rule it out is to open it up and clean it up
Mark
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
why won't my laptop work?
Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter
Share this topic:
Page 1 of 1