[問題] windows發生嚴重問題(文長)

看板Windows作者Gwent (昆特)時間8年前 (2017/12/12 21:08)推噓0(0推 0噓 2→)

留言2則, 2人參與討論串1/1

今天我打開電腦卻跳出 Windows 發生嚴重問題, 並且在一分鐘內重新啟動的視窗我查看了事件檢視器後發現了幾種錯誤記錄檔名稱: System 來源: Service Control Manager 日期: 2017/12/12 下午 08:18:56 事件識別碼: 7001 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: Computer Browser 服務依存的 Server 服務因為發生下列錯誤而無法啟動: 相依性服務或群組無法啟動。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" /> <EventID Qualifiers="49152">7001</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8080000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:18:56.504328900Z" /> <EventRecordID>236568</EventRecordID> <Correlation /> <Execution ProcessID="564" ThreadID="2816" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data Name="param1">Computer Browser</Data> <Data Name="param2">Server</Data> <Data Name="param3">%%1068</Data> </EventData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-DistributedCOM 日期: 2017/12/12 下午 08:18:17 事件識別碼: 10005 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: DCOM 為了執行伺服器: {4991D34B-80A1-4291-83B6-3328366B9097}，而嘗試啟動含有引數 "" 的服務 BITS 時，遇到錯誤 "1068" 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" /> <EventID Qualifiers="49152">10005</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:18:17.000000000Z" /> <EventRecordID>236559</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data Name="param1">1068</Data> <Data Name="param2">BITS</Data> <Data Name="param3"> </Data> <Data Name="param4">{4991D34B-80A1-4291-83B6-3328366B9097}</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-WMI 日期: 2017/12/12 下午 08:13:28 事件識別碼: 10 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-WMI" Guid="{1edeee53-0afe-4609-b846-d8c0b2075b1f}" EventSourceName="WinMgmt" /> <EventID Qualifiers="49152">10</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:13:28.000000000Z" /> <EventRecordID>75785</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>//./root/CIMV2</Data> <Data>SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99</Data> <Data>0x80041003</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-Winlogon 日期: 2017/12/12 下午 08:11:55 事件識別碼: 6000 工作類別: 無等級: 警告關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: winlogon 通知訂閱者 <GPClient> 無法處理通知事件。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Winlogon" Guid="{DBE9B383-7CF3-4331-91CC-A3CB16A3B538}" EventSourceName="Wlclntfy" /> <EventID Qualifiers="32768">6000</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:55.000000000Z" /> <EventRecordID>75783</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>GPClient</Data> <Binary>D9060000</Binary> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-Winlogon 日期: 2017/12/12 下午 08:11:55 事件識別碼: 4103 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: Windows 授權啟用失敗。錯誤 0x00000000。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Winlogon" Guid="{DBE9B383-7CF3-4331-91CC-A3CB16A3B538}" EventSourceName="Winlogon" /> <EventID Qualifiers="49152">4103</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:55.000000000Z" /> <EventRecordID>75781</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>0x00000000</Data> <Data>0x00000001</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-Security-SPP 日期: 2017/12/12 下午 08:11:55 事件識別碼: 8198 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 授權啟用 (slui.exe) 失敗，錯誤碼如下: 0x8007043C 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Security-SPP" Guid="{E23B33B0-C8C9-472C-A5F9-F2BDFEA0F156}" EventSourceName="Software Protection Platform Service" /> <EventID Qualifiers="49152">8198</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:55.000000000Z" /> <EventRecordID>75780</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>0x8007043C</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-Winlogon 日期: 2017/12/12 下午 08:11:54 事件識別碼: 4105 工作類別: 無等級: 警告關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: Windows 目前在通知期間。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Winlogon" Guid="{DBE9B383-7CF3-4331-91CC-A3CB16A3B538}" EventSourceName="Winlogon" /> <EventID Qualifiers="32768">4105</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:54.000000000Z" /> <EventRecordID>75779</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>0x00000000</Data> <Data>0x00000000</Data> </EventData> </Event> 記錄檔名稱: System 來源: Service Control Manager 日期: 2017/12/12 下午 08:11:48 事件識別碼: 7026 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 下列開機啟動或系統啟動驅動程式無法載入: avipbb avkmgr discache spldr VBoxDrv VBoxUSBMon Wanarpv6 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" /> <EventID Qualifiers="49152">7026</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8080000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:48.500833400Z" /> <EventRecordID>236530</EventRecordID> <Correlation /> <Execution ProcessID="564" ThreadID="568" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data Name="param1"> avipbb avkmgr discache spldr VBoxDrv VBoxUSBMon Wanarpv6</Data> </EventData> </Event> 記錄檔名稱: Security 來源: Microsoft-Windows-Eventlog 日期: 2017/12/12 下午 08:11:47 事件識別碼: 1101 工作類別: 事件正在處理等級: 錯誤關鍵字: 稽核成功使用者: 不適用電腦: user-PC 描述: 傳輸已丟棄稽核事件。0 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Eventlog" Guid="{fc65ddd8-d6ef-4962-83d5-6e5cfe9ce148}" /> <EventID>1101</EventID> <Version>0</Version> <Level>2</Level> <Task>101</Task> <Opcode>0</Opcode> <Keywords>0x4020000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:47.783232200Z" /> <EventRecordID>54334</EventRecordID> <Correlation /> <Execution ProcessID="852" ThreadID="1140" /> <Channel>Security</Channel> <Computer>user-PC</Computer> <Security /> </System> <UserData> <AuditEventsDropped xmlns:auto-ns3="http://schemas.microsoft.com/win/2004/08/events" xmlns="" rel="nofollow">http://manifests.microsoft.com/win/2004/08/windows/eventlog"> <Reason>0</Reason> </AuditEventsDropped> </UserData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-Kernel-Power 日期: 2017/12/12 下午 08:11:32 事件識別碼: 41 工作類別: (63) 等級: 重大關鍵字: (2) 使用者: SYSTEM 電腦: user-PC 描述: 系統已重新開機，但未先正常關機。若系統停止回應、當機或電力意外中斷，就可能會造成此錯誤。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Kernel-Power" Guid="{331C3B3A-2005-44C2-AC5E-77220C37D6B4}" /> <EventID>41</EventID> <Version>2</Version> <Level>1</Level> <Task>63</Task> <Opcode>0</Opcode> <Keywords>0x8000000000000002</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:32.651205600Z" /> <EventRecordID>236503</EventRecordID> <Correlation /> <Execution ProcessID="4" ThreadID="8" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-18" /> </System> <EventData> <Data Name="BugcheckCode">0</Data> <Data Name="BugcheckParameter1">0x0</Data> <Data Name="BugcheckParameter2">0x0</Data> <Data Name="BugcheckParameter3">0x0</Data> <Data Name="BugcheckParameter4">0x0</Data> <Data Name="SleepInProgress">false</Data> <Data Name="PowerButtonTimestamp">0</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-Winlogon 日期: 2017/12/12 下午 08:11:55 事件識別碼: 6000 工作類別: 無等級: 警告關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: winlogon 通知訂閱者 <GPClient> 無法處理通知事件。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Winlogon" Guid="{DBE9B383-7CF3-4331-91CC-A3CB16A3B538}" EventSourceName="Wlclntfy" /> <EventID Qualifiers="32768">6000</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:55.000000000Z" /> <EventRecordID>75783</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>GPClient</Data> <Binary>D9060000</Binary> </EventData> </Event> 記錄檔名稱: System 來源: EventLog 日期: 2017/12/12 下午 08:11:42 事件識別碼: 6008 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 017/2/2 上下午 08:10:13 的系統上次發生意外的關機。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="EventLog" /> <EventID Qualifiers="32768">6008</EventID> <Level>2</Level> <Task>0</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T12:11:42.000000000Z" /> <EventRecordID>236499</EventRecordID> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>下午 08:10:13</Data> <Data>017/2/2</Data> <Data> </Data> <Data> </Data> <Data>618</Data> <Data> </Data> <Data> </Data> <Binary>E1070C0002000C0014000A000D00E303E1070C0002000C000C000A000D00E303600900003C000000010000006009000000000000B00400000100000000000000</Binary> </EventData> </Event> 記錄檔名稱: System 來源: Service Control Manager 日期: 2017/12/12 下午 07:54:33 事件識別碼: 7000 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: rtop 服務無法啟動，因為下列錯誤: 系統找不到指定的檔案。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" /> <EventID Qualifiers="49152">7000</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8080000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T11:54:33.345303600Z" /> <EventRecordID>236383</EventRecordID> <Correlation /> <Execution ProcessID="748" ThreadID="752" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data Name="param1">rtop</Data> <Data Name="param2">%%2</Data> </EventData> </Event> 記錄檔名稱: System 來源: Service Control Manager 日期: 2017/12/12 下午 07:54:33 事件識別碼: 7009 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 等候 Keepvid Application Framework Service 服務連線時發生逾時 (30000 毫秒)。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" /> <EventID Qualifiers="49152">7009</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8080000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T11:54:33.173703300Z" /> <EventRecordID>236378</EventRecordID> <Correlation /> <Execution ProcessID="748" ThreadID="752" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data Name="param1">30000</Data> <Data Name="param2">Keepvid Application Framework Service</Data> </EventData> </Event> 記錄檔名稱: Application 來源: Application Error 日期: 2017/12/12 下午 07:52:07 事件識別碼: 1000 工作類別: (100) 等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 失敗的應用程式名稱: services.exe，版本: 6.1.7601.18829，時間戳記: 0x552b23d3 失敗的模組名稱: KERNELBASE.dll，版本: 6.1.7601.23915，時間戳記: 0x59b94f2a 例外狀況碼: 0xe06d7363 錯誤位移: 0x000000000001a06d 失敗的處理程序識別碼: 0x2ec 失敗的應用程式開始時間: 0x01d3733f76fae45b 失敗的應用程式路徑: C:\Windows\system32\services.exe 失敗的模組路徑: C:\Windows\system32\KERNELBASE.dll 報告識別碼: e0709f26-df32-11e7-af01-00acdc1c6837 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Application Error" /> <EventID Qualifiers="0">1000</EventID> <Level>2</Level> <Task>100</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-12T11:52:07.000000000Z" /> <EventRecordID>75721</EventRecordID> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>services.exe</Data> <Data>6.1.7601.18829</Data> <Data>552b23d3</Data> <Data>KERNELBASE.dll</Data> <Data>6.1.7601.23915</Data> <Data>59b94f2a</Data> <Data>e06d7363</Data> <Data>000000000001a06d</Data> <Data>2ec</Data> <Data>01d3733f76fae45b</Data> <Data>C:\Windows\system32\services.exe</Data> <Data>C:\Windows\system32\KERNELBASE.dll</Data> <Data>e0709f26-df32-11e7-af01-00acdc1c6837</Data> </EventData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-WHEA-Logger 日期: 2017/12/11 下午 08:21:10 事件識別碼: 19 工作類別: 無等級: 警告關鍵字: 使用者: LOCAL SERVICE 電腦: user-PC 描述: 發生已修正的硬體錯誤。報告元件: 處理器核心錯誤來源: 已修正電腦檢查錯誤類型: 內部同位檢查錯誤處理器識別碼: 1 此項目的詳細資料檢視包含詳細資訊。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-WHEA-Logger" Guid="{C26C4F3C-3F66-4E99-8F8A-39405CFED220}" /> <EventID>19</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8000000000000000</Keywords> <TimeCreated SystemTime="2017-12-11T12:21:10.214769100Z" /> <EventRecordID>234990</EventRecordID> <Correlation ActivityID="{894EC5AD-6E7A-4237-BE91-6CAADA1655D3}" /> <Execution ProcessID="1760" ThreadID="4500" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-19" /> </System> <EventData> <Data Name="ErrorSource">1</Data> <Data Name="ApicId">1</Data> <Data Name="MCABank">0</Data> <Data Name="MciStat">0x90000040000f0005</Data> <Data Name="MciAddr">0x0</Data> <Data Name="MciMisc">0x0</Data> <Data Name="ErrorType">12</Data> <Data Name="TransactionType">256</Data> <Data Name="Participation">256</Data> <Data Name="RequestType">256</Data> <Data Name="MemorIO">256</Data> <Data Name="MemHierarchyLvl">256</Data> <Data Name="Timeout">256</Data> <Data Name="OperationType">256</Data> <Data Name="Channel">256</Data> <Data Name="Length">864</Data> <Data Name="RawData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ata> </EventData> </Event> 記錄檔名稱: System 來源: volsnap 日期: 2017/12/11 下午 07:51:24 事件識別碼: 36 工作類別: 無等級: 錯誤關鍵字: 傳統使用者: 不適用電腦: user-PC 描述: 因為使用者規定了限制所以陰影複製儲存區無法擴充，磁碟區 C: 的陰影複製被中止。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="volsnap" /> <EventID Qualifiers="49158">36</EventID> <Level>2</Level> <Task>0</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-12-11T11:51:24.340266100Z" /> <EventRecordID>234981</EventRecordID> <Channel>System</Channel> <Computer>user-PC</Computer> <Security /> </System> <EventData> <Data>\Device\HarddiskVolumeShadowCopy2</Data> <Data>C:</Data> <Binary>000000000200300000000000240006C0020000000000000001000000000000000000000000000000</Binary> </EventData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-DNS-Client 日期: 2017/12/11 下午 05:07:03 事件識別碼: 1014 工作類別: 無等級: 警告關鍵字: 使用者: NETWORK SERVICE 電腦: user-PC 描述: 設定的 DNS 伺服器沒有回應，名稱 wpad.domain.name 的名稱解析逾時。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-DNS-Client" Guid="{1C95126E-7EEA-49A9-A3FE-A378B03DDB4D}" /> <EventID>1014</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x4000000000000000</Keywords> <TimeCreated SystemTime="2017-12-11T09:07:03.434995100Z" /> <EventRecordID>234943</EventRecordID> <Correlation /> <Execution ProcessID="1408" ThreadID="4128" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-20" /> </System> <EventData> <Data Name="QueryName">wpad.domain.name</Data> <Data Name="AddressLength">16</Data> <Data Name="Address">02000035C0A864010000000000000000</Data> </EventData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-Time-Service 日期: 2017/12/11 上午 08:06:07 事件識別碼: 134 工作類別: 無等級: 警告關鍵字: 使用者: LOCAL SERVICE 電腦: user-PC 描述: 因為在 '' 上發生 DNS 解析錯誤，所以 NtpClient 無法將手動對等設定成時間來源。 NtpClient 會在 3473457 分鐘後再試一次，並在此後將重試間隔加倍。錯誤為: 要求的名稱正確，但找不到所要求類型的資料。 (0x80072AFC)。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Time-Service" Guid="{06EDCFEB-0FD0-4E53-ACCA-A6F8BBF81BCB}" /> <EventID>134</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8000000000000000</Keywords> <TimeCreated SystemTime="2017-12-11T00:06:07.436207200Z" /> <EventRecordID>234845</EventRecordID> <Correlation /> <Execution ProcessID="1100" ThreadID="4984" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-19" /> </System> <EventData Name="TMP_EVENT_MANUAL_PEER_DNS_ERROR"> <Data Name="ErrorMessage">要求的名稱正確，但找不到所要求類型的資料。 (0x80072AFC)</Data> <Data Name="RetryMinutes">3473457</Data> <Data Name="DomainPeer"> </Data> </EventData> </Event> 記錄檔名稱: Application 來源: Microsoft-Windows-User Profiles Service 日期: 2017/12/10 下午 11:48:46 事件識別碼: 1530 工作類別: 無等級: 警告關鍵字: 使用者: SYSTEM 電腦: user-PC 描述: Windows 偵測到您的登錄檔仍由其他應用程式或服務使用中。現在會解除載入該檔案。之後，佔用您登錄檔的應用程式或服務可能無法正常運作。詳細資料 - 5 user registry handles leaked from \Registry\User\S-1-5-21-3754324190-1126028086-2999850407-1001: Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001 Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Avira\Safe Shopping\Config Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall Process 1976 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avguard.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows NT\CurrentVersion\Winlogon 事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" /> <EventID>1530</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8000000000000000</Keywords> <TimeCreated SystemTime="2017-12-10T15:48:46.072145500Z" /> <EventRecordID>75323</EventRecordID> <Correlation /> <Execution ProcessID="1220" ThreadID="7832" /> <Channel>Application</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-18" /> </System> <EventData Name="EVENT_HIVE_LEAK"> <Data Name="Detail">5 user registry handles leaked from \Registry\User\S-1-5-21-3754324190-1126028086-2999850407-1001: Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001 Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Avira\Safe Shopping\Config Process 2260 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall Process 1976 (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avguard.exe) has opened key \REGISTRY\USER\S-1-5-21-3754324190-1126028086-2999850407-1001\Software\Microsoft\Windows NT\CurrentVersion\Winlogon </Data> </EventData> </Event> 記錄檔名稱: System 來源: Microsoft-Windows-Time-Service 日期: 2017/12/10 上午 11:26:17 事件識別碼: 134 工作類別: 無等級: 警告關鍵字: 使用者: LOCAL SERVICE 電腦: user-PC 描述: 因為在 '' 上發生 DNS 解析錯誤，所以 NtpClient 無法將手動對等設定成時間來源。 NtpClient 會在 3473457 分鐘後再試一次，並在此後將重試間隔加倍。錯誤為: 要求的名稱正確，但找不到所要求類型的資料。 (0x80072AFC)。事件 Xml: <Event xmlns="" rel="nofollow">http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Time-Service" Guid="{06EDCFEB-0FD0-4E53-ACCA-A6F8BBF81BCB}" /> <EventID>134</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x8000000000000000</Keywords> <TimeCreated SystemTime="2017-12-10T03:26:17.177554400Z" /> <EventRecordID>234712</EventRecordID> <Correlation /> <Execution ProcessID="1100" ThreadID="836" /> <Channel>System</Channel> <Computer>user-PC</Computer> <Security UserID="S-1-5-19" /> </System> <EventData Name="TMP_EVENT_MANUAL_PEER_DNS_ERROR"> <Data Name="ErrorMessage">要求的名稱正確，但找不到所要求類型的資料。 (0x80072AFC)</Data> <Data Name="RetryMinutes">3473457</Data> <Data Name="DomainPeer"> </Data> </EventData> </Event> 請問可以幫我看一看是什麼問題嗎抱歉文有點長想說還是附上詳細資料比較好不過能看到這裡我也很感激還滿擔心會因為文太長被直接略過先謝謝大家了 -- ※ 發信站: 批踢踢實業坊(ptt.cc), 來自: 182.235.170.230 ※ 文章網址: https://www.ptt.cc/bbs/Windows/M.1513084102.A.ECA.html

→

vivian90369

12/12 21:10, 8年前 , 1^F

12/12 21:10, 1^F

→

Gwent

12/12 21:27, 8年前 , 2^F

12/12 21:27, 2^F

‣ 返回看板[ Windows ] 系統

‣ 更多 Gwent 的文章

文章代碼(AID): #1QBzJ6xA (Windows)