Tripredacus

Basically, as all the other responses have pointed to so far, you need to make your own Boot.wim. The tools recommended can make this task easier for you. It is illegal to redist a custom boot.wim online.

The missing timestamps is not rare. It always does this, or at least mine is like that too. Here is a process comparison: Your setupact (last 5 lines) dispci.dll: ============BEGIN DisplayClassInstaller============ dispci.dll: DisplayClassInstaller: Returning 0xe000020e for DIF 0xc dispci.dll: ============END DisplayClassInstaller============== montr_ci.dll: DIF_DESTROYPRIVATEDATA montr_ci.dll: Returning 0xe000020e for function 0xc. And mine (relative last five + next few) dispci.dll: ============BEGIN DisplayClassInstaller============ dispci.dll: DisplayClassInstaller: Returning 0xe000020e for DIF 0xc dispci.dll: ============END DisplayClassInstaller============== montr_ci.dll: DIF_DESTROYPRIVATEDATA montr_ci.dll: Returning 0xe000020e for function 0xc. AudMig: No audio endpoint migration settings found 0x2 AudMig: No audio endpoint migration settings found 0x2 2010-02-27 19:59:17, Info CBS Starting TrustedInstaller initialization. So you can see mine does not stop where yours does, and it does start doing time stamps. But later on, it does go back to logging more display entries without timestamps on them. Let's take a look at some more files... C:\windows\TSSysprep.log C:\Windows\Panther\setupact.log C:\Windows\Panther\UnattendGC\setupact.log However since there appears to be a LOT of driver activity with the display, I am wondering, did you (clive) inject any drivers to your install?

I merged your posts. Typically you should wait 24 hours before replying to your own topic if there has been no replies yet. This is especially key on the weekends because a lot of people seem to post from work and the traffic on the site is generally lower on Saturday or Sunday. Now the first thing you need to do is look up what this service is... It could very well be a CPU temperature monitoring program, as is on this site: http://www.stvsoft.com/ So in order to stop that program from running, as you probably don't need it if you don't know what it is, you need to find what is launching it. Services can be disabled in a few places, notably Services.msc OR you can get to that in Computer Management. One problem with that screen is that it lists services by their description and not their actual service name. You would need to look at the properties of the service to see the service name. And this is key because that name is what is posted by SCM in Event Viewer. You may also find this service in MSCONFIG. On the Services tab, you get a checkbox to hide all Microsoft Services, to make it easier to track down the one you are trying to find. Lastly, the service can also be loading from the registry. Combating viruses have shown this to be possible, but I have no specific info on how to find it there. You might just be able to search for 'sensorsview' in Regedit and be able to find it. Make sure you back up any registry keys before you modify or delete them, just in case. You may also want to create a restore point if you are not sure.

5556?

No need to upload files to MSFN that are already available online. http://www.angusj.com/resourcehacker/ We have a forum for customizing Windows, you can see it here: http://www.msfn.org/board/forum/40-customizing-windows/ Make sure to read the forum rules, especially about unnecessary formating of posts.

Your topic title is misleading really. I originally thought you were up to no good... Anyways, I am going to guess that your friend uses an email client and its (another "wild" guess) Outlook or Outlook Express. There are many trojans (part of Botnets mostly nowadays) that can access these email programs and send emails from them. I suppose it is possible with other clients like Thunderbird (from Mozilla) but Outlook is definately *known* for these type things. Now if your friend uses web-based email like Gmail or Yahoo or Live/Hotmail, this is definately a question for that service provider. An unfortunate "option" you can actually do in Outlook (and Thunderbird) is to specify the account you are sending from. So for example, I could send an email from Outlook but it would appear to come from somewhere else. And this can be used further if you specify another SMTP server, but this is a major reason why most ISPs do not allow relaying emails. Anyways, full email headers usually reveal this type of scam. EDIT: I wanted to add that some people will research email addresses that are posted online and fake those by changing the "Sent From" name in their email programs. I had similar things happen to me when I had used email accounts on my own website, I would get spam emails from my own contact address. It was pretty weird.

Egads... Welcome to the MSFN Make sure to read our forum rules and try not to make posts like that one again.

Well we probably listen to different kinds of music, but The Chasm and definately Opeth do! KMFDM - Ultra

Well it is possible that there is a program on the OS that scans the drives when it opens. You can try a msconfig and turn all your startup items off (except maybe battery monitor and your touchpad wares) and see if it does it that way too.

Actually that is also the reason I can read (some) German...

Ah OK, so we're not talking about "sysprep" as much as the OOBE process on the reboot. I think there is a different setupact.log that is in C:\Windows that we need to see and not the one in the Panther folder.

What's wrong with QBasic? It comes with DOS 5 at least.

Welcome to the MSFN!

You should repost this question in a new thread in the Hardware Hangout

AMEN! This exact idea is also present in the web design community. Us "old schoolers" were taught that you needed to make your code as small as possible so that the page would load fast because most people had dial-up. Now that most people have broadband, no one cares that their code is all bloated because no one is going to notice.

Here is one thing right off the bat: 2010-07-21 21:45:16, Error SYSPRP SPPNP: Error 0x2 setting SDDL on driver file C:\Windows\system32\igfxsrvc.exe! 2010-07-21 21:45:16, Error SYSPRP SPPNP: Error 0x2 enumerating locked down files! This is the Intel Graphics service for controlling the onboard video. Sysprep is having a problem reading this file because either it can't close the service, the service is not responding or any other sort of reason. Do you use a video card in this system or are you using the onboard video? But this error shows up at 21:45, but the log starts at 21:43 so definately not a long time according to the log file. So it looks like it only takes 2-3 minutes for sysprep to run, as it shuts down the log file AFTER the error with IGFX, so the slowdown might actually occur after the log file stops. So suffice to say, Panther logs aren't really showing anything. Just for fun, try turning off the IGFX service before running Sysprep. You will still have video, but if you are running multimonitor the other display will turn off. Then run sysprep and see how long it takes.

What actually happened when you got that error. For me, the screen suddenly got filled up with random characters, resembled the matrix movie kind of thing, and after a second the BSOD popped up. And once i was watching a movie, that time i heard a static noise before BSOD. It was a long time ago (2002) and it was on (Shiva) a Windows 98 system. One of the sticks of ram, a 128MB was showing up as 67MB at POST.

I've been playing with this so I can learn how to do similar things. I have had a couple problems with it, maybe you can help. 1. The HD Audio drive installs and is not shown to have a problem in Device Manager but it cannot play any sounds. 2. When you plug in a USB drive after boot, you can see it with the command prompt but not from My Computer/Windows Explorer.

The startnet.cmd file should be in mount\Windows\System32. If it is not there you can create it but it should be there already. As far as the selection menu goes, you could get away with using a Batch file for the menu and have the startnet.cmd open that. Or you could use an HTA or other tool. A similar question was asked the other day: I personally use the Gimagex HTA (link in my sig) but you can use whatever you would like.

I did some quick searching but didn't come up with anything. Your best bet is to find a modding community for the game and ask the question there. I noticed that the server component is based off X-Server, which is going to be your limiting factor, not the fact the game runs on the Unreal Engine. Also modding this limitation might cause problems if, say, you are trying to do this on Xbox 360.

Hehehehe, I think you might be right And you're right as well Cluberti, I must have read over the "Direct connect to inet"-phrase Of course, you always have the chance that your ISP will filter out most nasties coming in/out, so keep that in mind as well. Is this chance greater than winning the jackpot in the lottery?

You **could** do this in the startnet.cmd file, but personally I'd have it load a program where you can manually select to apply the image. The reason for this is that you'll basically make a PC killer if used improperly. Of course I have a Server that does a similar thing, except if you PXE to it, it automatically boots into WinPE and formats the hard drive. Fortunately, this server is on its own network and has no communication with the outside world. But you can imagine how bad it would be if someone were to accidently bridge its network, or someone tried to PXE boot on its network! Some user intervention would be better than automatically imaging at boot. There are several methods, such as booting into an HTA or a GUI made in AutoIT.

I'm not sure if it is supposed to. All the documentation I've found is that the silent or unattended install of Office 2010 is only supported on Windows 7 (probably Vista but no one likes that anyways) and say to do manual install on XP.

This partition is likely the same type as these. Unfortunately you won't find any sort of tools to hide the partition again and be able to gaurantee that it will function. You CAN change the volume ID with some programs such as DiskPart but no promise that you'll be able to boot into it if needed. There is no real way to make this partition appear and get a drive letter unless you had changed the drive ID or installed a program that can read Non-Standard/Windows volumes. For example, have you gotten any program lately that lets your PC read Linux or Mac drives?

Sounds like you have a stick of memory going bad. I had a parity error (personally) once where a stick of memory showed the wrong size than it was supposed to have.