Question : Slow Logon

have problem on some PCs not all of them to logon to 2003 AD

the debug file has the following



USERENV(2b4.2b8) 13:55:06:812 InitializePolicyProcessing: Initialised Machine Mutex/Events
USERENV(2b4.2b8) 13:55:06:812 InitializePolicyProcessing: Initialised User Mutex/Events
USERENV(2b4.2b8) 13:55:06:812 LibMain: Process Name:  \??\C:\WINDOWS\system32\winlogon.exe
USERENV(2b4.2b8) 13:55:06:984 Entering CUserProfile::Initialize ...
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize called by winlogon
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: critical section initialized
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::Initialize: critical section initialized
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: registry key Software\Microsoft\Windows NT\CurrentVersion\ProfileList opened
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: Proccessing S-1-5-21-2757496977-2351596351-2612863171-500
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock 96351-2612863171-500>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashAdd: S-1-5-21-2757496977-2351596351-2612863171-500 added in bucket 5
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000100
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock 96351-2612863171-500>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashDelete: S-1-5-21-2757496977-2351596351-2612863171-500 deleted
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-4344
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock 99613-2874399510-4344>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-4344 added in bucket 3
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000204
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock 99613-2874399510-4344>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-4344 deleted
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-4198
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock 99613-2874399510-4198>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-4198 added in bucket 10
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000304
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock 99613-2874399510-4198>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-4198 deleted
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-4191
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock 99613-2874399510-4191>
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:06:984 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:06:984 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-4191 added in bucket 3
USERENV(2b4.2b8) 13:55:06:984 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 1, state is 00000100
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Ref Count is not 0
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-4191>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-4191 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-4027
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-4027>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-4027 added in bucket 1
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000304
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-4027>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-4027 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-3741
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-3741>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-3741 added in bucket 3
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000000
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-3741>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-3741 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-3718
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-3718>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-3718 added in bucket 7
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000000
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-3718>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-3718 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-3710
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-3710>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-3710 added in bucket 22
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000304
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-3710>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-3710 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-3704
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-3704>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-3704 added in bucket 2
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000204
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-3704>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-3704 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-3643
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-3643>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-3643 added in bucket 4
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000100
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-3643>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-3643 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-1614
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-1614>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-1614 added in bucket 0
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000304
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-1614>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-1614 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-1257
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-1257>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-1257 added in bucket 3
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000100
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-1257>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-1257 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-1228
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-1228>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-1228 added in bucket 1
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000100
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-1228>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-1228 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-21-2312645912-1725099613-2874399510-1201
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock 99613-2874399510-1201>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-1201 added in bucket 15
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 0, state is 00000100
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock 99613-2874399510-1201>
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-1201 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-20
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashAdd: S-1-5-20 added in bucket 4
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::GetRefCountAndFlags: Ref count is 2, state is 00000000
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Ref Count is not 0
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:000 CHashTable::HashDelete: S-1-5-20 deleted
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:000 CUserProfile::Initialize: Proccessing S-1-5-19
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock
USERENV(2b4.2b8) 13:55:07:000 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:015 CHashTable::HashAdd: S-1-5-19 added in bucket 12
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::GetRefCountAndFlags: Ref count is 3, state is 00000000
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Ref Count is not 0
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:015 CHashTable::HashDelete: S-1-5-19 deleted
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::Initialize: Proccessing S-1-5-18
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::EnterLock
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:07:015 CHashTable::HashAdd: S-1-5-18 added in bucket 11
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Enter critical section.
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::GetRefCountAndFlags: Ref count is 1, state is 00000000
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Ref Count is not 0
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:07:015 CHashTable::HashDelete: S-1-5-18 deleted
USERENV(2b4.2b8) 13:55:07:015 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::CleanupUserProfile: Leave critical section
USERENV(2b4.2b8) 13:55:07:015 CUserProfile::Initialize: RpcServerRegisterIfEx successful
USERENV(2b4.2b8) 13:55:07:015 Exiting CUserProfile::Initialize, successful
USERENV(2e0.2e4) 13:55:07:046 LibMain: Process Name:  C:\WINDOWS\system32\services.exe
USERENV(2ec.2f0) 13:55:07:046 LibMain: Process Name:  C:\WINDOWS\system32\lsass.exe
USERENV(2b4.2b8) 13:55:07:078 IsSyncForegroundPolicyRefresh: Asynchronous, Reason: NoNeedForSync
USERENV(3b0.3b4) 13:55:08:046 LibMain: Process Name:  C:\WINDOWS\system32\svchost.exe
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2e0.2e4) 13:55:08:234 =========================================================
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: Entering, hToken = <0x2b0>, lpProfileInfo = 0x7fcf8
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: NULL central profile path
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: NULL default profile path
USERENV(2e0.2e4) 13:55:08:234 LoadUserProfile: NULL server name
USERENV(2e0.2e4) 13:55:08:234 GetInterface: Returning rpc binding handle
USERENV(2b4.2cc) 13:55:08:234 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:08:234 DropClientContext: Got client token 00000610, sid = S-1-5-18
USERENV(2b4.2cc) 13:55:08:234 MIDL_user_allocate enter
USERENV(2b4.2cc) 13:55:08:234 DropClientContext: load profile object successfully made
USERENV(2b4.2cc) 13:55:08:250 DropClientContext: Returning 0
USERENV(2e0.2e4) 13:55:08:250 LoadUserProfile: Calling DropClientToken (as self) succeeded
USERENV(2b4.3ec) 13:55:08:250 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:55:08:250 In LoadUserProfileP
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: Running as client
USERENV(2b4.3ec) 13:55:08:250 =========================================================
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: Entering, hToken = <0x614>, lpProfileInfo = 0xf6f1b8
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: NULL central profile path
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: NULL default profile path
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: NULL server name
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: User sid: S-1-5-20
USERENV(2b4.3ec) 13:55:08:250 CSyncManager::EnterLock
USERENV(2b4.3ec) 13:55:08:250 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.3ec) 13:55:08:250 CSyncManager::EnterLock: New entry created
USERENV(2b4.3ec) 13:55:08:250 CHashTable::HashAdd: S-1-5-20 added in bucket 4
USERENV(2b4.3ec) 13:55:08:250 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.3ec) 13:55:08:250 RestoreUserProfile:  Entering
USERENV(2b4.3ec) 13:55:08:250 IsCentralProfileReachable:  Entering
USERENV(2b4.3ec) 13:55:08:250 IsCentralProfileReachable:  Null path.  Leaving
USERENV(2b4.3ec) 13:55:08:250 RestoreUserProfile:  Profile path = <>
USERENV(2b4.3ec) 13:55:08:250 ExtractProfileFromBackup:  A profile already exists
USERENV(2b4.3ec) 13:55:08:250 PatchNewProfileIfRequred: A profile already exists with the current sid, exitting
USERENV(2b4.3ec) 13:55:08:250 CreateLocalProfileKey:  Not setting additional Security
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  Found entry in profile list for existing local profile
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  Local profile image filename = <%SystemDrive%\Documents and Settings\NetworkService>
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  Expanded local profile image filename =
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  No local mandatory profile.  Error = 2
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  Found local profile image file ok user.dat>
USERENV(2b4.3ec) 13:55:08:250 GetExistingLocalProfileImage:  Failed to query low profile unload time with error 2
USERENV(2b4.3ec) 13:55:08:250 Local Existing Profile Image is reachable
USERENV(2b4.3ec) 13:55:08:250 Local profile name is
USERENV(2b4.3ec) 13:55:08:250 RestoreUserProfile:  No central profile.  Attempting to load local profile.
USERENV(2b4.3ec) 13:55:08:250 MyRegLoadKey: Returning 00000000
USERENV(2b4.3ec) 13:55:08:250 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2b4.3ec) 13:55:08:250 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.3ec) 13:55:08:250 MyRegLoadKey: Returning 00000000
USERENV(2b4.3ec) 13:55:08:250 CreateClassHive: existing user classes hive found
USERENV(2b4.3ec) 13:55:08:250 RestoreUserProfile:  About to Leave.  Final Information follows:
USERENV(2b4.3ec) 13:55:08:250 Profile was successfully loaded.
USERENV(2b4.3ec) 13:55:08:250 lpProfile->lpRoamingProfile = <>
USERENV(2b4.3ec) 13:55:08:250 lpProfile->lpLocalProfile =
USERENV(2b4.3ec) 13:55:08:250 lpProfile->dwInternalFlags = 0x0
USERENV(2b4.3ec) 13:55:08:250 RestoreUserProfile:  Leaving.
USERENV(2b4.3ec) 13:55:08:281 UpgradeProfile: Entering
USERENV(2b4.3ec) 13:55:08:281 UpgradeProfile: Build numbers match
USERENV(2b4.3ec) 13:55:08:281 UpgradeProfile: Leaving Successfully
USERENV(2b4.3ec) 13:55:08:281 GetProfileType:  Profile already loaded.
USERENV(2b4.3ec) 13:55:08:281 LoadProfileInfo:  Failed to query central profile with error 2
USERENV(2b4.3ec) 13:55:08:281 GetProfileType: ProfileFlags is 0
USERENV(2b4.3ec) 13:55:08:296 Profile Ref Count is 1
USERENV(2b4.3ec) 13:55:08:296 LoadUserProfile: Leaving critical Section.
USERENV(2b4.3ec) 13:55:08:296 CSyncManager::LeaveLock
USERENV(2b4.3ec) 13:55:08:296 CSyncManager::LeaveLock: Lock released
USERENV(2b4.3ec) 13:55:08:296 CHashTable::HashDelete: S-1-5-20 deleted
USERENV(2b4.3ec) 13:55:08:296 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.3ec) 13:55:08:296 LoadUserProfile: Impersonated user: 00000614, 00000620
USERENV(2ec.334) 13:55:08:296 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2ec.334) 13:55:08:296 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2ec.334) 13:55:08:296 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2ec.334) 13:55:08:296 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.3ec) 13:55:08:312 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.3ec) 13:55:08:312 LoadUserProfile: Reverted back to user <00000000>
USERENV(2b4.3ec) 13:55:08:312 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.3ec) 13:55:08:312 =========================================================
USERENV(2b4.3ec) 13:55:08:312 LoadUserProfileI: returning 0
USERENV(2e0.2e4) 13:55:08:312 LoadUserProfile: Running as self
USERENV(2e0.2e4) 13:55:08:312 LoadUserProfile: Calling LoadUserProfileI (as user) succeeded
USERENV(2e0.2e4) 13:55:08:312 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2e0.2e4) 13:55:08:312 lpProfileInfo->UserName =
USERENV(2e0.2e4) 13:55:08:312 lpProfileInfo->lpProfilePath = <>
USERENV(2e0.2e4) 13:55:08:312 lpProfileInfo->dwFlags = 0x9
USERENV(2b4.2cc) 13:55:08:312 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:08:312 ReleaseClientContext: Releasing context
USERENV(2b4.2cc) 13:55:08:312 ReleaseClientContext_s: Releasing context
USERENV(2b4.2cc) 13:55:08:312 MIDL_user_free enter
USERENV(2e0.2e4) 13:55:08:312 ReleaseInterface: Releasing rpc binding handle
USERENV(2e0.2e4) 13:55:08:312 LoadUserProfile: Returning TRUE. hProfile = <0x344>
USERENV(2e0.2e4) 13:55:08:312 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2e0.2e4) 13:55:08:312 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(3f4.3f8) 13:55:08:328 LibMain: Process Name:  C:\WINDOWS\system32\svchost.exe
USERENV(454.458) 13:55:08:406 LibMain: Process Name:  C:\WINDOWS\System32\svchost.exe
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2e0.2e4) 13:55:08:421 =========================================================
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: Entering, hToken = <0x38c>, lpProfileInfo = 0x7fcf8
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: NULL central profile path
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: NULL default profile path
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: NULL server name
USERENV(2e0.2e4) 13:55:08:421 GetInterface: Returning rpc binding handle
USERENV(2b4.3ec) 13:55:08:421 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:55:08:421 DropClientContext: Got client token 00000610, sid = S-1-5-18
USERENV(2b4.3ec) 13:55:08:421 MIDL_user_allocate enter
USERENV(2b4.3ec) 13:55:08:421 DropClientContext: load profile object successfully made
USERENV(2b4.3ec) 13:55:08:421 DropClientContext: Returning 0
USERENV(2e0.2e4) 13:55:08:421 LoadUserProfile: Calling DropClientToken (as self) succeeded
USERENV(2b4.2cc) 13:55:08:421 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:08:421 In LoadUserProfileP
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: Running as client
USERENV(2b4.2cc) 13:55:08:421 =========================================================
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: Entering, hToken = <0x614>, lpProfileInfo = 0xf6f1b8
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: NULL central profile path
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: NULL default profile path
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: NULL server name
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: User sid: S-1-5-20
USERENV(2b4.2cc) 13:55:08:421 CSyncManager::EnterLock
USERENV(2b4.2cc) 13:55:08:421 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2cc) 13:55:08:421 CSyncManager::EnterLock: New entry created
USERENV(2b4.2cc) 13:55:08:421 CHashTable::HashAdd: S-1-5-20 added in bucket 4
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.2cc) 13:55:08:421 TestIfUserProfileLoaded:  Profile already loaded.
USERENV(2b4.2cc) 13:55:08:421 Profile Ref Count is 2
USERENV(2b4.2cc) 13:55:08:421 LoadUserProfile: Leaving critical Section.
USERENV(2b4.2cc) 13:55:08:421 CSyncManager::LeaveLock
USERENV(2b4.2cc) 13:55:08:421 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2cc) 13:55:08:437 CHashTable::HashDelete: S-1-5-20 deleted
USERENV(2b4.2cc) 13:55:08:437 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2cc) 13:55:08:437 LoadUserProfile: Impersonated user: 00000614, 00000620
USERENV(2b4.2cc) 13:55:08:437 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.2cc) 13:55:08:437 LoadUserProfile: Reverted back to user <00000000>
USERENV(2b4.2cc) 13:55:08:437 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.2cc) 13:55:08:437 =========================================================
USERENV(2b4.2cc) 13:55:08:437 LoadUserProfileI: returning 0
USERENV(2e0.2e4) 13:55:08:437 LoadUserProfile: Running as self
USERENV(2e0.2e4) 13:55:08:437 LoadUserProfile: Calling LoadUserProfileI (as user) succeeded
USERENV(2e0.2e4) 13:55:08:437 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2e0.2e4) 13:55:08:437 lpProfileInfo->UserName =
USERENV(2e0.2e4) 13:55:08:437 lpProfileInfo->lpProfilePath = <>
USERENV(2e0.2e4) 13:55:08:437 lpProfileInfo->dwFlags = 0x9
USERENV(2b4.3ec) 13:55:08:437 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:55:08:437 ReleaseClientContext: Releasing context
USERENV(2b4.3ec) 13:55:08:437 ReleaseClientContext_s: Releasing context
USERENV(2b4.3ec) 13:55:08:437 MIDL_user_free enter
USERENV(2e0.2e4) 13:55:08:437 ReleaseInterface: Releasing rpc binding handle
USERENV(2e0.2e4) 13:55:08:437 LoadUserProfile: Returning TRUE. hProfile = <0x388>
USERENV(2e0.2e4) 13:55:08:437 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2e0.2e4) 13:55:08:437 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(4f8.4fc) 13:55:08:453 LibMain: Process Name:  C:\WINDOWS\system32\svchost.exe
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2e0.2e4) 13:55:08:453 =========================================================
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: Entering, hToken = <0x3a0>, lpProfileInfo = 0x7fcf8
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: NULL central profile path
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: NULL default profile path
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: NULL server name
USERENV(2e0.2e4) 13:55:08:453 GetInterface: Returning rpc binding handle
USERENV(2b4.2cc) 13:55:08:453 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:08:453 DropClientContext: Got client token 00000610, sid = S-1-5-18
USERENV(2b4.2cc) 13:55:08:453 MIDL_user_allocate enter
USERENV(2b4.2cc) 13:55:08:453 DropClientContext: load profile object successfully made
USERENV(2b4.2cc) 13:55:08:453 DropClientContext: Returning 0
USERENV(2e0.2e4) 13:55:08:453 LoadUserProfile: Calling DropClientToken (as self) succeeded
USERENV(2b4.3ec) 13:55:08:453 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:55:08:453 In LoadUserProfileP
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: Running as client
USERENV(2b4.3ec) 13:55:08:453 =========================================================
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: Entering, hToken = <0x650>, lpProfileInfo = 0xf6f1b8
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: NULL central profile path
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: NULL default profile path
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: NULL server name
USERENV(2b4.3ec) 13:55:08:453 LoadUserProfile: User sid: S-1-5-19
USERENV(2b4.3ec) 13:55:08:468 CSyncManager::EnterLock
USERENV(2b4.3ec) 13:55:08:468 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.3ec) 13:55:08:468 CSyncManager::EnterLock: New entry created
USERENV(2b4.3ec) 13:55:08:468 CHashTable::HashAdd: S-1-5-19 added in bucket 12
USERENV(2b4.3ec) 13:55:08:468 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.3ec) 13:55:08:468 RestoreUserProfile:  Entering
USERENV(2b4.3ec) 13:55:08:468 IsCentralProfileReachable:  Entering
USERENV(2b4.3ec) 13:55:08:468 IsCentralProfileReachable:  Null path.  Leaving
USERENV(2b4.3ec) 13:55:08:468 RestoreUserProfile:  Profile path = <>
USERENV(2b4.3ec) 13:55:08:468 ExtractProfileFromBackup:  A profile already exists
USERENV(2b4.3ec) 13:55:08:468 PatchNewProfileIfRequred: A profile already exists with the current sid, exitting
USERENV(2b4.3ec) 13:55:08:468 CreateLocalProfileKey:  Not setting additional Security
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  Found entry in profile list for existing local profile
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  Local profile image filename = <%SystemDrive%\Documents and Settings\LocalService>
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  Expanded local profile image filename =
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  No local mandatory profile.  Error = 2
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  Found local profile image file ok er.dat>
USERENV(2b4.3ec) 13:55:08:468 GetExistingLocalProfileImage:  Failed to query low profile unload time with error 2
USERENV(2b4.3ec) 13:55:08:468 Local Existing Profile Image is reachable
USERENV(2b4.3ec) 13:55:08:468 Local profile name is
USERENV(2b4.3ec) 13:55:08:468 RestoreUserProfile:  No central profile.  Attempting to load local profile.
USERENV(2b4.3ec) 13:55:08:468 MyRegLoadKey: Returning 00000000
USERENV(2b4.3ec) 13:55:08:468 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2b4.3ec) 13:55:08:468 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.3ec) 13:55:08:468 MyRegLoadKey: Returning 00000000
USERENV(2b4.3ec) 13:55:08:468 CreateClassHive: existing user classes hive found
USERENV(2b4.3ec) 13:55:08:468 RestoreUserProfile:  About to Leave.  Final Information follows:
USERENV(2b4.3ec) 13:55:08:468 Profile was successfully loaded.
USERENV(2b4.3ec) 13:55:08:468 lpProfile->lpRoamingProfile = <>
USERENV(2b4.3ec) 13:55:08:468 lpProfile->lpLocalProfile =
USERENV(2b4.3ec) 13:55:08:468 lpProfile->dwInternalFlags = 0x0
USERENV(2b4.3ec) 13:55:08:468 RestoreUserProfile:  Leaving.
USERENV(2b4.3ec) 13:55:08:468 UpgradeProfile: Entering
USERENV(2b4.3ec) 13:55:08:468 UpgradeProfile: Build numbers match
USERENV(2b4.3ec) 13:55:08:468 UpgradeProfile: Leaving Successfully
USERENV(2b4.3ec) 13:55:08:468 GetProfileType:  Profile already loaded.
USERENV(2b4.3ec) 13:55:08:468 LoadProfileInfo:  Failed to query central profile with error 2
USERENV(2b4.3ec) 13:55:08:468 GetProfileType: ProfileFlags is 0
USERENV(2b4.3ec) 13:55:08:609 Profile Ref Count is 1
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfile: Leaving critical Section.
USERENV(2b4.3ec) 13:55:08:609 CSyncManager::LeaveLock
USERENV(2b4.3ec) 13:55:08:609 CSyncManager::LeaveLock: Lock released
USERENV(2b4.3ec) 13:55:08:609 CHashTable::HashDelete: S-1-5-19 deleted
USERENV(2b4.3ec) 13:55:08:609 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfile: Impersonated user: 00000650, 00000648
USERENV(2ec.350) 13:55:08:609 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2ec.350) 13:55:08:609 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2ec.350) 13:55:08:609 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2ec.350) 13:55:08:609 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfile: Reverted back to user <00000000>
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.3ec) 13:55:08:609 =========================================================
USERENV(2b4.3ec) 13:55:08:609 LoadUserProfileI: returning 0
USERENV(2e0.2e4) 13:55:08:609 LoadUserProfile: Running as self
USERENV(2e0.2e4) 13:55:08:609 LoadUserProfile: Calling LoadUserProfileI (as user) succeeded
USERENV(2e0.2e4) 13:55:08:609 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2e0.2e4) 13:55:08:609 lpProfileInfo->UserName =
USERENV(2e0.2e4) 13:55:08:609 lpProfileInfo->lpProfilePath = <>
USERENV(2e0.2e4) 13:55:08:609 lpProfileInfo->dwFlags = 0x9
USERENV(2b4.2cc) 13:55:08:609 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:08:609 ReleaseClientContext: Releasing context
USERENV(2b4.2cc) 13:55:08:609 ReleaseClientContext_s: Releasing context
USERENV(2b4.2cc) 13:55:08:609 MIDL_user_free enter
USERENV(2e0.2e4) 13:55:08:609 ReleaseInterface: Releasing rpc binding handle
USERENV(2e0.2e4) 13:55:08:609 LoadUserProfile: Returning TRUE. hProfile = <0x390>
USERENV(2e0.2e4) 13:55:08:609 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2e0.2e4) 13:55:08:609 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(518.51c) 13:55:08:625 LibMain: Process Name:  C:\WINDOWS\system32\svchost.exe
USERENV(2b4.2b8) 13:55:08:812 IsSyncForegroundPolicyRefresh: Asynchronous, Reason: NoNeedForSync
USERENV(2b4.544) 13:55:08:812 IsSyncForegroundPolicyRefresh: Asynchronous, Reason: NoNeedForSync
USERENV(5b0.5b4) 13:55:08:890 LibMain: Process Name:  C:\WINDOWS\system32\spoolsv.exe
USERENV(2b4.5fc) 13:55:19:921 SetFgRefreshInfo: Next User Fg policy Synchronous, Reason: NonCachedCredentials.
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2b4.2b8) 13:55:19:921 =========================================================
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: Entering, hToken = <0x734>, lpProfileInfo = 0x6e3e0
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->dwFlags = <0x0>
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: NULL central profile path
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->lpDefaultPath = <\\remoteserver\netlogon\Default User>
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: NULL server name
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: In console winlogon process
USERENV(2b4.2b8) 13:55:19:921 In LoadUserProfileP
USERENV(2b4.2b8) 13:55:19:921 =========================================================
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: Entering, hToken = <0x734>, lpProfileInfo = 0x6e3e0
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->dwFlags = <0x0>
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: NULL central profile path
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: lpProfileInfo->lpDefaultPath = <\\remoteserver\netlogon\Default User>
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: NULL server name
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: User sid: S-1-5-21-2312645912-1725099613-2874399510-4191
USERENV(2b4.2b8) 13:55:19:921 CSyncManager::EnterLock 99613-2874399510-4191>
USERENV(2b4.2b8) 13:55:19:921 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2b8) 13:55:19:921 CSyncManager::EnterLock: New entry created
USERENV(2b4.2b8) 13:55:19:921 CHashTable::HashAdd: S-1-5-21-2312645912-1725099613-2874399510-4191 added in bucket 3
USERENV(2b4.2b8) 13:55:19:921 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.2b8) 13:55:19:921 RestoreUserProfile:  Entering
USERENV(2b4.2b8) 13:55:19:921 RestoreUserProfile:  User is a Admin
USERENV(2b4.2b8) 13:55:19:921 IsCentralProfileReachable:  Entering
USERENV(2b4.2b8) 13:55:19:921 IsCentralProfileReachable:  Null path.  Leaving
USERENV(2b4.2b8) 13:55:19:921 RestoreUserProfile:  Profile path = <>
USERENV(2b4.2b8) 13:55:19:921 ExtractProfileFromBackup:  A profile already exists
USERENV(2b4.2b8) 13:55:19:921 PatchNewProfileIfRequred: A profile already exists with the current sid, exitting
USERENV(2b4.2b8) 13:55:19:937 CreateLocalProfileKey:  Not setting additional Security
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  Found entry in profile list for existing local profile
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  Local profile image filename = <%SystemDrive%\Documents and Settings\user>
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  Expanded local profile image filename =
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  No local mandatory profile.  Error = 2
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  Found local profile image file ok
USERENV(2b4.2b8) 13:55:19:937 GetExistingLocalProfileImage:  Failed to query low profile unload time with error 2
USERENV(2b4.2b8) 13:55:19:937 Local Existing Profile Image is reachable
USERENV(2b4.2b8) 13:55:19:937 Local profile name is
USERENV(2b4.2b8) 13:55:19:937 RestoreUserProfile:  No central profile.  Attempting to load local profile.
USERENV(2b4.2b8) 13:55:19:968 MyRegLoadKey: Returning 00000000
USERENV(2b4.544) 13:55:19:968 ApplyGroupPolicy: Entering. Flags = f
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:  Starting computer Group Policy (Async forground) processing...
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:
USERENV(2b4.544) 13:55:19:968 EnterCriticalPolicySectionEx: Entering with timeout 600000 and flags 0x0
USERENV(2b4.544) 13:55:19:968 EnterCriticalPolicySectionEx: Machine critical section has been claimed.  Handle = 0x778
USERENV(2b4.544) 13:55:19:968 EnterCriticalPolicySectionEx: Leaving successfully.
USERENV(2b4.544) 13:55:19:968 ProcessGPOs:  Machine role is 2.
USERENV(2b4.2b8) 13:55:19:968 MyRegLoadKey: Returning 00000000
USERENV(2b4.2b8) 13:55:19:968 CreateClassHive: existing user classes hive found
USERENV(2b4.2b8) 13:55:19:968 RestoreUserProfile:  About to Leave.  Final Information follows:
USERENV(2b4.2b8) 13:55:19:968 Profile was successfully loaded.
USERENV(2b4.2b8) 13:55:19:968 lpProfile->lpRoamingProfile = <>
USERENV(2b4.2b8) 13:55:19:968 lpProfile->lpLocalProfile =
USERENV(2b4.2b8) 13:55:19:984 lpProfile->dwInternalFlags = 0x100
USERENV(2b4.2b8) 13:55:19:984 RestoreUserProfile:  Leaving.
USERENV(2b4.2b8) 13:55:19:984 UpgradeProfile: Entering
USERENV(2b4.2b8) 13:55:19:984 UpgradeProfile: Build numbers match
USERENV(2b4.2b8) 13:55:19:984 UpgradeProfile: Leaving Successfully
USERENV(2b4.544) 13:55:19:984 PingComputer: Adapter speed 100000000 bps
USERENV(2b4.544) 13:55:19:984 PingComputer:  First time:  9
USERENV(2b4.544) 13:55:19:984 PingComputer:  Fast link.  Exiting.
USERENV(2b4.2b8) 13:55:21:078 GetProfileType:  Profile already loaded.
USERENV(2b4.2b8) 13:55:21:078 LoadProfileInfo:  Failed to query central profile with error 2
USERENV(2b4.2b8) 13:55:21:078 GetProfileType: ProfileFlags is 0
USERENV(2b4.2b8) 13:55:21:171 Profile Ref Count is 1
USERENV(2b4.2b8) 13:55:21:171 LoadUserProfile: Leaving critical Section.
USERENV(2b4.2b8) 13:55:21:171 CSyncManager::LeaveLock 99613-2874399510-4191>
USERENV(2b4.2b8) 13:55:21:171 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2b8) 13:55:21:171 CHashTable::HashDelete: S-1-5-21-2312645912-1725099613-2874399510-4191 deleted
USERENV(2b4.2b8) 13:55:21:171 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2b8) 13:55:21:171 LoadUserProfile: Impersonated user: 00000734, 00000000
USERENV(2ec.350) 13:55:21:265 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2ec.350) 13:55:21:328 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.2b8) 13:55:21:328 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.2b8) 13:55:21:328 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.2b8) 13:55:21:328 =========================================================
USERENV(2b4.2b8) 13:55:21:328 LoadUserProfile: LoadUserProfileP succeeded
USERENV(2b4.2b8) 13:55:21:343 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2b4.2b8) 13:55:21:343 lpProfileInfo->UserName =
USERENV(2b4.2b8) 13:55:21:343 lpProfileInfo->lpProfilePath = <>
USERENV(2b4.2b8) 13:55:21:343 lpProfileInfo->dwFlags = 0x0
USERENV(2b4.2b8) 13:55:21:343 LoadUserProfile: Returning TRUE. hProfile = <0x774>
USERENV(2b4.2b8) 13:55:21:343 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.2b8) 13:55:22:312 IsSyncForegroundPolicyRefresh: Synchronous, Reason: NonCachedCredentials
USERENV(2b4.9c) 13:55:22:312 IsSyncForegroundPolicyRefresh: Synchronous, Reason: NonCachedCredentials
USERENV(2e0.2e4) 13:55:56:750 UnloadUserProfile: Entering, hProfile = <0x0>
USERENV(2e0.2e4) 13:55:56:750 UnloadUserProfile: received a NULL hProfile.
USERENV(2e0.2e4) 13:55:56:750 UnloadUserProfile: returning 0
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2e0.2e4) 13:55:56:765 =========================================================
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: Entering, hToken = <0x4a4>, lpProfileInfo = 0x7fcf8
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: NULL central profile path
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: NULL default profile path
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: NULL server name
USERENV(2e0.2e4) 13:55:56:765 GetInterface: Returning rpc binding handle
USERENV(2b4.2dc) 13:55:56:765 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2dc) 13:55:56:765 DropClientContext: Got client token 00000728, sid = S-1-5-18
USERENV(2b4.2dc) 13:55:56:765 MIDL_user_allocate enter
USERENV(2b4.2dc) 13:55:56:765 DropClientContext: load profile object successfully made
USERENV(2b4.2dc) 13:55:56:765 DropClientContext: Returning 0
USERENV(2e0.2e4) 13:55:56:765 LoadUserProfile: Calling DropClientToken (as self) succeeded
USERENV(2b4.2cc) 13:55:56:765 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:55:56:765 In LoadUserProfileP
USERENV(2b4.2cc) 13:55:56:765 LoadUserProfile: Running as client
USERENV(2b4.2cc) 13:55:56:765 =========================================================
USERENV(2b4.2cc) 13:55:56:765 LoadUserProfile: Entering, hToken = <0x6f0>, lpProfileInfo = 0xf75a68
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: NULL central profile path
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: NULL default profile path
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: NULL server name
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: User sid: S-1-5-19
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::EnterLock
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::EnterLock: New entry created
USERENV(2b4.2cc) 13:55:56:781 CHashTable::HashAdd: S-1-5-19 added in bucket 12
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.2cc) 13:55:56:781 TestIfUserProfileLoaded:  Profile already loaded.
USERENV(2b4.2cc) 13:55:56:781 Profile Ref Count is 2
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Leaving critical Section.
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::LeaveLock
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2cc) 13:55:56:781 CHashTable::HashDelete: S-1-5-19 deleted
USERENV(2b4.2cc) 13:55:56:781 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Impersonated user: 000006f0, 000007c0
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Reverted back to user <00000000>
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.2cc) 13:55:56:781 =========================================================
USERENV(2b4.2cc) 13:55:56:781 LoadUserProfileI: returning 0
USERENV(2e0.2e4) 13:55:56:781 LoadUserProfile: Running as self
USERENV(2e0.2e4) 13:55:56:781 LoadUserProfile: Calling LoadUserProfileI (as user) succeeded
USERENV(2e0.2e4) 13:55:56:781 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2e0.2e4) 13:55:56:781 lpProfileInfo->UserName =
USERENV(2e0.2e4) 13:55:56:781 lpProfileInfo->lpProfilePath = <>
USERENV(2e0.2e4) 13:55:56:781 lpProfileInfo->dwFlags = 0x9
USERENV(2b4.3ec) 13:55:56:781 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:55:56:781 ReleaseClientContext: Releasing context
USERENV(2b4.3ec) 13:55:56:781 ReleaseClientContext_s: Releasing context
USERENV(2b4.3ec) 13:55:56:781 MIDL_user_free enter
USERENV(2e0.2e4) 13:55:56:781 ReleaseInterface: Releasing rpc binding handle
USERENV(2e0.2e4) 13:55:56:781 LoadUserProfile: Returning TRUE. hProfile = <0x338>
USERENV(2e0.2e4) 13:55:56:781 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2e0.2e4) 13:55:56:781 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.544) 13:57:18:829 ProcessGPOs: network name is domain.com
USERENV(2b4.544) 13:57:19:126 ProcessGPOs:  User name is:  CN=pcname,OU=-PIT- Computers For Admins,OU=PIT-Computers,DC=domain,DC=com, Domain name is:  domain
USERENV(2b4.544) 13:57:19:126 ProcessGPOs: Domain controller is:  \\remoteserver.domain.com  Domain DN is domain.com
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for dskquota.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for iedkcs32.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Failed to query DllName value.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for scecli.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for C:\WINDOWS\System32\cscui.dll.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Failed to query DllName value.
USERENV(2b4.544) 13:57:19:126 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {35378EAC-683F-11D2-A89A-00C04FBBCFA2}
USERENV(2b4.544) 13:57:19:141 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {25537BA6-77A8-11D2-9B6C-0000F8080861}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {3610eda5-77ef-11d2-8dc5-00c04fa31a66}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {426031c0-0b47-4852-b0ca-ac3d37bfcb39}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {42B5FAAE-6536-11d2-AE5A-0000F87571E3}
USERENV(2b4.544) 13:57:19:141 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {827D319E-6EAC-11D2-A4EA-00C04F79F83A}
USERENV(2b4.544) 13:57:19:141 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}
USERENV(2b4.544) 13:57:19:141 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {B587E2B1-4D59-4e7e-AED9-22B9DF11D053}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {C631DF4C-088F-4156-B058-4375F0853CD8}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {c6dc5466-785a-11d2-84d0-00c04fb169f7}
USERENV(2b4.544) 13:57:19:141 ReadExtStatus: Reading Previous Status for extension {e437bc1c-aa7d-11d2-a382-00c04f991e27}
USERENV(2b4.544) 13:57:19:141 ProcessGPOs: Calling GetGPOInfo for normal policy mode
USERENV(2b4.544) 13:57:19:141 GetGPOInfo:  ********************************
USERENV(2b4.544) 13:57:19:141 GetGPOInfo:  Entering...
USERENV(2b4.544) 13:57:19:484 GetGPOInfo:  Server connection established.
USERENV(454.a3c) 13:57:19:484 GetProfileType:  Profile already loaded.
USERENV(454.a3c) 13:57:19:500 LoadProfileInfo:  Failed to query central profile with error 2
USERENV(454.a3c) 13:57:19:500 GetProfileType: ProfileFlags is 0
USERENV(2b4.544) 13:57:19:547 GetGPOInfo:  Bound successfully.
USERENV(2b4.544) 13:57:19:594 SearchDSObject:  Searching =domain,DC=com>
USERENV(2b4.544) 13:57:19:594 SearchDSObject:  Found GPO(s):  <[LDAP://cn={31B2F340-016D-11D2-945F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={71DA06F6-51A8-42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://CN={1114FFF3-F3DD-4DD1-B71F-FF10F4FA645B},CN=Policies,CN=System,DC=domain,DC=com;1][LDAP://cn={9AAB131D-70EF-478A-99AC-B8D098FB09D5},cn=policies,cn=system,DC=domain,DC=com;0]>
USERENV(2b4.544) 13:57:19:594 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:594 ProcessGPO:  Deferring search for 11D2-945F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:594 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:594 ProcessGPO:  Deferring search for 42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  The link to GPO LDAP://CN={1114FFF3-F3DD-4DD1-B71F-FF10F4FA645B},CN=Policies,CN=System,DC=domain,DC=com is disabled.  It will be skipped for processing.
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  Deferring search for 478A-99AC-B8D098FB09D5},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  =domain,DC=com> has the Block From Above attribute set
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  Searching n,DC=com>
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  Found GPO(s):  <[LDAP://cn={31B2F340-016D-11D2-945F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={71DA06F6-51A8-42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com;0]>
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:609 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  Deferring search for 11D2-945F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:609 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  Deferring search for 42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  Searching
USERENV(2b4.544) 13:57:19:609 SearchDSObject:  Found GPO(s):  <[LDAP://CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=domain,DC=com;0][LDAP://cn={9A457D01-FF0B-4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com;0]>
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:609 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  Deferring search for 11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:609 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.544) 13:57:19:609 ProcessGPO:  Deferring search for 4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:625 SearchDSObject:  Searching =Configuration,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:625 SearchDSObject:  No GPO(s) for this object.
USERENV(2b4.544) 13:57:19:672 EvaluateDeferredGPOs:  Searching for GPOs in cn=policies,cn=system,DC=domain,DC=com
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  Searching 5F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  Machine has access to this GPO.
USERENV(2b4.544) 13:57:19:687 FilterCheck:  Found WMI Filter id of:  < >
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.544) 13:57:19:687 ProcessGPO:  Found file system path of:  <\\domain.com\sysvol\domain.com\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}>
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found common name of:  <{31B2F340-016D-11D2-945F-00C04FB984F9}>
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found display name of:  
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found machine version of:  GPC is 97, GPT is 97
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found flags of:  0
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{53D6AB1B-2488-11D1-A28C-00C04FB94F17}{53D6AB1D-2488-11D1-A28C-00C04FB94F17}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}][{B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}{53D6AB1B-2488-11D1-A28C-00C04FB94F17}]
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Searching 33-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Machine has access to this GPO.
USERENV(2b4.544) 13:57:19:734 FilterCheck:  Found WMI Filter id of:  < >
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.544) 13:57:19:734 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{71DA06F6-51A8-42F0-8633-67C4ACF9F99F}>
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found common name of:  <{71DA06F6-51A8-42F0-8633-67C4ACF9F99F}>
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found display name of:  
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found machine version of:  GPC is 185, GPT is 185
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found flags of:  0
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957D-509E-11D1-A7CC-0000F87571E3}{53D6AB1D-2488-11D1-A28C-00C04FB94F17}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}][{B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}{53D6AB1D-2488-11D1-A28C-00C04FB94F17}]
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  ==============================
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Searching AC-B8D098FB09D5},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Machine has access to this GPO.
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{9AAB131D-70EF-478A-99AC-B8D098FB09D5}>
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found common name of:  <{9AAB131D-70EF-478A-99AC-B8D098FB09D5}>
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found display name of:  >
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found machine version of:  GPC is 122, GPT is 122
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found flags of:  1
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957D-509E-11D1-A7CC-0000F87571E3}][{42B5FAAE-6536-11D2-AE5A-0000F87571E3}{40B6664F-4972-11D1-A7CA-0000F87571E3}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]
USERENV(2b4.544) 13:57:19:750 ProcessGPO:  ==============================
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: Yes, we can impersonate the user. Running as self
USERENV(2e0.3c4) 13:57:19:859 =========================================================
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: Entering, hToken = <0x504>, lpProfileInfo = 0xe2f6e8
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: NULL central profile path
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: NULL default profile path
USERENV(2e0.3c4) 13:57:19:859 LoadUserProfile: NULL server name
USERENV(2e0.3c4) 13:57:19:859 GetInterface: Returning rpc binding handle
USERENV(2b4.2dc) 13:57:19:859 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2dc) 13:57:19:859 DropClientContext: Got client token 00000804, sid = S-1-5-18
USERENV(2b4.2dc) 13:57:19:859 MIDL_user_allocate enter
USERENV(2b4.2dc) 13:57:19:859 DropClientContext: load profile object successfully made
USERENV(2b4.2dc) 13:57:19:874 DropClientContext: Returning 0
USERENV(2e0.3c4) 13:57:19:874 LoadUserProfile: Calling DropClientToken (as self) succeeded
USERENV(2b4.2cc) 13:57:19:874 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.2cc) 13:57:19:874 In LoadUserProfileP
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Running as client
USERENV(2b4.2cc) 13:57:19:874 =========================================================
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Entering, hToken = <0x81c>, lpProfileInfo = 0xf92cf8
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: lpProfileInfo->dwFlags = <0x9>
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: lpProfileInfo->lpUserName =
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: NULL central profile path
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: NULL default profile path
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: NULL server name
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: User sid: S-1-5-19
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::EnterLock
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::EnterLock: No existing entry found
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::EnterLock: New entry created
USERENV(2b4.2cc) 13:57:19:874 CHashTable::HashAdd: S-1-5-19 added in bucket 12
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Wait succeeded. In critical section.
USERENV(2b4.2cc) 13:57:19:874 TestIfUserProfileLoaded:  Profile already loaded.
USERENV(2b4.2cc) 13:57:19:874 Profile Ref Count is 3
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Leaving critical Section.
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::LeaveLock
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::LeaveLock: Lock released
USERENV(2b4.2cc) 13:57:19:874 CHashTable::HashDelete: S-1-5-19 deleted
USERENV(2b4.2cc) 13:57:19:874 CSyncManager::LeaveLock: Lock deleted
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Impersonated user: 0000081c, 00000824
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Reverted to user: 00000000
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Reverted back to user <00000000>
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfile: Leaving with a value of 1.
USERENV(2b4.2cc) 13:57:19:874 =========================================================
USERENV(2b4.2cc) 13:57:19:874 LoadUserProfileI: returning 0
USERENV(2e0.3c4) 13:57:19:874 LoadUserProfile: Running as self
USERENV(2e0.3c4) 13:57:19:874 LoadUserProfile: Calling LoadUserProfileI (as user) succeeded
USERENV(2e0.3c4) 13:57:19:874 LoadUserProfile:  Returning success.  Final Information follows:
USERENV(2e0.3c4) 13:57:19:874 lpProfileInfo->UserName =
USERENV(2e0.3c4) 13:57:19:874 lpProfileInfo->lpProfilePath = <>
USERENV(2e0.3c4) 13:57:19:874 lpProfileInfo->dwFlags = 0x9
USERENV(2b4.3ec) 13:57:19:874 IProfileSecurityCallBack: client authenticated.
USERENV(2b4.3ec) 13:57:19:874 ReleaseClientContext: Releasing context
USERENV(2b4.3ec) 13:57:19:874 ReleaseClientContext_s: Releasing context
USERENV(2b4.3ec) 13:57:19:874 MIDL_user_free enter
USERENV(2e0.3c4) 13:57:19:874 ReleaseInterface: Releasing rpc binding handle
USERENV(2e0.3c4) 13:57:19:874 LoadUserProfile: Returning TRUE. hProfile = <0x384>
USERENV(2e0.3c4) 13:57:19:874 GetUserDNSDomainName:  Domain name is NT Authority.  No DNS domain name available.
USERENV(2e0.3c4) 13:57:19:874 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.544) 13:57:19:906 GetGPOInfo:  Leaving with 1
USERENV(2b4.544) 13:57:19:906 GetGPOInfo:  ********************************
USERENV(2b4.544) 13:57:19:906 ProcessGPOs: Logging Data for Target .
USERENV(2b4.544) 13:57:19:921 GetWbemServices: CoCreateInstance succeeded
USERENV(2b4.544) 13:57:20:140 ConnectToNameSpace: ConnectServer returned 0x0
USERENV(2b4.544) 13:57:20:374 CSessionLogger::Log: restoring old security grps
USERENV(2b4.544) 13:57:20:873 LogRsopData: Successfully logged Rsop data
USERENV(2b4.544) 13:57:20:873 ProcessGPOs: Logged Rsop Data successfully.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: OpenThreadToken failed with error 1008, assuming thread is not impersonating
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Registry
USERENV(2b4.544) 13:57:20:951 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes and no security group membership change and extension Registry has NoGPOChanges set.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Wireless
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes but couldn't read extension Wireless's status or policy time.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Extension Wireless skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Folder Redirection
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes but couldn't read extension Folder Redirection's status or policy time.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Extension Folder Redirection skipped with flags 0x1000f.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Microsoft Disk Quota
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes but couldn't read extension Microsoft Disk Quota's status or policy time.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Extension Microsoft Disk Quota skipped with flags 0x1000f.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension QoS Packet Scheduler
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes but couldn't read extension QoS Packet Scheduler's status or policy time.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Extension QoS Packet Scheduler skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Scripts
USERENV(2b4.544) 13:57:20:951 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes and no security group membership change and extension Scripts has NoGPOChanges set.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Internet Explorer Zonemapping
USERENV(2b4.544) 13:57:20:951 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:951 CheckGPOs: No GPO changes but couldn't read extension Internet Explorer Zonemapping's status or policy time.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Extension Internet Explorer Zonemapping skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:951 ProcessGPOs: Processing extension Security
USERENV(2b4.544) 13:57:20:951 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes and no security group membership change and extension Security has NoGPOChanges set.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension Internet Explorer Branding
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes but couldn't read extension Internet Explorer Branding's status or policy time.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Extension Internet Explorer Branding skipped with flags 0x1000f.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension EFS recovery
USERENV(2b4.544) 13:57:20:966 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes and no security group membership change and extension EFS recovery has NoGPOChanges set.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension 802.3 Group Policy
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes but couldn't read extension 802.3 Group Policy's status or policy time.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Extension 802.3 Group Policy skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension Microsoft Offline Files
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes but couldn't read extension Microsoft Offline Files's status or policy time.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Extension Microsoft Offline Files skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension Software Installation
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes but couldn't read extension Software Installation's status or policy time.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Extension Software Installation skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: -----------------------
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Processing extension IP Security
USERENV(2b4.544) 13:57:20:966 CompareGPOLists:  The lists are the same.
USERENV(2b4.544) 13:57:20:966 CheckGPOs: No GPO changes but couldn't read extension IP Security's status or policy time.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Extension IP Security skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.544) 13:57:20:966 SetFgRefreshInfo: Previous Machine Fg policy Asynchronous, Reason: NoNeedForSync.
USERENV(2b4.544) 13:57:20:966 LeaveCriticalPolicySection: Critical section 0x778 has been released.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Computer Group Policy has been applied.
USERENV(2b4.544) 13:57:20:966 ProcessGPOs: Leaving with 1.
USERENV(2b4.544) 13:57:20:998 ApplyGroupPolicy: Leaving successfully.
USERENV(2b4.b38) 13:57:20:998 GPOThread:  Next refresh will happen in 101 minutes
USERENV(adc.ae0) 13:57:22:791 LibMain: Process Name:  C:\WINDOWS\System32\alg.exe
USERENV(b40.b44) 13:57:22:854 LibMain: Process Name:  C:\WINDOWS\system32\userinit.exe
USERENV(ac8.acc) 13:57:23:150 LibMain: Process Name:  C:\WINDOWS\system32\wbem\wmiprvse.exe
USERENV(b40.b44) 13:57:24:492 GetProfileType:  Profile already loaded.
USERENV(b40.b44) 13:57:24:492 LoadProfileInfo:  Failed to query central profile with error 2
USERENV(b40.b44) 13:57:24:492 GetProfileType: ProfileFlags is 0
USERENV(2b4.9c) 13:57:24:897 ApplyGroupPolicy: Entering. Flags = 6
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs:
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs:
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs: Starting user Group Policy (Background) processing...
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs:
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs:
USERENV(2b4.9c) 13:57:24:897 EnterCriticalPolicySectionEx: Entering with timeout 600000 and flags 0x0
USERENV(2b4.9c) 13:57:24:897 EnterCriticalPolicySectionEx: User critical section has been claimed.  Handle = 0x854
USERENV(2b4.9c) 13:57:24:897 EnterCriticalPolicySectionEx: Leaving successfully.
USERENV(2b4.9c) 13:57:24:897 ProcessGPOs:  Machine role is 2.
USERENV(2b4.9c) 13:57:24:897 PingComputer: PingBufferSize set as 2048
USERENV(2b4.9c) 13:57:24:897 PingComputer: Adapter speed 100000000 bps
USERENV(2b4.9c) 13:57:24:897 PingComputer:  First time:  1
USERENV(2b4.9c) 13:57:24:897 PingComputer:  Fast link.  Exiting.
USERENV(2b4.9c) 13:57:24:944 ProcessGPOs:  User name is:  CN=full name,OU=IT Members,OU=--PIT- Users,OU=PIT,DC=domain,DC=com, Domain name is:  domain
USERENV(2b4.9c) 13:57:24:944 ProcessGPOs: Domain controller is:  \\remoteserver.domain.com  Domain DN is domain.com
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for dskquota.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for iedkcs32.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Failed to query DllName value.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for scecli.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for C:\WINDOWS\System32\cscui.dll.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Failed to query DllName value.
USERENV(2b4.9c) 13:57:24:944 ReadGPExtensions: Rsop entry point not found for gptext.dll.
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {35378EAC-683F-11D2-A89A-00C04FBBCFA2}
USERENV(2b4.9c) 13:57:24:944 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {25537BA6-77A8-11D2-9B6C-0000F8080861}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {3610eda5-77ef-11d2-8dc5-00c04fa31a66}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {426031c0-0b47-4852-b0ca-ac3d37bfcb39}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {42B5FAAE-6536-11d2-AE5A-0000F87571E3}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {827D319E-6EAC-11D2-A4EA-00C04F79F83A}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}
USERENV(2b4.9c) 13:57:24:944 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {B587E2B1-4D59-4e7e-AED9-22B9DF11D053}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {C631DF4C-088F-4156-B058-4375F0853CD8}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {c6dc5466-785a-11d2-84d0-00c04fb169f7}
USERENV(2b4.9c) 13:57:24:944 ReadExtStatus: Reading Previous Status for extension {e437bc1c-aa7d-11d2-a382-00c04f991e27}
USERENV(2b4.9c) 13:57:24:944 ProcessGPOs: Calling GetGPOInfo for normal policy mode
USERENV(2b4.9c) 13:57:24:944 GetGPOInfo:  ********************************
USERENV(2b4.9c) 13:57:24:944 GetGPOInfo:  Entering...
USERENV(2b4.9c) 13:57:24:944 GetGPOInfo:  Server connection established.
USERENV(2b4.9c) 13:57:24:975 GetGPOInfo:  Bound successfully.
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Searching com>
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  No GPO(s) for this object.
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Searching com>
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  No GPO(s) for this object.
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Searching
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Found GPO(s):  <[LDAP://cn={32F7008E-F3EF-4660-A534-0785BA7A9406},cn=policies,cn=system,DC=domain,DC=com;1][LDAP://cn={42F4FB54-DCC0-4485-9641-69CBD293376B},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={B962090B-9DE9-4243-B237-068B693FC849},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={E7D3A1FC-F8F9-4821-A775-71CE91B1FC95},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={71DA06F6-51A8-42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com;0][LDAP://cn={01AC7D25-F250-4EE9-9338-416977DC1CC8},cn=policies,cn=system,DC=domain,DC=com;2][LDAP://cn={CB78A651-D956-4150-BA0B-E240B2B25FF6},cn=policies,cn=system,DC=domain,DC=com;2][LDAP://cn={9A457D01-FF0B-4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com;2][LDAP://cn={3058E77A-CCC5-4480-96B4-B1E50A3F8C55},cn=policies,cn=system,DC=domain,DC=com;2][LDAP://cn={0FA521EC-1FB9-4A65-A6B8-9BE3CCFCF179},cn=policies,cn=system,DC=domain,DC=com;2][LDAP://cn={31B2F340-016D-11D2-945F-00C04FB984F9},c
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  The link to GPO LDAP://cn={32F7008E-F3EF-4660-A534-0785BA7A9406},cn=policies,cn=system,DC=domain,DC=com is disabled.  It will be skipped for processing.
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4485-9641-69CBD293376B},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4243-B237-068B693FC849},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4821-A775-71CE91B1FC95},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 42F0-8633-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4EE9-9338-416977DC1CC8},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4150-BA0B-E240B2B25FF6},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4480-96B4-B1E50A3F8C55},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4A65-A6B8-9BE3CCFCF179},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 11D2-945F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:   has the Block From Above attribute set
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Searching
USERENV(2b4.9c) 13:57:24:975 SearchDSObject:  Found GPO(s):  <[LDAP://CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=domain,DC=com;0][LDAP://cn={9A457D01-FF0B-4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com;0]>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:24:975 AddGPO:  GPO  will not be added to the list since the Block flag is set and this GPO is not in enforce mode.
USERENV(2b4.9c) 13:57:24:975 ProcessGPO:  Deferring search for 4801-A048-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:991 SearchDSObject:  Searching =Configuration,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:24:991 SearchDSObject:  No GPO(s) for this object.
USERENV(2b4.9c) 13:57:24:991 EvaluateDeferredGPOs:  Searching for GPOs in cn=policies,cn=system,DC=domain,DC=com
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Searching 38-416977DC1CC8},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  User does not have access to the GPO and so will not be applied.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{01AC7D25-F250-4EE9-9338-416977DC1CC8}>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Sysvol access skipped because GPO is not getting applied.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found common name of:  <{01AC7D25-F250-4EE9-9338-416977DC1CC8}>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found display name of:  cy>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found user version of:  GPC is 41, GPT is 65535
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}]
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Searching 0B-E240B2B25FF6},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  User does not have access to the GPO and so will not be applied.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{CB78A651-D956-4150-BA0B-E240B2B25FF6}>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Sysvol access skipped because GPO is not getting applied.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found common name of:  <{CB78A651-D956-4150-BA0B-E240B2B25FF6}>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found user version of:  GPC is 37, GPT is 65535
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}][{A2E30F80-D7DE-11D2-BBDE-00C04F86AE3B}{FC715823-C5FB-11D1-9EEF-00A0C90347FF}]
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Searching 48-CC6579B8C454},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  User has access to this GPO.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.9c) 13:57:25:007 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:022 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{9A457D01-FF0B-4801-A048-CC6579B8C454}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found common name of:  <{9A457D01-FF0B-4801-A048-CC6579B8C454}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found user version of:  GPC is 0, GPT is 0
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found flags of:  1
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  No client-side extensions for this object.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  GPO password policy is disabled.  It will be skipped.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  GPO password policy doesn't contain any data since the version number is 0.  It will be skipped.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Searching B4-B1E50A3F8C55},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  User has access to this GPO.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{3058E77A-CCC5-4480-96B4-B1E50A3F8C55}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found common name of:  <{3058E77A-CCC5-4480-96B4-B1E50A3F8C55}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found user version of:  GPC is 53, GPT is 53
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}]
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Searching B8-9BE3CCFCF179},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  User does not have access to the GPO and so will not be applied.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{0FA521EC-1FB9-4A65-A6B8-9BE3CCFCF179}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Sysvol access skipped because GPO is not getting applied.
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found common name of:  <{0FA521EC-1FB9-4A65-A6B8-9BE3CCFCF179}>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found display name of:  <975261>
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found user version of:  GPC is 9, GPT is 65535
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found flags of:  3
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}]
USERENV(2b4.9c) 13:57:25:038 ProcessGPO:  GPO 975261 is disabled.  It will be skipped.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Searching 41-69CBD293376B},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  User does not have access to the GPO and so will not be applied.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{42F4FB54-DCC0-4485-9641-69CBD293376B}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Sysvol access skipped because GPO is not getting applied.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found common name of:  <{42F4FB54-DCC0-4485-9641-69CBD293376B}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found user version of:  GPC is 6, GPT is 65535
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found extensions:  [{42B5FAAE-6536-11D2-AE5A-0000F87571E3}{40B66650-4972-11D1-A7CA-0000F87571E3}]
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Searching 37-068B693FC849},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  User has access to this GPO.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{B962090B-9DE9-4243-B237-068B693FC849}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found common name of:  <{B962090B-9DE9-4243-B237-068B693FC849}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found user version of:  GPC is 52, GPT is 52
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}][{A2E30F80-D7DE-11D2-BBDE-00C04F86AE3B}{FC715823-C5FB-11D1-9EEF-00A0C90347FF}]
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Searching 75-71CE91B1FC95},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  User has access to this GPO.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{E7D3A1FC-F8F9-4821-A775-71CE91B1FC95}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found common name of:  <{E7D3A1FC-F8F9-4821-A775-71CE91B1FC95}>
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found user version of:  GPC is 58, GPT is 58
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found flags of:  2
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  Found extensions:  [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}][{A2E30F80-D7DE-11D2-BBDE-00C04F86AE3B}{FC715823-C5FB-11D1-9EEF-00A0C90347FF}]
USERENV(2b4.9c) 13:57:25:053 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Searching 33-67C4ACF9F99F},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  User does not have access to the GPO and so will not be applied.
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found file system path of:  <\\domain.com\SysVol\domain.com\Policies\{71DA06F6-51A8-42F0-8633-67C4ACF9F99F}>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Sysvol access skipped because GPO is not getting applied.
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found common name of:  <{71DA06F6-51A8-42F0-8633-67C4ACF9F99F}>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found user version of:  GPC is 86, GPT is 65535
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found flags of:  0
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found extensions:  [{3060E8D0-7020-11D2-842D-00C04FA372D4}{3060E8CE-7020-11D2-842D-00C04FA372D4}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}][{A2E30F80-D7DE-11D2-BBDE-00C04F86AE3B}{FC715823-C5FB-11D1-9EEF-00A0C90347FF}]
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Searching 5F-00C04FB984F9},cn=policies,cn=system,DC=domain,DC=com>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  User has access to this GPO.
USERENV(2b4.9c) 13:57:25:069 FilterCheck:  Found WMI Filter id of:  < >
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  GPO passes the filter check.
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found functionality version of:  2
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found file system path of:  <\\domain.com\sysvol\domain.com\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found common name of:  <{31B2F340-016D-11D2-945F-00C04FB984F9}>
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found display name of:  
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found user version of:  GPC is 3, GPT is 3
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found flags of:  0
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  Found extensions:  [{3060E8D0-7020-11D2-842D-00C04FA372D4}{3060E8CE-7020-11D2-842D-00C04FA372D4}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{0F6B957E-509E-11D1-A7CC-0000F87571E3}]
USERENV(2b4.9c) 13:57:25:069 ProcessGPO:  ==============================
USERENV(2b4.9c) 13:57:25:069 GetGPOInfo:  GPO Local Group Policy doesn't contain any data since the version number is 0.  It will be skipped.
USERENV(2b4.9c) 13:57:25:069 GetGPOInfo:  Leaving with 1
USERENV(2b4.9c) 13:57:25:069 GetGPOInfo:  ********************************
USERENV(2b4.9c) 13:57:25:069 ProcessGPOs: Logging Data for Target .
USERENV(2b4.9c) 13:57:25:069 GetWbemServices: CoCreateInstance succeeded
USERENV(2b4.9c) 13:57:25:147 ConnectToNameSpace: ConnectServer returned 0x0
USERENV(2b4.9c) 13:57:25:209 CSessionLogger::Log: restoring old security grps
USERENV(2b4.9c) 13:57:26:566 LogRsopData: Successfully logged Rsop data
USERENV(2b4.9c) 13:57:26:566 ProcessGPOs: Logged Rsop Data successfully.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: OpenThreadToken failed with error 1008, assuming thread is not impersonating
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension Registry
USERENV(2b4.9c) 13:57:26:629 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CheckGPOs: No GPO changes and no security group membership change and extension Registry has NoGPOChanges set.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension Wireless
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CheckGPOs: No GPO changes but couldn't read extension Wireless's status or policy time.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Extension Wireless skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension Folder Redirection
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CheckGPOs: No GPO changes but couldn't read extension Folder Redirection's status or policy time.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Extension Folder Redirection skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension Microsoft Disk Quota
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CheckGPOs: No GPO changes but couldn't read extension Microsoft Disk Quota's status or policy time.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Extension Microsoft Disk Quota skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension QoS Packet Scheduler
USERENV(2b4.9c) 13:57:26:629 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:629 CheckGPOs: No GPO changes but couldn't read extension QoS Packet Scheduler's status or policy time.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Extension QoS Packet Scheduler skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:629 ProcessGPOs: Processing extension Scripts
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension Scripts's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension Scripts skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension Internet Explorer Zonemapping
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension Internet Explorer Zonemapping's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension Internet Explorer Zonemapping skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension Security
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension Security's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension Security skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension Internet Explorer Branding
USERENV(2b4.9c) 13:57:26:644 ReadStatus: Read Extension's Previous status successfully.
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes and no security group membership change and extension Internet Explorer Branding has NoGPOChanges set.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension EFS recovery
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension EFS recovery's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension EFS recovery skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension 802.3 Group Policy
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension 802.3 Group Policy's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension 802.3 Group Policy skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension Microsoft Offline Files
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension Microsoft Offline Files's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension Microsoft Offline Files skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension Software Installation
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension Software Installation's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension Software Installation skipped because both deleted and changed GPO lists are empty.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: -----------------------
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Processing extension IP Security
USERENV(2b4.9c) 13:57:26:644 CompareGPOLists:  The lists are the same.
USERENV(2b4.9c) 13:57:26:644 CheckGPOs: No GPO changes but couldn't read extension IP Security's status or policy time.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Extension IP Security skipped with flags 0x6.
USERENV(2b4.9c) 13:57:26:644 SetFgRefreshInfo: Previous User Fg policy Synchronous, Reason: NonCachedCredentials.
USERENV(2b4.9c) 13:57:26:644 SetFgRefreshInfo: Next User Fg policy Asynchronous, Reason: NoNeedForSync.
USERENV(2b4.9c) 13:57:26:644 LeaveCriticalPolicySection: Critical section 0x854 has been released.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: User Group Policy has been applied.
USERENV(2b4.9c) 13:57:26:644 ProcessGPOs: Leaving with 1.
USERENV(2b4.9c) 13:57:26:644 ApplyGroupPolicy: Leaving successfully.
USERENV(2b4.cac) 13:57:26:644 GPOThread:  Next refresh will happen in 117 minutes
USERENV(2b4.cb8) 13:57:26:644 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2b4.55c) 13:57:26:816 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(cd8.cdc) 13:57:26:910 LibMain: Process Name:  C:\WINDOWS\system32\userinit.exe
USERENV(2b4.2b8) 13:57:27:346 IsSyncForegroundPolicyRefresh: Asynchronous, Reason: NoNeedForSync
USERENV(d48.d4c) 13:57:27:565 LibMain: Process Name:  C:\WINDOWS\system32\userinit.exe
USERENV(d48.d4c) 13:57:27:596 CheckXForestLogon: checking x-forest logon, user handle = 128
USERENV(d48.d4c) 13:57:27:596 CheckXForestLogon: not XForest logon.
USERENV(d48.d4c) 13:57:28:267 GetProfileType:  Profile already loaded.
USERENV(d48.d4c) 13:57:28:267 GetProfileType: ProfileFlags is 0
USERENV(d7c.d80) 13:57:28:594 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(d84.d88) 13:57:28:719 LibMain: Process Name:  C:\WINDOWS\system32\net1.exe
USERENV(d9c.da0) 13:57:28:813 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(da4.da8) 13:57:28:875 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(db4.db8) 13:57:28:938 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(dcc.dd0) 13:57:29:016 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(de4.de8) 13:57:29:094 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(df0.df4) 13:57:29:187 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(df8.dfc) 13:57:29:250 LibMain: Process Name:  C:\WINDOWS\system32\net1.exe
USERENV(e08.e0c) 13:57:29:296 LibMain: Process Name:  C:\WINDOWS\system32\net.exe
USERENV(2ec.30c) 13:57:29:437 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:437 GetUserNameAndDomain Failed to impersonate user
USERENV(2ec.30c) 13:57:29:437 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:452 GetUserDNSDomainName: Failed to impersonate user
USERENV(2ec.30c) 13:57:29:452 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2ec.30c) 13:57:29:562 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:562 GetUserNameAndDomain Failed to impersonate user
USERENV(2ec.30c) 13:57:29:577 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:577 GetUserDNSDomainName: Failed to impersonate user
USERENV(2ec.30c) 13:57:29:577 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(2ec.30c) 13:57:29:608 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:608 GetUserNameAndDomain Failed to impersonate user
USERENV(2ec.30c) 13:57:29:608 ImpersonateUser: Failed to impersonate user with 5.
USERENV(2ec.30c) 13:57:29:608 GetUserDNSDomainName: Failed to impersonate user
USERENV(2ec.30c) 13:57:29:608 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(e14.e18) 13:57:30:965 LibMain: Process Name:  C:\WINDOWS\Explorer.EXE
USERENV(e14.e34) 13:57:31:231 GetProfileType:  Profile already loaded.
USERENV(e14.e34) 13:57:31:231 GetProfileType: ProfileFlags is 0
USERENV(e14.e34) 13:57:31:231 GetProfileType:  Profile already loaded.
USERENV(e14.e34) 13:57:31:231 GetProfileType: ProfileFlags is 0
USERENV(e14.e3c) 13:57:31:231 GetProfileType:  Profile already loaded.
USERENV(e14.e3c) 13:57:31:231 GetProfileType: ProfileFlags is 0
USERENV(454.57c) 13:57:34:850 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(454.bec) 13:57:34:896 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(440.444) 13:57:40:075 LibMain: Process Name:  C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
USERENV(440.444) 13:57:40:075 ImpersonateUser: Failed to impersonate user with 5.
USERENV(440.444) 13:57:40:075 GetUserNameAndDomain Failed to impersonate user
USERENV(440.444) 13:57:40:075 ImpersonateUser: Failed to impersonate user with 5.
USERENV(440.444) 13:57:40:075 GetUserDNSDomainName: Failed to impersonate user
USERENV(440.444) 13:57:40:075 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(440.444) 13:57:40:216 ImpersonateUser: Failed to impersonate user with 5.
USERENV(440.444) 13:57:40:216 GetUserNameAndDomain Failed to impersonate user
USERENV(440.444) 13:57:40:216 ImpersonateUser: Failed to impersonate user with 5.
USERENV(440.444) 13:57:40:216 GetUserDNSDomainName: Failed to impersonate user
USERENV(440.444) 13:57:40:216 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(430.434) 13:57:40:575 LibMain: Process Name:  C:\WINDOWS\system32\ctfmon.exe
USERENV(430.434) 13:57:40:575 GetProfileType:  Profile already loaded.
USERENV(430.434) 13:57:40:590 GetProfileType: ProfileFlags is 0
USERENV(e14.e18) 13:57:45:114 ImpersonateUser: Failed to impersonate user with 5.
USERENV(e14.e18) 13:57:45:114 GetUserNameAndDomain Failed to impersonate user
USERENV(e14.e18) 13:57:45:130 ImpersonateUser: Failed to impersonate user with 5.
USERENV(e14.e18) 13:57:45:130 GetUserDNSDomainName: Failed to impersonate user
USERENV(e14.e18) 13:57:45:130 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(e14.e18) 13:57:45:130 ImpersonateUser: Failed to impersonate user with 5.
USERENV(e14.e18) 13:57:45:130 GetUserNameAndDomain Failed to impersonate user
USERENV(e14.e18) 13:57:45:130 ImpersonateUser: Failed to impersonate user with 5.
USERENV(e14.e18) 13:57:45:130 GetUserDNSDomainName: Failed to impersonate user
USERENV(e14.e18) 13:57:45:130 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(8d4.8d8) 13:57:48:483 LibMain: Process Name:  C:\WINDOWS\system32\imapi.exe
USERENV(a20.a5c) 13:57:55:955 LibMain: Process Name:  C:\WINDOWS\system32\NOTEPAD.EXE
USERENV(2b4.cc8) 13:57:56:595 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(a60.a64) 13:57:56:611 LibMain: Process Name:  C:\WINDOWS\system32\userinit.exe
USERENV(814.83c) 13:58:57:229 LibMain: Process Name:  C:\WINDOWS\system32\Rundll32.exe
USERENV(930.924) 13:59:00:817 LibMain: Process Name:  C:\WINDOWS\system32\rundll32.exe
USERENV(6e8.670) 13:59:01:581 LibMain: Process Name:  C:\WINDOWS\system32\wbem\wmiprvse.exe
USERENV(9b0.9b4) 13:59:05:075 LibMain: Process Name:  C:\WINDOWS\system32\rundll32.exe
USERENV(9b0.9b4) 13:59:05:341 GetProfileType:  Profile already loaded.
USERENV(9b0.9b4) 13:59:05:341 GetProfileType: ProfileFlags is 0
USERENV(9b0.9f0) 13:59:06:417 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:417 GetUserNameAndDomain Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:417 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:417 GetUserDNSDomainName: Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:417 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(9b0.9f0) 13:59:06:417 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:417 GetUserNameAndDomain Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:417 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:417 GetUserDNSDomainName: Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:417 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(9b0.9f0) 13:59:06:433 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:433 GetUserNameAndDomain Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:433 ImpersonateUser: Failed to impersonate user with 5.
USERENV(9b0.9f0) 13:59:06:433 GetUserDNSDomainName: Failed to impersonate user
USERENV(9b0.9f0) 13:59:06:433 ProcessAutoexec: Cannot process autoexec.bat.
USERENV(ba4.bd0) 13:59:20:191 LibMain: Process Name:  C:\WINDOWS\system32\NOTEPAD.EXE

Answer : Slow Logon

Well.. i have a simple suggestion though.. Restart the machine and see if the login is fine in safe mode with networking.
   Also you may want to do a system restore to the time it was fine. Eventhough its a workaround it can get a applause a number of times.