The hp pavilion dv6529em was fully functional and charging. Notebook was moved and the charger plug was unintentionally pulled out. Notebook was switched off, charger switched off and then reconnected to notebook. Now notebook recycles during POST, the back row of lights come on and the fan starts spinning... then after seconds it shuts down and then attempts to start again. There are no beep tones. The screen remains black, bios prompts or error messages do not appear. No peripherals are attached.
Press the escape key to get into the boot menu, Notebook lights remain on, DVD/CD door opens, but screen remains blank. So notebook may have unknowingly entered the boot menu. External monitor port connected, but remote screen has no image to display.
I am guessing that POST is unhappy about something. I have a working WinXP workstation complete with an external hard disk enclosure. So can extract the Win7 HDD from the HP Laptop and see it as data files. Presume that failure to boot is recorded in the Win7 Eventlog. The WinXP OS Event Viewer has EVT/WinXP style event log so may not be able to process the EVTX/Win7 style event log messages.
Are there any forensic scripts designed to make sense of EVT logs for investigations of a different OS?
Is evtx_view a suitable forensics tool to be used on this occasion?
Thank you in anticipation. Kind regards.