From the application log:
Event 8193 VSS Unexpected error calling routine RegOpenKeyExW(-2147483646,SYSTEM\CurrentControlSet\Services\VSS\Diag,...). hr = 0x80070005, Access is denied.
MSDTC 4427 Failed to initialize the needed name objects. Error Specifics: hr = 0x800706d3, com\complus\dtc\dtc\msdtcprx\src\dtcinit.cpp:575, CmdLine: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}, Pid: 2556
Complus 4691 (Related to MSDTC) The run-time environment was unable to initialize for transactions required to support transactional components. Make sure that MS-DTC is running. (DtcGetTransactionManagerEx(): hr = 0x8004d027)
Application Error 1000
Faulting application name: lsass.exe, version: 10.0.14393.1770, time stamp: 0x59bf2fb2
Faulting module name: msvcrt.dll, version: 7.0.14393.0, time stamp: 0x57899b47
Exception code: 0xc0000005
Fault offset: 0x0000000000073f5a
Faulting process id: 0x210
Faulting application start time: 0x01d7b4979fc62a94
Faulting application path: C:\WINDOWS\system32\lsass.exe
Faulting module path: C:\WINDOWS\System32\msvcrt.dll
Report Id: b4ad9eaa-39b3-4d9b-982a-439aa833fea8
Faulting package full name:
Faulting package-relative application ID:
Event 1015 Wininit (related to lsass.exe) A critical system process, C:\WINDOWS\system32\lsass.exe, failed with status code c0000005. The machine must now be restarted. (it actually restarted itself)
From the System Log
Event 10119 WinRM
The WinRM service is unable to start because of a failure during initialization.
Additional Data
The error code is 1115.
Event 5000 LsaSrv
The security package NTLM generated an exception. The exception information is the data.
Event 7023 Service Control Manager
The Spooler service terminated with the following error:
%%2147944147
Event 7001 Service Control Manager
The Dfs service depends on the RemoteRegistry service which failed to start because of the following error:
The operation completed successfully.
Event 15016 HttpEvent
Unable to initialize the security package WDigest for server side authentication. The data field contains the error number.
Event 15016 HttpEvent
Unable to initialize the security package NTLM for server side authentication. The data field contains the error number.
Event 15016 HttpEvent
Unable to initialize the security package Negotiate for server side authentication. The data field contains the error number.
Event 15016 HttpEvent
Unable to initialize the security package Kerberos for server side authentication. The data field contains the error number.
Event 15016 HttpEvent
Unable to initialize the security package Basic for server side authentication. The data field contains the error number.
Event 7023 Service Control Manager
The IsmServ service terminated with the following error:
A directory service error has occurred.
Event 7023 Service Control Manager
The Windows Defender Service service terminated with the following error:
%%2147550931
Event 1006 Microsoft-Windows-DHCP-Server
The DHCP service failed to start as a RPC server. The following error occurred :
The authentication service is unknown.
Event 1008 Microsoft-Windows-DHCP-Server
The DHCP service is shutting down due to the following error:
The authentication service is unknown.
Event 7023 Service Control Manager
The DHCP Server service terminated with the following error:
The authentication service is unknown.
Event 1052 GroupPolicy (Microsoft-Windows-Group-Policy)
The processing of Group Policy failed. Windows could not determine the role of this computer. Role information (Workgroup, Member Server, or Domain Controller) is required to process Group Policy.