Eventlog

Event[0]:
Log Name: System

Source: Microsoft-Windows-Kernel-General
Date: 2016-09-16T12:29:59.818
Event ID: 12
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
User Name: NT AUTHORITY\SYSTEM
Computer: COMPOOT
Description:
The operating system started at system time ?2016?-?09?-?16T16:29:59.489481800Z.
Event[1]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:31:39.172
Event ID: 6009
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Microsoft (R) Windows (R) 10.00. 14393 Multiprocessor Free.
Event[2]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:31:39.172
Event ID: 6005
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Event log service was started.
Event[3]:
Log Name: System
Source: Microsoft-Windows-Kernel-Boot
Date: 2016-09-16T12:29:59.818
Event ID: 153
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The Virtualization Based Security (policies: 0) is disabled with status STATUS_S
UCCESS.
Event[4]:
Log Name: System
Date: 2016-09-16T12:29:59.819
Event ID: 27
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The boot type was 0x0.
Event[5]:
Log Name: System
Date: 2016-09-16T12:29:59.819
Event ID: 25
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The boot menu policy was 0x1.
Event[6]:
Log Name: System
Date: 2016-09-16T12:29:59.819
Event ID: 26
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
A one-time boot sequence was used during this boot.
Event[7]:
Log Name: System
Date: 2016-09-16T12:29:59.819
Event ID: 32
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The bootmgr spent 0 ms waiting for user input.
Event[8]:
Log Name: System
Date: 2016-09-16T12:29:59.819
Event ID: 30
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The firmware reported boot metrics.
Event[9]:
Log Name: System
Source: Microsoft-Windows-FilterManager
Date: 2016-09-16T12:30:00.727
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'FileInfo' (10.0, ?2016?-?07?-?15T22:26:05.000000000Z) has su
ccessfully loaded and registered with Filter Manager.
Event[10]:
Log Name: System
Date: 2016-09-16T12:30:00.727
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'Wof' (10.0, ?2016?-?07?-?15T22:27:07.000000000Z) has success
fully loaded and registered with Filter Manager.
Event[11]:
Log Name: System
Source: Microsoft-Windows-Ntfs
Date: 2016-09-16T12:30:03.462
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume C: (\Device\HarddiskVolume4) is healthy. No action is needed.
Event[12]:
Log Name: System
Date: 2016-09-16T12:30:31.837
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'FileCrypt' (10.0, ?2016?-?07?-?15T22:22:39.000000000Z) has s
uccessfully loaded and registered with Filter Manager.
Event[13]:
Log Name: System
Date: 2016-09-16T12:30:32.645
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'npsvctrig' (10.0, ?2016?-?07?-?15T22:28:33.000000000Z) has s
Event[14]:
Log Name: System
Source: Microsoft-Windows-Kernel-Power
Date: 2016-09-16T12:30:32.869
Event ID: 172
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Connectivity state in standby: Disconnected, Reason: NIC compliance
Event[15]:
Log Name: System
Source: Microsoft-Windows-Kernel-Processor-Power
Date: 2016-09-16T12:30:34.109
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
Collaborative processor power controls on processor 0 in group 0 are disabled du
e to a firmware problem. Check with the computer manufacturer for updated firmwa
re.
Event[16]:
Log Name: System
Date: 2016-09-16T12:30:34.109
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Processor 0 in group 0 exposes the following power management capabilities:
Idle state type: ACPI Idle (C) States (2 state(s))
Performance state type: ACPI Performance (P) / Throttle (T) States
Nominal Frequency (MHz): 2601
Maximum performance percentage: 100
Minimum performance percentage: 30
Minimum throttle percentage: 30
Event[17]:
Log Name: System
Date: 2016-09-16T12:30:34.280
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
re.
Event[18]:
Log Name: System
Date: 2016-09-16T12:30:34.280
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

Event[19]:
Log Name: System
Date: 2016-09-16T12:30:34.452
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
re.
Event[20]:
Log Name: System
Date: 2016-09-16T12:30:34.452
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[21]:
Log Name: System
Date: 2016-09-16T12:30:34.624
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
re.
Event[22]:
Log Name: System
Date: 2016-09-16T12:30:34.624
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[23]:
Log Name: System
Date: 2016-09-16T12:30:34.796
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
re.
Event[24]:
Log Name: System
Date: 2016-09-16T12:30:34.796
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

Event[25]:
Log Name: System
Date: 2016-09-16T12:30:34.968
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
re.
Event[26]:
Log Name: System
Date: 2016-09-16T12:30:34.968
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[27]:
Log Name: System
Date: 2016-09-16T12:30:35.140
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
re.
Event[28]:
Log Name: System
Date: 2016-09-16T12:30:35.140
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[29]:
Log Name: System
Date: 2016-09-16T12:30:35.313
Event ID: 54
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
re.
Event[30]:
Log Name: System
Date: 2016-09-16T12:30:35.313
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

Event[31]:
Log Name: System
Date: 2016-09-16T12:30:35.638
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume \\?\Volume{1dbd31d6-1284-4d5b-9e7d-5629f0f069cd} (\Device\HarddiskVolume5
) is healthy. No action is needed.
Event[32]:
Log Name: System
Date: 2016-09-16T12:30:35.961
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume \\?\Volume{f0298333-c681-4ff4-938d-46058db6452a} (\Device\HarddiskVolume2
Event[33]:
Log Name: System
Date: 2016-09-16T12:30:36.787
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \SystemRoot\System32\config\DRIVERS was reorganized with a starting size of
5632000 bytes and an ending size of 5681152 bytes.
Event[34]:
Log Name: System
Date: 2016-09-16T12:30:38.824
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \SystemRoot\System32\Config\SOFTWARE was reorganized with a starting size o
f 59383808 bytes and an ending size of 59113472 bytes.
Event[35]:
Log Name: System
Date: 2016-09-16T12:30:38.838
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \Device\HarddiskVolume1\EFI\Microsoft\Boot\BCD was cl
eared updating 187 keys and creating 11 modified pages.
Event[36]:
Log Name: System
Date: 2016-09-16T12:30:39.611
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \SystemRoot\System32\Config\DEFAULT was cleared updat
ing 5 keys and creating 2 modified pages.
Event[37]:
Log Name: System
Date: 2016-09-16T12:30:44.514
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\Users\Default\NTUSER.DAT was cleared updating
1 keys and creating 1 modified pages.

Event[38]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:31:01.133
Event ID: 263
Task: N/A
Level: Warning
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[39]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:31:01.133
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[40]:
Log Name: System
Date: 2016-09-16T12:31:02.547
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \SystemRoot\System32\Config\SECURITY was cleared upda
ting 1 keys and creating 1 modified pages.
Event[41]:
Log Name: System
Source: Microsoft-Windows-Directory-Services-SAM
Date: 2016-09-16T12:31:04.905
Event ID: 16962
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Remote calls to the SAM database are being restricted using the default security
descriptor: O:SYG:SYD:(A;;RC;;;BA).
For more information please see http://go.microsoft.com/fwlink/?LinkId=787651.
Event[42]:
Log Name: System
Date: 2016-09-16T12:31:04.936
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \SystemRoot\System32\Config\SAM was cleared updating
Event[43]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:31:14.701
Event ID: 263
Task: N/A
Level: Warning
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[44]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:31:14.701
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[45]:
Log Name: System
Source: Service Control Manager
Date: 2016-09-16T12:31:18.012
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the WlanSvc service was changed from demand start to auto star
t.
Event[46]:
Log Name: System
Source: Microsoft-Windows-WLAN-AutoConfig
Date: 2016-09-16T12:31:23.080
Event ID: 4000
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
WLAN AutoConfig service has successfully started.
Event[47]:
Log Name: System
Source: Microsoft-Windows-SetupPlatform
Date: 2016-09-16T12:31:32.914
Event ID: 2005
Task: Install Windows Task
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
New Setup information
Event[48]:
Log Name: System
Date: 2016-09-16T12:31:38.312
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \SystemRoot\System32\Config\BBI was cleared updating
Event[49]:
Log Name: System
Date: 2016-09-16T12:31:38.770
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'luafv' (10.0, ?2016?-?07?-?15T22:21:48.000000000Z) has succe
ssfully loaded and registered with Filter Manager.
Event[50]:
Log Name: System
Date: 2016-09-16T12:31:38.810
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'wcifs' (10.0, ?2016?-?07?-?15T22:27:16.000000000Z) has succe
Event[51]:
Log Name: System
Date: 2016-09-16T12:31:38.868
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'storqosflt' (10.0, ?2016?-?07?-?15T22:26:43.000000000Z) has
successfully loaded and registered with Filter Manager.
Event[52]:
Log Name: System
Date: 2016-09-16T12:31:38.895
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'wcnfs' (10.0, ?2016?-?07?-?15T22:28:27.000000000Z) has succe
Event[53]:
Log Name: System
Source: Microsoft-Windows-Dhcp-Client
Date: 2016-09-16T12:31:41.856
Event ID: 50036
Task: Service State Event
Level: Information
Opcode: ServiceStart
Keyword: N/A
User: S-1-5-19
User Name: NT AUTHORITY\LOCAL SERVICE
Computer: COMPOOT
Description:
DHCPv4 client service is started
Event[54]:
Log Name: System
Source: Microsoft-Windows-DHCPv6-Client
Date: 2016-09-16T12:31:42.067
Event ID: 51046
Level: Information
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
Event[55]:
Log Name: System
Date: 2016-09-16T12:31:48.663
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\WINDOWS\AppCompat\Programs\Amcache.hve was cle
ared updating 0 keys and creating 0 modified pages.
Event[56]:
Log Name: System
Date: 2016-09-16T12:31:50.347
Event ID: 7026
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The following boot-start or system-start driver(s) did not load:
dam
Event[57]:
Log Name: System
Date: 2016-09-16T12:31:50.753
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Touch Keyboard and Handwriting Panel Service service was c
hanged from demand start to auto start.
Event[58]:
Log Name: System
Date: 2016-09-16T12:31:55.503
Event ID: 7023
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The IP Helper service terminated with the following error:
The service cannot be started, either because it is disabled or because it has n
o enabled devices associated with it.
Event[59]:
Log Name: System
Date: 2016-09-16T12:31:59.597
Event ID: 7023
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Network List Service service terminated with the following error:
The device is not ready.
Event[60]:
Log Name: System
Source: Microsoft-Windows-UserPnp
Date: 2016-09-16T12:32:47.835
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service HidUsb for Device Ins
tance ID USB\VID_046D&PID_C52B&MI_00\6&29F85984&0&0000 with the following status
: 0.
Event[61]:
Log Name: System
Date: 2016-09-16T12:32:49.857
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
hanged from auto start to demand start.
Event[62]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:32:50.209
Event ID: 263
Task: N/A
Level: Warning
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[63]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:32:50.209
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[64]:
Log Name: System
Date: 2016-09-16T12:32:50.209
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
hanged from demand start to auto start.
Event[65]:
Log Name: System
Date: 2016-09-16T12:32:50.312
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver unifhid.inf_amd64_218f
e6b9c98d3029\unifhid.inf for Device Instance ID USB\VID_046D&PID_C52B&MI_00\6&29
F85984&0&0000 with the following status: 0x0.
Event[66]:
Log Name: System
Date: 2016-09-16T12:32:51.283
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver haswell.inf_amd64_74af
929761869e31\haswell.inf for Device Instance ID PCI\VEN_8086&DEV_0C01&SUBSYS_171
D1043&REV_06\3&11583659&1&08 with the following status: 0x0.
Event[67]:
Log Name: System
Date: 2016-09-16T12:32:52.025
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver lxptcore.inf_amd64_e89
7149e4f15654d\lxptcore.inf for Device Instance ID PCI\VEN_8086&DEV_8C14&SUBSYS_1
71D1043&REV_D5\3&11583659&1&E2 with the following status: 0x0.
Event[68]:
Log Name: System

Date: 2016-09-16T12:32:52.444
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
A service was installed in the system.
Service
Service
Service
Service
Service
Name: Intel(R) Extreme Tuning Utility Device Driver

File Name: \SystemRoot\System32\drivers\XtuAcpiDriver.sys
Type: kernel mode driver
Start Type: demand start
Account:
Event[69]:
Log Name: System
Date: 2016-09-16T12:32:52.956
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver xtuacpidriver.inf_amd6
4_07ad877bafda7e89\xtuacpidriver.inf for Device Instance ID ACPI\INT3394\2&DABA3
FF&3 with the following status: 0x0.
Event[70]:
Log Name: System
Date: 2016-09-16T12:32:52.975
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Kernel Debug Network Miniport (NDIS 6.20)

File Name: \SystemRoot\System32\drivers\kdnic.sys
Account:
Event[71]:
Log Name: System
Date: 2016-09-16T12:32:53.402
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver kdnic.inf_amd64_e17030
05cc16edf6\kdnic.inf for Device Instance ID ROOT\KDNIC\0000 with the following s
tatus: 0x0.
Event[72]:
Log Name: System
Date: 2016-09-16T12:32:53.725
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Realtek RT640 NT Driver

File Name: \SystemRoot\System32\drivers\rt640x64.sys
Account:
Event[73]:
Log Name: System
Date: 2016-09-16T12:32:54.251
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver rt640x64.inf_amd64_3aa
609f63773352e\rt640x64.inf for Device Instance ID PCI\VEN_10EC&DEV_8168&SUBSYS_2
00F1043&REV_10\4&176ADEFE&0&00E3 with the following status: 0x0.
Event[74]:
Log Name: System
Date: 2016-09-16T12:32:56.662
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Intel(R) Wireless Bluetooth(R)

File Name: \SystemRoot\system32\DRIVERS\ibtusb.sys
Account:
Event[75]:
Log Name: System
Date: 2016-09-16T12:32:56.665
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service ibtusb for Device Ins
tance ID USB\VID_8087&PID_0A2A\5&3414ED49&0&5 with the following status: 0.
Event[76]:
Log Name: System
Date: 2016-09-16T12:32:56.662
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Intel Bluetooth Service

File Name: %SystemRoot%\system32\ibtsiva
Type: user mode service
Start Type: auto start
Account: LocalSystem
Event[77]:
Log Name: System
Date: 2016-09-16T12:32:56.682
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service ibtsiva for Device In
stance ID USB\VID_8087&PID_0A2A\5&3414ED49&0&5 with the following status: 0.
Event[78]:
Log Name: System
Date: 2016-09-16T12:32:56.678
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Radio USB Driver

File Name: \SystemRoot\system32\DRIVERS\BTHUSB.sys
Account:
Event[79]:
Log Name: System
Date: 2016-09-16T12:32:56.696
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service BTHUSB for Device Ins
tance ID USB\VID_8087&PID_0A2A\5&3414ED49&0&5 with the following status: 0.
Event[80]:
Log Name: System
Date: 2016-09-16T12:32:56.694
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Bluetooth Port Driver
Service
Service
Service
Service
File Name: \SystemRoot\system32\DRIVERS\BTHport.sys

Account:
Event[81]:
Log Name: System
Date: 2016-09-16T12:32:56.845
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service BTHPORT for Device In
stance ID USB\VID_8087&PID_0A2A\5&3414ED49&0&5 with the following status: 0.
Event[82]:
Log Name: System
Date: 2016-09-16T12:32:57.679
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver ibtusb_stp.inf_amd64_b
ce3855efadb96f4\ibtusb_stp.inf for Device Instance ID USB\VID_8087&PID_0A2A\5&34
14ED49&0&5 with the following status: 0x0.
Event[83]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:57.679
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Windows cannot store Bluetooth authentication codes (link keys) on the local ada
pter. Bluetooth keyboards might not work in the system BIOS during startup.
Event[84]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A Bluetooth policy has changed. Policy Connectivity\AllowBluetooth has value of
: 2
Event[85]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A Bluetooth policy has changed. Policy Bluetooth\AllowDiscoverableMode has valu
e of: 1
Event[86]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A Bluetooth policy has changed. Policy Bluetooth\AllowAdvertising has value of:
1
Event[87]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A Bluetooth policy has changed. Policy Bluetooth\ServicesAllowedList has value
of: *
Event[88]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 37
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth radio has accepted discoverability due to policy Bluetooth\AllowDiscov
erableMode.
Event[89]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 36
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth radio has accepted advertising due to policy Bluetooth\AllowAdvertisin
g.
Event[90]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:32:58.851
Event ID: 35
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth radio enablement has been accepted due to policy Connectivity\AllowBlu
etooth.
Event[91]:
Log Name: System
Date: 2016-09-16T12:33:23.414
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Service for Realtek HD Audio (WDM)

File Name: \SystemRoot\system32\drivers\RTKVHD64.sys
Account:
Event[92]:
Log Name: System
Date: 2016-09-16T12:33:23.419
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service IntcAzAudAddService f
or Device Instance ID HDAUDIO\FUNC_01&VEN_10EC&DEV_0668&SUBSYS_1043171D&REV_1000
\4&22257450&0&0001 with the following status: 0.
Event[93]:
Log Name: System
Date: 2016-09-16T12:33:27.741
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver hdxama3.inf_amd64_2f6e
47d4827df5bd\hdxama3.inf for Device Instance ID HDAUDIO\FUNC_01&VEN_10EC&DEV_066
8&SUBSYS_1043171D&REV_1000\4&22257450&0&0001 with the following status: 0x0.
Event[94]:
Log Name: System
Date: 2016-09-16T12:33:27.820
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Name: UMDF Reflector service for SensorsSimulatorDriver

File Name: \SystemRoot\System32\drivers\WUDFRd.sys
Service Account:
Event[95]:
Log Name: System
Source: Microsoft-Windows-DriverFrameworks-UserMode
Date: 2016-09-16T12:33:28.341
Event ID: 10114
Task: Startup of the UMDF reflector
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
WUDFPf (part of UMDF) did not load yet. After it does, Windows will start the de
vice again.
Event[96]:
Log Name: System
Source: Microsoft-Windows-Kernel-PnP
Date: 2016-09-16T12:33:28.341
Event ID: 219
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The driver \Driver\WudfRd failed to load for the device ROOT\WPD\0000.
Event[97]:
Log Name: System
Date: 2016-09-16T12:33:28.345
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver sensorssimulatordriver
.inf_amd64_6d5e6cd20d5b7cdd\sensorssimulatordriver.inf for Device Instance ID RO
OT\WPD\0000 with the following status: 0x0.
Event[98]:
Log Name: System
Date: 2016-09-16T12:33:40.914
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18

Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)

File Name: \SystemRoot\system32\drivers\nvvad64v.sys
Account:
Event[99]:
Log Name: System
Date: 2016-09-16T12:33:40.915
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service nvvad_WaveExtensible
for Device Instance ID ROOT\UNNAMED_DEVICE\0000 with the following status: 0.
Event[100]:
Log Name: System
Date: 2016-09-16T12:33:41.265
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver nvvad.inf_amd64_8b7715
4bd754555a\nvvad.inf for Device Instance ID ROOT\UNNAMED_DEVICE\0000 with the fo
llowing status: 0x0.
Event[101]:
Log Name: System
Date: 2016-09-16T12:33:41.304
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: ASUS Wireless Radio Control
Service
Service
Service
Service
File Name: \SystemRoot\System32\drivers\AsHIDSwitch64.sys

Account:
Event[102]:
Log Name: System
Date: 2016-09-16T12:33:41.597
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver atk4001.inf_amd64_f257
0604c8d2d6f4\atk4001.inf for Device Instance ID ACPI\ATK4002\2&DABA3FF&3 with th
e following status: 0x0.
Event[103]:
Log Name: System
Date: 2016-09-16T12:33:41.672
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: IntelHSWPcc
File Name: System32\drivers\IntelPcc.sys
Start Type: boot start
Account:
Event[104]:
Log Name: System
Date: 2016-09-16T12:33:41.793
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver intelpcc.inf_amd64_765
34de8a7cfa941\intelpcc.inf for Device Instance ID ACPI\INT340F\2&DABA3FF&3 with
the following status: 0x0.
Event[105]:
Log Name: System
Date: 2016-09-16T12:33:42.530
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Intel(R) Management Engine Interface

File Name: \SystemRoot\system32\DRIVERS\TeeDriverx64.sys
Account:
Event[106]:
Log Name: System
Date: 2016-09-16T12:33:42.535
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MEIx64 for Device Ins
tance ID PCI\VEN_8086&DEV_8C3A&SUBSYS_171D1043&REV_04\3&11583659&1&B0 with the f
ollowing status: 0.
Event[107]:
Log Name: System
Source: MEIx64
Date: 2016-09-16T12:33:42.702
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Intel(R) Management Engine Interface driver has started successfully.
Event[108]:
Log Name: System
Date: 2016-09-16T12:33:43.118
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver heci.inf_amd64_d594f23
e57a883b4\heci.inf for Device Instance ID PCI\VEN_8086&DEV_8C3A&SUBSYS_171D1043&
REV_04\3&11583659&1&B0 with the following status: 0x0.
Event[109]:
Log Name: System
Date: 2016-09-16T12:33:43.808
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[110]:
Log Name: System
Date: 2016-09-16T12:33:44.087
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
7149e4f15654d\lxptcore.inf for Device Instance ID PCI\VEN_8086&DEV_8C4B&SUBSYS_1
71D1043&REV_05\3&11583659&1&F8 with the following status: 0x0.
Event[111]:
Log Name: System
Date: 2016-09-16T12:33:44.264
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Microsoft Streaming Clock Proxy
Service
Service
Service
Service
File Name: \SystemRoot\system32\DRIVERS\MSPCLOCK.sys

Account:
Event[112]:
Log Name: System
Date: 2016-09-16T12:33:44.267
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MSPCLOCK for Device I
nstance ID SW\{97EBAACC-95BD-11D0-A3EA-00A0C9223196}\{53172480-4791-11D0-A5D6-28
DB04C10000} with the following status: 0.
Event[113]:
Log Name: System
Date: 2016-09-16T12:33:44.687
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver ksfilter.inf_amd64_4b7
251a1d691f0ad\ksfilter.inf for Device Instance ID SW\{97EBAACC-95BD-11D0-A3EA-00
A0C9223196}\{53172480-4791-11D0-A5D6-28DB04C10000} with the following status: 0x
0.
Event[114]:
Log Name: System
Date: 2016-09-16T12:33:44.717
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Streaming Quality Manager Proxy

File Name: \SystemRoot\system32\DRIVERS\MSPQM.sys
Account:
Event[115]:
Log Name: System
Date: 2016-09-16T12:33:44.727
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MSPQM for Device Inst
ance ID SW\{DDF4358E-BB2C-11D0-A42F-00A0C9223196}\{97EBAACB-95BD-11D0-A3EA-00A0C
9223196} with the following status: 0.
Event[116]:
Log Name: System
Date: 2016-09-16T12:33:45.277
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
251a1d691f0ad\ksfilter.inf for Device Instance ID SW\{DDF4358E-BB2C-11D0-A42F-00
A0C9223196}\{97EBAACB-95BD-11D0-A3EA-00A0C9223196} with the following status: 0x
0.
Event[117]:
Log Name: System
Date: 2016-09-16T12:33:45.295
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Streaming Service Proxy

File Name: \SystemRoot\system32\DRIVERS\MSKSSRV.sys
Account:
Event[118]:
Log Name: System
Date: 2016-09-16T12:33:45.310
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MSKSSRV for Device In
stance ID SW\{96E080C7-143C-11D1-B40F-00A0C9223196}\{3C0D501A-140B-11D1-B40F-00A
0C9223196} with the following status: 0.
Event[119]:
Log Name: System
Date: 2016-09-16T12:33:45.746
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
251a1d691f0ad\ksfilter.inf for Device Instance ID SW\{96E080C7-143C-11D1-B40F-00
A0C9223196}\{3C0D501A-140B-11D1-B40F-00A0C9223196} with the following status: 0x
0.
Event[120]:
Log Name: System
Date: 2016-09-16T12:33:45.889
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Streaming Tee/Sink-to-Sink Converter

File Name: \SystemRoot\system32\DRIVERS\MSTEE.sys
Account:
Event[121]:
Log Name: System
Date: 2016-09-16T12:33:45.903
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MSTEE for Device Inst
ance ID SW\{CFD669F1-9BC2-11D0-8299-0000F822FE8A}\{CF1DDA2C-9743-11D0-A3EE-00A0C
9223196} with the following status: 0.
Event[122]:
Log Name: System
Date: 2016-09-16T12:33:46.666
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
251a1d691f0ad\ksfilter.inf for Device Instance ID SW\{CFD669F1-9BC2-11D0-8299-00
00F822FE8A}\{CF1DDA2C-9743-11D0-A3EE-00A0C9223196} with the following status: 0x
0.
Event[123]:
Log Name: System
Date: 2016-09-16T12:33:46.684
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service MSTEE for Device Inst
ance ID SW\{CFD669F1-9BC2-11D0-8299-0000F822FE8A}\{0A4252A0-7E70-11D0-A5D6-28DB0
4C10000} with the following status: 0.
Event[124]:
Log Name: System
Date: 2016-09-16T12:33:47.036
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
251a1d691f0ad\ksfilter.inf for Device Instance ID SW\{CFD669F1-9BC2-11D0-8299-00
00F822FE8A}\{0A4252A0-7E70-11D0-A5D6-28DB04C10000} with the following status: 0x

0.
Event[125]:
Log Name: System
Date: 2016-09-16T12:33:47.249
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Trusted Audio Drivers

File Name: \SystemRoot\system32\DRIVERS\drmkaud.sys
Account:
Event[126]:
Log Name: System
Date: 2016-09-16T12:33:47.261
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service drmkaud for Device In
stance ID SW\{EEC12DB6-AD9C-4168-8658-B03DAEF417FE}\{ABD61E00-9350-47E2-A632-443
8B90C6641} with the following status: 0.
Event[127]:
Log Name: System
Date: 2016-09-16T12:33:47.672
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver wdmaudio.inf_amd64_bf7
ec511830b3442\wdmaudio.inf for Device Instance ID SW\{EEC12DB6-AD9C-4168-8658-B0
3DAEF417FE}\{ABD61E00-9350-47E2-A632-4438B90C6641} with the following status: 0x
0.
Event[128]:
Log Name: System

Date: 2016-09-16T12:33:48.358
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[129]:
Log Name: System
Date: 2016-09-16T12:33:48.914
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver printqueue.inf_amd64_2
93dcb0d10d72f40\printqueue.inf for Device Instance ID SWD\PRINTENUM\PRINTQUEUES
with the following status: 0x0.
Event[130]:
Log Name: System
Date: 2016-09-16T12:33:49.343
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver lxptsmb.inf_amd64_0133
87a53ed81b6e\lxptsmb.inf for Device Instance ID PCI\VEN_8086&DEV_8C22&SUBSYS_171
D1043&REV_05\3&11583659&1&FB with the following status: 0x0.
Event[131]:
Log Name: System
Date: 2016-09-16T12:33:49.614
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
Driver Management concluded the process to install driver haswell.inf_amd64_74af
929761869e31\haswell.inf for Device Instance ID PCI\VEN_8086&DEV_0C04&SUBSYS_171
D1043&REV_06\3&11583659&1&00 with the following status: 0x0.
Event[132]:
Log Name: System
Date: 2016-09-16T12:33:58.764
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Printer Extensions and Notifications

File Name: %SystemRoot%\system32\svchost.exe -k print
Event[133]:
Log Name: System
Date: 2016-09-16T12:33:58.764
Event ID: 7030
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Printer Extensions and Notifications service is marked as an interactive ser
vice. However, the system is configured to not allow interactive services. Thi
s service may not function properly.
Event[134]:
Log Name: System
Source: Microsoft-Windows-DistributedCOM
Date: 2016-09-16T12:33:59.014
Event ID: 10010
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register with DCOM wit
hin the required timeout.
Event[135]:
Log Name: System
Date: 2016-09-16T12:33:59.421
Event ID: 10010
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM wit
Event[136]:
Log Name: System
Source: Microsoft-Windows-Bits-Client
Date: 2016-09-16T12:34:02.488
Event ID: 16392
Task: N/A
Level: Error
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The BITS service failed to start. Error 0x80080005.
Event[137]:
Log Name: System
Date: 2016-09-16T12:34:02.483
Event ID: 7024
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Background Intelligent Transfer Service service terminated with the followin
g service-specific error:
Server execution failed
Event[138]:
Log Name: System
Date: 2016-09-16T12:34:02.686
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: ELAN Input Device

File Name: \SystemRoot\system32\DRIVERS\ETD.sys
Account:
Event[139]:
Log Name: System
Date: 2016-09-16T12:34:02.689
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service ETD for Device Instan
ce ID ACPI\ETD010D\4&3192B237&0 with the following status: 0.
Event[140]:
Log Name: System
Date: 2016-09-16T12:34:02.690
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service mouclass for Device I
nstance ID ACPI\ETD010D\4&3192B237&0 with the following status: 0.
Event[141]:
Log Name: System
Date: 2016-09-16T12:34:02.691
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service i8042prt for Device I
nstance ID ACPI\ETD010D\4&3192B237&0 with the following status: 0.
Event[142]:
Log Name: System
Date: 2016-09-16T12:34:03.006
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver etd.inf_amd64_989974a6
bcb476ca\etd.inf for Device Instance ID ACPI\ETD010D\4&3192B237&0 with the follo
wing status: 0x0.
Event[143]:
Log Name: System
Date: 2016-09-16T12:34:03.358
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: ___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit

File Name: \SystemRoot\System32\drivers\Netwtw04.sys
Account:
Event[144]:
Log Name: System
Date: 2016-09-16T12:34:04.127
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver netwtw04.inf_amd64_9c9
abc3bff03dd10\netwtw04.inf for Device Instance ID PCI\VEN_8086&DEV_095A&SUBSYS_5
0108086&REV_59\4&33C74B69&0&00E2 with the following status: 0x0.
Event[145]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:34:04.202
Event ID: 7036
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The \Device\NDMP3 service entered the Intel(R) Dual Band Wireless-AC 7265 state.
Event[146]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:34:04.218
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[147]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:34:04.218
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[148]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:34:04.218
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[149]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:34:04.218
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[150]:
Log Name: System
Date: 2016-09-16T12:34:25.890
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: nvlddmkm
File Name: \SystemRoot\system32\DRIVERS\nvlddmkm.sys
Account:
Event[151]:
Log Name: System
Date: 2016-09-16T12:34:25.905
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service nvlddmkm for Device I
nstance ID PCI\VEN_10DE&DEV_13D9&SUBSYS_171D1043&REV_A1\4&37C63E9&0&0008 with th
e following status: 0.
Event[152]:
Log Name: System
Date: 2016-09-16T12:34:48.703
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: NVIDIA Display Driver Service

File Name: "C:\WINDOWS\system32\nvvsvc.exe"
Event[153]:
Log Name: System
Date: 2016-09-16T12:34:50.535
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver nvami.inf_amd64_13b7f0
917fd0fa0c\nvami.inf for Device Instance ID PCI\VEN_10DE&DEV_13D9&SUBSYS_171D104
3&REV_A1\4&37C63E9&0&0008 with the following status: 0x0.
Event[154]:
Log Name: System
Date: 2016-09-16T12:34:50.797
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Device (Personal Area Network)

File Name: \SystemRoot\System32\drivers\bthpan.sys
Account:
Event[155]:
Log Name: System
Date: 2016-09-16T12:34:51.288
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver bthpan.inf_amd64_9c555
41e4907e74e\bthpan.inf for Device Instance ID BTH\MS_BTHPAN\6&99B7C08&0&2 with t
he following status: 0x0.

Event[156]:
Log Name: System
Date: 2016-09-16T12:34:51.359
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Virtual WiFi Miniport Service

File Name: \SystemRoot\System32\drivers\vwifimp.sys
Account:
Event[157]:
Log Name: System
Date: 2016-09-16T12:34:51.587
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver netvwifimp.inf_amd64_3
89d3e2956b38173\netvwifimp.inf for Device Instance ID {5D624F94-8850-40C3-A3FA-A
4FD2080BAF3}\VWIFIMP_WFD\5&4CC0F02&0&11 with the following status: 0x0.
Event[158]:
Log Name: System
Date: 2016-09-16T12:34:51.801
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Low Energy Driver

File Name: \SystemRoot\system32\DRIVERS\BthLEEnum.sys
Account:
Event[159]:
Log Name: System
Date: 2016-09-16T12:34:51.830
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service BthLEEnum for Device
Instance ID BTH\MS_BTHLE\6&99B7C08&0&0 with the following status: 0.
Event[160]:
Log Name: System
Date: 2016-09-16T12:34:51.994
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver bthleenum.inf_amd64_a2
74b2812788ef00\bthleenum.inf for Device Instance ID BTH\MS_BTHLE\6&99B7C08&0&0 w
ith the following status: 0x0.
Event[161]:
Log Name: System
Date: 2016-09-16T12:34:53.316
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: USB Video Device (WDM)

File Name: \SystemRoot\System32\Drivers\usbvideo.sys
Account:
Event[162]:
Log Name: System
Date: 2016-09-16T12:34:53.325
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service usbvideo for Device I
nstance ID USB\VID_04F2&PID_B414&MI_00\6&A451EFB&0&0000 with the following statu
s: 0.
Event[163]:
Log Name: System
Date: 2016-09-16T12:34:53.590
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver usbvideo.inf_amd64_3e7
787bd9ad40b82\usbvideo.inf for Device Instance ID USB\VID_04F2&PID_B414&MI_00\6&
A451EFB&0&0000 with the following status: 0x0.
Event[164]:
Log Name: System
Date: 2016-09-16T12:34:54.168
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Service for NVIDIA High Definition Audio Driver

File Name: \SystemRoot\system32\drivers\nvhda64v.sys
Account:
Event[165]:
Log Name: System
Date: 2016-09-16T12:34:54.172
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service NVHDA for Device Inst
ance ID HDAUDIO\FUNC_01&VEN_10DE&DEV_0071&SUBSYS_10DE0FBB&REV_1001\5&B6BC5EC&0&0
001 with the following status: 0.
Event[166]:
Log Name: System
Date: 2016-09-16T12:34:55.319
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver nvhda.inf_amd64_609b50
4bc534c55c\nvhda.inf for Device Instance ID HDAUDIO\FUNC_01&VEN_10DE&DEV_0071&SU
BSYS_10DE0FBB&REV_1001\5&B6BC5EC&0&0001 with the following status: 0x0.
Event[167]:
Log Name: System
Date: 2016-09-16T12:34:55.372
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Enumerator Service

File Name: \SystemRoot\system32\DRIVERS\BthEnum.sys
Account:
Event[168]:
Log Name: System
Date: 2016-09-16T12:34:55.429
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service BthEnum for Device In
stance ID BTH\MS_BTHBRB\6&99B7C08&0&1 with the following status: 0.
Event[169]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:55.993
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth has accepted service {0000110b-0000-1000-8000-00805f9b34fb} on remote
device (00:0c:8a:82:17:3d) due to policy Bluetooth\ServicesAllowedList.
Event[170]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:55.993
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth has accepted service {0000110c-0000-1000-8000-00805f9b34fb} on remote
Event[171]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:55.993
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Bluetooth has accepted service {0000110e-0000-1000-8000-00805f9b34fb} on remote
Event[172]:
Log Name: System
Date: 2016-09-16T12:34:56.023
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver bth.inf_amd64_0ed9858b
9b899077\bth.inf for Device Instance ID BTH\MS_BTHBRB\6&99B7C08&0&1 with the fol
lowing status: 0x0.
Event[173]:
Log Name: System
Date: 2016-09-16T12:34:56.039
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Device (RFCOMM Protocol TDI)

File Name: \SystemRoot\System32\drivers\rfcomm.sys
Account:
Event[174]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:56.312
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[175]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:56.312
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[176]:
Log Name: System

Source: BthEnum
Date: 2016-09-16T12:34:56.312
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[177]:
Log Name: System
Date: 2016-09-16T12:34:56.321
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver tdibth.inf_amd64_e08de
a69c9fe18b8\tdibth.inf for Device Instance ID BTH\MS_RFCOMM\6&99B7C08&0&0 with t
Event[178]:
Log Name: System
Date: 2016-09-16T12:34:56.752
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
9b899077\bth.inf for Device Instance ID BTHENUM\DEV_000C8A82173D\7&1C363944&2&BL
UETOOTHDEVICE_000C8A82173D with the following status: 0x0.
Event[179]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:56.918
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[180]:
Log Name: System
Date: 2016-09-16T12:34:57.022
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
9b899077\bth.inf for Device Instance ID BTHENUM\{0000110C-0000-1000-8000-00805F9
B34FB}_LOCALMFG&0002\7&1C363944&2&000C8A82173D_C00000000 with the following stat
us: 0x0.
Event[181]:
Log Name: System
Date: 2016-09-16T12:34:57.303
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Bluetooth Stereo

File Name: \SystemRoot\system32\drivers\BthA2DP.sys
Account:
Event[182]:
Log Name: System
Date: 2016-09-16T12:34:57.316
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service BthA2DP for Device In
stance ID BTHENUM\{0000110B-0000-1000-8000-00805F9B34FB}_LOCALMFG&0002\7&1C36394
4&2&000C8A82173D_C00000000 with the following status: 0.
Event[183]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:34:57.503
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[184]:
Log Name: System
Date: 2016-09-16T12:34:57.756
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver wdma_bt.inf_amd64_f5cf
0d21c5cd69a1\wdma_bt.inf for Device Instance ID BTHENUM\{0000110B-0000-1000-8000
-00805F9B34FB}_LOCALMFG&0002\7&1C363944&2&000C8A82173D_C00000000 with the follow
ing status: 0x0.
Event[185]:
Log Name: System
Date: 2016-09-16T12:35:03.423
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\ProgramData\Microsoft\Windows\AppRepository\Pa
ckages\Microsoft.AAD.BrokerPlugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy\A
ctivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[186]:
Log Name: System
Date: 2016-09-16T12:35:04.938
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.AccountsControl_10.0.14393.0_neutral__cw5n1h2txyewy\ActivationS
tore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[187]:
Log Name: System
Date: 2016-09-16T12:35:06.238
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BioEnrollment_10.0.14393.0_neutral__cw5n1h2txyewy\ActivationSto
re.dat was cleared updating 0 keys and creating 0 modified pages.
Event[188]:
Log Name: System
Date: 2016-09-16T12:35:07.263
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.LockApp_10.0.14393.0_neutral__cw5n1h2txyewy\ActivationStore.dat
was cleared updating 0 keys and creating 0 modified pages.
Event[189]:
Log Name: System
Date: 2016-09-16T12:35:08.632
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe\ActivationSto
Event[190]:
Log Name: System
Date: 2016-09-16T12:35:09.700
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.PPIProjection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy\Activa
tionStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[191]:
Log Name: System
Date: 2016-09-16T12:35:10.685
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.Apprep.ChxApp_1000.14393.0.0_neutral_neutral_cw5n1h2txy
ewy\ActivationStore.dat was cleared updating 0 keys and creating 0 modified page
s.
Event[192]:
Log Name: System
Date: 2016-09-16T12:35:11.639
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.CloudExperienceHost_10.0.14393.0_neutral_neutral_cw5n1h
2txyewy\ActivationStore.dat was cleared updating 0 keys and creating 0 modified
pages.
Event[193]:
Log Name: System
Date: 2016-09-16T12:35:12.706
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.ContentDeliveryManager_10.0.14393.0_neutral_neutral_cw5
n1h2txyewy\ActivationStore.dat was cleared updating 0 keys and creating 0 modifi
ed pages.
Event[194]:
Log Name: System
Date: 2016-09-16T12:35:14.132
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy\Activ
ationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[195]:
Log Name: System
Date: 2016-09-16T12:35:15.322
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.ParentalControls_1000.14393.0.0_neutral_neutral_cw5n1h2
txyewy\ActivationStore.dat was cleared updating 0 keys and creating 0 modified p
ages.
Event[196]:
Log Name: System
Date: 2016-09-16T12:35:16.308
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.SecondaryTileExperience_10.0.0.0_neutral__cw5n1h2txyewy
\ActivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[197]:
Log Name: System
Date: 2016-09-16T12:35:17.270
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.ShellExperienceHost_10.0.14393.0_neutral_neutral_cw5n1h
2txyewy\ActivationStore.dat was cleared updating 0 keys and creating 0 modified
pages.
Event[198]:
Log Name: System
Date: 2016-09-16T12:35:18.368
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.XboxGameCallableUI_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy
\ActivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[199]:
Log Name: System
Date: 2016-09-16T12:35:20.543
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Windows.ContactSupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy\Activat
ionStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[200]:
Log Name: System
Date: 2016-09-16T12:35:21.497
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy\Activ
ationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[201]:
Log Name: System
Date: 2016-09-16T12:35:23.496
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Windows.MiracastView_6.3.0.0_neutral_neutral_cw5n1h2txyewy\ActivationStor
e.dat was cleared updating 0 keys and creating 0 modified pages.
Event[202]:
Log Name: System
Date: 2016-09-16T12:35:24.716
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Windows.PrintDialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy\ActivationStore
.dat was cleared updating 0 keys and creating 0 modified pages.
Event[203]:
Log Name: System
Date: 2016-09-16T12:35:38.760
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.3DBuilder_11.0.47.0_x64__8wekyb3d8bbwe\ActivationStore.dat was
cleared updating 0 keys and creating 0 modified pages.
Event[204]:
Log Name: System
Date: 2016-09-16T12:35:40.608
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\ActivationStore
Event[205]:
Log Name: System
Date: 2016-09-16T12:35:41.920
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[206]:
Log Name: System
Date: 2016-09-16T12:35:48.752
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingWeather_4.9.51.0_x86__8wekyb3d8bbwe\ActivationStore.dat was
Event[207]:
Log Name: System
Date: 2016-09-16T12:35:51.463
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.DesktopAppInstaller_1.0.1471.0_x64__8wekyb3d8bbwe\ActivationSto
Event[208]:
Log Name: System
Date: 2016-09-16T12:35:55.041
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Getstarted_3.11.3.0_x64__8wekyb3d8bbwe\ActivationStore.dat was
Event[209]:
Log Name: System
Date: 2016-09-16T12:35:59.007
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Messaging_3.19.1001.0_x86__8wekyb3d8bbwe\ActivationStore.dat wa
s cleared updating 0 keys and creating 0 modified pages.
Event[210]:
Log Name: System
Date: 2016-09-16T12:35:59.040
Event ID: 10010
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register with DCOM wit
Event[211]:
Log Name: System
Date: 2016-09-16T12:36:04.278
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftOfficeHub_17.6801.23751.0_x64__8wekyb3d8bbwe\Activatio
nStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[212]:
Log Name: System
Date: 2016-09-16T12:36:25.842
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftSolitaireCollection_3.9.5100.0_x64__8wekyb3d8bbwe\Acti
vationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[213]:
Log Name: System
Date: 2016-09-16T12:36:29.403
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftStickyNotes_1.0.136.0_x64__8wekyb3d8bbwe\ActivationSto
Event[214]:
Log Name: System
Date: 2016-09-16T12:36:39.318
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Office.OneNote_17.6868.57981.0_x64__8wekyb3d8bbwe\ActivationSto
Event[215]:
Log Name: System
Date: 2016-09-16T12:36:43.474
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.OneConnect_1.1605.17.0_x64__8wekyb3d8bbwe\ActivationStore.dat w
as cleared updating 0 keys and creating 0 modified pages.
Event[216]:
Log Name: System
Date: 2016-09-16T12:36:47.394
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.People_10.0.11902.0_x64__8wekyb3d8bbwe\ActivationStore.dat was
Event[217]:
Log Name: System
Date: 2016-09-16T12:37:00.887
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.SkypeApp_11.4.86.0_x64__kzf8qxf38zg5c\ActivationStore.dat was c
leared updating 0 keys and creating 0 modified pages.
Event[218]:
Log Name: System
Date: 2016-09-16T12:37:02.881
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.StorePurchaseApp_1.0.45.0_x64__8wekyb3d8bbwe\ActivationStore.da
t was cleared updating 0 keys and creating 0 modified pages.
Event[219]:
Log Name: System
Date: 2016-09-16T12:37:08.709
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.Photos_16.511.8780.0_x64__8wekyb3d8bbwe\ActivationStore
Event[220]:
Log Name: System
Date: 2016-09-16T12:37:13.809
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsAlarms_10.1605.1742.0_x64__8wekyb3d8bbwe\ActivationStore
Event[221]:
Log Name: System
Date: 2016-09-16T12:37:16.721
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\ActivationS
Event[222]:
Log Name: System
Date: 2016-09-16T12:37:20.479
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsCamera_2016.404.190.0_x64__8wekyb3d8bbwe\ActivationStore
Event[223]:
Log Name: System
Date: 2016-09-16T12:37:39.009
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\microsoft.windowscommunicationsapps_17.6868.41201.0_x64__8wekyb3d8bbwe\Ac
tivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[224]:
Log Name: System
Date: 2016-09-16T12:37:42.916
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsFeedbackHub_1.3.1741.0_x64__8wekyb3d8bbwe\ActivationStor
Event[225]:
Log Name: System

Date: 2016-09-16T12:37:54.110
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsMaps_5.1603.1830.0_x64__8wekyb3d8bbwe\ActivationStore.da
Event[226]:
Log Name: System
Date: 2016-09-16T12:37:58.372
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsSoundRecorder_10.1605.1622.0_x64__8wekyb3d8bbwe\Activati
onStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[227]:
Log Name: System
Date: 2016-09-16T12:38:02.752
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsStore_11606.1001.39.0_x64__8wekyb3d8bbwe\ActivationStore
Event[228]:
Log Name: System
Date: 2016-09-16T12:38:08.714
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
ckages\Microsoft.XboxApp_15.18.23005.0_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[229]:
Log Name: System
Date: 2016-09-16T12:38:10.820
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.XboxIdentityProvider_11.18.16009.0_x64__8wekyb3d8bbwe\Activatio
Event[230]:
Log Name: System
Date: 2016-09-16T12:38:18.677
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.ZuneMusic_3.6.19261.0_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[231]:
Log Name: System
Date: 2016-09-16T12:38:25.932
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.ZuneVideo_3.6.19281.0_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[232]:
Log Name: System
Date: 2016-09-16T12:38:31.844
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \??\C:\WINDOWS\System32\config\COMPONENTS was reorganized with a starting s
ize of 32419840 bytes and an ending size of 32399360 bytes.
Event[233]:
Log Name: System
Source: Microsoft-Windows-Setup
Date: 2016-09-16T12:38:33.064
Event ID: 2004
Task: OS information
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Successfully logged OS information
Event[234]:
Log Name: System
Date: 2016-09-16T12:38:35.427
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \??\C:\WINDOWS\System32\SMI\Store\Machine\SCHEMA.DAT was reorganized with a
starting size of 11800576 bytes and an ending size of 11730944 bytes.
Event[235]:
Log Name: System
Date: 2016-09-16T12:38:36.051
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\WINDOWS\system32\config\elam was cleared updat
Event[236]:
Log Name: System
Date: 2016-09-16T12:38:51.010
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\Windows.old\WINDOWS\system32\config\sam was cl
Event[237]:
Log Name: System
Date: 2016-09-16T12:38:51.126
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\Windows.old\WINDOWS\system32\config\security w
Event[238]:
Log Name: System
Date: 2016-09-16T12:38:53.839
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \??\C:\Windows.old\WINDOWS\system32\config\software was reorganized with a
starting size of 104325120 bytes and an ending size of 104349696 bytes.
Event[239]:
Log Name: System
Date: 2016-09-16T12:38:56.080
Event ID: 15
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Hive \??\C:\Windows.old\WINDOWS\system32\config\system was reorganized with a st
arting size of 18743296 bytes and an ending size of 18743296 bytes.
Event[240]:
Log Name: System
Date: 2016-09-16T12:38:56.322
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\Windows.old\WINDOWS\system32\config\default wa
Event[241]:
Log Name: System
Date: 2016-09-16T12:38:56.499
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\Windows.old\WINDOWS\system32\config\userdiff w
Event[242]:
Log Name: System
Date: 2016-09-16T12:54:11.456
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Device Association Service service was changed from demand
start to auto start.
Event[243]:
Log Name: System
Date: 2016-09-16T12:54:15.049
Event ID: 7023
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Network List Service service terminated with the following error:
The device is not ready.
Event[244]:
Log Name: System
Date: 2016-09-16T12:54:18.331
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Adobe LM Service
Service File Name: "C:\Program Files (x86)\Common Files\Adobe Systems Shared\Se
rvice\Adobelmsvc.exe"
Service Type: user mode service
Service Start Type: demand start
Service Account: LocalSystem
Event[245]:
Log Name: System
Date: 2016-09-16T12:54:18.331
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: NVIDIA Stereoscopic 3D Driver Service
Service File Name: "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpap
isvr.exe"
Service Start Type: auto start
Event[246]:
Log Name: System
Date: 2016-09-16T12:54:18.362
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Origin Client Service

File Name: "C:\Program Files (x86)\Origin\OriginClientService.exe"
Event[247]:
Log Name: System
Date: 2016-09-16T12:54:18.393
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: NVIDIA GeForce Experience Service
Service File Name: "C:\Program Files\NVIDIA Corporation\GeForce Experience Serv
ice\GfExperienceService.exe"
Event[248]:
Log Name: System
Date: 2016-09-16T12:54:18.393
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: WRSVC
File Name: "C:\Program Files\Webroot\WRSA.exe" -service
Event[249]:
Log Name: System
Date: 2016-09-16T12:54:18.393
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Steam Client Service
Service File Name: "C:\Program Files (x86)\Common Files\Steam\SteamService.exe"
/RunAsService
Event[250]:
Log Name: System
Date: 2016-09-16T12:54:18.393
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Wacom Professional Service

File Name: "C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
Event[251]:
Log Name: System
Date: 2016-09-16T12:54:18.393
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Intel(R) Management and Security Application Local Management Ser
vice
Service File Name: "C:\Program Files (x86)\Intel\Intel(R) Management Engine Com
ponents\LMS\LMS.exe"

Event[252]:
Log Name: System
Date: 2016-09-16T12:54:18.424
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: NVIDIA Streamer Service
Service File Name: "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamSer
vice.exe"
Event[253]:
Log Name: System
Date: 2016-09-16T12:54:18.440
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Visual Studio Standard Collector Service
Service File Name: "C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team To
ols\DiagnosticsHub\Collector\StandardCollector.Service.exe"
Event[254]:
Log Name: System
Date: 2016-09-16T12:54:18.440
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:

Service
Service
e.exe"
Service
Service
Service
Name: GamesAppService
File Name: "C:\Program Files (x86)\WildTangent Games\App\GamesAppServic
Event[255]:
Log Name: System
Date: 2016-09-16T12:54:18.440
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: PnkBstrB
File Name: C:\Windows\system32\PnkBstrB.exe
Event[256]:
Log Name: System
Date: 2016-09-16T12:54:18.440
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Asus GiftBox Desktop
Service File Name: C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOX
Desktop.exe
Event[257]:
Log Name: System
Date: 2016-09-16T12:54:18.440
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Intel(R) ME Service
ponents\FWService\IntelMeFWService.exe"
Event[258]:
Log Name: System
Date: 2016-09-16T12:54:18.456
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Intel(R) Dynamic Application Loader Host Interface Service
ponents\DAL\jhi_service.exe"
Event[259]:
Log Name: System
Date: 2016-09-16T12:54:18.456
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: PnkBstrA
File Name: C:\Windows\system32\PnkBstrA.exe
Event[260]:
Log Name: System
Date: 2016-09-16T12:54:18.456
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: NVIDIA Streamer Network Service
Service File Name: "C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNet
workService.exe"
Event[261]:
Log Name: System
Date: 2016-09-16T12:54:18.456
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
exe
Service
Service
Service
Name: ASLDR Service

File Name: C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.
Event[262]:
Log Name: System
Date: 2016-09-16T12:54:18.471
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Name: Google Update Service (gupdate)

File Name: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc

Event[263]:
Log Name: System
Date: 2016-09-16T12:54:18.471
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
svc
Service
Service
Service
Name: Google Update Service (gupdatem)

File Name: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /med
Event[264]:
Log Name: System
Date: 2016-09-16T12:54:18.471
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: Asus WebStorage Windows Service
Service File Name: "C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWin
Service.exe"
Event[265]:
Log Name: System
Date: 2016-09-16T12:54:18.471
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
.exe"
Service
Service
Service
Name: DriverMFTService
File Name: "C:\Program Files (x86)\Asus\ASUS Video DSP\DriverMFTService
Event[266]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
exe
Service
Service
Service
Name: Adobe Flash Player Update Service

File Name: C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.
Event[267]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: GamesAppIntegrationService
Service File Name: "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegr
ationService.exe"
Event[268]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Skype Updater

File Name: "C:\Program Files (x86)\Skype\Updater\Updater.exe"
Event[269]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: NVIDIA Network Service
Service File Name: "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetw
orkService.exe"
Event[270]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
e
Service
Service
Service
Name: ATKGFNEX Service

File Name: C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.ex
Event[271]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Thunderbolt(TM) Service

File Name: "C:\Program Files\Intel\Thunderbolt Software\tbtsvc.exe"
Event[272]:
Log Name: System
Date: 2016-09-16T12:54:18.487
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Intel(R) Capability Licensing Service TCP IP Interface

File Name: "C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe"
Event[273]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: ATKWMIACPI Driver
Service File Name: \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkw
miacpi64.sys
Service Type: kernel mode driver
Service Start Type: system start
Service Account:
Event[274]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
4.sys
Service
Service
Service
Name: ASMMAP64
File Name: \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP6
Account:
Event[275]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: ASUS Charger Driver

File Name: \SystemRoot\system32\DRIVERS\AiCharger.sys
Account:
Event[276]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service Name: WRkrn
Service
Service
Service
Service
File Name: \SystemRoot\System32\drivers\WRkrn.sys

Start Type: boot start
Account:
Event[277]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Webroot UrlFilter

File Name: \??\C:\Windows\system32\DRIVERS\wrUrlFlt.sys
Account:
Event[278]:
Log Name: System
Date: 2016-09-16T12:54:18.503
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Kms.sys
Service
Service
Service
Name: NvStreamKms
File Name: \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStream
Account:
Event[279]:
Log Name: System
Date: 2016-09-16T12:56:15.051
Event ID: 10010
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM wit
Event[280]:
Log Name: System
Source: User32
Date: 2016-09-16T12:56:40.771
Event ID: 1074
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The process C:\WINDOWS\system32\winlogon.exe (COMPOOT) has initiated the restart
of computer COMPOOT on behalf of user NT AUTHORITY\SYSTEM for the following rea
son: Operating System: Upgrade (Planned)
Reason Code: 0x80020003
Shutdown Type: restart
Comment:
Event[281]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:56:42.006
Event ID: 6006
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Event log service was stopped.
Event[282]:
Log Name: System
Date: 2016-09-16T12:56:41.944
Event ID: 51047
Level: Information
Opcode: ServiceStop
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
DHCPv6 client service is stopped. ShutDown Flag value is 1
Event[283]:
Log Name: System
Date: 2016-09-16T12:56:41.944
Event ID: 50037
Level: Information
Opcode: ServiceStop
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
DHCPv4 client service is stopped. ShutDown Flag value is 1
Event[284]:
Log Name: System
Date: 2016-09-16T12:56:42.404
Event ID: 4001
Task: N/A
Level: Information
Opcode: Stop
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
WLAN AutoConfig service has successfully stopped.
Event[285]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:57:47.921
Event ID: 6009
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[286]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:57:47.921
Event ID: 6005
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[287]:
Log Name: System
Source: EventLog
Date: 2016-09-16T12:57:48.311
Event ID: 6013
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The system uptime is 51 seconds.
Event[288]:
Log Name: System
Date: 2016-09-16T12:56:43.247
Event ID: 109
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The kernel power manager has initiated a shutdown transition.
Shutdown Reason: Kernel API
Event[289]:
Log Name: System
Date: 2016-09-16T12:56:46.212
Event ID: 13
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The operating system is shutting down at system time ?2016?-?09?-?16T16:56:46.21
2415100Z.
Event[290]:
Log Name: System
Date: 2016-09-16T12:56:56.967
Event ID: 12
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[291]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 153
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
UCCESS.
Event[292]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 20
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The last shutdown's success status was true. The last boot's success status was
true.
Event[293]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 27
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[294]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 25
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[295]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 26
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
A one-time boot sequence was used during this boot.
Event[296]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 32
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[297]:
Log Name: System
Date: 2016-09-16T12:56:56.968
Event ID: 30
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[298]:
Log Name: System
Date: 2016-09-16T12:56:57.772
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[299]:
Log Name: System
Date: 2016-09-16T12:56:57.772
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[300]:
Log Name: System
Date: 2016-09-16T12:56:59.676
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[301]:
Log Name: System
Date: 2016-09-16T12:57:00.889
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[302]:
Log Name: System
Date: 2016-09-16T12:57:01.498
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[303]:
Log Name: System
Date: 2016-09-16T12:57:02.038
Event ID: 172
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[304]:
Log Name: System
Date: 2016-09-16T12:57:03.413
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[305]:
Log Name: System
Date: 2016-09-16T12:57:03.787
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'WRkrn' (6.1, ?2015?-?07?-?22T11:20:08.000000000Z) has succes
sfully loaded and registered with Filter Manager.
Event[306]:
Log Name: System
Date: 2016-09-16T12:57:04.372
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[307]:
Log Name: System
Date: 2016-09-16T12:57:06.297
Event ID: 10114
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
vice again.
Event[308]:
Log Name: System
Date: 2016-09-16T12:57:06.297
Event ID: 219
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[309]:
Log Name: System
Source: MEIx64
Date: 2016-09-16T12:57:07.912
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[310]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:57:08.208
Event ID: 7036
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[311]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:57:08.224
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[312]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:57:08.224
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[313]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:57:08.224
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[314]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T12:57:08.224
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[315]:
Log Name: System
Date: 2016-09-16T12:57:08.304
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Performance state type: ACPI Collaborative Processor Performance Control
Event[316]:
Log Name: System
Date: 2016-09-16T12:57:08.309
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[317]:
Log Name: System
Date: 2016-09-16T12:57:08.309
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[318]:
Log Name: System
Date: 2016-09-16T12:57:08.310
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[319]:
Log Name: System
Date: 2016-09-16T12:57:08.311
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

Event[320]:
Log Name: System
Date: 2016-09-16T12:57:08.311
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[321]:
Log Name: System
Date: 2016-09-16T12:57:08.312
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[322]:
Log Name: System
Date: 2016-09-16T12:57:08.313
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[323]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:10.174
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[324]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:57:11.936
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[325]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:57:11.936
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[326]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T12:57:11.936
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[327]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:57:24.366
Event ID: 263
Task: N/A
Level: Warning
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[328]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:57:24.366
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[329]:
Log Name: System
Date: 2016-09-16T12:57:28.065
Event ID: 16962
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[330]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:57:36.191
Event ID: 263
Task: N/A
Level: Warning
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[331]:
Log Name: System
Source: Win32k
Date: 2016-09-16T12:57:36.207
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[332]:
Log Name: System
Date: 2016-09-16T12:57:47.136
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \SystemRoot\System32\Config\bbimigrate\BBI was cleare
d updating 990 keys and creating 184 modified pages.
Event[333]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
: 2
Event[334]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
e of: 1
Event[335]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
1
Event[336]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
of: *
Event[337]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 37
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
erableMode.
Event[338]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 36
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
g.
Event[339]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T12:57:48.791
Event ID: 35
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
etooth.
Event[340]:
Log Name: System
Date: 2016-09-16T12:57:49.663
Event ID: 50036
Level: Information
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
Event[341]:
Log Name: System
Date: 2016-09-16T12:57:50.148
Event ID: 51046

Level: Information
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
Event[342]:
Log Name: System
Date: 2016-09-16T12:57:56.619
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[343]:
Log Name: System
Date: 2016-09-16T12:57:58.290
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[344]:
Log Name: System
Date: 2016-09-16T12:57:58.418
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[345]:
Log Name: System

Date: 2016-09-16T12:57:58.594
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[346]:
Log Name: System
Date: 2016-09-16T12:57:58.722
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[347]:
Log Name: System
Date: 2016-09-16T12:58:22.900
Event ID: 4000
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[348]:
Log Name: System
Source: Display
Date: 2016-09-16T12:58:25.693
Event ID: 4107
Task: N/A
Level: Information
Opcode: Info
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A caller specified the SDC_FORCE_MODE_ENUMERATION flag in a call to the SetDispl

ayConfig() API
Event[349]:
Log Name: System
Date: 2016-09-16T12:58:52.592
Event ID: 7009
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A timeout was reached (30000 milliseconds) while waiting for the DriverMFTServic
e service to connect.
Event[350]:
Log Name: System
Date: 2016-09-16T12:58:52.592
Event ID: 7000
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The DriverMFTService service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Event[351]:
Log Name: System
Date: 2016-09-16T12:58:52.592
Event ID: 7026
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
dam
Event[352]:
Log Name: System
Date: 2016-09-16T12:58:59.936
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Background Intelligent Transfer Service service was change
d from demand start to auto start.
Event[353]:
Log Name: System
Date: 2016-09-16T13:01:09.628
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Distributed Transaction Coordinator service was changed fr
om demand start to auto start.
Event[354]:
Log Name: System
Date: 2016-09-16T13:01:11.894
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
om auto start to demand start.
Event[355]:
Log Name: System
Date: 2016-09-16T13:05:42.563
Event ID: 4001
Task: N/A
Level: Information
Opcode: Stop
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
WLAN AutoConfig service has successfully stopped.
Event[356]:
Log Name: System
Date: 2016-09-16T13:06:54.928
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Task Scheduler service was changed from disabled to demand
start.
Event[357]:
Log Name: System
Date: 2016-09-16T13:07:01.725
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Task Scheduler service was changed from demand start to di
sabled.
Event[358]:
Log Name: System
Date: 2016-09-16T13:07:02.085
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
om demand start to auto start.
Event[359]:
Log Name: System
Source: Microsoft-Windows-TaskScheduler
Date: 2016-09-16T13:07:06.076
Event ID: 414
Task: Task Misconfiguration
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Task Scheduler service found a misconfiguration in the NT TASK\Microsoft\Windows
\Workplace Join\Automatic-Workplace-Join definition. Additional Data: Error Valu
e: %SystemRoot%\System32\AutoWorkplace.exe.
Event[360]:
Log Name: System
Date: 2016-09-16T13:07:28.335
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
om auto start to demand start.
Event[361]:
Log Name: System
Date: 2016-09-16T13:07:42.546
Event ID: 4000
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[362]:
Log Name: System
Date: 2016-09-16T13:07:52.780
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\4DF9E0F8.Netflix_6.12.43.0_x64__mcm4njqhnhss8\ActivationStore.dat was cle
ared updating 0 keys and creating 0 modified pages.
Event[363]:
Log Name: System
Date: 2016-09-16T13:07:59.547
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\9E2F88E3.Twitter_5.3.2.0_x86__wgeqdkkx372wm\ActivationStore.dat was clear
ed updating 0 keys and creating 0 modified pages.
Event[364]:
Log Name: System
Date: 2016-09-16T13:08:05.505
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem\Act
ivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[365]:
Log Name: System
Date: 2016-09-16T13:08:12.750
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\B9ECED6F.ASUSGIFTBOX_1.1.1.1_x64__qmba6cd70vzyy\ActivationStore.dat was c
Event[366]:
Log Name: System
Date: 2016-09-16T13:08:20.645
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\ClearChannelRadioDigital.iHeartRadio_5.0.5.0_x64__a76a11dkgb644\Activatio
Event[367]:
Log Name: System
Date: 2016-09-16T13:08:36.344
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\F5080380.ASUSPhotoDirector_2.1.3706.2_x86__tfv7c950n6xcr\ActivationStore.
dat was cleared updating 0 keys and creating 0 modified pages.
Event[368]:
Log Name: System
Date: 2016-09-16T13:09:03.068
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\F5080380.ASUSPowerDirector_1.0.3618.38952_x86__tfv7c950n6xcr\ActivationSt
ore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[369]:
Log Name: System
Date: 2016-09-16T13:09:06.501
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Flipboard.Flipboard_2.1.1.0_neutral__3f5azkryzdbc4\ActivationStore.dat wa
Event[370]:
Log Name: System
Date: 2016-09-16T13:10:17.239
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\MAGIX.MusicMakerJam_2.3.1051.1_x64__a2t3txkz9j1jw\ActivationStore.dat was
Event[371]:
Log Name: System
Date: 2016-09-16T13:10:29.037
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.3DBuilder_11.1.9.0_x64__8wekyb3d8bbwe\ActivationStore.dat was c
Event[372]:
Log Name: System
Date: 2016-09-16T13:10:32.675
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[373]:
Log Name: System
Date: 2016-09-16T13:10:35.518
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[374]:
Log Name: System
Date: 2016-09-16T13:10:42.258
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Appconnector_1.3.3.0_neutral__8wekyb3d8bbwe\ActivationStore.dat
Event[375]:
Log Name: System
Date: 2016-09-16T13:10:51.639
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingFinance_4.13.47.0_x86__8wekyb3d8bbwe\ActivationStore.dat wa
Event[376]:
Log Name: System
Date: 2016-09-16T13:11:05.137
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe\ActivationStore.d
at was cleared updating 0 keys and creating 0 modified pages.
Event[377]:
Log Name: System
Date: 2016-09-16T13:11:15.756
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

ckages\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe\ActivationSto
Event[378]:
Log Name: System
Date: 2016-09-16T13:11:23.237
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingNews_4.13.47.0_x86__8wekyb3d8bbwe\ActivationStore.dat was c
Event[379]:
Log Name: System
Date: 2016-09-16T13:11:30.730
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingSports_4.13.47.0_x86__8wekyb3d8bbwe\ActivationStore.dat was
Event[380]:
Log Name: System
Date: 2016-09-16T13:11:39.006
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe\ActivationStore.dat was
Event[381]:
Log Name: System
Date: 2016-09-16T13:11:50.071
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.BingWeather_4.13.47.0_x86__8wekyb3d8bbwe\ActivationStore.dat wa
Event[382]:
Log Name: System
Date: 2016-09-16T13:11:59.363
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.CommsPhone_2.17.27003.0_x64__8wekyb3d8bbwe\ActivationStore.dat
Event[383]:
Log Name: System
Date: 2016-09-16T13:12:10.835
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.ConnectivityStore_1.1604.4.0_x64__8wekyb3d8bbwe\ActivationStore
Event[384]:
Log Name: System
Date: 2016-09-16T13:12:22.883
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.FreshPaint_3.1.10114.0_x86__8wekyb3d8bbwe\ActivationStore.dat w
Event[385]:
Log Name: System
Date: 2016-09-16T13:12:32.085
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Getstarted_4.0.12.0_x64__8wekyb3d8bbwe\ActivationStore.dat was
Event[386]:
Log Name: System
Date: 2016-09-16T13:12:35.679
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Media.PlayReadyClient_2.3.1678.0_x64__8wekyb3d8bbwe\ActivationS
Event[387]:
Log Name: System
Date: 2016-09-16T13:12:38.576
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Media.PlayReadyClient_2.3.1678.0_x86__8wekyb3d8bbwe\ActivationS
Event[388]:
Log Name: System
Date: 2016-09-16T13:12:54.208
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftOfficeHub_17.7319.23511.0_x64__8wekyb3d8bbwe\Activatio
Event[389]:
Log Name: System
Date: 2016-09-16T13:13:38.246
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.MicrosoftSolitaireCollection_3.11.7293.0_x64__8wekyb3d8bbwe\Act
ivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[390]:
Log Name: System
Date: 2016-09-16T13:14:32.398
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Office.OneNote_17.7341.57791.0_x64__8wekyb3d8bbwe\ActivationSto
Event[391]:
Log Name: System
Date: 2016-09-16T13:14:47.501
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Office.Sway_17.7369.45141.0_x64__8wekyb3d8bbwe\ActivationStore.

Event[392]:
Log Name: System
Date: 2016-09-16T13:15:00.897
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Reader_6.4.9926.18471_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[393]:
Log Name: System
Date: 2016-09-16T13:15:12.377
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.SkypeWiFi_1.2.0.7_x86__kzf8qxf38zg5c\ActivationStore.dat was cl
Event[394]:
Log Name: System
Date: 2016-09-16T13:15:51.611
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\ActivationStor
Event[395]:
Log Name: System
Date: 2016-09-16T13:16:10.665
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsAlarms_10.1608.2312.0_x64__8wekyb3d8bbwe\ActivationStore
Event[396]:
Log Name: System
Date: 2016-09-16T13:16:26.066
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\ActivationS
Event[397]:
Log Name: System
Date: 2016-09-16T13:16:40.579
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsCamera_2016.816.20.0_x64__8wekyb3d8bbwe\ActivationStore.
Event[398]:
Log Name: System
Date: 2016-09-16T13:17:04.313
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\microsoft.windowscommunicationsapps_17.7167.40721.0_x64__8wekyb3d8bbwe\Ac
tivationStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[399]:
Log Name: System
Date: 2016-09-16T13:17:30.413
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsMaps_5.1608.2310.0_x64__8wekyb3d8bbwe\ActivationStore.da
Event[400]:
Log Name: System
Date: 2016-09-16T13:17:47.912
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsPhone_10.1608.2211.0_x64__8wekyb3d8bbwe\ActivationStore.
Event[401]:
Log Name: System
Date: 2016-09-16T13:17:55.203
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsReadingList_6.3.9654.21234_x64__8wekyb3d8bbwe\Activation
Store.dat was cleared updating 0 keys and creating 0 modified pages.
Event[402]:
Log Name: System
Date: 2016-09-16T13:18:00.947
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsScan_6.3.9654.17133_x64__8wekyb3d8bbwe\ActivationStore.d
Event[403]:
Log Name: System
Date: 2016-09-16T13:18:13.558
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsSoundRecorder_10.1608.2211.0_x64__8wekyb3d8bbwe\Activati
onStore.dat was cleared updating 0 keys and creating 0 modified pages.
Event[404]:
Log Name: System
Date: 2016-09-16T13:18:30.527
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.WindowsStore_11608.1001.41.0_x64__8wekyb3d8bbwe\ActivationStore
Event[405]:
Log Name: System
Date: 2016-09-16T13:18:53.257
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.XboxApp_19.21.9012.0_x64__8wekyb3d8bbwe\ActivationStore.dat was
Event[406]:
Log Name: System
Date: 2016-09-16T13:19:07.040
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.ZuneMusic_3.6.23981.0_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[407]:
Log Name: System
Date: 2016-09-16T13:19:15.950
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\Microsoft.ZuneVideo_3.6.23941.0_x64__8wekyb3d8bbwe\ActivationStore.dat wa
Event[408]:
Log Name: System
Date: 2016-09-16T13:19:52.583
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\NAVER.LINEwin8_5.4.2.0_x64__8ptj331gd3tyt\ActivationStore.dat was cleared
updating 0 keys and creating 0 modified pages.
Event[409]:
Log Name: System
Date: 2016-09-16T13:20:05.652
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.4.3.0_x64__qj0v5chwq
8f2g\ActivationStore.dat was cleared updating 0 keys and creating 0 modified pag
es.
Event[410]:
Log Name: System
Date: 2016-09-16T13:20:12.919
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m\ActivationStore.d
Event[411]:
Log Name: System
Date: 2016-09-16T13:20:21.727
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e\ActivationStore.dat was clear
ed updating 0 keys and creating 0 modified pages.
Event[412]:
Log Name: System
Date: 2016-09-16T13:20:26.746
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\22546Cidade.VideoCutterEditor_1.1.0.8_x86__cjt5542sbwgmj\ActivationStore.
Event[413]:
Log Name: System
Date: 2016-09-16T13:20:57.896
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\34791E63.CanonInkjetPrintUtility_2.6.0.5_neutral__6e5tt8cgb93ep\Activatio
Event[414]:
Log Name: System
Date: 2016-09-16T13:21:17.841
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\8075Queenloft.VideoEditorMaster_1.1.11.0_x64__g5dqhteqemct8\ActivationSto
Event[415]:
Log Name: System
Date: 2016-09-16T13:21:21.952
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy\ActivationStore.dat was c
Event[416]:
Log Name: System
Date: 2016-09-16T13:23:32.175
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
ckages\king.com.CandyCrushSodaSaga_1.73.900.0_x86__kgqvnymyfvs32\ActivationStore
Event[417]:
Log Name: System
Source: Microsoft-Windows-UserModePowerService
Date: 2016-09-16T13:24:26.986
Event ID: 22
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Reapply power settings upon completion of the provisioning engine's turn 1
Event[418]:
Log Name: System
Date: 2016-09-16T13:24:27.485
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[419]:
Log Name: System
Date: 2016-09-16T13:29:14.688
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'WdFilter' (10.0, ?2016?-?07?-?15T22:25:21.000000000Z) has su
Event[420]:
Log Name: System
Date: 2016-09-16T13:29:29.415
Event ID: 16
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The access history in hive \??\C:\WINDOWS\system32\Config\Elam was cleared updat
Event[421]:
Log Name: System
Source: NETLOGON
Date: 2016-09-16T13:29:40.006
Event ID: 3095
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
This computer is configured as a member of a workgroup, not as a member of a dom
ain. The Netlogon service does not need to run in this configuration.
Event[422]:
Log Name: System
Date: 2016-09-16T13:29:55.537
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Windows Biometric Service service was changed from demand
Event[423]:
Log Name: System
Source: Microsoft-Windows-TerminalServices-RemoteConnectionManager
Date: 2016-09-16T13:31:24.569
Event ID: 1056
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A new self signed certificate to be used for RD Session Host Server authenticati
on on SSL connections was generated. The name on this certificate is COMPOOT. Th
e SHA1 hash of the certificate is in the event data.
Event[424]:
Log Name: System
Source: Microsoft-Windows-Winlogon
Date: 2016-09-16T15:36:29.885
Event ID: 7001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
User Logon Notification for Customer Experience Improvement Program
Event[425]:
Log Name: System
Source: Microsoft-Windows-GroupPolicy
Date: 2016-09-16T15:36:31.712
Event ID: 1501
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-21-4155932252-3747194214-914089273-1001
User Name: COMPOOT\Cap
Computer: COMPOOT
Description:
The Group Policy settings for the user were processed successfully. There were n
o changes detected since the last successful processing of Group Policy.
Event[426]:
Log Name: System
Date: 2016-09-16T15:36:40.431
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
The application-specific permission settings do not grant Local Activation permi
ssion for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (U
sing LRPC) running in the application container Unavailable SID (Unavailable). T
his security permission can be modified using the Component Services administrat
ive tool.
Event[427]:
Log Name: System
Date: 2016-09-16T15:36:40.431
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[428]:
Log Name: System
Source: Lfsvc
Date: 2016-09-16T15:36:42.728
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Geolocation positioning is enabled.
Event[429]:
Log Name: System
Date: 2016-09-16T15:37:11.423
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Microsoft Tunnel Miniport Adapter Driver

File Name: \SystemRoot\System32\drivers\tunnel.sys
Account:
Event[430]:
Log Name: System
Date: 2016-09-16T15:37:12.965
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver nettun.inf_amd64_e4928
82a4d9613a4\nettun.inf for Device Instance ID SWD\IP_TUNNEL_VBUS\TEREDO_TUNNEL_D
EVICE with the following status: 0x0.
Event[431]:
Log Name: System
Date: 2016-09-16T15:37:15.566
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver nettun.inf_amd64_e4928
82a4d9613a4\nettun.inf for Device Instance ID SWD\IP_TUNNEL_VBUS\ISATAP_0 with t
Event[432]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The speed of processor 5 in group 0 is being limited by system firmware. The pro
cessor has been in this reduced performance state for 1 seconds since the last r
eport.
Event[433]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[434]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[435]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[436]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[437]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[438]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[439]:
Log Name: System
Date: 2016-09-16T15:37:33.049
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[440]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T15:45:17.287
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[441]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T15:45:17.318
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[442]:
Log Name: System
Date: 2016-09-16T15:47:49.009
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LR
PC) running in the application container Unavailable SID (Unavailable). This sec
urity permission can be modified using the Component Services administrative too
l.
Event[443]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T15:47:59.959
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[444]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T15:48:14.573
Event ID: 5060
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[445]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T15:48:18.622
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[446]:
Log Name: System
Date: 2016-09-16T15:48:30.989
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
l.
Event[447]:
Log Name: System
Date: 2016-09-16T15:48:33.310
Event ID: 42
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The system is entering sleep.
Sleep Reason: Button or Lid
Event[448]:
Log Name: System
Date: 2016-09-16T15:48:34.275
Event ID: 107
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The system has resumed from sleep.
Event[449]:
Log Name: System
Date: 2016-09-16T20:00:37.500
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The system time has changed to ?2016?-?09?-?17T00:00:37.500000000Z from ?2016?-?
09?-?16T19:48:34.275543900Z.
Change Reason: System time synchronized with the hardware clock.
Event[450]:
Log Name: System
Source: BROWSER
Date: 2016-09-16T20:00:38.087
Event ID: 8033
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The browser has forced an election on network \Device\NetBT_Tcpip_{58369B7C-619A
-4B5C-8C10-297ADEF39B1D} because a master browser was stopped.
Event[451]:
Log Name: System
Source: MEIx64
Date: 2016-09-16T20:00:38.021
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A

Computer: COMPOOT
Description:
Event[452]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:00:38.253
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[453]:
Log Name: System
Date: 2016-09-16T20:00:38.337
Event ID: 131
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Firmware S3 times. ResumeCount: 1, FullResume: 712, AverageResume: 712
Event[454]:
Log Name: System
Source: Microsoft-Windows-Power-Troubleshooter
Date: 2016-09-16T20:00:47.019
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
The system has returned from a low power state.
Sleep Time: ?2016?-?09?-?16T19:48:30.084038400Z
Wake Time: ?2016?-?09?-?17T00:00:38.512682000Z
Wake Source: Power Button
Event[455]:
Log Name: System
Date: 2016-09-16T20:00:49.095
Event ID: 10016

Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{3185A766-B338-11E4-A71E-12E3F512A338}
and APPID
{7006698D-2974-4091-A424-85DD0B909E23}
ive tool.
Event[456]:
Log Name: System
Source: Microsoft-Windows-WindowsUpdateClient
Date: 2016-09-16T20:06:07.140
Event ID: 44
Task: Windows Update Agent
Level: Information
Opcode: Download
Keyword: Download,Started
User: S-1-5-18
Computer: COMPOOT
Description:
Windows Update started downloading an update.
Event[457]:
Log Name: System
Date: 2016-09-16T20:06:08.489
Event ID: 44
Level: Information
Opcode: Download
User: S-1-5-18
Computer: COMPOOT
Description:
Event[458]:
Log Name: System
Date: 2016-09-16T20:06:08.489
Event ID: 44
Level: Information
Opcode: Download
User: S-1-5-18
Computer: COMPOOT
Description:
Event[459]:
Log Name: System
Date: 2016-09-16T20:06:08.489
Event ID: 44
Level: Information
Opcode: Download
User: S-1-5-18
Computer: COMPOOT
Description:
Event[460]:
Log Name: System
Date: 2016-09-16T20:06:08.575
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Windows Modules Installer service was changed from demand
Event[461]:
Log Name: System
Date: 2016-09-16T20:09:10.866
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume OS (\Device\HarddiskVolumeShadowCopy1) is healthy. No action is needed.
Event[462]:
Log Name: System
Date: 2016-09-16T20:22:46.960
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18

Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Wacom Hid Router

File Name: \SystemRoot\System32\drivers\wachidrouter.sys
Account:
Event[463]:
Log Name: System
Date: 2016-09-16T20:22:47.070
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: KMDF Driver

File Name: \SystemRoot\System32\drivers\hidkmdf.sys
Account:
Event[464]:
Log Name: System
Date: 2016-09-16T20:22:48.463
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver wachidrouter_pro.inf_a
md64_6670a088cf27fcab\wachidrouter_pro.inf for Device Instance ID USB\VID_056A&P
ID_0304\6&357AB1E9&0&1 with the following status: 0x0.
Event[465]:
Log Name: System
Date: 2016-09-16T20:22:52.481
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
ver
Service
Service
Service
Service
Name: Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Dri
File Name: \SystemRoot\system32\DRIVERS\silabenm.sys
Account:
Event[466]:
Log Name: System
Date: 2016-09-16T20:22:52.509
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service silabenm for Device I
nstance ID USB\VID_10C4&PID_EA60\6&357AB1E9&0&3 with the following status: 0.
Event[467]:
Log Name: System
Date: 2016-09-16T20:22:52.512
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Silicon Labs CP210x USB to UART Bridge Driver

File Name: \SystemRoot\system32\DRIVERS\silabser.sys
Account:
Event[468]:
Log Name: System
Date: 2016-09-16T20:22:52.520
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service silabser for Device I
nstance ID USB\VID_10C4&PID_EA60\6&357AB1E9&0&3 with the following status: 0.
Event[469]:
Log Name: System
Date: 2016-09-16T20:22:53.272
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver slabvcp.inf_amd64_a623
214392a3a1b9\slabvcp.inf for Device Instance ID USB\VID_10C4&PID_EA60\6&357AB1E9
&0&3 with the following status: 0x0.
Event[470]:
Log Name: System
Date: 2016-09-16T20:22:53.862
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: Wacom Router Filter Driver

File Name: \SystemRoot\System32\drivers\wacomrouterfilter.sys
Account:
Event[471]:
Log Name: System
Date: 2016-09-16T20:22:56.304
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver wacomrouterfilter.inf_
amd64_0e11478b3fe0363f\wacomrouterfilter.inf for Device Instance ID HID\VID_056A
&PID_0304&COL01\7&2B2FB064&1&0000 with the following status: 0x0.
Event[472]:
Log Name: System

Source: User32
Date: 2016-09-16T20:34:50.560
Event ID: 1074
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-21-4155932252-3747194214-914089273-1001
Computer: COMPOOT
Description:
The process C:\WINDOWS\explorer.exe (COMPOOT) has initiated the restart of compu
ter COMPOOT on behalf of user COMPOOT\Cap for the following reason: Other (Unpla
nned)
Reason Code: 0x0
Shutdown Type: restart
Comment:
Event[473]:
Log Name: System
Source: BROWSER
Date: 2016-09-16T20:34:59.445
Event ID: 8033
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[474]:
Log Name: System
Date: 2016-09-16T20:34:58.973
Event ID: 7002
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
User Logoff Notification for Customer Experience Improvement Program
Event[475]:
Log Name: System
Source: Microsoft-Windows-DNS-Client
Date: 2016-09-16T20:35:10.303
Event ID: 1014
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-20
User Name: NT AUTHORITY\NETWORK SERVICE

Computer: COMPOOT
Description:
Name resolution for the name isatap.oneonta.edu timed out after none of the conf
igured DNS servers responded.
Event[476]:
Log Name: System
Date: 2016-09-16T20:35:32.475
Event ID: 7011
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A timeout (30000 milliseconds) was reached while waiting for a transaction respo
nse from the AppReadiness service.
Event[477]:
Log Name: System
Date: 2016-09-16T20:52:49.288
Event ID: 42
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Sleep Reason: Button or Lid
Event[478]:
Log Name: System
Date: 2016-09-16T20:52:50.048
Event ID: 107
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[479]:
Log Name: System
Date: 2016-09-16T20:53:26.500
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
09?-?17T00:52:50.048105600Z.
Event[480]:
Log Name: System
Source: MEIx64
Date: 2016-09-16T20:53:26.957
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[481]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:53:27.191
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[482]:
Log Name: System
Date: 2016-09-16T20:53:27.254
Event ID: 131
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Firmware S3 times. ResumeCount: 2, FullResume: 705, AverageResume: 708
Event[483]:
Log Name: System
Source: Microsoft-Windows-Power-Troubleshooter
Date: 2016-09-16T20:53:30.364
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
The system has returned from a low power state.
Sleep Time: ?2016?-?09?-?17T00:52:48.427330400Z
Wake Time: ?2016?-?09?-?17T00:53:27.377104300Z
Wake Source: Power Button
Event[484]:
Log Name: System
Source: EventLog
Date: 2016-09-16T20:59:22.245
Event ID: 6008
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The previous system shutdown at 8:29:52 PM on ?9/?16/?2016 was unexpected.
Event[485]:
Log Name: System
Source: EventLog
Date: 2016-09-16T20:59:22.245
Event ID: 6009
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[486]:
Log Name: System
Source: EventLog
Date: 2016-09-16T20:59:22.245
Event ID: 6005
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[487]:
Log Name: System
Source: EventLog
Date: 2016-09-16T20:59:22.391
Event ID: 6013
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[488]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 12
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[489]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 153
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
UCCESS.
Event[490]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 20
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The last shutdown's success status was false. The last boot's success status was
true.
Event[491]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 27
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[492]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 25
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[493]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 18
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
There are 0x1 boot options on this system.
Event[494]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 32
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18

Computer: COMPOOT
Description:
Event[495]:
Log Name: System
Date: 2016-09-16T20:58:36.804
Event ID: 30
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[496]:
Log Name: System
Date: 2016-09-16T20:58:37.656
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[497]:
Log Name: System
Date: 2016-09-16T20:58:37.656
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[498]:
Log Name: System
Date: 2016-09-16T20:58:37.657
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'WdFilter' (10.0, ?2016?-?07?-?15T22:25:21.000000000Z) has su
Event[499]:
Log Name: System
Date: 2016-09-16T20:58:42.686
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[500]:
Log Name: System
Date: 2016-09-16T20:58:43.031
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[501]:
Log Name: System
Date: 2016-09-16T20:58:43.141
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[502]:
Log Name: System
Date: 2016-09-16T20:58:43.162
Event ID: 41
Task: N/A
Level: Critical
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The system has rebooted without cleanly shutting down first. This error could be
caused if the system stopped responding, crashed, or lost power unexpectedly.
Event[503]:
Log Name: System
Date: 2016-09-16T20:58:43.295
Event ID: 172
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[504]:
Log Name: System
Date: 2016-09-16T20:58:43.910
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[505]:
Log Name: System
Date: 2016-09-16T20:58:44.355
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[506]:
Log Name: System
Date: 2016-09-16T20:58:45.507
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
File System Filter 'WRkrn' (6.1, ?2015?-?07?-?22T11:20:08.000000000Z) has succes
sfully loaded and registered with Filter Manager.
Event[507]:
Log Name: System
Date: 2016-09-16T20:58:46.863
Event ID: 10114
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
vice again.
Event[508]:
Log Name: System
Date: 2016-09-16T20:58:46.863
Event ID: 219
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[509]:
Log Name: System
Source: MEIx64
Date: 2016-09-16T20:58:48.881
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[510]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T20:58:49.068
Event ID: 7036
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[511]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T20:58:49.084
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[512]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T20:58:49.084
Event ID: 7001
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[513]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T20:58:49.084
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[514]:
Log Name: System
Source: Netwtw04
Date: 2016-09-16T20:58:49.084
Event ID: 7002
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[515]:
Log Name: System
Date: 2016-09-16T20:58:49.149
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[516]:
Log Name: System
Date: 2016-09-16T20:58:49.154
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[517]:
Log Name: System
Date: 2016-09-16T20:58:49.155
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[518]:
Log Name: System
Date: 2016-09-16T20:58:49.155
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[519]:
Log Name: System
Date: 2016-09-16T20:58:49.156
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:

Event[520]:
Log Name: System
Date: 2016-09-16T20:58:49.156
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[521]:
Log Name: System
Date: 2016-09-16T20:58:49.157
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[522]:
Log Name: System
Date: 2016-09-16T20:58:49.178
Event ID: 55
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[523]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:58:51.670
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[524]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T20:58:52.932
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[525]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T20:58:52.932
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[526]:
Log Name: System
Source: BthEnum
Date: 2016-09-16T20:58:52.932
Event ID: 1
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[527]:
Log Name: System
Source: Win32k
Date: 2016-09-16T20:59:12.421
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[528]:
Log Name: System
Date: 2016-09-16T20:59:15.005
Event ID: 16962
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[529]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
: 2
Event[530]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
e of: 1
Event[531]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
1
Event[532]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 34
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
of: *
Event[533]:
Log Name: System

Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 37
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
erableMode.
Event[534]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 36
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
g.
Event[535]:
Log Name: System
Source: BTHUSB
Date: 2016-09-16T20:59:22.282
Event ID: 35
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
etooth.
Event[536]:
Log Name: System
Date: 2016-09-16T20:59:24.667
Event ID: 50036
Level: Information
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:

Event[537]:
Log Name: System
Source: Win32k
Date: 2016-09-16T20:59:26.303
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[538]:
Log Name: System
Date: 2016-09-16T20:59:28.545
Event ID: 51046
Level: Information
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
Event[539]:
Log Name: System
Source: Microsoft-Windows-TaskScheduler
Date: 2016-09-16T20:59:36.213
Event ID: 414
Task: Task Misconfiguration
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Task Scheduler service found a misconfiguration in the NT TASK\Microsoft\Windows
\Workplace Join\Automatic-Workplace-Join definition. Additional Data: Error Valu
e: %SystemRoot%\System32\AutoWorkplace.exe.
Event[540]:
Log Name: System
Date: 2016-09-16T20:59:40.662
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[541]:
Log Name: System
Date: 2016-09-16T20:59:40.761
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[542]:
Log Name: System
Date: 2016-09-16T20:59:40.795
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[543]:
Log Name: System
Date: 2016-09-16T20:59:40.820
Event ID: 6
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[544]:
Log Name: System
Date: 2016-09-16T20:59:54.308
Event ID: 4000
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[545]:
Log Name: System
Date: 2016-09-16T21:00:27.083
Event ID: 7009
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A timeout was reached (30000 milliseconds) while waiting for the Asus WebStorage
Windows Service service to connect.
Event[546]:
Log Name: System
Date: 2016-09-16T21:00:27.083
Event ID: 7000
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The Asus WebStorage Windows Service service failed to start due to the following
error:
Event[547]:
Log Name: System
Date: 2016-09-16T21:00:28.067
Event ID: 7009
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
A timeout was reached (30000 milliseconds) while waiting for the DriverMFTServic
e service to connect.
Event[548]:
Log Name: System

Date: 2016-09-16T21:00:28.067
Event ID: 7000
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The DriverMFTService service failed to start due to the following error:
Event[549]:
Log Name: System
Date: 2016-09-16T21:00:28.067
Event ID: 7026
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
dam
Event[550]:
Log Name: System
Date: 2016-09-16T21:00:29.848
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Windows Modules Installer service was changed from auto st
art to demand start.
Event[551]:
Log Name: System
Date: 2016-09-16T21:00:44.564
Event ID: 1500
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The Group Policy settings for the computer were processed successfully. There we
re no changes detected since the last successful processing of Group Policy.

Event[552]:
Log Name: System
Date: 2016-09-16T21:01:09.664
Event ID: 7001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[553]:
Log Name: System
Date: 2016-09-16T21:01:15.872
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
l.
Event[554]:
Log Name: System
Date: 2016-09-16T21:01:23.122
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[555]:
Log Name: System
Date: 2016-09-16T21:01:23.122
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[556]:
Log Name: System
Date: 2016-09-16T21:01:23.122
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[557]:
Log Name: System
Date: 2016-09-16T21:01:23.122
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[558]:
Log Name: System
Date: 2016-09-16T21:02:14.686
Event ID: 7040
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
The start type of the Windows Modules Installer service was changed from demand
Event[559]:
Log Name: System
Date: 2016-09-16T21:12:42.012
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume F: (\Device\HarddiskVolume6) is healthy. No action is needed.
Event[560]:
Log Name: System
Date: 2016-09-16T21:12:52.311
Event ID: 10000
Task: Installation or update of device drivers.
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
A driver package which uses user-mode driver framework version 2.19.0 is being i
nstalled on device SWD\WPDBUSENUM\{DD2A7214-7C71-11E6-8284-3402866514F8}#0000000
000100000.
Event[561]:
Log Name: System
Date: 2016-09-16T21:12:52.366
Event ID: 10001
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The UMDF service WpdFs (CLSID {112DE495-AC4C-46F8-B663-6A4266C53313}) was instal
led. It requires framework version 2.19.0 or higher.
Event[562]:
Log Name: System
Date: 2016-09-16T21:12:52.688
Event ID: 10100
Level: Information
Opcode: Stop
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
The driver package installation has succeeded.
Event[563]:
Log Name: System
Date: 2016-09-16T21:12:53.542
Event ID: 7045
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
Service
Service
Service
Service
Service
Name: WUDFWpdFs
File Name: \SystemRoot\system32\DRIVERS\WUDFRd.sys
Account:
Event[564]:
Log Name: System
Date: 2016-09-16T21:12:53.677
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service WUDFWpdFs for Device
Instance ID SWD\WPDBUSENUM\{DD2A7214-7C71-11E6-8284-3402866514F8}#00000000001000
00 with the following status: 0.
Event[565]:
Log Name: System
Source: Microsoft-Windows-WPDClassInstaller
Date: 2016-09-16T21:12:57.115
Event ID: 24576
Task: Driver Installation
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Drivers were successfully installed for device WPD Device.
Event[566]:
Log Name: System
Date: 2016-09-16T21:12:59.902
Event ID: 24577
Task: Driver Post-Install Configuration
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Media player and imaging program compatibility layers were successfully register
ed for device %1. Layer bits %2 were requested, layer bits %3 were registered.
Event[567]:
Log Name: System
Date: 2016-09-16T21:12:59.905
Event ID: 24579
Task: Driver Post-Install Configuration
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Autoplay registration was skipped for device %1.
Event[568]:
Log Name: System
Date: 2016-09-16T21:13:00.556
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver wpdfs.inf_amd64_4b4cfc
fa114bdc22\wpdfs.inf for Device Instance ID SWD\WPDBUSENUM\{DD2A7214-7C71-11E6-8
284-3402866514F8}#0000000000100000 with the following status: 0x0.
Event[569]:
Log Name: System
Source: Lfsvc
Date: 2016-09-16T21:16:26.454
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Geolocation positioning is enabled.
Event[570]:
Log Name: System
Date: 2016-09-16T21:25:12.958
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[571]:
Log Name: System
Date: 2016-09-16T21:25:12.959
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[572]:
Log Name: System
Date: 2016-09-16T21:25:12.960
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[573]:
Log Name: System
Date: 2016-09-16T21:25:12.960
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[574]:
Log Name: System
Date: 2016-09-16T21:25:12.960
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[575]:
Log Name: System
Date: 2016-09-16T21:25:12.960
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[576]:
Log Name: System
Date: 2016-09-16T21:25:12.961
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[577]:
Log Name: System
Date: 2016-09-16T21:25:12.961
Event ID: 37
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
eport.
Event[578]:
Log Name: System
Date: 2016-09-16T21:29:01.694
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service silabenm for Device I
nstance ID USB\VID_10C4&PID_EA60\6&4FB3F5D&0&3 with the following status: 0.
Event[579]:
Log Name: System

Date: 2016-09-16T21:29:01.712
Event ID: 20003
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management has concluded the process to add Service silabser for Device I
nstance ID USB\VID_10C4&PID_EA60\6&4FB3F5D&0&3 with the following status: 0.
Event[580]:
Log Name: System
Date: 2016-09-16T21:29:03.694
Event ID: 20001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Driver Management concluded the process to install driver slabvcp.inf_amd64_a623
214392a3a1b9\slabvcp.inf for Device Instance ID USB\VID_10C4&PID_EA60\6&4FB3F5D&
0&3 with the following status: 0x0.
Event[581]:
Log Name: System
Date: 2016-09-16T22:03:40.663
Event ID: 98
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Volume OS (\Device\HarddiskVolumeShadowCopy1) is healthy. No action is needed.
Event[582]:
Log Name: System
Source: User32
Date: 2016-09-16T22:12:53.533
Event ID: 1074
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: S-1-5-21-4155932252-3747194214-914089273-1001
Computer: COMPOOT
Description:
The process C:\WINDOWS\explorer.exe (COMPOOT) has initiated the power off of com
puter COMPOOT on behalf of user COMPOOT\Cap for the following reason: Other (Unp
lanned)
Reason Code: 0x0
Shutdown Type: power off
Comment:
Event[583]:
Log Name: System
Source: BROWSER
Date: 2016-09-16T22:12:59.628
Event ID: 8033
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[584]:
Log Name: System
Date: 2016-09-16T22:12:59.735
Event ID: 7002
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[585]:
Log Name: System
Source: Win32k
Date: 2016-09-16T22:13:00.501
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[586]:
Log Name: System
Date: 2016-09-16T22:13:04.246
Event ID: 42
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Sleep Reason: Application API
Event[587]:
Log Name: System
Source: EventLog
Date: 2016-09-18T13:55:20.906
Event ID: 6013
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[588]:
Log Name: System
Date: 2016-09-16T22:13:11.955
Event ID: 107
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[589]:
Log Name: System
Date: 2016-09-18T13:55:20.486
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
09?-?17T02:13:11.955512400Z.
Event[590]:
Log Name: System
Source: MEIx64
Date: 2016-09-18T13:55:20.937
Event ID: 2
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[591]:
Log Name: System
Date: 2016-09-18T13:55:21.251
Event ID: 30
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[592]:
Log Name: System
Date: 2016-09-18T13:55:21.251
Event ID: 18
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
There are 0x1 boot options on this system.
Event[593]:
Log Name: System
Date: 2016-09-18T13:55:21.252
Event ID: 32
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[594]:
Log Name: System
Date: 2016-09-18T13:55:21.252
Event ID: 25
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[595]:
Log Name: System
Date: 2016-09-18T13:55:21.252
Event ID: 27
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[596]:
Log Name: System
Source: BTHUSB
Date: 2016-09-18T13:55:22.425
Event ID: 18
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[597]:
Log Name: System
Date: 2016-09-18T13:56:50.174
Event ID: 7001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[598]:
Log Name: System

Date: 2016-09-18T13:56:56.627
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
l.
Event[599]:
Log Name: System
Date: 2016-09-18T13:56:57.517
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[600]:
Log Name: System
Date: 2016-09-18T13:56:57.517
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[601]:
Log Name: System
Source: Application Popup
Date: 2016-09-18T14:05:42.689
Event ID: 26
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Application popup: Webroot SecureAnywhere : Are you sure you want to uninstall?
Event[602]:
Log Name: System
Source: Virtual Disk Service
Date: 2016-09-18T14:09:18.306
Event ID: 3
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Service started.
Event[603]:
Log Name: System
Source: Virtual Disk Service
Date: 2016-09-18T14:19:17.188
Event ID: 4
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Service stopped.
Event[604]:
Log Name: System
Source: Microsoft-Windows-Time-Service
Date: 2016-09-18T15:10:39.439
Event ID: 158
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
The time provider 'VMICTimeProvider' has indicated that the current hardware and
operating environment is not supported and has stopped. This behavior is expect
ed for VMICTimeProvider on non-HyperV-guest environments. This may be the expect
ed behavior for the current provider in the current operating environment as wel
l.
Event[605]:
Log Name: System
Source: BROWSER
Date: 2016-09-18T15:29:26.016
Event ID: 8033
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
Event[606]:
Log Name: System
Date: 2016-09-18T15:29:26.036
Event ID: 134
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
NtpClient was unable to set a manual peer to use as a time source because of DNS
resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minu
tes and double the reattempt interval thereafter. The error was: No such host is
known. (0x80072AF9)
Event[607]:
Log Name: System
Date: 2016-09-18T15:29:26.225
Event ID: 7002
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[608]:
Log Name: System
Date: 2016-09-18T15:29:27.547
Event ID: 134
Task: N/A
Level: Warning
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
NtpClient was unable to set a manual peer to use as a time source because of DNS
resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minu
tes and double the reattempt interval thereafter. The error was: No such host is
known. (0x80072AF9)
Event[609]:
Log Name: System
Source: Win32k
Date: 2016-09-18T15:29:27.765
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[610]:
Log Name: System
Source: Win32k
Date: 2016-09-18T15:29:28.156
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[611]:
Log Name: System
Date: 2016-09-18T15:29:33.147
Event ID: 7001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[612]:
Log Name: System
Date: 2016-09-18T15:29:35.656
Event ID: 1501
Task: N/A
Level: Information
Opcode: Start
Keyword: N/A
User: S-1-5-21-4155932252-3747194214-914089273-1003
User Name: COMPOOT\captaintest
Computer: COMPOOT
Description:
The Group Policy settings for the user were processed successfully. There were n
o changes detected since the last successful processing of Group Policy.
Event[613]:
Log Name: System
Date: 2016-09-18T15:29:36.217
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
l.
Event[614]:
Log Name: System
Date: 2016-09-18T15:29:36.249
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[615]:
Log Name: System
Date: 2016-09-18T15:29:36.249
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[616]:
Log Name: System
Date: 2016-09-18T16:03:53.659
Event ID: 7002
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[617]:
Log Name: System
Source: Win32k
Date: 2016-09-18T16:03:54.055
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[618]:
Log Name: System

Source: Win32k
Date: 2016-09-18T16:03:54.102
Event ID: 267
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[619]:
Log Name: System
Date: 2016-09-18T16:04:00.426
Event ID: 7001
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-18
Computer: COMPOOT
Description:
Event[620]:
Log Name: System
Date: 2016-09-18T16:04:00.837
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-18
Computer: COMPOOT
Description:
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
l.
Event[621]:
Log Name: System
Date: 2016-09-18T16:04:00.868
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[622]:
Log Name: System
Date: 2016-09-18T16:04:00.868
Event ID: 10016
Task: N/A
Level: Error
Opcode: Info
Keyword: Classic
User: S-1-5-19
Computer: COMPOOT
Description:
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
ive tool.
Event[623]:
Log Name: System
Source: Netwtw04
Date: 2016-09-18T16:04:01.446
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[624]:
Log Name: System
Date: 2016-09-18T16:04:04.349
Event ID: 37
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
The time provider NtpClient is currently receiving valid time data from time.win
dows.com,0x9 (ntp.m|0x9|0.0.0.0:123->40.69.40.157:123).
Event[625]:
Log Name: System
Date: 2016-09-18T16:04:08.578
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: S-1-5-19
Computer: COMPOOT
Description:
09?-?18T20:04:04.352448900Z.
Change Reason: An application or system component changed the time.
Event[626]:
Log Name: System
Date: 2016-09-18T16:04:08.578
Event ID: 35
Task: N/A
Level: Information
Opcode: Info
Keyword: N/A
User: S-1-5-19
Computer: COMPOOT
Description:
The time service is now synchronizing the system time with the time source time.
windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->40.69.40.157:123).
Event[627]:
Log Name: System
Date: 2016-09-18T16:04:08.578
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: S-1-5-19
Computer: COMPOOT
Description:
09?-?18T20:04:08.578199600Z.
Event[628]:
Log Name: System
Date: 2016-09-18T16:04:08.591
Event ID: 1
Task: N/A
Level: Information
Opcode: Info
Keyword: Time
User: S-1-5-19
Computer: COMPOOT
Description:
09?-?18T20:04:08.592003200Z.
Event[629]:
Log Name: System
Source: NetBT
Date: 2016-09-18T16:04:38.717
Event ID: 4321
Task: N/A
Level: Error
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
The name "WORKGROUP
:1d" could not be registered on the interface with IP a
ddress 137.141.237.200. The computer with the IP address 137.141.238.76 did not
allow the name to be claimed by this computer.
Event[630]:
Log Name: System
Source: Netwtw04
Date: 2016-09-18T16:07:31.804
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A
Event[631]:
Log Name: System
Source: Netwtw04
Date: 2016-09-18T16:11:54.887
Event ID: 5010
Task: N/A
Level: Information
Opcode: N/A
Keyword: Classic
User: N/A
User Name: N/A
Computer: COMPOOT
Description:
N/A

Eventlog

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Eventlog

Uploaded by

Copyright:

Available Formats

Event[0]:

Log Name: System

User Name: NT AUTHORITY\SYSTEM

Processor 2 in group 0 exposes the following power management capabilities:

User Name: NT AUTHORITY\SYSTEM

Processor 1 in group 0 exposes the following power management capabilities:

User Name: NT AUTHORITY\SYSTEM

Processor 7 in group 0 exposes the following power management capabilities:

1 keys and creating 1 modified pages.

Log Name: System

Name: Intel(R) Extreme Tuning Utility Device Driver

Name: Microsoft Kernel Debug Network Miniport (NDIS 6.20)

Name: Realtek RT640 NT Driver

Name: Intel(R) Wireless Bluetooth(R)

Name: Intel Bluetooth Service

Name: Bluetooth Radio USB Driver

File Name: \SystemRoot\system32\DRIVERS\BTHport.sys

Name: Service for Realtek HD Audio (WDM)

Name: UMDF Reflector service for SensorsSimulatorDriver

User Name: NT AUTHORITY\SYSTEM

Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)

File Name: \SystemRoot\System32\drivers\AsHIDSwitch64.sys

Name: Intel(R) Management Engine Interface

File Name: \SystemRoot\system32\DRIVERS\MSPCLOCK.sys

Name: Microsoft Streaming Quality Manager Proxy

Name: Microsoft Streaming Service Proxy

Name: Microsoft Streaming Tee/Sink-to-Sink Converter

00F822FE8A}\{0A4252A0-7E70-11D0-A5D6-28DB04C10000} with the following status: 0x

Name: Microsoft Trusted Audio Drivers

Log Name: System

User Name: NT AUTHORITY\SYSTEM

Name: Printer Extensions and Notifications

Name: ELAN Input Device

Name: ___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit

Name: NVIDIA Display Driver Service

Name: Bluetooth Device (Personal Area Network)

he following status: 0x0.

Name: Virtual WiFi Miniport Service

Name: Bluetooth Low Energy Driver

Name: USB Video Device (WDM)

Name: Service for NVIDIA High Definition Audio Driver

User Name: NT AUTHORITY\SYSTEM

Name: Bluetooth Enumerator Service

Name: Bluetooth Device (RFCOMM Protocol TDI)

Log Name: System

Name: Bluetooth Stereo

Log Name: System

User Name: NT AUTHORITY\SYSTEM

Name: Origin Client Service

Name: Wacom Professional Service

Service Start Type: auto start

A service was installed in the system.

Name: ASLDR Service

Name: Google Update Service (gupdate)

Service Account: LocalSystem

Name: Google Update Service (gupdatem)

Name: Adobe Flash Player Update Service

Name: Skype Updater

Name: ATKGFNEX Service

Name: Thunderbolt(TM) Service

Name: Intel(R) Capability Licensing Service TCP IP Interface

Name: ASUS Charger Driver

File Name: \SystemRoot\System32\drivers\WRkrn.sys