MessageIdVersionQualifiersLevelTaskOpcodeKeywordsRecordIdProviderNameProviderIdLogNameProcessIdThreadIdMachineNameUserIdTimeCreatedActivityIdRelatedActivityIdContainerLogMatchedQueryIdsBookmarkLevelDisplayNameOpcodeDisplayNameTaskDisplayNameKeywordsDisplayNamesProperties
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808122Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042676n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:49:15 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808121Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042912n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:19:14 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "NT AUTHORITY\SYSTEM" updated Task Scheduler task "\Microsoft\Windows\WindowsUpdate\Scheduled Start"140041400-9223372036854775808120Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:01:25 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{786A2770-CEFE-4C44-B919-4FA57272EC69}" instance of the "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807119Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PM786a2770-cefe-4c44-b919-4fa57272ec69microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" , instance "{786A2770-CEFE-4C44-B919-4FA57272EC69}" , action "%SystemRoot%\System32\wsqmcons.exe" with return code 0.201242012-9223372036854775808118Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PM786a2770-cefe-4c44-b919-4fa57272ec69microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%SystemRoot%\System32\wsqmcons.exe" in instance "{786A2770-CEFE-4C44-B919-4FA57272EC69}" of task "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator".200142001-9223372036854775808117Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PM786a2770-cefe-4c44-b919-4fa57272ec69microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{786A2770-CEFE-4C44-B919-4FA57272EC69}" instance of the "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807116Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PM786a2770-cefe-4c44-b919-4fa57272ec69microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" , instance "%SystemRoot%\System32\wsqmcons.exe" with process ID 5080.129041290-9223372036854775808115Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{786A2770-CEFE-4C44-B919-4FA57272EC69}" instance of task "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" due to a time trigger condition.107041070-9223372036854775808114Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6045060n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 6:00:01 PM786a2770-cefe-4c44-b919-4fa57272ec69microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered on schedulerSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{CAAD91BE-AB77-47BB-B839-E25344C540A4}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807113Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMcaad91be-ab77-47bb-b839-e25344c540a4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Autochk\Proxy" , instance "{CAAD91BE-AB77-47BB-B839-E25344C540A4}" , action "%windir%\system32\rundll32.exe" with return code 0.201242012-9223372036854775808112Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMcaad91be-ab77-47bb-b839-e25344c540a4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\rundll32.exe" in instance "{CAAD91BE-AB77-47BB-B839-E25344C540A4}" of task "\Microsoft\Windows\Autochk\Proxy".200142001-9223372036854775808111Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMcaad91be-ab77-47bb-b839-e25344c540a4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{CAAD91BE-AB77-47BB-B839-E25344C540A4}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807110Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMcaad91be-ab77-47bb-b839-e25344c540a4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Autochk\Proxy" , instance "%windir%\system32\rundll32.exe" with process ID 4656.129041290-9223372036854775808109Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{CAAD91BE-AB77-47BB-B839-E25344C540A4}" instance of task "\Microsoft\Windows\Autochk\Proxy" due to system startup.118041180-9223372036854775808108Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:58:43 PMcaad91be-ab77-47bb-b839-e25344c540a4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808107Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042676n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:49:14 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "NT AUTHORITY\SYSTEM" updated Task Scheduler task "\Microsoft\Windows\WindowsUpdate\Scheduled Start"140041400-9223372036854775808106Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:36:32 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{8A93C393-24C0-4158-BE44-511DFF2C6F61}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807105Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:28:43 PM8a93c393-24c0-4158-be44-511dff2c6f61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "{8A93C393-24C0-4158-BE44-511DFF2C6F61}" , action "%windir%\System32\XblGameSaveTask.exe" with return code 0.201242012-9223372036854775808104Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:28:43 PM8a93c393-24c0-4158-be44-511dff2c6f61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\System32\XblGameSaveTask.exe" in instance "{8A93C393-24C0-4158-BE44-511DFF2C6F61}" of task "\Microsoft\XblGameSave\XblGameSaveTask".200142001-9223372036854775808103Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:28:43 PM8a93c393-24c0-4158-be44-511dff2c6f61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{8A93C393-24C0-4158-BE44-511DFF2C6F61}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807102Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:28:43 PM8a93c393-24c0-4158-be44-511dff2c6f61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "%windir%\System32\XblGameSaveTask.exe" with process ID 4852.129041290-9223372036854775808101Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:28:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" disabled Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"142041420-9223372036854775808100Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:44 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask disabledSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan"140041400-922337203685477580899Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{1B71B05E-EC8C-45F1-AC95-05B7A75D20D1}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580798Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM1b71b05e-ec8c-45f1-ac95-05b7a75d20d1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "{1B71B05E-EC8C-45F1-AC95-05B7A75D20D1}" , action "%windir%\system32\wermgr.exe" with return code 0.201242012-922337203685477580897Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM1b71b05e-ec8c-45f1-ac95-05b7a75d20d1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{2EAC9675-AF1A-4A40-AE09-5FB4154A625F}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580796Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM2eac9675-af1a-4a40-ae09-5fb4154a625fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "{2EAC9675-AF1A-4A40-AE09-5FB4154A625F}" , action "%systemroot%\system32\usoclient.exe" with return code 0.201242012-922337203685477580895Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM2eac9675-af1a-4a40-ae09-5fb4154a625fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"140041400-922337203685477580894Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\wermgr.exe" in instance "{1B71B05E-EC8C-45F1-AC95-05B7A75D20D1}" of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting".200142001-922337203685477580893Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM1b71b05e-ec8c-45f1-ac95-05b7a75d20d1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{1B71B05E-EC8C-45F1-AC95-05B7A75D20D1}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580792Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM1b71b05e-ec8c-45f1-ac95-05b7a75d20d1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "%windir%\system32\wermgr.exe" with process ID 4984.129041290-922337203685477580891Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{1B71B05E-EC8C-45F1-AC95-05B7A75D20D1}" instance of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" due to system startup.118041180-922337203685477580890Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM1b71b05e-ec8c-45f1-ac95-05b7a75d20d1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\usoclient.exe" in instance "{2EAC9675-AF1A-4A40-AE09-5FB4154A625F}" of task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan".200142001-922337203685477580889Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM2eac9675-af1a-4a40-ae09-5fb4154a625fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{2EAC9675-AF1A-4A40-AE09-5FB4154A625F}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580788Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM2eac9675-af1a-4a40-ae09-5fb4154a625fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "%systemroot%\system32\usoclient.exe" with process ID 980.129041290-922337203685477580887Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler could not launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" as scheduled. Instance "{2EAC9675-AF1A-4A40-AE09-5FB4154A625F}" is started now as required by the configuration option to start the task when available, if schedule is missed.114031140-922337203685477580886Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:43 PM2eac9675-af1a-4a40-ae09-5fb4154a625fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoMissed task startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580885Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:21:16 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{BCB7A7CB-E4F6-4057-9518-D734110C9141}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580784Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:20:33 PMbcb7a7cb-e4f6-4057-9518-d734110c9141microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "{BCB7A7CB-E4F6-4057-9518-D734110C9141}" , action "%windir%\system32\compattelrunner.exe" with return code 0.201242012-922337203685477580883Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041844n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:20:33 PMbcb7a7cb-e4f6-4057-9518-d734110c9141microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{A4A0AEAA-C0DE-4FFF-A64A-391F86F72E6C}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580782Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:44 PMa4a0aeaa-c0de-4fff-a64a-391f86f72e6cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "{A4A0AEAA-C0DE-4FFF-A64A-391F86F72E6C}" , action "%systemroot%\system32\cmd.exe" with return code 0.201242012-922337203685477580881Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:44 PMa4a0aeaa-c0de-4fff-a64a-391f86f72e6cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\cmd.exe" in instance "{A4A0AEAA-C0DE-4FFF-A64A-391F86F72E6C}" of task "\Microsoft\Windows\Software Inventory Logging\Configuration".200142001-922337203685477580880Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:43 PMa4a0aeaa-c0de-4fff-a64a-391f86f72e6cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{A4A0AEAA-C0DE-4FFF-A64A-391F86F72E6C}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580779Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:43 PMa4a0aeaa-c0de-4fff-a64a-391f86f72e6cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "%systemroot%\system32\cmd.exe" with process ID 3880.129041290-922337203685477580878Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:43 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{A4A0AEAA-C0DE-4FFF-A64A-391F86F72E6C}" instance of task "\Microsoft\Windows\Software Inventory Logging\Configuration" due to system startup.118041180-922337203685477580877Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:43 PMa4a0aeaa-c0de-4fff-a64a-391f86f72e6cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{F0A74A50-C0E3-404A-80CB-1214FE01A8BD}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580776Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf0a74a50-c0e3-404a-80cb-1214fe01a8bdmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{F0A74A50-C0E3-404A-80CB-1214FE01A8BD}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580875Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf0a74a50-c0e3-404a-80cb-1214fe01a8bdmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{F0A74A50-C0E3-404A-80CB-1214FE01A8BD}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580874Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf0a74a50-c0e3-404a-80cb-1214fe01a8bdmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{F0A74A50-C0E3-404A-80CB-1214FE01A8BD}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580773Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf0a74a50-c0e3-404a-80cb-1214fe01a8bdmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 4444.129041290-922337203685477580872Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{CFF29624-2C9E-4D2F-ACE3-40A39453C1D3}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580771Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMcff29624-2c9e-4d2f-ace3-40a39453c1d3microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{CFF29624-2C9E-4D2F-ACE3-40A39453C1D3}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580870Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMcff29624-2c9e-4d2f-ace3-40a39453c1d3microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{F3253E0E-452E-4EEC-94FF-29FCFEE2C8CB}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580769Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf3253e0e-452e-4eec-94ff-29fcfee2c8cbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{F3253E0E-452E-4EEC-94FF-29FCFEE2C8CB}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580868Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf3253e0e-452e-4eec-94ff-29fcfee2c8cbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{F3253E0E-452E-4EEC-94FF-29FCFEE2C8CB}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580867Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf3253e0e-452e-4eec-94ff-29fcfee2c8cbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{F3253E0E-452E-4EEC-94FF-29FCFEE2C8CB}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580766Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMf3253e0e-452e-4eec-94ff-29fcfee2c8cbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{CFF29624-2C9E-4D2F-ACE3-40A39453C1D3}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580865Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMcff29624-2c9e-4d2f-ace3-40a39453c1d3microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{CFF29624-2C9E-4D2F-ACE3-40A39453C1D3}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580764Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMcff29624-2c9e-4d2f-ace3-40a39453c1d3microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4368.129041290-922337203685477580863Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:27 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-712141-9\N-H2-712141-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580862Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:22 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{891F8588-6140-4B8D-828F-4E98BCC58431}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580761Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:18 PM891f8588-6140-4b8d-828f-4e98bcc58431microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{891F8588-6140-4B8D-828F-4E98BCC58431}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580860Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:18 PM891f8588-6140-4b8d-828f-4e98bcc58431microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{891F8588-6140-4B8D-828F-4E98BCC58431}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580859Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:18 PM891f8588-6140-4b8d-828f-4e98bcc58431microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{891F8588-6140-4B8D-828F-4E98BCC58431}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580758Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:18 PM891f8588-6140-4b8d-828f-4e98bcc58431microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "taskhostw.exe" with process ID 3732.129041290-922337203685477580857Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:18 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{2A890376-A06E-411F-89EB-8F912C042F96}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580756Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM2a890376-a06e-411f-89eb-8f912c042f96microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{2A890376-A06E-411F-89EB-8F912C042F96}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580855Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM2a890376-a06e-411f-89eb-8f912c042f96microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{2A890376-A06E-411F-89EB-8F912C042F96}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580854Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM2a890376-a06e-411f-89eb-8f912c042f96microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{2A890376-A06E-411F-89EB-8F912C042F96}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580753Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM2a890376-a06e-411f-89eb-8f912c042f96microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 3548.129041290-922337203685477580852Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{8EC98C08-1A1F-4C22-9974-2CC172D970C9}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580751Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM8ec98c08-1a1f-4c22-9974-2cc172d970c9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{8EC98C08-1A1F-4C22-9974-2CC172D970C9}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580850Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM8ec98c08-1a1f-4c22-9974-2cc172d970c9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{8EC98C08-1A1F-4C22-9974-2CC172D970C9}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580849Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM8ec98c08-1a1f-4c22-9974-2cc172d970c9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{8EC98C08-1A1F-4C22-9974-2CC172D970C9}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580748Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PM8ec98c08-1a1f-4c22-9974-2cc172d970c9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 3804.129041290-922337203685477580847Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:17 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{B3210514-F9EE-44FC-A431-BF6CE2F90A9B}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580746Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:04 PMb3210514-f9ee-44fc-a431-bf6ce2f90a9bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "{B3210514-F9EE-44FC-A431-BF6CE2F90A9B}" , action "%windir%\system32\wermgr.exe" with return code 0.201242012-922337203685477580845Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:04 PMb3210514-f9ee-44fc-a431-bf6ce2f90a9bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{015E653E-F3C0-4CD9-951E-0E35096AE71A}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580744Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM015e653e-f3c0-4cd9-951e-0e35096ae71amicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{015E653E-F3C0-4CD9-951E-0E35096AE71A}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580843Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM015e653e-f3c0-4cd9-951e-0e35096ae71amicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{08FF97BD-1D61-400D-BE32-C84D8BB44214}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580742Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM08ff97bd-1d61-400d-be32-c84d8bb44214microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{08FF97BD-1D61-400D-BE32-C84D8BB44214}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580841Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM08ff97bd-1d61-400d-be32-c84d8bb44214microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{08FF97BD-1D61-400D-BE32-C84D8BB44214}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580840Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042252n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM08ff97bd-1d61-400d-be32-c84d8bb44214microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{08FF97BD-1D61-400D-BE32-C84D8BB44214}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580739Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042252n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PM08ff97bd-1d61-400d-be32-c84d8bb44214microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{FAA04A4A-6483-436A-AFCE-AE601E7180B7}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580738Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMfaa04a4a-6483-436a-afce-ae601e7180b7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{FAA04A4A-6483-436A-AFCE-AE601E7180B7}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580837Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMfaa04a4a-6483-436a-afce-ae601e7180b7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{FAA04A4A-6483-436A-AFCE-AE601E7180B7}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580836Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6044164n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMfaa04a4a-6483-436a-afce-ae601e7180b7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{FAA04A4A-6483-436A-AFCE-AE601E7180B7}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580735Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6044164n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMfaa04a4a-6483-436a-afce-ae601e7180b7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580734Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMbb078bbc-4cdd-4901-9d99-917c9259ae90microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580833Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:03 PMbb078bbc-4cdd-4901-9d99-917c9259ae90microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{EDEDDC52-B7B1-492C-9231-CF88360D2C07}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580732Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMededdc52-b7b1-492c-9231-cf88360d2c07microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{EDEDDC52-B7B1-492C-9231-CF88360D2C07}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580831Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMededdc52-b7b1-492c-9231-cf88360d2c07microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{A56138CD-D597-4122-B7EA-BCA690F12287}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580730Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMa56138cd-d597-4122-b7ea-bca690f12287microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{A56138CD-D597-4122-B7EA-BCA690F12287}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580829Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMa56138cd-d597-4122-b7ea-bca690f12287microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{A56138CD-D597-4122-B7EA-BCA690F12287}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580828Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042252n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMa56138cd-d597-4122-b7ea-bca690f12287microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{A56138CD-D597-4122-B7EA-BCA690F12287}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580727Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042252n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMa56138cd-d597-4122-b7ea-bca690f12287microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{26A5A467-A1AD-4A40-8785-35F2B507389F}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580726Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PM26a5a467-a1ad-4a40-8785-35f2b507389fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{26A5A467-A1AD-4A40-8785-35F2B507389F}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580825Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PM26a5a467-a1ad-4a40-8785-35f2b507389fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\wermgr.exe" in instance "{B3210514-F9EE-44FC-A431-BF6CE2F90A9B}" of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting".200142001-922337203685477580824Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMb3210514-f9ee-44fc-a431-bf6ce2f90a9bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{B3210514-F9EE-44FC-A431-BF6CE2F90A9B}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580723Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMb3210514-f9ee-44fc-a431-bf6ce2f90a9bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "%windir%\system32\wermgr.exe" with process ID 4124.129041290-922337203685477580822Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{00000000-0000-0000-0000-000000000000}" instance of task "\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents" according to an event trigger.108041080-922337203685477580821Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042440n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:19:02 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered on eventSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{EDEDDC52-B7B1-492C-9231-CF88360D2C07}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580820Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:53 PMededdc52-b7b1-492c-9231-cf88360d2c07microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{EDEDDC52-B7B1-492C-9231-CF88360D2C07}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580719Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:53 PMededdc52-b7b1-492c-9231-cf88360d2c07microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{EDEDDC52-B7B1-492C-9231-CF88360D2C07}" instance of task "\Microsoft\Windows\CertificateServicesClient\SystemTask" due to system startup.118041180-922337203685477580818Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:53 PMededdc52-b7b1-492c-9231-cf88360d2c07microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{EAF71E8A-13D2-4DE3-A995-B48F7B0E883D}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580717Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:50 PMeaf71e8a-13d2-4de3-a995-b48f7b0e883dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{EAF71E8A-13D2-4DE3-A995-B48F7B0E883D}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580816Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:50 PMeaf71e8a-13d2-4de3-a995-b48f7b0e883dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{A56138CD-D597-4122-B7EA-BCA690F12287}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" and will launch it as soon as instance "{26A5A467-A1AD-4A40-8785-35F2B507389F}" completes.324033240-922337203685477580815Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:47 PMa56138cd-d597-4122-b7ea-bca690f12287microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{015E653E-F3C0-4CD9-951E-0E35096AE71A}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580814Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:47 PM015e653e-f3c0-4cd9-951e-0e35096ae71amicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{015E653E-F3C0-4CD9-951E-0E35096AE71A}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580713Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042160n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:47 PM015e653e-f3c0-4cd9-951e-0e35096ae71amicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{08FF97BD-1D61-400D-BE32-C84D8BB44214}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" completes.324033240-922337203685477580812Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042444n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:47 PM08ff97bd-1d61-400d-be32-c84d8bb44214microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{FAA04A4A-6483-436A-AFCE-AE601E7180B7}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" completes.324033240-922337203685477580811Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:46 PMfaa04a4a-6483-436a-afce-ae601e7180b7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{26A5A467-A1AD-4A40-8785-35F2B507389F}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580810Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:46 PM26a5a467-a1ad-4a40-8785-35f2b507389fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{26A5A467-A1AD-4A40-8785-35F2B507389F}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758079Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042328n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:46 PM26a5a467-a1ad-4a40-8785-35f2b507389fmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{EAF71E8A-13D2-4DE3-A995-B48F7B0E883D}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-92233720368547758088Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:46 PMeaf71e8a-13d2-4de3-a995-b48f7b0e883dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{EAF71E8A-13D2-4DE3-A995-B48F7B0E883D}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758077Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042292n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:46 PMeaf71e8a-13d2-4de3-a995-b48f7b0e883dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\compattelrunner.exe" in instance "{BCB7A7CB-E4F6-4057-9518-D734110C9141}" of task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser".200142001-92233720368547758086Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042392n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMbcb7a7cb-e4f6-4057-9518-d734110c9141microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{BCB7A7CB-E4F6-4057-9518-D734110C9141}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758075Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042392n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMbcb7a7cb-e4f6-4057-9518-d734110c9141microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "%windir%\system32\compattelrunner.exe" with process ID 3244.129041290-92233720368547758084Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6042392n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-92233720368547758083Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041196n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMbb078bbc-4cdd-4901-9d99-917c9259ae90microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{BB078BBC-4CDD-4901-9D99-917C9259AE90}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758072Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041196n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMbb078bbc-4cdd-4901-9d99-917c9259ae90microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 3216.129041290-92233720368547758081Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational6041196n-h2-712141-9.cbci-712141-9.localS-1-5-185/4/2021 5:18:44 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]