| Message | Id | Version | Qualifiers | Level | Task | Opcode | Keywords | RecordId | ProviderName | ProviderId | LogName | ProcessId | ThreadId | MachineName | UserId | TimeCreated | ActivityId | RelatedActivityId | ContainerLog | MatchedQueryIds | Bookmark | LevelDisplayName | OpcodeDisplayName | TaskDisplayName | KeywordsDisplayNames | Properties |
|---|
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 14 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 384 | n-h1-761264-4.cbci-761264-4.local | S-1-5-18 | 11/4/2020 8:34:28 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 13 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 32 | n-h1-761264-4 | S-1-5-18 | 11/4/2020 7:52:56 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 12 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 32 | WIN-5T344G8GM1H | S-1-5-18 | 11/4/2020 7:51:31 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 11 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 124 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 9:41:29 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 10 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 32 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 9:27:15 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 9 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 168 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 9:26:40 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 8 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 372 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 9:23:00 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 7 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 188 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 8:54:48 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 6 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 188 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 8:50:03 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 5 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 32 | WIN-5T344G8GM1H | S-1-5-18 | 1/19/2018 8:23:55 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 4 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 372 | WIN-5T344G8GM1H | S-1-5-18 | 1/16/2018 6:06:24 PM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 3 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 32 | WIN-5T344G8GM1H | S-1-5-18 | 1/16/2018 5:42:10 PM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 2 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 1576 | WIN-5T344G8GM1H | S-1-5-18 | 1/16/2018 5:01:58 PM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| WCIFS filter registration succeeded | 2 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 1 | Microsoft-Windows-Containers-Wcifs | aec5c129-7c10-407d-be97-91a042c61aaa | Microsoft-Windows-Containers-Wcifs/Operational | 4 | 200 | WIN-PD8DQPRRTAO | S-1-5-18 | 1/17/2018 3:01:14 AM | | | microsoft-windows-containers-wcifs/operational | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |