MessageIdVersionQualifiersLevelTaskOpcodeKeywordsRecordIdProviderNameProviderIdLogNameProcessIdThreadIdMachineNameUserIdTimeCreatedActivityIdRelatedActivityIdContainerLogMatchedQueryIdsBookmarkLevelDisplayNameOpcodeDisplayNameTaskDisplayNameKeywordsDisplayNamesProperties
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808124Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722596n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:57:24 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808123Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:47:32 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{66655F20-74A8-492E-B70B-8882F9A11869}" instance of the "\Microsoft\Windows\Device Information\Device" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807122Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:47:03 AM66655f20-74a8-492e-b70b-8882f9a11869microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Device Information\Device" , instance "{66655F20-74A8-492E-B70B-8882F9A11869}" , action "%windir%\system32\devicecensus.exe" with return code 0.201242012-9223372036854775808121Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:47:03 AM66655f20-74a8-492e-b70b-8882f9a11869microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\Device Information\Device"140041400-9223372036854775808120Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:47:03 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\devicecensus.exe" in instance "{66655F20-74A8-492E-B70B-8882F9A11869}" of task "\Microsoft\Windows\Device Information\Device".200142001-9223372036854775808119Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:46:56 AM66655f20-74a8-492e-b70b-8882f9a11869microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{66655F20-74A8-492E-B70B-8882F9A11869}" instance of the "\Microsoft\Windows\Device Information\Device" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807118Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:46:56 AM66655f20-74a8-492e-b70b-8882f9a11869microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Device Information\Device" , instance "%windir%\system32\devicecensus.exe" with process ID 4108.129041290-9223372036854775808117Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:46:56 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{66655F20-74A8-492E-B70B-8882F9A11869}" instance of task "\Microsoft\Windows\Device Information\Device" due to a time trigger condition.107041070-9223372036854775808116Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:46:56 AM66655f20-74a8-492e-b70b-8882f9a11869microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered on schedulerSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808115Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:27:24 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{271DB4B4-A9B0-4299-A210-DC8017E0D976}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807114Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AM271db4b4-a9b0-4299-a210-dc8017e0d976microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Autochk\Proxy" , instance "{271DB4B4-A9B0-4299-A210-DC8017E0D976}" , action "%windir%\system32\rundll32.exe" with return code 0.201242012-9223372036854775808113Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AM271db4b4-a9b0-4299-a210-dc8017e0d976microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\rundll32.exe" in instance "{271DB4B4-A9B0-4299-A210-DC8017E0D976}" of task "\Microsoft\Windows\Autochk\Proxy".200142001-9223372036854775808112Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AM271db4b4-a9b0-4299-a210-dc8017e0d976microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{271DB4B4-A9B0-4299-A210-DC8017E0D976}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807111Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AM271db4b4-a9b0-4299-a210-dc8017e0d976microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Autochk\Proxy" , instance "%windir%\system32\rundll32.exe" with process ID 2512.129041290-9223372036854775808110Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{271DB4B4-A9B0-4299-A210-DC8017E0D976}" instance of task "\Microsoft\Windows\Autochk\Proxy" due to system startup.118041180-9223372036854775808109Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721784n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 3:06:53 AM271db4b4-a9b0-4299-a210-dc8017e0d976microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808108Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722596n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:57:23 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "NT AUTHORITY\SYSTEM" updated Task Scheduler task "\Microsoft\Windows\WindowsUpdate\Scheduled Start"140041400-9223372036854775808107Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722596n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:50:48 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{14F7B5A4-875D-4812-80FF-26D43D0B6AFB}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807106Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722976n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:36:52 AM14f7b5a4-875d-4812-80ff-26d43d0b6afbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "{14F7B5A4-875D-4812-80FF-26D43D0B6AFB}" , action "%windir%\System32\XblGameSaveTask.exe" with return code 0.201242012-9223372036854775808105Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722976n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:36:52 AM14f7b5a4-875d-4812-80ff-26d43d0b6afbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\System32\XblGameSaveTask.exe" in instance "{14F7B5A4-875D-4812-80FF-26D43D0B6AFB}" of task "\Microsoft\XblGameSave\XblGameSaveTask".200142001-9223372036854775808104Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722976n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:36:52 AM14f7b5a4-875d-4812-80ff-26d43d0b6afbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{14F7B5A4-875D-4812-80FF-26D43D0B6AFB}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807103Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722976n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:36:52 AM14f7b5a4-875d-4812-80ff-26d43d0b6afbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "%windir%\System32\XblGameSaveTask.exe" with process ID 4516.129041290-9223372036854775808102Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722976n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:36:52 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" disabled Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"142041420-9223372036854775808101Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722840n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask disabledSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan"140041400-9223372036854775808100Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722840n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{348C9FA1-686C-4AA5-AC5A-96D1120450DB}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580799Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722076n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:53 AM348c9fa1-686c-4aa5-ac5a-96d1120450dbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "{348C9FA1-686C-4AA5-AC5A-96D1120450DB}" , action "%systemroot%\system32\usoclient.exe" with return code 0.201242012-922337203685477580898Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722076n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:53 AM348c9fa1-686c-4aa5-ac5a-96d1120450dbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"140041400-922337203685477580897Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722840n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\usoclient.exe" in instance "{348C9FA1-686C-4AA5-AC5A-96D1120450DB}" of task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan".200142001-922337203685477580896Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:52 AM348c9fa1-686c-4aa5-ac5a-96d1120450dbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{348C9FA1-686C-4AA5-AC5A-96D1120450DB}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580795Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:52 AM348c9fa1-686c-4aa5-ac5a-96d1120450dbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "%systemroot%\system32\usoclient.exe" with process ID 3748.129041290-922337203685477580894Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:52 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler could not launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" as scheduled. Instance "{348C9FA1-686C-4AA5-AC5A-96D1120450DB}" is started now as required by the configuration option to start the task when available, if schedule is missed.114031140-922337203685477580893Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:31:52 AM348c9fa1-686c-4aa5-ac5a-96d1120450dbmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoMissed task startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{9CD6BB22-CEC5-41C3-9FC7-E4DA5C1E8AEC}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580792Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AM9cd6bb22-cec5-41c3-9fc7-e4da5c1e8aecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "{9CD6BB22-CEC5-41C3-9FC7-E4DA5C1E8AEC}" , action "%windir%\system32\wermgr.exe" with return code 0.201242012-922337203685477580891Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AM9cd6bb22-cec5-41c3-9fc7-e4da5c1e8aecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\wermgr.exe" in instance "{9CD6BB22-CEC5-41C3-9FC7-E4DA5C1E8AEC}" of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting".200142001-922337203685477580890Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AM9cd6bb22-cec5-41c3-9fc7-e4da5c1e8aecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{9CD6BB22-CEC5-41C3-9FC7-E4DA5C1E8AEC}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580789Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AM9cd6bb22-cec5-41c3-9fc7-e4da5c1e8aecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "%windir%\system32\wermgr.exe" with process ID 4808.129041290-922337203685477580888Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{9CD6BB22-CEC5-41C3-9FC7-E4DA5C1E8AEC}" instance of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" due to system startup.118041180-922337203685477580887Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:53 AM9cd6bb22-cec5-41c3-9fc7-e4da5c1e8aecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580886Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:29:24 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{B422FE5C-BD0A-4805-8AE0-9798BDC22C3D}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580785Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:28:42 AMb422fe5c-bd0a-4805-8ae0-9798bdc22c3dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "{B422FE5C-BD0A-4805-8AE0-9798BDC22C3D}" , action "%windir%\system32\compattelrunner.exe" with return code 0.201242012-922337203685477580884Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:28:42 AMb422fe5c-bd0a-4805-8ae0-9798bdc22c3dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{74DE9DF2-EC39-43FF-AB7E-0C6EEBF3A716}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580783Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AM74de9df2-ec39-43ff-ab7e-0c6eebf3a716microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "{74DE9DF2-EC39-43FF-AB7E-0C6EEBF3A716}" , action "%systemroot%\system32\cmd.exe" with return code 0.201242012-922337203685477580882Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AM74de9df2-ec39-43ff-ab7e-0c6eebf3a716microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\cmd.exe" in instance "{74DE9DF2-EC39-43FF-AB7E-0C6EEBF3A716}" of task "\Microsoft\Windows\Software Inventory Logging\Configuration".200142001-922337203685477580881Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AM74de9df2-ec39-43ff-ab7e-0c6eebf3a716microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{74DE9DF2-EC39-43FF-AB7E-0C6EEBF3A716}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580780Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AM74de9df2-ec39-43ff-ab7e-0c6eebf3a716microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "%systemroot%\system32\cmd.exe" with process ID 2396.129041290-922337203685477580879Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{74DE9DF2-EC39-43FF-AB7E-0C6EEBF3A716}" instance of task "\Microsoft\Windows\Software Inventory Logging\Configuration" due to system startup.118041180-922337203685477580878Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:53 AM74de9df2-ec39-43ff-ab7e-0c6eebf3a716microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-765311-23\N-H2-765311-23$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580877Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:32 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{F1891461-4F1F-4000-99B7-6B074B0A3D05}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580776Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMf1891461-4f1f-4000-99b7-6b074b0a3d05microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{F1891461-4F1F-4000-99B7-6B074B0A3D05}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580875Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMf1891461-4f1f-4000-99b7-6b074b0a3d05microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{F1891461-4F1F-4000-99B7-6B074B0A3D05}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580874Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMf1891461-4f1f-4000-99b7-6b074b0a3d05microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{F1891461-4F1F-4000-99B7-6B074B0A3D05}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580773Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMf1891461-4f1f-4000-99b7-6b074b0a3d05microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 3436.129041290-922337203685477580872Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{BCE93F81-E4D1-4E4B-BF55-827751AD77EA}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580771Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMbce93f81-e4d1-4e4b-bf55-827751ad77eamicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{BCE93F81-E4D1-4E4B-BF55-827751AD77EA}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580870Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMbce93f81-e4d1-4e4b-bf55-827751ad77eamicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{BCE93F81-E4D1-4E4B-BF55-827751AD77EA}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580869Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMbce93f81-e4d1-4e4b-bf55-827751ad77eamicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{BCE93F81-E4D1-4E4B-BF55-827751AD77EA}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580768Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMbce93f81-e4d1-4e4b-bf55-827751ad77eamicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "taskhostw.exe" with process ID 3908.129041290-922337203685477580867Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{0295DBCF-A5BE-4CA0-91E7-870FE8967A99}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580766Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AM0295dbcf-a5be-4ca0-91e7-870fe8967a99microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{0295DBCF-A5BE-4CA0-91E7-870FE8967A99}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580865Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AM0295dbcf-a5be-4ca0-91e7-870fe8967a99microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{0295DBCF-A5BE-4CA0-91E7-870FE8967A99}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580864Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AM0295dbcf-a5be-4ca0-91e7-870fe8967a99microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{0295DBCF-A5BE-4CA0-91E7-870FE8967A99}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580763Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AM0295dbcf-a5be-4ca0-91e7-870fe8967a99microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 3572.129041290-922337203685477580862Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:29 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{F57D0DC8-870A-494E-800B-B9AEFBF0E6C0}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580761Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMf57d0dc8-870a-494e-800b-b9aefbf0e6c0microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{F57D0DC8-870A-494E-800B-B9AEFBF0E6C0}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580860Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMf57d0dc8-870a-494e-800b-b9aefbf0e6c0microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{F57D0DC8-870A-494E-800B-B9AEFBF0E6C0}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580859Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMf57d0dc8-870a-494e-800b-b9aefbf0e6c0microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{F57D0DC8-870A-494E-800B-B9AEFBF0E6C0}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580758Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMf57d0dc8-870a-494e-800b-b9aefbf0e6c0microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 4168.129041290-922337203685477580857Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{2217B51D-5FA9-47FF-ABD0-253AAE8C3247}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580756Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM2217b51d-5fa9-47ff-abd0-253aae8c3247microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{2217B51D-5FA9-47FF-ABD0-253AAE8C3247}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580855Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM2217b51d-5fa9-47ff-abd0-253aae8c3247microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{0132840B-7F56-4F46-A9B7-4B59003C13DF}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580754Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM0132840b-7f56-4f46-a9b7-4b59003c13dfmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{0132840B-7F56-4F46-A9B7-4B59003C13DF}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580853Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM0132840b-7f56-4f46-a9b7-4b59003c13dfmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{0132840B-7F56-4F46-A9B7-4B59003C13DF}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580852Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM0132840b-7f56-4f46-a9b7-4b59003c13dfmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{0132840B-7F56-4F46-A9B7-4B59003C13DF}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580751Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM0132840b-7f56-4f46-a9b7-4b59003c13dfmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{2217B51D-5FA9-47FF-ABD0-253AAE8C3247}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580850Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM2217b51d-5fa9-47ff-abd0-253aae8c3247microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{2217B51D-5FA9-47FF-ABD0-253AAE8C3247}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580749Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AM2217b51d-5fa9-47ff-abd0-253aae8c3247microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4236.129041290-922337203685477580848Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:20 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{8AB71058-0BB0-41F6-9B3C-98AD6F069383}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580747Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:15 AM8ab71058-0bb0-41f6-9b3c-98ad6f069383microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "{8AB71058-0BB0-41F6-9B3C-98AD6F069383}" , action "%windir%\system32\wermgr.exe" with return code 0.201242012-922337203685477580846Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722284n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:15 AM8ab71058-0bb0-41f6-9b3c-98ad6f069383microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\wermgr.exe" in instance "{8AB71058-0BB0-41F6-9B3C-98AD6F069383}" of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting".200142001-922337203685477580845Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:14 AM8ab71058-0bb0-41f6-9b3c-98ad6f069383microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{8AB71058-0BB0-41F6-9B3C-98AD6F069383}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580744Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:14 AM8ab71058-0bb0-41f6-9b3c-98ad6f069383microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "%windir%\system32\wermgr.exe" with process ID 4776.129041290-922337203685477580843Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:14 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{00000000-0000-0000-0000-000000000000}" instance of task "\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents" according to an event trigger.108041080-922337203685477580842Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:13 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered on eventSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{0C75663E-8BAB-454C-80E3-25DB6E036701}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580741Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AM0c75663e-8bab-454c-80e3-25db6e036701microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{0C75663E-8BAB-454C-80E3-25DB6E036701}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580840Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722896n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AM0c75663e-8bab-454c-80e3-25db6e036701microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{0C75663E-8BAB-454C-80E3-25DB6E036701}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580839Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AM0c75663e-8bab-454c-80e3-25db6e036701microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{0C75663E-8BAB-454C-80E3-25DB6E036701}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580738Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AM0c75663e-8bab-454c-80e3-25db6e036701microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4032.129041290-922337203685477580837Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{0C75663E-8BAB-454C-80E3-25DB6E036701}" instance of task "\Microsoft\Windows\CertificateServicesClient\SystemTask" due to system startup.118041180-922337203685477580836Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:03 AM0c75663e-8bab-454c-80e3-25db6e036701microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{D71C2682-43BB-40C5-A1C2-92299AF817EC}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580735Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMd71c2682-43bb-40c5-a1c2-92299af817ecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{D71C2682-43BB-40C5-A1C2-92299AF817EC}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580834Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMd71c2682-43bb-40c5-a1c2-92299af817ecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{94FED8CF-8D3E-4EBA-A399-2B17EA98F41C}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580733Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM94fed8cf-8d3e-4eba-a399-2b17ea98f41cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{94FED8CF-8D3E-4EBA-A399-2B17EA98F41C}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580832Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM94fed8cf-8d3e-4eba-a399-2b17ea98f41cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{94FED8CF-8D3E-4EBA-A399-2B17EA98F41C}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580831Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723660n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM94fed8cf-8d3e-4eba-a399-2b17ea98f41cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{94FED8CF-8D3E-4EBA-A399-2B17EA98F41C}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580730Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723660n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM94fed8cf-8d3e-4eba-a399-2b17ea98f41cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{C15E0935-3901-4340-B005-0550483B52D4}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580729Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMc15e0935-3901-4340-b005-0550483b52d4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{C15E0935-3901-4340-B005-0550483B52D4}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580828Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMc15e0935-3901-4340-b005-0550483b52d4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{C15E0935-3901-4340-B005-0550483B52D4}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580827Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723664n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMc15e0935-3901-4340-b005-0550483b52d4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{C15E0935-3901-4340-B005-0550483B52D4}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580726Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723664n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMc15e0935-3901-4340-b005-0550483b52d4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{E175359F-E287-4AA4-843D-626CC6CE73AB}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580725Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMe175359f-e287-4aa4-843d-626cc6ce73abmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{E175359F-E287-4AA4-843D-626CC6CE73AB}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580824Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AMe175359f-e287-4aa4-843d-626cc6ce73abmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{311285C1-9663-4C19-AA12-6081AB81AD85}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580723Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM311285c1-9663-4c19-aa12-6081ab81ad85microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{311285C1-9663-4C19-AA12-6081AB81AD85}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580822Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM311285c1-9663-4c19-aa12-6081ab81ad85microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{311285C1-9663-4C19-AA12-6081AB81AD85}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580821Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723660n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM311285c1-9663-4c19-aa12-6081ab81ad85microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{311285C1-9663-4C19-AA12-6081AB81AD85}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580720Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14723660n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM311285c1-9663-4c19-aa12-6081ab81ad85microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{296BC1F9-39A5-4CE6-A4BC-03E167EB7462}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580719Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM296bc1f9-39a5-4ce6-a4bc-03e167eb7462microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{296BC1F9-39A5-4CE6-A4BC-03E167EB7462}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580818Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM296bc1f9-39a5-4ce6-a4bc-03e167eb7462microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{42FD5EF6-FCD6-4ECC-8BA4-6556ED40BD31}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580717Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM42fd5ef6-fcd6-4ecc-8ba4-6556ed40bd31microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{42FD5EF6-FCD6-4ECC-8BA4-6556ED40BD31}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580816Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:27:00 AM42fd5ef6-fcd6-4ecc-8ba4-6556ed40bd31microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{94FED8CF-8D3E-4EBA-A399-2B17EA98F41C}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{E175359F-E287-4AA4-843D-626CC6CE73AB}" completes.324033240-922337203685477580815Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM94fed8cf-8d3e-4eba-a399-2b17ea98f41cmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{311285C1-9663-4C19-AA12-6081AB81AD85}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" and will launch it as soon as instance "{296BC1F9-39A5-4CE6-A4BC-03E167EB7462}" completes.324033240-922337203685477580814Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721508n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM311285c1-9663-4c19-aa12-6081ab81ad85microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{C15E0935-3901-4340-B005-0550483B52D4}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{E175359F-E287-4AA4-843D-626CC6CE73AB}" completes.324033240-922337203685477580813Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14721984n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AMc15e0935-3901-4340-b005-0550483b52d4microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{296BC1F9-39A5-4CE6-A4BC-03E167EB7462}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580812Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722968n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM296bc1f9-39a5-4ce6-a4bc-03e167eb7462microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{296BC1F9-39A5-4CE6-A4BC-03E167EB7462}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580711Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722968n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM296bc1f9-39a5-4ce6-a4bc-03e167eb7462microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{42FD5EF6-FCD6-4ECC-8BA4-6556ED40BD31}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580810Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM42fd5ef6-fcd6-4ecc-8ba4-6556ed40bd31microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{42FD5EF6-FCD6-4ECC-8BA4-6556ED40BD31}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758079Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AM42fd5ef6-fcd6-4ecc-8ba4-6556ed40bd31microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{D71C2682-43BB-40C5-A1C2-92299AF817EC}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-92233720368547758088Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722968n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AMd71c2682-43bb-40c5-a1c2-92299af817ecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{D71C2682-43BB-40C5-A1C2-92299AF817EC}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758077Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722968n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:58 AMd71c2682-43bb-40c5-a1c2-92299af817ecmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\compattelrunner.exe" in instance "{B422FE5C-BD0A-4805-8AE0-9798BDC22C3D}" of task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser".200142001-92233720368547758086Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMb422fe5c-bd0a-4805-8ae0-9798bdc22c3dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{B422FE5C-BD0A-4805-8AE0-9798BDC22C3D}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758075Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMb422fe5c-bd0a-4805-8ae0-9798bdc22c3dmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "%windir%\system32\compattelrunner.exe" with process ID 3096.129041290-92233720368547758084Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722720n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{E175359F-E287-4AA4-843D-626CC6CE73AB}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-92233720368547758083Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMe175359f-e287-4aa4-843d-626cc6ce73abmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{E175359F-E287-4AA4-843D-626CC6CE73AB}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758072Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMe175359f-e287-4aa4-843d-626cc6ce73abmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 2436.129041290-92233720368547758081Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14722860n-h2-765311-23.cbci-765311-23.localS-1-5-186/13/2021 2:26:54 AMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]