MessageIdVersionQualifiersLevelTaskOpcodeKeywordsRecordIdProviderNameProviderIdLogNameProcessIdThreadIdMachineNameUserIdTimeCreatedActivityIdRelatedActivityIdContainerLogMatchedQueryIdsBookmarkLevelDisplayNameOpcodeDisplayNameTaskDisplayNameKeywordsDisplayNamesProperties
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808111Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:52:31 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808110Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational1468696n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:22:31 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{13097C80-CC60-4FF7-8F32-62399A08FA10}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807109Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PM13097c80-cc60-4ff7-8f32-62399a08fa10microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Autochk\Proxy" , instance "{13097C80-CC60-4FF7-8F32-62399A08FA10}" , action "%windir%\system32\rundll32.exe" with return code 0.201242012-9223372036854775808108Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PM13097c80-cc60-4ff7-8f32-62399a08fa10microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\rundll32.exe" in instance "{13097C80-CC60-4FF7-8F32-62399A08FA10}" of task "\Microsoft\Windows\Autochk\Proxy".200142001-9223372036854775808107Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PM13097c80-cc60-4ff7-8f32-62399a08fa10microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{13097C80-CC60-4FF7-8F32-62399A08FA10}" instance of the "\Microsoft\Windows\Autochk\Proxy" task for user "NT AUTHORITY\SYSTEM".100041001-9223372036854775807106Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PM13097c80-cc60-4ff7-8f32-62399a08fa10microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Autochk\Proxy" , instance "%windir%\system32\rundll32.exe" with process ID 4324.129041290-9223372036854775808105Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{13097C80-CC60-4FF7-8F32-62399A08FA10}" instance of task "\Microsoft\Windows\Autochk\Proxy" due to system startup.118041180-9223372036854775808104Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 10:02:00 PM13097c80-cc60-4ff7-8f32-62399a08fa10microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "NT AUTHORITY\SYSTEM" updated Task Scheduler task "\Microsoft\Windows\WindowsUpdate\Scheduled Start"140041400-9223372036854775808103Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:56:22 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-9223372036854775808102Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682968n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:52:31 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "NT AUTHORITY\SYSTEM" updated Task Scheduler task "\Microsoft\Windows\WindowsUpdate\Scheduled Start"140041400-9223372036854775808101Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682972n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:43:51 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{B13CCEBA-1D36-44A1-9A8C-020B0F54FDF8}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".102041022-9223372036854775807100Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:32:00 PMb13cceba-1d36-44a1-9a8c-020b0f54fdf8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "{B13CCEBA-1D36-44A1-9A8C-020B0F54FDF8}" , action "%windir%\System32\XblGameSaveTask.exe" with return code 0.201242012-922337203685477580899Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:32:00 PMb13cceba-1d36-44a1-9a8c-020b0f54fdf8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\System32\XblGameSaveTask.exe" in instance "{B13CCEBA-1D36-44A1-9A8C-020B0F54FDF8}" of task "\Microsoft\XblGameSave\XblGameSaveTask".200142001-922337203685477580898Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:32:00 PMb13cceba-1d36-44a1-9a8c-020b0f54fdf8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{B13CCEBA-1D36-44A1-9A8C-020B0F54FDF8}" instance of the "\Microsoft\XblGameSave\XblGameSaveTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580797Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:32:00 PMb13cceba-1d36-44a1-9a8c-020b0f54fdf8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\XblGameSave\XblGameSaveTask" , instance "%windir%\System32\XblGameSaveTask.exe" with process ID 5028.129041290-922337203685477580896Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:32:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" disabled Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"142041420-922337203685477580895Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:01 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask disabledSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{4A99E92F-3347-4826-9147-2CBFC10D65CC}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580794Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM4a99e92f-3347-4826-9147-2cbfc10d65ccmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "{4A99E92F-3347-4826-9147-2CBFC10D65CC}" , action "%windir%\system32\wermgr.exe" with return code 0.201242012-922337203685477580893Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM4a99e92f-3347-4826-9147-2cbfc10d65ccmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan"140041400-922337203685477580892Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{8EB09223-B273-448E-AFE9-EC7B0FE4ED58}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580791Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM8eb09223-b273-448e-afe9-ec7b0fe4ed58microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "{8EB09223-B273-448E-AFE9-EC7B0FE4ED58}" , action "%systemroot%\system32\usoclient.exe" with return code 0.201242012-922337203685477580890Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM8eb09223-b273-448e-afe9-ec7b0fe4ed58microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "System" updated Task Scheduler task "\Microsoft\Windows\UpdateOrchestrator\Resume On Boot"140041400-922337203685477580889Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\wermgr.exe" in instance "{4A99E92F-3347-4826-9147-2CBFC10D65CC}" of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting".200142001-922337203685477580888Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM4a99e92f-3347-4826-9147-2cbfc10d65ccmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{4A99E92F-3347-4826-9147-2CBFC10D65CC}" instance of the "\Microsoft\Windows\Windows Error Reporting\QueueReporting" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580787Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM4a99e92f-3347-4826-9147-2cbfc10d65ccmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" , instance "%windir%\system32\wermgr.exe" with process ID 2196.129041290-922337203685477580886Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{4A99E92F-3347-4826-9147-2CBFC10D65CC}" instance of task "\Microsoft\Windows\Windows Error Reporting\QueueReporting" due to system startup.118041180-922337203685477580885Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:25:00 PM4a99e92f-3347-4826-9147-2cbfc10d65ccmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\usoclient.exe" in instance "{8EB09223-B273-448E-AFE9-EC7B0FE4ED58}" of task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan".200142001-922337203685477580884Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:24:59 PM8eb09223-b273-448e-afe9-ec7b0fe4ed58microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{8EB09223-B273-448E-AFE9-EC7B0FE4ED58}" instance of the "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580783Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:24:59 PM8eb09223-b273-448e-afe9-ec7b0fe4ed58microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" , instance "%systemroot%\system32\usoclient.exe" with process ID 3868.129041290-922337203685477580882Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:24:59 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler could not launch task "\Microsoft\Windows\UpdateOrchestrator\Schedule Scan" as scheduled. Instance "{8EB09223-B273-448E-AFE9-EC7B0FE4ED58}" is started now as required by the configuration option to start the task when available, if schedule is missed.114031140-922337203685477580881Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:24:59 PM8eb09223-b273-448e-afe9-ec7b0fe4ed58microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoMissed task startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580880Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:24:32 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{E9959CFC-8ACB-4193-A622-DDC43A9CBAE9}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580779Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:49 PMe9959cfc-8acb-4193-a622-ddc43a9cbae9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "{E9959CFC-8ACB-4193-A622-DDC43A9CBAE9}" , action "%windir%\system32\compattelrunner.exe" with return code 0.201242012-922337203685477580878Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:49 PMe9959cfc-8acb-4193-a622-ddc43a9cbae9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{890EB924-BC54-4BD2-AA25-B3EC08C8A9CA}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580777Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682968n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:01 PM890eb924-bc54-4bd2-aa25-b3ec08c8a9camicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "{890EB924-BC54-4BD2-AA25-B3EC08C8A9CA}" , action "%systemroot%\system32\cmd.exe" with return code 0.201242012-922337203685477580876Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682968n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:01 PM890eb924-bc54-4bd2-aa25-b3ec08c8a9camicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%systemroot%\system32\cmd.exe" in instance "{890EB924-BC54-4BD2-AA25-B3EC08C8A9CA}" of task "\Microsoft\Windows\Software Inventory Logging\Configuration".200142001-922337203685477580875Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:00 PM890eb924-bc54-4bd2-aa25-b3ec08c8a9camicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{890EB924-BC54-4BD2-AA25-B3EC08C8A9CA}" instance of the "\Microsoft\Windows\Software Inventory Logging\Configuration" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580774Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:00 PM890eb924-bc54-4bd2-aa25-b3ec08c8a9camicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Software Inventory Logging\Configuration" , instance "%systemroot%\system32\cmd.exe" with process ID 2980.129041290-922337203685477580873Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:00 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{890EB924-BC54-4BD2-AA25-B3EC08C8A9CA}" instance of task "\Microsoft\Windows\Software Inventory Logging\Configuration" due to system startup.118041180-922337203685477580872Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:23:00 PM890eb924-bc54-4bd2-aa25-b3ec08c8a9camicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{F939B24B-80CE-4B73-95F4-61A4887DEB2B}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580771Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMf939b24b-80ce-4b73-95f4-61a4887deb2bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{F939B24B-80CE-4B73-95F4-61A4887DEB2B}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580870Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMf939b24b-80ce-4b73-95f4-61a4887deb2bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{F939B24B-80CE-4B73-95F4-61A4887DEB2B}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580869Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMf939b24b-80ce-4b73-95f4-61a4887deb2bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{F939B24B-80CE-4B73-95F4-61A4887DEB2B}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580768Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMf939b24b-80ce-4b73-95f4-61a4887deb2bmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 4728.129041290-922337203685477580867Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{22CF4DC2-F5C0-434B-BF56-2E7A2ADCB291}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580766Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PM22cf4dc2-f5c0-434b-bf56-2e7a2adcb291microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{22CF4DC2-F5C0-434B-BF56-2E7A2ADCB291}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580865Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PM22cf4dc2-f5c0-434b-bf56-2e7a2adcb291microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{E3A4D302-5BBD-4991-A7B1-413C1BFBA9A8}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580764Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMe3a4d302-5bbd-4991-a7b1-413c1bfba9a8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{E3A4D302-5BBD-4991-A7B1-413C1BFBA9A8}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580863Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMe3a4d302-5bbd-4991-a7b1-413c1bfba9a8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{E3A4D302-5BBD-4991-A7B1-413C1BFBA9A8}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580862Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMe3a4d302-5bbd-4991-a7b1-413c1bfba9a8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{E3A4D302-5BBD-4991-A7B1-413C1BFBA9A8}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580761Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMe3a4d302-5bbd-4991-a7b1-413c1bfba9a8microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{22CF4DC2-F5C0-434B-BF56-2E7A2ADCB291}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580860Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PM22cf4dc2-f5c0-434b-bf56-2e7a2adcb291microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{22CF4DC2-F5C0-434B-BF56-2E7A2ADCB291}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580759Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PM22cf4dc2-f5c0-434b-bf56-2e7a2adcb291microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4152.129041290-922337203685477580858Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:41 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
User "CBCI-792362-9\N-H2-792362-9$" updated Task Scheduler task "\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask"140041400-922337203685477580857Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:40 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask registration updatedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{2DB5F674-1E8E-40B2-A1C0-B10CE7F55157}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580756Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM2db5f674-1e8e-40b2-a1c0-b10ce7f55157microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{2DB5F674-1E8E-40B2-A1C0-B10CE7F55157}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580855Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM2db5f674-1e8e-40b2-a1c0-b10ce7f55157microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{2DB5F674-1E8E-40B2-A1C0-B10CE7F55157}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580854Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM2db5f674-1e8e-40b2-a1c0-b10ce7f55157microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{2DB5F674-1E8E-40B2-A1C0-B10CE7F55157}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580753Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM2db5f674-1e8e-40b2-a1c0-b10ce7f55157microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "taskhostw.exe" with process ID 5072.129041290-922337203685477580852Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{360677FC-8212-490A-8A23-0226F6AC5C49}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580751Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM360677fc-8212-490a-8a23-0226f6ac5c49microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{360677FC-8212-490A-8A23-0226F6AC5C49}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580850Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM360677fc-8212-490a-8a23-0226f6ac5c49microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{360677FC-8212-490A-8A23-0226F6AC5C49}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580849Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM360677fc-8212-490a-8a23-0226f6ac5c49microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{360677FC-8212-490A-8A23-0226F6AC5C49}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580748Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PM360677fc-8212-490a-8a23-0226f6ac5c49microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 5044.129041290-922337203685477580847Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{FE4C328C-E568-4196-8A0D-8F2BFFB57215}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580746Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMfe4c328c-e568-4196-8a0d-8f2bffb57215microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{FE4C328C-E568-4196-8A0D-8F2BFFB57215}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580845Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMfe4c328c-e568-4196-8a0d-8f2bffb57215microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{FE4C328C-E568-4196-8A0D-8F2BFFB57215}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580844Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMfe4c328c-e568-4196-8a0d-8f2bffb57215microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{FE4C328C-E568-4196-8A0D-8F2BFFB57215}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580743Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMfe4c328c-e568-4196-8a0d-8f2bffb57215microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4984.129041290-922337203685477580842Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:30 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{222EAFA2-20A7-4126-A37A-8E6F486A8F54}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580741Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PM222eafa2-20a7-4126-a37a-8e6f486a8f54microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{222EAFA2-20A7-4126-A37A-8E6F486A8F54}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580840Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PM222eafa2-20a7-4126-a37a-8e6f486a8f54microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{222EAFA2-20A7-4126-A37A-8E6F486A8F54}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580839Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PM222eafa2-20a7-4126-a37a-8e6f486a8f54microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{222EAFA2-20A7-4126-A37A-8E6F486A8F54}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580738Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PM222eafa2-20a7-4126-a37a-8e6f486a8f54microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "taskhostw.exe" with process ID 4052.129041290-922337203685477580837Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched "{222EAFA2-20A7-4126-A37A-8E6F486A8F54}" instance of task "\Microsoft\Windows\CertificateServicesClient\SystemTask" due to system startup.118041180-922337203685477580836Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:10 PM222eafa2-20a7-4126-a37a-8e6f486a8f54microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoTask triggered by computer startupSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{CCCF95CD-229F-4A1A-A76A-4A3AC3135975}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580735Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMcccf95cd-229f-4a1a-a76a-4a3ac3135975microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{CCCF95CD-229F-4A1A-A76A-4A3AC3135975}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580834Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMcccf95cd-229f-4a1a-a76a-4a3ac3135975microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{C40E1AC0-95E1-434E-A837-D4CD2BD0AFEF}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580733Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMc40e1ac0-95e1-434e-a837-d4cd2bd0afefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{C40E1AC0-95E1-434E-A837-D4CD2BD0AFEF}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580832Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMc40e1ac0-95e1-434e-a837-d4cd2bd0afefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{C40E1AC0-95E1-434E-A837-D4CD2BD0AFEF}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580831Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14683612n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMc40e1ac0-95e1-434e-a837-d4cd2bd0afefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{C40E1AC0-95E1-434E-A837-D4CD2BD0AFEF}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580730Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14683612n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMc40e1ac0-95e1-434e-a837-d4cd2bd0afefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{B651138E-688A-4A20-956E-945B9050FC43}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580729Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb651138e-688a-4a20-956e-945b9050fc43microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{B651138E-688A-4A20-956E-945B9050FC43}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580828Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb651138e-688a-4a20-956e-945b9050fc43microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{8C60510D-8C51-4449-952C-5536C665BAEF}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580727Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM8c60510d-8c51-4449-952c-5536c665baefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{8C60510D-8C51-4449-952C-5536C665BAEF}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580826Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682212n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM8c60510d-8c51-4449-952c-5536c665baefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{B651138E-688A-4A20-956E-945B9050FC43}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-922337203685477580825Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682184n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb651138e-688a-4a20-956e-945b9050fc43microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{B651138E-688A-4A20-956E-945B9050FC43}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580724Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682184n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb651138e-688a-4a20-956e-945b9050fc43microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580723Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb11fb17f-5647-4ba4-a03a-706cb12ac1c7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" , action "TPM Maintenance Task Handler" with return code 0.201242012-922337203685477580822Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PMb11fb17f-5647-4ba4-a03a-706cb12ac1c7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{8C60510D-8C51-4449-952C-5536C665BAEF}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580821Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14683600n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM8c60510d-8c51-4449-952c-5536c665baefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{8C60510D-8C51-4449-952C-5536C665BAEF}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580720Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14683600n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM8c60510d-8c51-4449-952c-5536c665baefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{7D7340D6-93F4-4257-8D65-D0316E9066F1}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580719Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM7d7340d6-93f4-4257-8d65-d0316e9066f1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" , instance "{7D7340D6-93F4-4257-8D65-D0316E9066F1}" , action "Device Installation Group Policy Task Handler" with return code 0.201242012-922337203685477580818Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM7d7340d6-93f4-4257-8d65-d0316e9066f1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully finished "{5142C181-B6AC-4FEC-864F-B22BDC147B61}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".102041022-922337203685477580717Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM5142c181-b6ac-4fec-864f-b22bdc147b61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopTask completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler successfully completed task "\Microsoft\Windows\CertificateServicesClient\SystemTask" , instance "{5142C181-B6AC-4FEC-864F-B22BDC147B61}" , action "Certificate Services Client Task Handler" with return code 0.201242012-922337203685477580816Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682640n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:07 PM5142c181-b6ac-4fec-864f-b22bdc147b61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStopAction completedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{C40E1AC0-95E1-434E-A837-D4CD2BD0AFEF}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" completes.324033240-922337203685477580815Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PMc40e1ac0-95e1-434e-a837-d4cd2bd0afefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{8C60510D-8C51-4449-952C-5536C665BAEF}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy" and will launch it as soon as instance "{7D7340D6-93F4-4257-8D65-D0316E9066F1}" completes.324033240-922337203685477580814Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682880n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PM8c60510d-8c51-4449-952c-5536c665baefmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler queued instance "{B651138E-688A-4A20-956E-945B9050FC43}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance" and will launch it as soon as instance "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" completes.324033240-922337203685477580813Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681872n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PMb651138e-688a-4a20-956e-945b9050fc43microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkWarningInfoLaunch request queued, instance already runningSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{5142C181-B6AC-4FEC-864F-B22BDC147B61}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-922337203685477580812Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682852n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PM5142c181-b6ac-4fec-864f-b22bdc147b61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{5142C181-B6AC-4FEC-864F-B22BDC147B61}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-922337203685477580711Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682852n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PM5142c181-b6ac-4fec-864f-b22bdc147b61microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Device Installation Group Policy Task Handler" in instance "{7D7340D6-93F4-4257-8D65-D0316E9066F1}" of task "\Microsoft\Windows\Plug and Play\Device Install Group Policy".200142001-922337203685477580810Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682852n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PM7d7340d6-93f4-4257-8d65-d0316e9066f1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{7D7340D6-93F4-4257-8D65-D0316E9066F1}" instance of the "\Microsoft\Windows\Plug and Play\Device Install Group Policy" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758079Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682852n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PM7d7340d6-93f4-4257-8d65-d0316e9066f1microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "Certificate Services Client Task Handler" in instance "{CCCF95CD-229F-4A1A-A76A-4A3AC3135975}" of task "\Microsoft\Windows\CertificateServicesClient\SystemTask".200142001-92233720368547758088Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PMcccf95cd-229f-4a1a-a76a-4a3ac3135975microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{CCCF95CD-229F-4A1A-A76A-4A3AC3135975}" instance of the "\Microsoft\Windows\CertificateServicesClient\SystemTask" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758077Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682560n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:04 PMcccf95cd-229f-4a1a-a76a-4a3ac3135975microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "%windir%\system32\compattelrunner.exe" in instance "{E9959CFC-8ACB-4193-A622-DDC43A9CBAE9}" of task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser".200142001-92233720368547758086Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682364n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMe9959cfc-8acb-4193-a622-ddc43a9cbae9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{E9959CFC-8ACB-4193-A622-DDC43A9CBAE9}" instance of the "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758075Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682364n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMe9959cfc-8acb-4193-a622-ddc43a9cbae9microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" , instance "%windir%\system32\compattelrunner.exe" with process ID 3080.129041290-92233720368547758084Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14682364n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launched action "TPM Maintenance Task Handler" in instance "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" of task "\Microsoft\Windows\TPM\Tpm-Maintenance".200142001-92233720368547758083Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMb11fb17f-5647-4ba4-a03a-706cb12ac1c7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartAction startedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler started "{B11FB17F-5647-4BA4-A03A-706CB12AC1C7}" instance of the "\Microsoft\Windows\TPM\Tpm-Maintenance" task for user "NT AUTHORITY\SYSTEM".100041001-92233720368547758072Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMb11fb17f-5647-4ba4-a03a-706cb12ac1c7microsoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationStartTask StartedSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]
Task Scheduler launch task "\Microsoft\Windows\TPM\Tpm-Maintenance" , instance "taskhostw.exe" with process ID 2548.129041290-92233720368547758081Microsoft-Windows-TaskSchedulerde7b24ea-73c8-4a09-985d-5bdadcfa9017Microsoft-Windows-TaskScheduler/Operational14681824n-h2-792362-9.cbci-792362-9.localS-1-5-182/9/2022 9:22:01 PMmicrosoft-windows-taskscheduler/operationalSystem.UInt32[]System.Diagnostics.Eventing.Reader.EventBookmarkInformationInfoCreated Task ProcessSystem.Collections.ObjectModel.ReadOnlyCollection`1[System.String]System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty]