| Message | Id | Version | Qualifiers | Level | Task | Opcode | Keywords | RecordId | ProviderName | ProviderId | LogName | ProcessId | ThreadId | MachineName | UserId | TimeCreated | ActivityId | RelatedActivityId | ContainerLog | MatchedQueryIds | Bookmark | LevelDisplayName | OpcodeDisplayName | TaskDisplayName | KeywordsDisplayNames | Properties |
|---|
| 'instance-0000000a' started successfully. (Virtual machine ID 71074457-CFB8-4F5B-AFEB-91F7C3A95970) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 20 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4596 | 4576 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1896301655-1331417016-4153535407-1884924355 | 9/30/2021 4:05:32 AM | 95c4159c-b5af-0003-496f-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-0000000a' 1f1dbbb3-b006-41db-a379-9f57dc0e0fd4 (EF2B7F79-F1C6-4F4C-B661-FCD068C2A13E) started successfully. (Virtual Machine ID 71074457-CFB8-4F5B-AFEB-91F7C3A95970) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 19 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4596 | 4576 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1896301655-1331417016-4153535407-1884924355 | 9/30/2021 4:05:32 AM | 95c4159c-b5af-0003-496f-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-0000000a' 1f1dbbb3-b006-41db-a379-9f57dc0e0fd4 (71074457-cfb8-4f5b-afeb-91f7c3a95970--ef2b7f79-f1c6-4f4c-b661-fcd068c2a13e) Connected to virtual network. (Virtual Machine ID 71074457-CFB8-4F5B-AFEB-91F7C3A95970) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 18 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4596 | 4576 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1896301655-1331417016-4153535407-1884924355 | 9/30/2021 4:05:32 AM | 95c4159c-b5af-0003-496f-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000009' started successfully. (Virtual machine ID E0654CDD-36C8-4D5D-90BC-DD73C743A26A) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 17 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 5048 | 5072 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3764735197-1297954504-1943911568-1789019079 | 9/30/2021 4:05:30 AM | 95c4159c-b5af-0003-506d-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000009' 8a82e3b8-1ead-4e13-b35f-60669bda10ea (9A0B1C04-4C7C-42B5-B82F-0AF0EAE79D7C) started successfully. (Virtual Machine ID E0654CDD-36C8-4D5D-90BC-DD73C743A26A) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 16 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 5048 | 5072 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3764735197-1297954504-1943911568-1789019079 | 9/30/2021 4:05:30 AM | 95c4159c-b5af-0003-506d-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000009' 8a82e3b8-1ead-4e13-b35f-60669bda10ea (e0654cdd-36c8-4d5d-90bc-dd73c743a26a--9a0b1c04-4c7c-42b5-b82f-0af0eae79d7c) Connected to virtual network. (Virtual Machine ID E0654CDD-36C8-4D5D-90BC-DD73C743A26A) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 15 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 5048 | 5072 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3764735197-1297954504-1943911568-1789019079 | 9/30/2021 4:05:30 AM | 95c4159c-b5af-0003-506d-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000008' started successfully. (Virtual machine ID 42EF746F-7042-4C51-B645-631075E7DC9E) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 14 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4648 | 4672 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1122989167-1280405570-274941366-2665277301 | 9/30/2021 4:05:28 AM | 95c4159c-b5af-0005-662b-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000008' 2931d6a6-844e-4cc6-bf6f-fadd2633e1fe (1C58CEA5-F067-49FD-B9C0-0C4FA902DF09) started successfully. (Virtual Machine ID 42EF746F-7042-4C51-B645-631075E7DC9E) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 13 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4648 | 4672 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1122989167-1280405570-274941366-2665277301 | 9/30/2021 4:05:28 AM | 95c4159c-b5af-0005-662b-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000008' 2931d6a6-844e-4cc6-bf6f-fadd2633e1fe (42ef746f-7042-4c51-b645-631075e7dc9e--1c58cea5-f067-49fd-b9c0-0c4fa902df09) Connected to virtual network. (Virtual Machine ID 42EF746F-7042-4C51-B645-631075E7DC9E) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 12 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4648 | 4672 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-1122989167-1280405570-274941366-2665277301 | 9/30/2021 4:05:28 AM | 95c4159c-b5af-0005-662b-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' started successfully. (Virtual machine ID F3CB9F66-E0E4-4EF5-B70A-CF8000BA24AC) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 11 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2388 | 4000 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-4090208102-1324736740-2161052343-2888088064 | 9/30/2021 4:05:11 AM | 95c4159c-b5af-0000-7818-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 3516a166-e2c5-4c11-9778-ee9138bc28cb (4B84DE78-EFC8-44E3-A78C-D1D0071E5055) started successfully. (Virtual Machine ID F3CB9F66-E0E4-4EF5-B70A-CF8000BA24AC) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 10 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2388 | 4000 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-4090208102-1324736740-2161052343-2888088064 | 9/30/2021 4:05:11 AM | 95c4159c-b5af-0000-7818-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 3516a166-e2c5-4c11-9778-ee9138bc28cb (f3cb9f66-e0e4-4ef5-b70a-cf8000ba24ac--4b84de78-efc8-44e3-a78c-d1d0071e5055) Connected to virtual network. (Virtual Machine ID F3CB9F66-E0E4-4EF5-B70A-CF8000BA24AC) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 9 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2388 | 4000 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-4090208102-1324736740-2161052343-2888088064 | 9/30/2021 4:05:11 AM | 95c4159c-b5af-0000-7818-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000003' started successfully. (Virtual machine ID 970392E4-B27C-4821-9C05-89B6DE5A6B54) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 8 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2180 | 2104 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-2533593828-1210167932-3062433180-1416321758 | 9/30/2021 4:05:08 AM | 95c4159c-b5af-0005-9c19-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000003' 76fb84d2-1780-49da-82bb-778288f8dca7 (2E3498A3-CC96-4173-9143-7DB3C0B96E00) started successfully. (Virtual Machine ID 970392E4-B27C-4821-9C05-89B6DE5A6B54) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 7 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2180 | 2104 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-2533593828-1210167932-3062433180-1416321758 | 9/30/2021 4:05:08 AM | 95c4159c-b5af-0005-9c19-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000003' 76fb84d2-1780-49da-82bb-778288f8dca7 (970392e4-b27c-4821-9c05-89b6de5a6b54--2e3498a3-cc96-4173-9143-7db3c0b96e00) Connected to virtual network. (Virtual Machine ID 970392E4-B27C-4821-9C05-89B6DE5A6B54) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 6 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2180 | 2104 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-2533593828-1210167932-3062433180-1416321758 | 9/30/2021 4:05:08 AM | 95c4159c-b5af-0005-9c19-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000001' was turned off. (Virtual machine ID E605826D-C6FB-414D-BB3A-BC9D25CFA707) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 5 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 3920 | 3372 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3859120749-1095616251-2646358715-128438053 | 9/30/2021 4:04:41 AM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000001' 0d912dae-253c-45a2-a93e-d5c5d5438ab7 (e605826d-c6fb-414d-bb3a-bc9d25cfa707--49e3e24a-9352-4dff-8f88-7fadefef7c41) Disconnected from virtual network. (Virtual Machine ID E605826D-C6FB-414D-BB3A-BC9D25CFA707) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 4 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 3920 | 3372 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3859120749-1095616251-2646358715-128438053 | 9/30/2021 4:04:41 AM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000001' started successfully. (Virtual machine ID E605826D-C6FB-414D-BB3A-BC9D25CFA707) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 3 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 3920 | 4092 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3859120749-1095616251-2646358715-128438053 | 9/30/2021 4:04:33 AM | 95c4159c-b5af-0000-ae17-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000001' 0d912dae-253c-45a2-a93e-d5c5d5438ab7 (49E3E24A-9352-4DFF-8F88-7FADEFEF7C41) started successfully. (Virtual Machine ID E605826D-C6FB-414D-BB3A-BC9D25CFA707) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 2 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 3920 | 4092 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3859120749-1095616251-2646358715-128438053 | 9/30/2021 4:04:33 AM | 95c4159c-b5af-0000-ae17-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000001' 0d912dae-253c-45a2-a93e-d5c5d5438ab7 (e605826d-c6fb-414d-bb3a-bc9d25cfa707--49e3e24a-9352-4dff-8f88-7fadefef7c41) Connected to virtual network. (Virtual Machine ID E605826D-C6FB-414D-BB3A-BC9D25CFA707) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 1 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 3920 | 4092 | n-h2-811818-2.cbci-811818-2.local | S-1-5-83-1-3859120749-1095616251-2646358715-128438053 | 9/30/2021 4:04:33 AM | 95c4159c-b5af-0000-ae17-c495afb5d701 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |