| Message | Id | Version | Qualifiers | Level | Task | Opcode | Keywords | RecordId | ProviderName | ProviderId | LogName | ProcessId | ThreadId | MachineName | UserId | TimeCreated | ActivityId | RelatedActivityId | ContainerLog | MatchedQueryIds | Bookmark | LevelDisplayName | OpcodeDisplayName | TaskDisplayName | KeywordsDisplayNames | Properties |
|---|
| 'instance-00000005' was turned off. (Virtual machine ID DE381DEE-2B46-446F-9330-1A58928AAFAA) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 15 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4712 | 2980 | hv-osbrick-7679 | S-1-5-83-1-3728219630-1148136262-1478111379-2863630994 | 12/18/2020 6:23:14 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 78a47e68-475b-4526-a1c2-8d5d249cd2de (de381dee-2b46-446f-9330-1a58928aafaa--f2286639-96e2-4462-82f4-7b73f29d996c) Disconnected from virtual network. (Virtual Machine ID DE381DEE-2B46-446F-9330-1A58928AAFAA) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 14 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4712 | 2980 | hv-osbrick-7679 | S-1-5-83-1-3728219630-1148136262-1478111379-2863630994 | 12/18/2020 6:23:14 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' was turned off. (Virtual machine ID 3780A4AD-4EE9-4929-BDDE-073800CCC510) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 13 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4652 | 5004 | hv-osbrick-7679 | S-1-5-83-1-931177645-1227443945-940039869-281398272 | 12/18/2020 6:23:04 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 23c2438b-6f30-4e4b-85a8-8d7d214ad9a9 (3780a4ad-4ee9-4929-bdde-073800ccc510--556654dc-4964-44b5-9e9d-60cd7e49f553) Disconnected from virtual network. (Virtual Machine ID 3780A4AD-4EE9-4929-BDDE-073800CCC510) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 12 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4652 | 5004 | hv-osbrick-7679 | S-1-5-83-1-931177645-1227443945-940039869-281398272 | 12/18/2020 6:23:04 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' started successfully. (Virtual machine ID 3780A4AD-4EE9-4929-BDDE-073800CCC510) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 11 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4652 | 5004 | hv-osbrick-7679 | S-1-5-83-1-931177645-1227443945-940039869-281398272 | 12/18/2020 6:21:25 PM | 6970065f-d562-0000-222d-716962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 23c2438b-6f30-4e4b-85a8-8d7d214ad9a9 (556654DC-4964-44B5-9E9D-60CD7E49F553) started successfully. (Virtual Machine ID 3780A4AD-4EE9-4929-BDDE-073800CCC510) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 10 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4652 | 5004 | hv-osbrick-7679 | S-1-5-83-1-931177645-1227443945-940039869-281398272 | 12/18/2020 6:21:25 PM | 6970065f-d562-0000-222d-716962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 23c2438b-6f30-4e4b-85a8-8d7d214ad9a9 (3780a4ad-4ee9-4929-bdde-073800ccc510--556654dc-4964-44b5-9e9d-60cd7e49f553) Connected to virtual network. (Virtual Machine ID 3780A4AD-4EE9-4929-BDDE-073800CCC510) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 9 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4652 | 5004 | hv-osbrick-7679 | S-1-5-83-1-931177645-1227443945-940039869-281398272 | 12/18/2020 6:21:25 PM | 6970065f-d562-0000-222d-716962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' started successfully. (Virtual machine ID DE381DEE-2B46-446F-9330-1A58928AAFAA) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 8 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4712 | 2980 | hv-osbrick-7679 | S-1-5-83-1-3728219630-1148136262-1478111379-2863630994 | 12/18/2020 6:19:31 PM | 6970065f-d562-0001-383f-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 78a47e68-475b-4526-a1c2-8d5d249cd2de (F2286639-96E2-4462-82F4-7B73F29D996C) started successfully. (Virtual Machine ID DE381DEE-2B46-446F-9330-1A58928AAFAA) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 7 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4712 | 2980 | hv-osbrick-7679 | S-1-5-83-1-3728219630-1148136262-1478111379-2863630994 | 12/18/2020 6:19:31 PM | 6970065f-d562-0001-383f-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 78a47e68-475b-4526-a1c2-8d5d249cd2de (de381dee-2b46-446f-9330-1a58928aafaa--f2286639-96e2-4462-82f4-7b73f29d996c) Connected to virtual network. (Virtual Machine ID DE381DEE-2B46-446F-9330-1A58928AAFAA) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 6 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4712 | 2980 | hv-osbrick-7679 | S-1-5-83-1-3728219630-1148136262-1478111379-2863630994 | 12/18/2020 6:19:31 PM | 6970065f-d562-0001-383f-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' was turned off. (Virtual machine ID F1ECABC2-E2BC-4B51-8128-00AFAAB48389) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 5 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2052 | 1396 | hv-osbrick-7679 | S-1-5-83-1-4058819522-1263657660-2936023169-2307110058 | 12/18/2020 6:19:10 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 4e28176f-8e68-4c8b-9997-a3378ae3a27d (f1ecabc2-e2bc-4b51-8128-00afaab48389--c47a4ece-8c7e-4720-ae9f-4be93cc5a4b4) Disconnected from virtual network. (Virtual Machine ID F1ECABC2-E2BC-4B51-8128-00AFAAB48389) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 4 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2052 | 1396 | hv-osbrick-7679 | S-1-5-83-1-4058819522-1263657660-2936023169-2307110058 | 12/18/2020 6:19:10 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' started successfully. (Virtual machine ID F1ECABC2-E2BC-4B51-8128-00AFAAB48389) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 3 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2052 | 4020 | hv-osbrick-7679 | S-1-5-83-1-4058819522-1263657660-2936023169-2307110058 | 12/18/2020 6:17:11 PM | 6970065f-d562-0003-7f1c-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 4e28176f-8e68-4c8b-9997-a3378ae3a27d (C47A4ECE-8C7E-4720-AE9F-4BE93CC5A4B4) started successfully. (Virtual Machine ID F1ECABC2-E2BC-4B51-8128-00AFAAB48389) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 2 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2052 | 4020 | hv-osbrick-7679 | S-1-5-83-1-4058819522-1263657660-2936023169-2307110058 | 12/18/2020 6:17:11 PM | 6970065f-d562-0003-7f1c-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 4e28176f-8e68-4c8b-9997-a3378ae3a27d (f1ecabc2-e2bc-4b51-8128-00afaab48389--c47a4ece-8c7e-4720-ae9f-4be93cc5a4b4) Connected to virtual network. (Virtual Machine ID F1ECABC2-E2BC-4B51-8128-00AFAAB48389) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 1 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2052 | 4020 | hv-osbrick-7679 | S-1-5-83-1-4058819522-1263657660-2936023169-2307110058 | 12/18/2020 6:17:11 PM | 6970065f-d562-0003-7f1c-706962d5d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |