| Message | Id | Version | Qualifiers | Level | Task | Opcode | Keywords | RecordId | ProviderName | ProviderId | LogName | ProcessId | ThreadId | MachineName | UserId | TimeCreated | ActivityId | RelatedActivityId | ContainerLog | MatchedQueryIds | Bookmark | LevelDisplayName | OpcodeDisplayName | TaskDisplayName | KeywordsDisplayNames | Properties |
|---|
| 'instance-00000005' was turned off. (Virtual machine ID C64A4EEA-A4F9-4AAD-BEA6-DEDF8AA79992) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 15 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2784 | 504 | hv-osbrick-7679 | S-1-5-83-1-3326758634-1252893945-3755910846-2459543434 | 1/4/2021 6:03:00 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 7f994231-1122-427d-b93b-e17ecc3084a8 (c64a4eea-a4f9-4aad-bea6-dedf8aa79992--07950a10-1bef-42d5-8d91-ec6a9349eb68) Disconnected from virtual network. (Virtual Machine ID C64A4EEA-A4F9-4AAD-BEA6-DEDF8AA79992) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 14 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2784 | 504 | hv-osbrick-7679 | S-1-5-83-1-3326758634-1252893945-3755910846-2459543434 | 1/4/2021 6:03:00 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' was turned off. (Virtual machine ID 8C98C0C6-173D-42E3-8F02-520924A36739) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 13 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4872 | 3340 | hv-osbrick-7679 | S-1-5-83-1-2358821062-1122178877-156369551-963093284 | 1/4/2021 6:02:48 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 794e5fbe-e596-47ab-878d-e3dbb6884b80 (8c98c0c6-173d-42e3-8f02-520924a36739--1c0fc50f-5eab-4b2a-9ad0-c5554b1894f5) Disconnected from virtual network. (Virtual Machine ID 8C98C0C6-173D-42E3-8F02-520924A36739) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 12 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4872 | 3340 | hv-osbrick-7679 | S-1-5-83-1-2358821062-1122178877-156369551-963093284 | 1/4/2021 6:02:48 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' started successfully. (Virtual machine ID 8C98C0C6-173D-42E3-8F02-520924A36739) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 11 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 4872 | 3340 | hv-osbrick-7679 | S-1-5-83-1-2358821062-1122178877-156369551-963093284 | 1/4/2021 6:00:59 PM | 4fea6be3-e2bc-0002-25a0-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 794e5fbe-e596-47ab-878d-e3dbb6884b80 (1C0FC50F-5EAB-4B2A-9AD0-C5554B1894F5) started successfully. (Virtual Machine ID 8C98C0C6-173D-42E3-8F02-520924A36739) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 10 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4872 | 3340 | hv-osbrick-7679 | S-1-5-83-1-2358821062-1122178877-156369551-963093284 | 1/4/2021 6:00:59 PM | 4fea6be3-e2bc-0002-25a0-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000006' 794e5fbe-e596-47ab-878d-e3dbb6884b80 (8c98c0c6-173d-42e3-8f02-520924a36739--1c0fc50f-5eab-4b2a-9ad0-c5554b1894f5) Connected to virtual network. (Virtual Machine ID 8C98C0C6-173D-42E3-8F02-520924A36739) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 9 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 4872 | 3340 | hv-osbrick-7679 | S-1-5-83-1-2358821062-1122178877-156369551-963093284 | 1/4/2021 6:00:59 PM | 4fea6be3-e2bc-0002-25a0-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' started successfully. (Virtual machine ID C64A4EEA-A4F9-4AAD-BEA6-DEDF8AA79992) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 8 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 2784 | 504 | hv-osbrick-7679 | S-1-5-83-1-3326758634-1252893945-3755910846-2459543434 | 1/4/2021 5:59:04 PM | 4fea6be3-e2bc-0001-aec9-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 7f994231-1122-427d-b93b-e17ecc3084a8 (07950A10-1BEF-42D5-8D91-EC6A9349EB68) started successfully. (Virtual Machine ID C64A4EEA-A4F9-4AAD-BEA6-DEDF8AA79992) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 7 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2784 | 504 | hv-osbrick-7679 | S-1-5-83-1-3326758634-1252893945-3755910846-2459543434 | 1/4/2021 5:59:04 PM | 4fea6be3-e2bc-0001-aec9-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000005' 7f994231-1122-427d-b93b-e17ecc3084a8 (c64a4eea-a4f9-4aad-bea6-dedf8aa79992--07950a10-1bef-42d5-8d91-ec6a9349eb68) Connected to virtual network. (Virtual Machine ID C64A4EEA-A4F9-4AAD-BEA6-DEDF8AA79992) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 6 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 2784 | 504 | hv-osbrick-7679 | S-1-5-83-1-3326758634-1252893945-3755910846-2459543434 | 1/4/2021 5:59:04 PM | 4fea6be3-e2bc-0001-aec9-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' was turned off. (Virtual machine ID 2FE60DFD-03FB-4B83-B78D-C41474FF8986) | 18502 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 5 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 1972 | 1720 | hv-osbrick-7679 | S-1-5-83-1-803606013-1266877435-348425655-2257190772 | 1/4/2021 5:58:43 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 346bf4b2-1395-422c-913c-d0c2e25fe914 (2fe60dfd-03fb-4b83-b78d-c41474ff8986--b614d0a3-c8fb-4e18-8c7b-2df061538ce8) Disconnected from virtual network. (Virtual Machine ID 2FE60DFD-03FB-4B83-B78D-C41474FF8986) | 12598 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 4 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 1972 | 1720 | hv-osbrick-7679 | S-1-5-83-1-803606013-1266877435-348425655-2257190772 | 1/4/2021 5:58:43 PM | | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' started successfully. (Virtual machine ID 2FE60DFD-03FB-4B83-B78D-C41474FF8986) | 18500 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 3 | Microsoft-Windows-Hyper-V-Worker | 51ddfa29-d5c8-4803-be4b-2ecb715570fe | Microsoft-Windows-Hyper-V-Worker-Admin | 1972 | 2496 | hv-osbrick-7679 | S-1-5-83-1-803606013-1266877435-348425655-2257190772 | 1/4/2021 5:56:40 PM | 4fea6be3-e2bc-0003-fa9a-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 346bf4b2-1395-422c-913c-d0c2e25fe914 (B614D0A3-C8FB-4E18-8C7B-2DF061538CE8) started successfully. (Virtual Machine ID 2FE60DFD-03FB-4B83-B78D-C41474FF8986) | 12582 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 2 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 1972 | 2496 | hv-osbrick-7679 | S-1-5-83-1-803606013-1266877435-348425655-2257190772 | 1/4/2021 5:56:40 PM | 4fea6be3-e2bc-0003-fa9a-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |
| 'instance-00000004' 346bf4b2-1395-422c-913c-d0c2e25fe914 (2fe60dfd-03fb-4b83-b78d-c41474ff8986--b614d0a3-c8fb-4e18-8c7b-2df061538ce8) Connected to virtual network. (Virtual Machine ID 2FE60DFD-03FB-4B83-B78D-C41474FF8986) | 12597 | 0 | | 4 | 0 | 0 | -9223372036854775808 | 1 | Microsoft-Windows-Hyper-V-SynthNic | c29c4fb7-b60e-4fff-9af9-cf21f9b09a34 | Microsoft-Windows-Hyper-V-Worker-Admin | 1972 | 2496 | hv-osbrick-7679 | S-1-5-83-1-803606013-1266877435-348425655-2257190772 | 1/4/2021 5:56:40 PM | 4fea6be3-e2bc-0003-fa9a-ea4fbce2d601 | | microsoft-windows-hyper-v-worker-admin | System.UInt32[] | System.Diagnostics.Eventing.Reader.EventBookmark | Information | Info | | System.Collections.ObjectModel.ReadOnlyCollection`1[System.String] | System.Collections.Generic.List`1[System.Diagnostics.Eventing.Reader.EventProperty] |