Logger Name : Circular Kernel Context Logger Logger Id : 2 Logger Thread Id : 00000F1C Buffer Size : 64 Maximum Buffers : 64 Minimum Buffers : 64 Number of Buffers : 64 Free Buffers : 62 Buffers Written : 0 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Secure Buffered Maximum File Size : 100 Log Filename : Trace Flags : PROC_THREAD+LOADER+PERF_COUNTER+DISK_IO+HARD_FAULTS+FILENAME+CSWITCH+COMPACT_CSWITCH+DPC+INTERRUPT Logger Name : DiagLog Logger Id : 4 Logger Thread Id : 00000084 Buffer Size : 16 Maximum Buffers : 22 Minimum Buffers : 4 Number of Buffers : 7 Free Buffers : 7 Buffers Written : 60 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 1 Age Limit : 0 Real Time Mode : Enabled Log File Mode : Secure Maximum File Size : 100 Log Filename : Trace Flags : "Microsoft-Windows-COM":0xffffffffffffffff:0xff+"Microsoft-Windows-Kernel-BootDiagnostics":0xffffffffffffffff:0x4+"Microsoft-Windows-User-Loader":0xffffffffffffffff:0xff+e9f2d03a-747c-41c2-bb9a-02c62b6d5fcb:0xffffffffffffffff:0xff+"Microsoft-Windows-DxgKrnl":0x2030000:0xff+31f60101-3703-48ea-8143-451f8de779d2:0x2000000:0x4+e5b30460-9853-44e1-bcc4-d385e9058fdf:0x60000000:0xff+aaa24221-0693-49b6-9331-267d089c5669:0xffffffffffffffff:0xff+"Microsoft-Windows-Shell-Core":0x2000000:0x4+"Microsoft-Windows-Wininit":0x20000:0x4+"Microsoft-Windows-Diagnostics-Performance":0xa00000:0x4+"Microsoft-Windows-UAC-FileVirtualization":0xffffffffffffffff:0xff+"Microsoft-Windows-Kernel-PnP":0x48000:0x4+"Microsoft-Windows-Kernel-WHEA":0x800:0xff+"Microsoft-Windows-Diagnosis-DPS":0x1200000000:0xff+"Microsoft-Windows-Kernel-Power":0x3:0x4+"Microsoft-Windows-Kernel-WDI":0x200000000:0xff+"Microsoft-Windows-UAC":0xffffffffffffffff:0xff+"Microsoft-Windows-ReadyBoost":0x1000:0x4+"Microsoft-Windows-Winlogon":0x20000:0x4+"Microsoft-Windows-ApplicationExperienceInfrastructure":0xffffffffffffffff:0xff Logger Name : EventLog-Application Logger Id : 5 Logger Thread Id : 00000088 Buffer Size : 64 Maximum Buffers : 64 Minimum Buffers : 4 Number of Buffers : 6 Free Buffers : 6 Buffers Written : 38 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 1 Age Limit : 0 Real Time Mode : Enabled Log File Mode : Secure PagedMemory Maximum File Size : 100 Log Filename : Trace Flags : "Microsoft-Windows-Eventlog":0x2000000000000000:0xff+"Microsoft-Windows-PerfOS":0x8000000000000000:0xff+"Microsoft-Windows-CertificateServicesClient-AutoEnrollment":0x8000000000000000:0xff+"Microsoft-Windows-UAC":0x8000000000000000:0xff+"Microsoft-Windows-ReadyBoost":0x8000000000000000:0xff+"Microsoft-Windows-Diagnosis-PLA":0x8000000000000000:0xff+"Microsoft-Windows-TaskScheduler":0x8000000000000000:0xff+"Microsoft-Windows-Help":0x8000000000000000:0xff+"Microsoft-Windows-Winlogon":0x4000000000000000:0xff+"Microsoft-Windows-LanGPA":0x8000000000000000:0xff+"Microsoft-Windows-PerfNet":0x8000000000000000:0xff+"Microsoft-Windows-CorruptedFileRecovery-Client":0x4000000000000000:0xff+"Microsoft-Windows-EventCollector":0x9000000000000000:0xff+"Microsoft-Windows-Wired-AutoConfig":0x8000000000000000:0xff+"Microsoft-Windows-SystemHealthAgent":0x4000000000000000:0xff+"Microsoft-Windows-OcSetup":0x8000000000000000:0xff+"Application-Addon-Event-Provider":0x8000000000000000:0xff+"Microsoft-Windows-WinRM":0x4000000000000000:0xff+"Microsoft-Windows-Winsrv":0x8000000000000000:0xff+"Microsoft-Windows-Reliability-Analysis-Agent":0x8000000000000000:0xff+"Microsoft-Windows-PerfCtrs":0x8000000000000000:0xff+"Microsoft-Windows-DirectShow-Core":0x8000000000000000:0xff+"Microsoft-Windows-WLAN-AutoConfig":0x8000000000000000:0xff+"Microsoft-Windows-Resource-Exhaustion-Resolver":0x8000000000000000:0xff+"Microsoft-Windows-CertificateServicesClient-CredentialRoaming":0x8000000000000000:0xff+"Microsoft-Windows-L2NACP":0xc000000000000000:0xff+"Microsoft-Windows-PerfDisk":0x8000000000000000:0xff+"Microsoft-Windows-SoftwareRestrictionPolicies":0x8000000000000000:0xff+"Microsoft-Windows-DateTimeControlPanel":0x8000000000000000:0xff+"Microsoft-Windows-CertificateServicesClient":0x8000000000000000:0xff+"Microsoft-Windows-PerfProc":0x8000000000000000:0xff+"Microsoft-Windows-Video-For-Windows":0x8000000000000000:0xff+"Microsoft-Windows-DiskDiagnosticResolver":0x8000000000000000:0xff+"Microsoft-Windows-Forwarding":0x8000000000000000:0xff+"Microsoft-Windows-ApplicationExperienceInfrastructure":0x8000000000000000:0xff+"Microsoft-Windows-Resource-Leak-Diagnostic":0x8000000000000000:0xff+"Microsoft-Windows-RemoteAssistance":0xd000000000000000:0xff+"Microsoft-Windows-CertificateServicesClient-CertEnroll":0x8000000000000000:0xff+"Microsoft-Windows-NetworkAccessProtection":0x8000000000000000:0xff+"Microsoft-Windows-Reliability-Analysis-Engine":0x8000000000000000:0xff+"Microsoft-Windows-WLGPA":0x8000000000000000:0xff+"Microsoft-Windows-International":0x8000000000000000:0xff+"Microsoft-Windows-Diagnostics-Networking":0x8000000000000000:0xff+"Microsoft-Windows-TerminalServices-ClientActiveXCore":0xc000000000000000:0xff+"Microsoft-Windows-MeetingSpace":0x8000000000000000:0xff+"Microsoft-Windows-WUSA":0x8000000000000000:0xff+"RmClient_RestartManager":0xc000000000000000:0xff+"Microsoft-Windows-PDH":0x8000000000000000:0xff+"Microsoft-Windows-ParentalControls":0x8000000000000000:0xff Logger Name : EventLog-System Logger Id : 6 Logger Thread Id : 00000090 Buffer Size : 64 Maximum Buffers : 16 Minimum Buffers : 4 Number of Buffers : 6 Free Buffers : 6 Buffers Written : 56 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 1 Age Limit : 0 Real Time Mode : Enabled Log File Mode : Secure Maximum File Size : 100 Log Filename : Trace Flags : "Microsoft-Windows-WindowsUpdateClient":0xc000000000000000:0xff+"Microsoft-Windows-FilterManager":0x8000000000000000:0xff+"Microsoft-Windows-Bits-Client":0xc000000000000000:0xff+"Microsoft-Windows-User-PnP":0x8000000000000000:0xff+"Microsoft-Windows-DiskDiagnostic":0xc000000000000000:0xff+"Microsoft-Windows-Firewall":0x8000000000000000:0xff+"Microsoft-Windows-DiskDiagnosticDataCollector":0x8000000000000000:0xff+"Ntfs":0x8000000000000000:0xff+"Microsoft-Windows-CorruptedFileRecovery-Server":0xc000000000000000:0xff+"Microsoft-Windows-Winsock-WS2HELP":0x8000000000000000:0xff+"Microsoft-Windows-Diagnostics-Performance":0x8000000000000000:0xff+"Microsoft-Windows-Power-Troubleshooter":0x8000000000000000:0xff+"Microsoft-Windows-IPBusEnum":0x8000000000000000:0xff+"Microsoft-Windows-StartupRepair":0x8000000000000000:0xff+"Microsoft-Windows-TerminalServices-RemoteConnectionManager":0x8000000000000000:0xff+"Microsoft-Windows-WHEA-Logger":0x8000000000000000:0xff+"Microsoft-Windows-UAC-FileVirtualization":0x8000000000000000:0xff+"Microsoft-Windows-GroupPolicy":0xc000000000000000:0xff+"Microsoft-Windows-WPDClassInstaller":0x8000000000000000:0xff+"Microsoft-Windows-MUI":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-General":0x8000000000000000:0xff+"Microsoft-Windows-PowerShell":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-PnP":0x8000000000000000:0xff+"Microsoft-Windows-Resource-Exhaustion-Detector":0xc000000000000000:0xff+"Microsoft-Windows-DfsSvc":0x8000000000000000:0xff+"Microsoft-Windows-TPM-WMI":0x8000000000000000:0xff+"Microsoft-Windows-HttpEvent":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-WHEA":0xc000000000000000:0xff+"Microsoft-Windows-ResourcePublication":0x8000000000000000:0xff+"Microsoft-Windows-MemoryDiagnostics-Schedule":0x8000000000000000:0xff+"Microsoft-Windows-LanguagePackSetup":0xc000000000000000:0xff+"Microsoft-Windows-RasSstp":0x8000000000000000:0xff+"Microsoft-Windows-Diagnosis-DPS":0x4000000000000000:0xff+"Microsoft-Windows-HAL":0x8000000000000000:0xff+"Microsoft-Windows-Service Pack Installer":0x8000000000000000:0xff+"Microsoft-Windows-MemoryDiagnostics-Results":0xc000000000000000:0xff+"Service Control Manager":0x8000000000000000:0xff+"Microsoft-Windows-TBS":0x8000000000000000:0xff+"Microsoft-Windows-CodeIntegrity":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-Tm":0x8000000000000000:0xff+"Microsoft-Windows-Program-Compatibility-Assistant":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-Power":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-WDI":0x2000000000000000:0xff+"Microsoft-Windows-DriverFrameworks-UserMode":0xa000000000000000:0xff+"Microsoft-Windows-WPD-MTPClassDriver":0x8000000000000000:0xff+"Microsoft-Windows-Diagnosis-MSDT":0x8000000000000000:0xff+"Microsoft-Windows-Dhcp-Client":0x8000000000000000:0xff+"Microsoft-Windows-Kernel-Processor-Power":0x8000000000000000:0xff+"Microsoft-Windows-Bluetooth-MTPEnum":0x8000000000000000:0xff+"Microsoft-Windows-Eventlog":0x8000000000000000:0xff+"Microsoft-Windows-TaskScheduler":0x4000000000000000:0xff+"Microsoft-Windows-CorruptedFileRecovery-Client":0x8000000000000000:0xff+"Microsoft-Windows-EventCollector":0x4000000000000000:0xff+"Microsoft-Windows-WLAN-AutoConfig":0x4000000000000000:0xff+"Microsoft-Windows-Reliability-Analysis-Engine":0x4000000000000000:0xff+"Microsoft-Windows-Diagnostics-Networking":0x4000000000000000:0xff Logger Name : NBSMBLOGGER Logger Id : 7 Logger Thread Id : 00000094 Buffer Size : 4 Maximum Buffers : 4 Minimum Buffers : 4 Number of Buffers : 4 Free Buffers : 2 Buffers Written : 0 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Buffered LocalSeqNo Maximum File Size : 100 Log Filename : Trace Flags : bca7bd7f-b0bf-4051-99f4-03cfe79664c1:0xffffffff:0x3 Logger Name : NtfsLog Logger Id : 8 Logger Thread Id : 00000098 Buffer Size : 64 Maximum Buffers : 4 Minimum Buffers : 4 Number of Buffers : 4 Free Buffers : 2 Buffers Written : 0 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Buffered LocalSeqNo Maximum File Size : 100 Log Filename : Trace Flags : "Ntfs_NtfsLog":0xf0008007 Logger Name : RdrLog Logger Id : 9 Logger Thread Id : 0000009C Buffer Size : 64 Maximum Buffers : 4 Minimum Buffers : 4 Number of Buffers : 4 Free Buffers : 2 Buffers Written : 0 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Buffered LocalSeqNo Maximum File Size : 100 Log Filename : Trace Flags : "Microsoft-Windows-Remote-FileSystem-Log":0x33333333 Logger Name : WdiContextLog Logger Id : b Logger Thread Id : 000000A4 Buffer Size : 16 Maximum Buffers : 32 Minimum Buffers : 4 Number of Buffers : 14 Free Buffers : 12 Buffers Written : 17 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Circular Secure Maximum File Size : 2 Log Filename : C:\Windows\System32\WDI\LogFiles\WdiContextLog.etl.002 Trace Flags : "Microsoft-Windows-COM":0xffffffffffffffff:0xff+"Microsoft-Windows-Kernel-BootDiagnostics":0xffffffffffffffff:0x4+"Microsoft-Windows-User-Loader":0xffffffffffffffff:0xff+e9f2d03a-747c-41c2-bb9a-02c62b6d5fcb:0xffffffffffffffff:0xff+"Microsoft-Windows-DxgKrnl":0x2030000:0xff+31f60101-3703-48ea-8143-451f8de779d2:0x2000000:0x4+e5b30460-9853-44e1-bcc4-d385e9058fdf:0x60000000:0xff+aaa24221-0693-49b6-9331-267d089c5669:0xffffffffffffffff:0xff+"Microsoft-Windows-Shell-Core":0x2000000:0x4+"Microsoft-Windows-Wininit":0x20000:0x4+"Microsoft-Windows-Diagnostics-Performance":0xa00000:0x4+"Microsoft-Windows-UAC-FileVirtualization":0xffffffffffffffff:0xff+"Microsoft-Windows-Kernel-PnP":0x48000:0x4+"Microsoft-Windows-Kernel-WHEA":0x800:0xff+"Microsoft-Windows-Diagnosis-DPS":0x1200000000:0xff+"Microsoft-Windows-Kernel-Power":0x3:0x4+"Microsoft-Windows-Kernel-WDI":0x100000000:0xff+"Microsoft-Windows-UAC":0xffffffffffffffff:0xff+"Microsoft-Windows-ReadyBoost":0x1000:0x4+"Microsoft-Windows-Winlogon":0x20000:0x4+"Microsoft-Windows-ApplicationExperienceInfrastructure":0xffffffffffffffff:0xff Logger Name : SCM Logger Id : d Logger Thread Id : 0000029C Buffer Size : 32 Maximum Buffers : 25 Minimum Buffers : 4 Number of Buffers : 7 Free Buffers : 5 Buffers Written : 8 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Circular Maximum File Size : 50 Log Filename : C:\Windows\system32\LogFiles\Scm\SCM.EVM Trace Flags : "Service Control Manager Trace":0xff3f7ff Logger Name : Spooler Default Session Logger Id : e Logger Thread Id : 00000738 Buffer Size : 4 Maximum Buffers : 6 Minimum Buffers : 4 Number of Buffers : 4 Free Buffers : 2 Buffers Written : 1 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Circular PagedMemory Maximum File Size : 10 Log Filename : C:\Windows\system32\Spool\SpoolerETW.etl Trace Flags : "Microsoft-Windows-PrintSpooler":0xffffffffffffffff:0x2 Logger Name : WMI_Trace_Session Logger Id : f Logger Thread Id : 00000238 Buffer Size : 4 Maximum Buffers : 24 Minimum Buffers : 4 Number of Buffers : 4 Free Buffers : 2 Buffers Written : 1 Events Lost : 0 Log Buffers Lost : 0 Real Time Buffers Lost: 0 Flush Timer : 0 Age Limit : 0 Log File Mode : Circular PreAllocate Maximum File Size : 16 Log Filename : C:\Windows\system32\wbem\Logs\WMITracing.log Trace Flags : "WMI_Tracing":0xffffffff:0x2