Axi Event Services
Historical Status
SCNE - msgs
 Log time
Wed Jan 22 09:05:12 2025



 

wo 22 jan 08:30:20 2025 - System logs ok


No entries in eventlog_Application

No entries in eventlog_System

No entries in eventlog_Security

No entries in EventlogSummary


Full log eventlog_Application

Full log eventlog_System

Full log eventlog_Security
Information - 01/22/2025 08:30:18 - [4689] - Microsoft-Windows-Security-Auditing - A process has exited.

Subject:
	Security ID:		S-1-5-21-3891639256-1507687196-1048818851-1517
	Account Name:		scne
	Account Domain:		AXI
	Logon ID:		0x12B4544E

Process Information:
	Process ID:	0x6c28
	Process Name:	C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\LenovoVantage-(SmartInteractAddin).exe
	Exit Status:	0xFFFFFFFF
Information - 01/22/2025 08:30:17 - [4688] - Microsoft-Windows-Security-Auditing - A new process has been created.

Creator Subject:
	Security ID:		S-1-5-21-3891639256-1507687196-1048818851-1517
	Account Name:		scne
	Account Domain:		AXI
	Logon ID:		0x12B4544E

Target Subject:
	Security ID:		S-1-0-0
	Account Name:		-
	Account Domain:		-
	Logon ID:		0x0

Process Information:
	New Process ID:		0x38f4
	New Process Name:	C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
	Token Elevation Type:	TokenElevationTypeLimited (3)
	Mandatory Label:		S-1-16-4096
	Creator Process ID:	0x1228
	Creator Process Name:	C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
	Process Command Line:	

Token Elevation Type indicates the type of token that was assigned to the new process in accordance with User Account Control policy.

Type 1 is a full token with no privileges removed or groups disabled.  A full token is only used if User Account Control is disabled or if the user is the built-in Administrator account or a service account.

Type 2 is an elevated token with no privileges removed or groups disabled.  An elevated token is used when User Account Control is enabled and the user chooses to start the program using Run as administrator.  An elevated token is also used when an application is configured to always require administrative privilege or to always require maximum privilege, and the user is a member of the Administrators group.

Type 3 is a limited token with administrative privileges removed and administrative groups disabled.  The limited token is used when User Account Control is enabled, the application does not require administrative privilege, and the user does not choose to start the program using Run as administrator.

Full log EventlogSummary

LogMode  MaximumSizeInBytes RecordCount LogName    
-------  ------------------ ----------- -------    
Circular           20971520       27439 Security   
Circular           20971520       44125 System     
Circular           20971520       25488 Application


Status unchanged in 0.00 minutes
Status message received from
Client data available
Xymon 4.3.30