Log Name: Security Source: Microsoft-Windows-Security-Auditing Date: 11/1/2016 1:24:33 PM Event ID: 6422 Task Category: Plug and Play Events Level: Information Keywords: Audit Success User: N/A Computer: IIZHU2016.itss.wm.zhu.cn.qsft Description: A device was enabled. Subject: Security ID: SYSTEM Account Name: IIZHU2016$ Account Domain: ITSS Logon ID: 0x3E7 Device ID: SWD\PRINTENUM\{60FA1C6A-1AB2-440A-AEE1-62ABFB9A4650} Device Name: Microsoft Print to PDF Class ID: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc} Class Name: PrintQueue Hardware IDs: PRINTENUM\{084f01fa-e634-4d77-83ee-074817c03581} PRINTENUM\LocalPrintQueue {084f01fa-e634-4d77-83ee-074817c03581} Compatible IDs: GenPrintQueue SWD\GenericRaw SWD\Generic Location Information: -