You can also do the following for debugging. Open a Powershell instance as Administrator and run

osqueryi --verbose --disable_events=false

and then run the query

select * from *osquery_events*

and the

powershell_events

row should have events greater than 0.

kool, thanks. I will try that