Elastic Windows Event Explorer


Publisher - Microsoft-Windows-DotNETRuntime

Event ID 187

Message:

ClrInstanceID=%{ClrInstanceID};
SKU=%{Sku};
BclMajorVersion=%{BclMajorVersion};
BclMinorVersion=%{BclMinorVersion};
BclBuildNumber=%{BclBuildNumber};
BclQfeNumber=%{BclQfeNumber};
VMMajorVersion=%{VMMajorVersion};
VMMinorVersion=%{VMMinorVersion};
VMBuildNumber=%{VMBuildNumber};
VMQfeNumber=%{VMQfeNumber};
StartupFlags=%{StartupFlags};
StartupMode=%{StartupMode};
CommandLine=%{CommandLine};
ComObjectGUID=%{ComObjectGuid};
RuntimeDllPath=%{RuntimeDllPath}

Event Data:

# Name In Type
Out Type
1 ClrInstanceID win:UInt16 xs:unsignedShort
2 Sku win:UInt16 xs:unsignedShort
3 BclMajorVersion win:UInt16 xs:unsignedShort
4 BclMinorVersion win:UInt16 xs:unsignedShort
5 BclBuildNumber win:UInt16 xs:unsignedShort
6 BclQfeNumber win:UInt16 xs:unsignedShort
7 VMMajorVersion win:UInt16 xs:unsignedShort
8 VMMinorVersion win:UInt16 xs:unsignedShort
9 VMBuildNumber win:UInt16 xs:unsignedShort
10 VMQfeNumber win:UInt16 xs:unsignedShort
11 StartupFlags win:UInt32 xs:unsignedInt
12 StartupMode win:UInt8 xs:unsignedByte
13 CommandLine win:UnicodeString xs:string
14 ComObjectGuid win:GUID xs:GUID
15 RuntimeDllPath win:UnicodeString xs:string

Observed Windows Versions:

Version: 0

Fingerprint: VYTVVSWPTDIV6