Elastic Windows Event Explorer


Publisher - Microsoft-Windows-HttpService

Event ID 1

Message:

Request received (request ID %{RequestId}) on connection (connection ID %{ConnectionId}) from remote address %{RemoteAddr}.

Event Data:

# Name In Type
Out Type
1 RequestId win:UInt64 win:HexInt64
2 ConnectionId win:UInt64 win:HexInt64
3 RemoteAddrLength win:UInt32 xs:unsignedInt
4 RemoteAddr win:Binary win:SocketAddress

Observed Windows Versions:

Version: 0

Fingerprint: OTLPVKGM47V3Y