Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Kernel-PnP

Event ID 410

Message:

Device %{DeviceInstanceId} was started.

Driver Name: %{DriverName}
Class Guid: %{ClassGuid}
Service: %{ServiceName}
Lower Filters: %{LowerFilters}
Upper Filters: %{UpperFilters}

Event Data:

# Name In Type
Out Type
1 DeviceInstanceId win:UnicodeString xs:string
2 DriverName win:UnicodeString xs:string
3 ClassGuid win:GUID xs:GUID
4 ServiceName win:UnicodeString xs:string
5 LowerFilters win:UnicodeString xs:string
6 UpperFilters win:UnicodeString xs:string
7 Problem win:HexInt32 win:HexInt32
8 Status win:HexInt32 win:HexInt32

Observed Windows Versions:

Version: 0

Fingerprint: SGAIBNQOLAP5O