Elastic Windows Event Explorer


Publisher - Microsoft-Windows-PDC

Event ID 20

Message:

Message %{Message}, TransactionId: %{TransactionId}, ClientState: %{ClientState}, ClientStatus: %{ClientStatus}

Event Data:

# Name In Type
Out Type
1 Message win:Pointer win:HexInt64
2 TransactionId win:UInt32 win:HexInt32
3 ClientState win:UInt32 win:HexInt32
4 ClientStatus win:UInt32 win:HexInt32

Observed Windows Versions:

Version: 0

Fingerprint: 4E47FLKYMZ5CG