Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Program-Compatibility-Assistant

Event ID 1234

Message:

Exe: AppId%{ApplicationID}

Uptime %{Uptime} 

Event Data:

# Name In Type
Out Type
1 ApplicationID win:UnicodeString xs:string
2 Uptime win:UInt32 xs:unsignedInt

Observed Windows Versions:

Version: 0

Fingerprint: GMXNEAZF5KLDY