Elastic Windows Event Explorer


Publisher - Microsoft-Windows-WMI-Activity

Event ID 12

Message:

ProviderInfo for GroupOperationId = %{GroupOperationId}; Operation = %{Operation}; HostID = %{HostId}; ProviderName = %{ProviderName}; ProviderGuid = %{ProviderGuid}; Path = %{Path}

Event Data:

# Name In Type
Out Type
1 GroupOperationId win:UInt32 xs:unsignedInt
2 Operation win:UnicodeString xs:string
3 HostId win:UInt32 xs:unsignedInt
4 ProviderName win:UnicodeString xs:string
5 ProviderGuid win:UnicodeString xs:string
6 Path win:UnicodeString xs:string

Observed Windows Versions:

Version: 0

Fingerprint: FA2ZAR3HVY35K