Elastic Windows Event Explorer


Publisher - Microsoft-Windows-WMI-Activity

Event ID 5861

Message:

Namespace = %{Namespace}; Eventfilter = %{ESS} (refer to its activate eventid:5859); Consumer = %{CONSUMER}; PossibleCause = %{PossibleCause}

Event Data:

# Name In Type
Out Type
1 Namespace win:UnicodeString xs:string
2 ESS win:UnicodeString xs:string
3 CONSUMER win:UnicodeString xs:string
4 PossibleCause win:UnicodeString xs:string

Observed Windows Versions:

Version: 0

Fingerprint: L3E37KLXXIXUC