Message

Error %3 occurred. See event details for more information.

Fields

Example Event

system:
  provider: Microsoft-Windows-CloudStore
  guid: 741BB90C-A7A3-49D6-BD82-1E6B858403F7
  event_source_name: ''
  event_id: 1
  version: 0
  level: 2
  task: 0
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2022-04-07T16:58:26.480434+00:00'
  event_record_id: 54
  correlation: {}
  execution:
    process_id: 4128
    thread_id: 4196
  channel: Microsoft-Windows-CloudStore/Operational
  computer: WIN-FPV0DSIC9O6.sigma.fr
  security:
    user_id: S-1-5-21-2121334350-1110938707-2888912545-500
event_data:
  ProcessName: explorer.exe
  Type: 2
  ErrorCode: 2147746053
  File: onecoreuap\shell\cloudstore\store\cache\src\cloudcacheinvalidatorsso.cpp
  LineNumber: 504
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Error %3 occurred. See event details for more information.

Fields

Message

Discovered schema provider %1.

Fields

Message

Successfully loaded %1 schemas.

Fields

Message

Ignoring ommitted field %1 with unknown type %2.

Fields

Message

Conflict resolution of type {QualifiedTypeName} started. 'Yours' data is version {YoursVersion} with size {YoursSize}. See event details for more information. Extended information may be available in the Debug log.

Fields

Message

Conflict resolution of type %2 complete. See event details for more information.

Fields

Message

Conflict resolution of type {QualifiedTypeName} complete. Result is version {Version} with size {Size}. See event details for more information. Extended information may be available in the Debug log.

Fields

Message

Conflict resolution of type {CorrelationVector} complete. See event details for more information.

Fields

Message

Resolved a set containing duplicated values. The duplicate values were ignored. See event details for more information.

Fields

Message

The 'original' version (%2) of type %1 is more recent than the 'theirs' version (%3) or the 'yours' version (%4). Healing the store by using the most recent version (%5). See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The data of type %1 was corrupted and ignored. See event details for more information.

Fields

Message

The AppExtension of name %1 having type %2 failed with error code %3 found.

Fields

Message

The AppExtension of name %1 having type %2 failed with error code %3 found.

Fields

Message

Found an list item instance with a missing index value while merging vector as a map. The list item was ignored. See event details for more information.

Fields

Message

Conflict resolution policy of VectorAsMap requires an index field to be defined on the list item structure. Using MergeAsSet instead. See event details for more information.

Fields

Message

Conflict resolution policy of VectorAsMap requires index fields to be an integer or string. Using MergeAsSet instead. See event details for more information.

Fields

Message

Conflict resolution policy of VectorAsMap the list items to be a structure. Using MergeAsSet instead. See event details for more information.

Fields

Message

Sucessfully deleted %2. See event details for more information.

Fields

Message

Saving %1 and merging with 'theirs' data. 'Theirs' data has size %3 and is version %2.

Fields

Message

Saving %1 without 'theirs' data.

Fields

Message

Overwriting %1 with 'yours' data to repair inaccessible store (access failed with error code %2).

Fields

Message

Uploading %1 failed with error code %2. The data was sucessfully stored locally and will be uploaded later.

Fields

Message

Successfully loaded %2. See event details for more information.

Fields

Message

Successfully saved %2. See event details for more information.

Fields

Message

Successfully saved cloud data for {Id}. See event details for more information.

Fields

Message

Successfully saved merged cloud data for {Id}. See event details for more information.

Fields

Message

Downloading %1 failed with error code %2.

Fields

Example Event

system:
  provider: Microsoft-Windows-CloudStore
  guid: 741BB90C-A7A3-49D6-BD82-1E6B858403F7
  event_source_name: ''
  event_id: 3013
  version: 0
  level: 3
  task: 0
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2023-11-06T01:48:34.113221+00:00'
  event_record_id: 57
  correlation:
    ActivityID: E4DB489E-1037-0000-DAED-EDE43710DA01
  execution:
    process_id: 16236
    thread_id: 22096
  channel: Microsoft-Windows-CloudStore/Operational
  computer: WinDev2310Eval
  security:
    user_id: S-1-5-21-1992711665-1655669231-58201500-1000
event_data:
  Id: default$windows.data.settings.settingsusagehistory|windows.data.settings.settingsusagehistory
  ErrorCode: 2147746053
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Delete of %1 was ignored because the data changed after it was deleted. See event details for more information.

Fields

Message

The attempt to load %1 failed because the data was corrupt. See event details for more information.

Fields

Message

The value {Id} was garbage collected from the local cache because it was not reachable.

Fields

Message

The object %1 has an unexpected security descriptor. Recovering by resetting the security descriptor. See event details for more information.

Fields

Message

The cache invalidator has started.

Message

The cache invalidator has stopped.

Message

The cache invalidator is processing %2 activities.

Fields

Message

The Backup master policy is set.

Example Event

system:
  provider: Microsoft-Windows-CloudStore
  guid: 741BB90C-A7A3-49D6-BD82-1E6B858403F7
  event_source_name: ''
  event_id: 3021
  version: 0
  level: 4
  task: 0
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2023-11-05T22:29:02.865478+00:00'
  event_record_id: 17
  correlation: {}
  execution:
    process_id: 5784
    thread_id: 6016
  channel: Microsoft-Windows-CloudStore/Operational
  computer: WinDev2310Eval
  security:
    user_id: S-1-5-21-1992711665-1655669231-58201500-1000
event_data: {}
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Backup policy name %1 set failed with error code %2.

Fields

Message

The transport layer reported a failure: %1 with error code %2.

Fields

Message

Error %2 occurred trying to perform file copy operation for schema %1. See event details for more information.

Fields

Message

Error %1 occurred trying to retrive the device profile during an operation on a backup/restore schema. See event details for more information.

Fields

Message

Attempting to save device profile %1. See event details for more information.

Fields

Example Event

system:
  provider: Microsoft-Windows-CloudStore
  guid: 741BB90C-A7A3-49D6-BD82-1E6B858403F7
  event_source_name: ''
  event_id: 4000
  version: 0
  level: 4
  task: 0
  opcode: 0
  keywords: 2305843009213693952
  time_created: '2023-11-05T22:29:03.009433+00:00'
  event_record_id: 3
  correlation: {}
  execution:
    process_id: 5784
    thread_id: 6016
  channel: Microsoft-Windows-CloudStore/Initialization
  computer: WinDev2310Eval
  security:
    user_id: S-1-5-21-1992711665-1655669231-58201500-1000
event_data:
  BackupProfileId: '{8dcb8207-c294-40da-82e0-ce8f415acdb8}'
  ProcessName: taskhostw.exe
  IsDelete: false
  Cv: /FVp6ocjxkiUITaIBQcllQ.0.1.2
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Error saving internal type %1: %2. See event details for more information.

Fields

Message

Successfully setup Cloud Store backup/restore partition information. See event details for more information.

Fields

Message

Failed to setup Cloud Store backup/restore partition information at stage %2 with error %1. See event details for more information.

Fields

Message

Timed out after mirroring %2 settings sync policies in %1 milliseconds. See event details for more information.

Fields

Message

Completed mirroring %2 settings sync policies in %1 milliseconds.

Fields

Example Event

system:
  provider: Microsoft-Windows-CloudStore
  guid: 741BB90C-A7A3-49D6-BD82-1E6B858403F7
  event_source_name: ''
  event_id: 4005
  version: 0
  level: 4
  task: 0
  opcode: 0
  keywords: 2305843009213693952
  time_created: '2023-11-05T22:29:03.084800+00:00'
  event_record_id: 4
  correlation: {}
  execution:
    process_id: 5784
    thread_id: 6016
  channel: Microsoft-Windows-CloudStore/Initialization
  computer: WinDev2310Eval
  security:
    user_id: S-1-5-21-1992711665-1655669231-58201500-1000
event_data:
  Elapsed: 62
  UpdateCount: 1
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Set policy %1 to %2.

Fields

Message

Failed to set policy %1 to %2: %4.

Fields

Message

Restore data successfully copied from restore partition %1 to backup partition %2

Fields

Message

Failed to copy restore data successfully copied from restore partition %1 to backup partition %2: %3

Fields

Message

Copied single restore partition data item from %1 to backup partition as %2

Fields

Message

Skipped copying single restore partition at %1 to backup partition as %2 as it already exists

Fields

Message

Error processing type %1

Fields