detection.wiki

Microsoft-Windows-Ras-NdisWanPacketCapture

3 events across 1 channel

Event IDTitleChannel
5001Sending NDIS Wan Packet (FragmentSize bytes).Diagnostic
5002Reciving NDIS Wan Packet (FragmentSize bytes).Diagnostic
5003Event.Diagnostic

Event ID 5001 — Sending NDIS Wan Packet (FragmentSize bytes).

Provider
Microsoft-Windows-Ras-NdisWanPacketCapture
Channel
Diagnostic
Opcode
Info

Description

Sending NDIS Wan Packet (FragmentSize bytes).

Message #

Sending NDIS Wan Packet (%3 bytes)

Fields #

NameDescription
RoutingDomainID UnicodeString
RRASUserName UnicodeString
FragmentSize UInt32
Fragment Binary

Event ID 5002 — Reciving NDIS Wan Packet (FragmentSize bytes).

Provider
Microsoft-Windows-Ras-NdisWanPacketCapture
Channel
Diagnostic
Opcode
Info

Description

Reciving NDIS Wan Packet (FragmentSize bytes).

Message #

Reciving NDIS Wan Packet (%3 bytes)

Fields #

NameDescription
RoutingDomainID UnicodeString
RRASUserName UnicodeString
FragmentSize UInt32
Fragment Binary

Event ID 5003 — Event.

Provider
Microsoft-Windows-Ras-NdisWanPacketCapture
Channel
Diagnostic
Opcode
Info

Message #

Event: %1

Fields #

NameDescription
param1 UnicodeString