Microsoft-Windows-Service Pack Installer

2 events across 1 channel

Event ID	Title	Channel
1		System
9		System

Event ID 1 —

Provider: Microsoft-Windows-Service Pack Installer
Channel: System
Level: 4
Samples: 1

Fields

Name	Description
`SP`	—

Example Event

system:
  provider: Microsoft-Windows-Service Pack Installer
  guid: 62EF8B9F-EE45-4ABA-A9B9-B70E878BF30A
  event_source_name: ''
  event_id: 1
  version: 0
  level: 4
  task: 0
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2013-10-23T18:48:37.144750Z'
  event_record_id: 1383
  correlation: {}
  execution:
    process_id: 2336
    thread_id: 3808
  channel: System
  computer: IE8Win7
  security:
    user_id: S-1-5-18
event_data:
  SP: 1

References

Example event sourced from https://github.com/NextronSystems/evtx-baseline

Event ID 9 —

Provider: Microsoft-Windows-Service Pack Installer
Channel: System
Level: 4
Samples: 1

Fields

Name	Description
`SP`	—

Example Event

system:
  provider: Microsoft-Windows-Service Pack Installer
  guid: 62EF8B9F-EE45-4ABA-A9B9-B70E878BF30A
  event_source_name: ''
  event_id: 9
  version: 0
  level: 4
  task: 0
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2013-10-23T18:49:28.191625Z'
  event_record_id: 1384
  correlation: {}
  execution:
    process_id: 2336
    thread_id: 3808
  channel: System
  computer: IE8Win7
  security:
    user_id: S-1-5-18
event_data:
  SP: 1

References

Example event sourced from https://github.com/NextronSystems/evtx-baseline