Microsoft-Windows-Services
15 events across 1 channel
| Event ID | Title | Channel |
|---|---|---|
| 101 | Diagnostic | |
| 102 | Diagnostic | |
| 103 | Diagnostic | |
| 104 | Diagnostic | |
| 105 | Diagnostic | |
| 106 | Diagnostic | |
| 107 | Diagnostic | |
| 108 | Diagnostic | |
| 109 | Diagnostic | |
| 200 | Diagnostic | |
| 201 | Diagnostic | |
| 202 | Diagnostic | |
| 203 | Diagnostic | |
| 204 | Diagnostic | |
| 205 | Diagnostic |
Event ID 101 —
Event ID 102 —
Event ID 103 —
Fields
| Name | Description |
|---|---|
GroupName | — |
Event ID 104 —
Fields
| Name | Description |
|---|---|
GroupName | — |
Event ID 105 —
Fields
| Name | Description |
|---|---|
ExecutionPhase | — |
CurrentState | — |
StartType | — |
PID | — |
ServiceName | — |
ImageName | — |
Event ID 106 —
Event ID 107 —
Event ID 108 —
Event ID 109 —
Event ID 200 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
DisplayName | — |
ControlCode | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |
Event ID 201 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
NewStartType | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |
Event ID 202 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
NewValueName | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |
Event ID 203 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
NewValueName | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |
Event ID 204 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
ServiceHostName | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |
Event ID 205 —
Fields
| Name | Description |
|---|---|
ServiceName | — |
LoadOrderGroup | — |
SvchostGroup | — |
IsCritical | — |
IsUserService | — |
IsOwnProcess | — |
ClientProcessStartKey | — |
ClientProcessId | — |
ParentProcessId | — |