Microsoft-Windows-WER-PayloadHealth

4 events across 1 channel

Event ID	Title	Channel
1		Operational
2		Operational
3		Operational
4		Operational

Event ID 1 —

Provider: Microsoft-Windows-WER-PayloadHealth
Channel: Operational
Level: 4
Samples: 1

Fields

Name	Description
`Name`	—
`UploadDuration`	—
`PayloadSize`	—
`Protocol`	—
`Stage`	—
`BytesUploaded`	—
`ServerName`	—

Example Event

system:
  provider: Microsoft-Windows-WER-PayloadHealth
  guid: 4AFDDFDE-002D-51AC-C109-C3B7897858D0
  event_source_name: ''
  event_id: 1
  version: 0
  level: 4
  task: 1
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2023-11-06T01:57:53.115162+00:00'
  event_record_id: 4
  correlation: {}
  execution:
    process_id: 4036
    thread_id: 14096
  channel: Microsoft-Windows-WER-PayloadHealth/Operational
  computer: WinDev2310Eval
  security:
    user_id: S-1-5-21-1992711665-1655669231-58201500-1000
event_data:
  Name: WER_PAYLOAD_HEALTH_SUCCESS
  UploadDuration: 1140
  PayloadSize: 5223
  Protocol: Watson
  Stage: s1event
  BytesUploaded: 5223
  ServerName: watson.events.data.microsoft.com
message: ''

References

Example event sourced from https://github.com/NextronSystems/evtx-baseline

Event ID 2 —

Provider: Microsoft-Windows-WER-PayloadHealth
Channel: Operational
Level: 4
Samples: 1

Fields

Name	Description
`Name`	—
`HttpExchangeResult`	—
`UploadDuration`	—
`PayloadSize`	—
`Protocol`	—
`Stage`	—
`RequestStatusCode`	—
`BytesUploaded`	—
`ServerName`	—
`TransportHr`	—

Example Event

system:
  provider: Microsoft-Windows-WER-PayloadHealth
  guid: 4AFDDFDE-002D-51AC-C109-C3B7897858D0
  event_source_name: ''
  event_id: 2
  version: 0
  level: 4
  task: 1
  opcode: 0
  keywords: 9223372036854775808
  time_created: '2022-04-07T08:14:10.408942+00:00'
  event_record_id: 4
  correlation: {}
  execution:
    process_id: 2752
    thread_id: 4120
  channel: Microsoft-Windows-WER-PayloadHealth/Operational
  computer: WIN-FPV0DSIC9O6.sigma.fr
  security:
    user_id: S-1-5-20
event_data:
  Name: WER_PAYLOAD_HEALTH_FAIL
  HttpExchangeResult: 2148074245
  UploadDuration: 93
  PayloadSize: 4200
  Protocol: Watson
  Stage: s1event
  RequestStatusCode: 0
  BytesUploaded: 0
  ServerName: umwatson.events.data.microsoft.com
  TransportHr: 2148074245
message: ''

References

Example event sourced from https://github.com/NextronSystems/evtx-baseline

Event ID 3 —

Provider: Microsoft-Windows-WER-PayloadHealth
Channel: Operational

Fields

Name	Description
`HttpExchangeResult`	—
`LastBlockId`	—
`TotalBytesUploaded`	—

Event ID 4 —

Provider: Microsoft-Windows-WER-PayloadHealth
Channel: Operational

Fields

Name	Description
`HttpExchangeResult`	—
`LastBlockId`	—
`TotalBytesUploaded`	—