Message

WPD device installation function (%1, %2) begin.

Fields

Message

WPD device installation function (%1, %2) end with this return code (%3).

Fields

Message

WPD device metadata retrieval for device %1 begin

Fields

Message

WPD device metadata retrieval for device %1 end with this return code (%2).

Fields

Message

WPD device metadata retrieval for device %1 begin

Fields

Message

WPD device metadata retrieval for device %1 end with this return code (%2).

Fields

Message

Device marked for reinstallation on subsequent connect.

Message

%1: Transfer of metadata (%2, %3) succeeded.

Fields

Message

%1: Transfer of metadata (%2, %3) skipped. Error code %4.

Fields

Message

%1: Transfer of metadata (%2, %3) failed. Error code %4.

Fields

Message

%1: Transfer of metadata failed as the Device Metadata Service could not be accessed. Error code %2.

Fields

Message

%1: Successfully opened the Device Metadata Service to retrieve metadata: %2.

Fields

Message

Transfer of metadata (%1, %2) is skipped because the metadata already exists on the system.

Fields

Message

Policy %1 enforced for user account %2, device instance %7.

Fields

Fields

Example Event

system:
  provider: Microsoft-Windows-WPDClassInstaller
  guid: '{AD5162D8-DAF0-4A25-88A7-01CBEB33902E}'
  event_source_name: WPDClassInstaller
  event_id: 24576
  version: 0
  level: 4
  task: 16
  opcode: 0
  keywords: 36028797018963968
  time_created: '2022-04-07T16:53:01.520198+00:00'
  event_record_id: 372
  correlation: {}
  execution:
    process_id: 0
    thread_id: 0
  channel: System
  computer: WIN-FPV0DSIC9O6
  security:
    user_id: ''
event_data:
  Data_0: WPD Device
  Binary: ''
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Fields

Example Event

system:
  provider: Microsoft-Windows-WPDClassInstaller
  guid: '{AD5162D8-DAF0-4A25-88A7-01CBEB33902E}'
  event_source_name: WPDClassInstaller
  event_id: 24577
  version: 0
  level: 4
  task: 32
  opcode: 0
  keywords: 36028797018963968
  time_created: '2022-04-07T16:53:01.598397+00:00'
  event_record_id: 373
  correlation: {}
  execution:
    process_id: 0
    thread_id: 0
  channel: System
  computer: WIN-FPV0DSIC9O6
  security:
    user_id: ''
event_data:
  Data_0: ''
  Binary: ''
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Fields

Example Event

system:
  provider: Microsoft-Windows-WPDClassInstaller
  guid: '{AD5162D8-DAF0-4A25-88A7-01CBEB33902E}'
  event_source_name: WPDClassInstaller
  event_id: 24579
  version: 0
  level: 4
  task: 32
  opcode: 0
  keywords: 36028797018963968
  time_created: '2022-04-07T16:53:01.598397+00:00'
  event_record_id: 374
  correlation: {}
  execution:
    process_id: 0
    thread_id: 0
  channel: System
  computer: WIN-FPV0DSIC9O6
  security:
    user_id: ''
event_data:
  Data_0: ''
  Binary: ''
message: ''

References

• Example event sourced from https://github.com/NextronSystems/evtx-baseline

Message

Drivers were successfully installed for device %1.

Message

Media player and imaging program compatibility layers were successfully registered for device %1. Layer bits %2 were requested, layer bits %3 were registered.

Message

Autoplay was successfully registered for device %1.

Message

Autoplay registration was skipped for device %1.

Message

%1: Drivers for %2 device(s) were successfully uninstalled while migrating a dual-mode mass storage class device to Media Transfer Protocol (MTP).

Message

%1: Drivers for %2 device(s) were successfully uninstalled while migrating a Media Transfer Protocol (MTP) device.

Message

%1: Drivers for %2 device(s) were successfully uninstalled while migrating a Media Transfer Protocol (MTP) device, including any devices that were connected and active.

Message

%1: Drivers for %2 device(s) were successfully uninstalled while migrating a Picture Transfer Protocol (PTP) device.

Message

%1: Drivers for %2 device(s) were successfully uninstalled while migrating a Picture Transfer Protocol (PTP) device, including any devices that were connected and active.

Message

%1: Drivers were successfully migrated after Plug and Play was enumerated again.

Message

%1: This version of Windows does not support Windows Portable Device drivers, so the drivers were not installed.

Message

It was not possible to install drivers for the device %1. Error code %2.

Message

It was not possible to access the device (%1) after installing drivers. Error code %2.

Message

It was not possible to register media player and imaging program layers for the device %1. Error code %2.

Message

It was not possible to register autoplay for device %1. Error code %2.

Message

%1 failed to uninstall drivers when migrating dual-mode devices from mass storage class to Media Transfer Protocol (MTP). Error code %2.

Message

%1 failed to uninstall drivers for single-protocol Media Transfer Protocol (MTP) devices. Error %2.

Message

%1 failed to uninstall drivers for single-protocol Picture Transfer Protocol (PTP) devices. Error %2.

Message

%1: It was not possible to enumerate Plug and Play again after drivers were migrated. Error code %2.