Classification

Rule Name

Rule Type

Common Event

Classification

EVID 1001 : Windows Error Report InformationSub RuleGeneral Application ErrorError
Catch All : Windows Error Reporting MessagesBase RuleWindows Error EventError

Mapping with LogRhythm Schema  

Device Key in Log Message

Log Value

LogRhythm Schema

Data Type

N/AN/A<vendorinfo>Text/String
N/AN/A<vmid>Number
N/AN/A<severity>Text/String
N/AN/A<dname>Text/String
N/AN/A<subject>Text/String
N/AN/A<object>Text/String