Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method succeeded. The input Culture/Locale was UILanguage. The size of the result set was ResultSize.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method succeeded.  The input Culture/Locale was %1.  The size of the result set was %2.

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider",
    "event_id": 1000,
    "level": "Information",
    "task": null,
    "opcode": "Info",
    "time_created": "2026-03-17T18:45:49.4045989+00:00",
    "computer": "JD-DC01-2022.ludus.domain",
    "channel": "Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider/Operational"
  },
  "event_data": {
    "UILanguage": "en-US",
    "ResultSize": "1"
  }
}

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed because the system ran out of memory.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed because the system ran out of memory.

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method was canceled by the caller.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method was canceled by the caller.

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed with error (Error).

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed with error (%1).

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed. The input Culture/Locale, UILanguage, is not a valid Language identifier.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed.  The input Culture/Locale, %1, is not a valid Language identifier.

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider Cancel method succeeded.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider Cancel method succeeded.

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider Cancel method failed with error (Error).

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider Cancel method failed with error (%1).

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider failed to cancel the connected diagnostic provider with error (Error).

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider failed to cancel the connected diagnostic provider with error (%1).

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider failed to cancel the local diagnostic provider with error (Error).

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider failed to cancel the local diagnostic provider with error (%1).

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is being overridden by Group Policy. The property will be interpreted as being set to VARIANT_FALSE.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is being overridden by Group Policy.  The property will be interpreted as being set to VARIANT_FALSE.

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is being overridden by the Administrator through a System Wide Preference. The property will be interpreted as being set to VARIANT_FALSE.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is being overridden by the Administrator through a System Wide Preference.  The property will be interpreted as being set to VARIANT_FALSE.

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is set to QueryRemoteServer.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider object property QueryRemoteServer is set to %1.

Fields #

Description

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed because the input IDiagnosticMetadataCollection object was empty.

Message #

The Windows Scripted Diagnostic Provider API IDiagnosticProvider FindDiagnosticsBySearchMetadata method failed because the input IDiagnosticMetadataCollection object was empty.

Description

The diagnostic package index information was successfully loaded from IndexPath.

Message #

The diagnostic package index information was successfully loaded from %1.

Fields #

Example Event #

{
  "system": {
    "provider": "Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider",
    "event_id": 2000,
    "level": "Information",
    "task": null,
    "opcode": "Info",
    "time_created": "2026-03-17T18:45:49.4042596+00:00",
    "computer": "JD-DC01-2022.ludus.domain",
    "channel": "Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider/Operational"
  },
  "event_data": {
    "IndexPath": "C:\\Windows\\Diagnostics\\Index\\WindowsUpdateDiagnostic.xml"
  }
}

Description

Failed to scan diagnostic package index information from IndexPath, with error (Error).

Message #

Failed to scan diagnostic package index information from %2, with error (%1).

Fields #

Description

Failed to load the resource (Resource;ResourceId) with error code (Error).

Message #

Failed to load the resource (%2;%3) with error code (%1).

Fields #

Description

Sending request to the remote server Hostname at the URL path Url. Contents of the request are: RequestBody.

Message #

Sending request to the remote server %1 at the URL path %2.  Contents of the request are: %3.

Fields #

Description

Failed to connect to the remote server Hostname at the URL path Url due to lack of network access.

Message #

Failed to connect to the remote server %1 at the URL path %2 due to lack of network access.

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations

Description

Failed to connect to the remote server Hostname at the URL path Url with error Error.

Message #

Failed to connect to the remote server %1 at the URL path %2 with error %3.

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations
• Microsoft Learn https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus

Description

Timed out while communicating with the remote server Hostname at the URL path Url.

Message #

Timed out while communicating with the remote server %1 at the URL path %2.

Fields #

Description

Timed out waiting for a response from the remote server Hostname at the URL path Url.

Message #

Timed out waiting for a response from the remote server %1 at the URL path %2.

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations

Description

Response from the remote server Hostname at the URL path Url returned the following error response code: ResponseCode.

Message #

Response from the remote server %1 at the URL path %2 returned the following error response code: %3.

Fields #

Description

Received response from the remote server Hostname at the URL path Url.

Message #

Received response from the remote server %1 at the URL path %2.

Fields #

Description

Parsed valid response from the remote server Hostname at the URL path Url.

Message #

Parsed valid response from the remote server %1 at the URL path %2.

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus

Description

Response received from the remote server Hostname at the URL path Url is invalid for the following reason: Reason.

Message #

Response received from the remote server %1 at the URL path %2 is invalid for the following reason: %3.

Fields #

Description

Response received from the remote server Hostname at the URL path Url is malformed.

Message #

Response received from the remote server %1 at the URL path %2 is malformed.

Fields #

Description

Attempting to send data to remote server using the following proxy configuration: Access Type (AccessType); Proxy Server (Proxy); Proxy Bypass Server (ProxyBypass).

Message #

Attempting to send data to remote server using the following proxy configuration: Access Type (%1); Proxy Server (%2); Proxy Bypass Server (%3).

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations

Description

Failed to send data to remote server using the following proxy configuration: Access Type (AccessType); Proxy Server (Proxy); Proxy Bypass Server (ProxyBypass) because of proxy failure (Error).

Message #

Failed to send data to remote server using the following proxy configuration: Access Type (%2); Proxy Server (%3); Proxy Bypass Server (%4) because of proxy failure (%1).

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations

Description

Failed to send data to remote server because list of proxy servers was exhausted without receiving a response. The error code returned to caller is Error.

Message #

Failed to send data to remote server because list of proxy servers was exhausted without receiving a response. The error code returned to caller is %1.

Fields #

References #

• Microsoft Learn https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/operations/event-id-explanations

Description

Connection to remote server has been reset or terminated while waiting for a response. The error code returned to the caller is Error.

Message #

Connection to remote server has been reset or terminated while waiting for a response.  The error code returned to the caller is %1.

Fields #

Description

The following system configuration will be used when querying content providers: OS Major Version (OSMajorVersion); OS Minor Version (OSMinorVersion); Service Pack Major (ServicePackMajor); Service Pack Minor (ServicePackMinor); Build Number (BuildNumber); Product Type (ProductType); Processor Architecture (ProcessorArchitecture); Culture (Culture); System Type (SystemType); OEM (OEM); Model (Model); IsMobilePc (IsMobilePc); IsInternal (IsInternal); GeoId (GeoId); Family (Family); OEM SKU (OEMSKU); Version (Version); Base Board OEM (BaseBoardOEM); Base Board Model (BaseBoardModel); Base Board Version (BaseBoardVersion); BIOS Vendor (BIOSVendor); BIOS Version (BIOSVersion); BIOS Release Date (BIOSReleaseDate); BIOS Major Release (BIOSMajorRelease); BIOS Minor Release (BIOSMinorRelease); Embedded Controller Firmware Major Release (ECFirmwareMajorRelease); Embedded Controller Firmware Minor Release (ECFirmwareMinorRelease).

Message #

The following system configuration will be used when querying content providers: OS Major Version (%1); OS Minor Version (%2); Service Pack Major (%3); Service Pack Minor (%4); Build Number (%5); Product Type (%6); Processor Architecture (%7); Culture (%8); System Type (%9); OEM (%10); Model (%11); IsMobilePc (%12); IsInternal (%13); GeoId (%14); Family (%15); OEM SKU (%16); Version (%17); Base Board OEM (%18); Base Board Model (%19); Base Board Version (%20); BIOS Vendor (%21); BIOS Version (%22); BIOS Release Date (%23); BIOS Major Release (%24); BIOS Minor Release (%25); Embedded Controller Firmware Major Release (%26); Embedded Controller Firmware Minor Release (%27).

Fields #

Description

Starting to scan diagnostic package index information from IndexPath.

Message #

Starting to scan diagnostic package index information from %1.

Fields #

Description

Finished scanning diagnostic package index information from IndexPath.

Message #

Finished scanning diagnostic package index information from %1.

Fields #

Description

Starting to query content providers for scripted diagnostic content packages.

Message #

Starting to query content providers for scripted diagnostic content packages.

Description

Finished querying content providers for scripted diagnostic content packages with error code (Error).

Message #

Finished querying content providers for scripted diagnostic content packages with error code (%1).

Fields #

Description

Starting to cancel content providers.

Message #

Starting to cancel content providers.

Description

Finished cancelling content providers with error code (Error).

Message #

Finished cancelling content providers with error code (%1).

Fields #

Description

Starting to cancel local content provider.

Message #

Starting to cancel local content provider.

Description

Finished cancelling local content provider with error code (Error).

Message #

Finished cancelling local content provider with error code (%1).

Fields #

Description

Starting to cancel remote content provider.

Message #

Starting to cancel remote content provider.

Description

Finished cancelling remove content provider with error code (Error).

Message #

Finished cancelling remove content provider with error code (%1).

Fields #

Description

Starting to gather system configuration necessary for scripted diagnostic content package query.

Message #

Starting to gather system configuration necessary for scripted diagnostic content package query.

Description

Finished gathering system configuration necessary for scripted diagnostic content package query with error code (Error).

Message #

Finished gathering system configuration necessary for scripted diagnostic content package query with error code (%1).

Fields #

Description

Started to connect to remote server Hostname using URL path Url.

Message #

Started to connect to remote server %1 using URL path %2.

Fields #

Description

Finished connecting to remote server Hostname using URL path Url. The operation completed with error Error.

Message #

Finished connecting to remote server %1 using URL path %2.  The operation completed with error %3.

Fields #

Description

Sending POST request to the remote server Hostname using the URL path: Url with request body: RequestBody.

Message #

Sending POST request to the remote server %1 using the URL path: %2 with request body: %3.

Fields #

Description

Response received from remote server. The HTTP response was HttpError. The operation completed with error Error.

Message #

Response received from remote server.  The HTTP response was %1.  The operation completed with error %2.

Fields #

Description

Starting to parse response from the remote server Hostname POST request to the URL path: Url with request body: RequestBody.

Message #

Starting to parse response from the remote server %1 POST request to the URL path: %2 with request body: %3.

Fields #

Description

Finished parsing response from the remote server Hostname POST request to the URL path: Url with request body: RequestBody with error Error.

Message #

Finished parsing response from the remote server %1 POST request to the URL path: %2 with request body: %3 with error %4.

Fields #

Description

Starting to acquire lock in function Method.

Message #

Starting to acquire lock in function %1.

Fields #

Description

Finished acquiring lock in function Method.

Message #

Finished acquiring lock in function %1.

Fields #

Description

Starting to add result to Diagnostic Collection.

Message #

Starting to add result to Diagnostic Collection.

Description

Finished adding result to Diagnostic Collection with error code (Error).

Message #

Finished adding result to Diagnostic Collection with error code (%1).

Fields #

Description

Starting to load resource from Resource.

Message #

Starting to load resource from %1.

Fields #

Description

Finished loading resource from Resource.

Message #

Finished loading resource from %1.

Fields #

Description

Method succeeded.

Message #

%1 succeeded.

Fields #

Description

Method succeeded. The corresponding object property was set to Value.

Message #

%1 succeeded.  The corresponding object property was set to %2.

Fields #

Description

Method succeeded. The corresponding object property was set to Value.

Message #

%1 succeeded.  The corresponding object property was set to %2.

Fields #

Description

Method succeeded. The corresponding object property was set to Value.

Message #

%1 succeeded.  The corresponding object property was set to %2.

Fields #

Description

Method succeeded. The output parameter was set to Value.

Message #

%1 succeeded.  The output parameter was set to %2.

Fields #

Description

Method succeeded. The output parameter was set to Value.

Message #

%1 succeeded.  The output parameter was set to %2.

Fields #

Description

Method succeeded. The output parameter was set to Value.

Message #

%1 succeeded.  The output parameter was set to %2.

Fields #

Description

Method succeeded. The output parameter was set to Value.

Message #

%1 succeeded.  The output parameter was set to %2.

Fields #

Description

Method failed because the system ran out of memory.

Message #

%1 failed because the system ran out of memory.

Fields #

Description

Method failed with error (Error) because the input parameter, Parameter, was NULL.

Message #

%1 failed with error (%2) because the input parameter, %3, was NULL.

Fields #

Description

Method failed with error (Error).

Message #

%1 failed with error (%2).

Fields #

Description

Method succeeded. The output parameter was set to the item in the collection at index Value.

Message #

%1 succeeded.  The output parameter was set to the item in the collection at index %2.

Fields #

Description

Method failed with error (Error) because the index, Index, is out of bounds of the enumeration or the enumeration is empty.

Message #

%1 failed with error (%2) because the index, %3, is out of bounds of the enumeration or the enumeration is empty.

Fields #

Description

Method succeeded. The object was added to the collection at index Index. The new size of the collection is Count.

Message #

%1 succeeded.  The object was added to the collection at index %2.  The new size of the collection is %3.

Fields #

Description

Method failed with error (Error) because the collection already contains an object of type, Type, with value, Value.

Message #

%1 failed with error (%2) because the collection already contains an object of type, %3, with value, %4.

Fields #

Description

Method succeeded. The size of the collection increased by ItemsAdded object(s). The new size of the collection is Count.

Message #

%1 succeeded.  The size of the collection increased by %2 object(s).  The new size of the collection is %3.

Fields #

Description

Method failed with error (Error) because the collection already contains an object of with identifier, Id, and publisher, Publisher, with a greater version (Version).

Message #

%1 failed with error (%2) because the collection already contains an object of with identifier, %3, and publisher, %4, with a greater version (%5).

Fields #

Description

Local Content Diagnostic Provider search parameter: Parameter has value: Value.

Message #

Local Content Diagnostic Provider search parameter: %1 has value: %2.

Fields #

Description

Search Result includes a diagnostic with the following identifier Id. The publisher of the Diagnostic is Publisher. The version of the Diagnostic is Version. The URL for the diagnostic is: Url.

Message #

Search Result includes a diagnostic with the following identifier %1.  The publisher of the Diagnostic is %2. The version of the Diagnostic is %3.  The URL for the diagnostic is: %4.

Fields #

Description

Deserializing diagnostic from index file IndexPath failed with error code (Error) because the XML does not represent a valid Diagnostic.

Message #

Deserializing diagnostic from index file %2 failed with error code (%1) because the XML does not represent a valid Diagnostic.

Fields #

Fields #

Fields #

Fields #

Fields #

Description

Deserializing diagnostic failed index file IndexPath with error code (Error) because the XML does not contain valid XML.

Message #

Deserializing diagnostic failed index file %2 with error code (%1) because the XML does not contain valid XML.

Fields #