Elastic Windows Event Explorer


Publisher - Microsoft-Windows-DotNETRuntime

Event ID 250

Message:

EntryEIP=%{EntryEIP};
MethodID=%{MethodID};
MethodName=%{MethodName};
ClrInstanceID=%{ClrInstanceID}

Event Data:

# Name In Type
Out Type
1 EntryEIP win:UInt64 win:HexInt64
2 MethodID win:UInt64 win:HexInt64
3 MethodName win:UnicodeString xs:string
4 ClrInstanceID win:UInt16 xs:unsignedShort

Observed Windows Versions:

Version: 0

Fingerprint: JGU3S5D3ZYQEO