Elastic Windows Event Explorer


Publisher - Microsoft-Windows-DotNETRuntime

Event ID 5 v1

Message:

Address=%{Address};
Size=%{Size};
Type=%{Type};
ClrInstanceID=%{ClrInstanceID}

Event Data:

# Name In Type
Out Type
1 Address win:UInt64 win:HexInt64
2 Size win:UInt64 win:HexInt64
3 Type win:UInt32 xs:unsignedInt
4 ClrInstanceID win:UInt16 xs:unsignedShort

Observed Windows Versions:

Version: 1

Fingerprint: Y2KQ6NKLGR2UO