Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Kernel-Registry

Event ID 22

Message:



Event Data:

# Name In Type
Out Type
1 HiveFilePath win:UnicodeString xs:string
2 HiveMountPoint win:UnicodeString xs:string
3 FlushFlags win:HexInt32 win:HexInt32

Observed Windows Versions:

Version: 0

Fingerprint: ZZG2Z65M3ZYAC