Elastic Windows Event Explorer


Publisher - Microsoft-Windows-Kernel-StoreMgr

Event ID 16 v1

Message:



Event Data:

# Name In Type
Out Type
1 DataMgr win:Pointer win:HexInt64
2 RegionIndex win:UInt32 xs:unsignedInt
3 Status win:UInt32 win:HexInt32
4 SpaceUsed win:UInt16 xs:unsignedShort
5 LastAccessTime win:UInt16 xs:unsignedShort

Observed Windows Versions:

Version: 1

Fingerprint: RT5H22EF5X3ZY