{
"system": {
"provider": "ESENT",
"guid": "",
"event_source_name": "",
"event_id": 326,
"version": 0,
"level": 4,
"task": 1,
"opcode": 0,
"keywords": 36028797018963968,
"time_created": "2022-04-07T17:04:18.516230+00:00",
"event_record_id": 215,
"correlation": {},
"execution": {
"process_id": 0,
"thread_id": 0
},
"channel": "Application",
"computer": "WIN-FPV0DSIC9O6.lab.local",
"security": {
"user_id": ""
}
},
"event_data": {
"Data": [
"DFSRs",
"2648,D,50",
"\\\\.\\C:\\System Volume Information\\DFSR\\database_3CDA_D04B_DAD0_2D6\\dfsr.db: ",
"1",
"\\\\.\\C:\\System Volume Information\\DFSR\\database_3CDA_D04B_DAD0_2D6\\dfsr.db",
"0",
"\n[1] 0.000005 +J(0) +M(C:0K, Fs:1, WS:4K # 0K, PF:0K # 0K, P:0K)\n[2] 0.050530 -0.049779 (1) WT +J(0) +M(C:0K, Fs:19, WS:12K # 0K, PF:8K # 0K, P:8K)\n[3] 0.029634 -0.024734 (6) WT +J(CM:0, PgRf:0, Rd:0/0, Dy:0/0, Lg:3480/2) +M(C:0K, Fs:31, WS:116K # 0K, PF:148K # 0K, P:148K)\n[4] 0.000577 +J(0)\n[5] -\n[6] -\n[7] -\n[8] 0.000668 -0.000387 (2) CM -0.000230 (2) WT +J(CM:2, PgRf:2, Rd:14/2, Dy:0/0, Lg:54/1) +M(C:-8K, Fs:60, WS:232K # 0K, PF:140K # 0K, P:140K)\n[9] 0.019914 -0.019641 (2) CM -0.019529 (2) WT +J(CM:2, PgRf:23, Rd:0/1, Dy:0/0, Lg:0/0) +M(C:-12K, Fs:30, WS:108K # 0K, PF:188K # 0K, P:188K)\n[10] 0.000976 -0.000799 (1) CM -0.000685 (1) WT +J(CM:1, PgRf:40, Rd:0/1, Dy:0/0, Lg:0/0) +M(C:-4K, Fs:6, WS:20K # 0K, PF:60K # 0K, P:60K)\n[11] 0.000022 +J(CM:0, PgRf:1, Rd:0/0, Dy:0/0, Lg:0/0) +M(C:0K, Fs:4, WS:16K # 0K, PF:0K # 0K, P:0K)\n[12] 0.000027 +J(CM:0, PgRf:36, Rd:0/0, Dy:0/0, Lg:0/0) +M(C:0K, Fs:1, WS:4K # 0K, PF:0K # 0K, P:0K)\n[13] 0.0 +J(0)\n[14] 0.0 +J(0)\n[15] 0.000004 +J(CM:0, PgRf:1, Rd:0/0, Dy:0/0, Lg:0/0).",
"0 0",
"lgposAttach = 00000009:011C:0268,\ndbv = 1568.180.400 (9360)"
]
},
"message": ""
}