File Kernel Trace; Operation Set 1
43 events across 1 channel
| Event ID | Title | Channel |
|---|---|---|
| 0 | ETW Trace | |
| 1 | ETW Trace | |
| 2 | ETW Trace | |
| 3 | ETW Trace | |
| 4 | ETW Trace | |
| 5 | ETW Trace | |
| 6 | ETW Trace | |
| 7 | ETW Trace | |
| 8 | ETW Trace | |
| 9 | ETW Trace | |
| 10 | ETW Trace | |
| 11 | ETW Trace | |
| 12 | ETW Trace | |
| 13 | ETW Trace | |
| 14 | ETW Trace | |
| 15 | ETW Trace | |
| 16 | ETW Trace | |
| 17 | ETW Trace | |
| 18 | ETW Trace | |
| 19 | ETW Trace | |
| 20 | ETW Trace | |
| 21 | ETW Trace | |
| 22 | ETW Trace | |
| 23 | ETW Trace | |
| 24 | ETW Trace | |
| 25 | ETW Trace | |
| 26 | ETW Trace | |
| 27 | ETW Trace | |
| 236 | ETW Trace | |
| 237 | ETW Trace | |
| 238 | ETW Trace | |
| 239 | ETW Trace | |
| 240 | ETW Trace | |
| 241 | ETW Trace | |
| 242 | ETW Trace | |
| 243 | ETW Trace | |
| 249 | ETW Trace | |
| 250 | ETW Trace | |
| 251 | ETW Trace | |
| 252 | ETW Trace | |
| 253 | ETW Trace | |
| 254 | ETW Trace | |
| 255 | ETW Trace |
Event ID 0 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 1 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 2 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 3 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 4 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 5 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 6 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 7 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 8 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 9 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 10 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 11 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 12 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 13 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 14 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 15 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 16 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 17 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 18 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 19 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 20 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 21 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 22 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 23 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 24 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 25 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 26 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 27 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 236 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 237 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 238 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 239 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 240 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 241 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 242 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 243 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 249 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 250 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 251 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 252 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 253 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 254 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |
Event ID 255 —
Fields
| Name | Description |
|---|---|
Status | — |
Operation | — |
MinorOperation | — |
SequenceNumber | — |
IsPagingIO | — |
IsFastIO | — |
IsDirectory | — |
CreateOnExisting | — |
StartTime | — |
ProcessId | — |
ProcessCreateTime | — |
FileObject | — |
LastAccessTime | — |
SessionId | — |
WindowStation | — |
AccessToken | — |
SidLength | — |
ParametersLength | — |
ResultLength | — |
PreviousValueLength | — |
UserSID | — |
OperationalParameters | — |
ResultData | — |
PreviousValue | — |
FileName | — |
VolumeDosName | — |
VolumeGuidName | — |
VolumeName | — |