Microsoft-Windows-Subsys-Csr

4 events across 1 channel

Event ID	Title	Channel
1		Operational
2		Operational
3		Operational
4		Operational

Event ID 1 —

Provider: Microsoft-Windows-Subsys-Csr
Channel: Operational
Task: csr:ShutdownProcesses
Opcode: Start

Event ID 2 —

Provider: Microsoft-Windows-Subsys-Csr
Channel: Operational
Task: csr:ShutdownProcesses
Opcode: Stop

Event ID 3 —

Provider: Microsoft-Windows-Subsys-Csr
Channel: Operational
Task: csr:ShutdownProcess
Opcode: Start

Fields #

Name	Description
`ProcessId` UInt32	—
`Level` UInt32	—
`Flags` UInt32	—

Event ID 4 —

Provider: Microsoft-Windows-Subsys-Csr
Channel: Operational
Task: csr:ShutdownProcess
Opcode: Stop

Fields #

Name	Description
`Status` UInt32	— NTSTATUS reference
`ProcessId` UInt32	—