System32
Events
Compliance
Validator
TLS/SSL
PingSentry
GeoIP
Tools
Source
Microsoft-Windows-Sysmon
(1)
Category
File Delete archived
(1)
Tags
Sysmon
All events
ID
Event Message
23
File Delete archived: RuleName: %1!s! UtcTime: %2!s! ProcessGuid: %3!s! ProcessId: %4!s! User: %5!s! Image: %6!s! TargetFilename: %7!s! Hashes: %8!s! IsExecutable: %9!s! Archived: %10!s!