DeviceLock Service : Managing DeviceLock Service for Windows : Service Options : Auditing & Shadowing : Audit log threshold for file operations (seconds)
  
Audit log threshold for file operations (seconds)
You can specify the time threshold, in seconds, used for aggregation of repetitive events associated with file operations.
The default value is 1200 seconds. After this amount of time passes without new repetitive events being recorded, multiple repetitive events are combined into a single summary event if all of the following conditions are true:
The events are associated with the same user.
The events are associated with the same process.
The events are associated with the same file operation (such as read, write, etc.) on a file.