"Event log" usually refers to the system/server logs on Microsoft Windows machines.
"Event log" usually refers to the system/server logs on Microsoft Windows machines.
Questions tagged [windows-event-log]
617 questions
0
votes
1 answer
Task scheduler not logging failure to operational view in event viewer
The task scheduler below clearly errors but it never shows up under the task scheduler operational view as being failed but completed successfully. I want to send an email on a failed task scheduler to myself. I could do this on my old box not…
Mike Flynn
- 244
- 1
- 4
- 13
0
votes
1 answer
Powershell use Get-WinEvent with hashtable to query very specific time range
I'm trying to make a powershell script that essentially automates the account lockout tools.
ideally I'll be able to get a fairly efficient query that can identify recently locked out accounts then retrieve that data from our DC's and probably send…
Matt Hamende
- 129
- 1
- 11
0
votes
1 answer
Log Parser: Getting Unique Record Numbers
I've been playing with Log Parser the past few days, we're trying to retain specific event IDs from the security logs of our Domain Controllers. As these are high traffic volume logs, the data in them tends to not persist more than between 15 and 30…
Matt
- 1,893
- 5
- 28
- 40
0
votes
1 answer
Moving SQL Server 2008 R2 Logs Causing Access Denied Error
I have just tried moving the log location for the SQL server 2008 R2 logs as I have a fairly small System disk due to the massive size of the Winsxs folder, and now I am getting the following error in the logs:
initerrlog: Could not open error log…
5lovak
- 442
- 5
- 11
0
votes
2 answers
Windows Event Viewer AppLocker XPath filter
I'm running AppLocker and would like to filter out some noise from the events being logged in Event Viewer using XPath. Specifically, I want to hide any events which related to CMD.exe
Here's an example entry I want to get rid of:
Alan Isherwood
- 36
- 7
0
votes
3 answers
Windows Server 2003 - "The security log on this system is full." message when logging in
When I remote desktop into one Windows Server 2003 machine, I get a popup message saying "The security log on this system is full." When I open the Event Viewer, the security log size is 512.0 KB, which is the same as the Application and System…
Tai Squared
- 639
- 1
- 9
- 10
0
votes
1 answer
Event 10016 When Running ntbackup as a user in the Backup Operators group
I created a Windows 2003 AD user and deployed the user to the local Backup Operators group via Restricted Group on Default Domain Policy. I then restarted a client to make sure that this user was added to the group, which it was.
However, when I…
Kyle Brandt
- 83,619
- 74
- 305
- 448
0
votes
1 answer
Can you view an individual events size in the Windows Event Log?
I'm currently using Windows 2008, and would like to view an individual event's size in the Windows Event Log (Application, Security, System logs).
I have tried right clicking and selecting Add/Remove Columns where applicable but there is nothing…
metoyou
- 103
- 1
- 2
0
votes
2 answers
Windows 2003 Ntfs error Event 55 every 15 minutes
I have Windows 2003 with four errors every 15 minutes in my EventLog.
The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume
I ran chkdsk and no errors found. Windows starts and seems to be…
user1722669
- 123
- 3
0
votes
1 answer
Log user access in a windows domain
I need to log all users access to computer in a mysql database. I need datetime, user and workstation, how to do it? How to set up an event on domain controllers?
Tobia
- 1,272
- 9
- 41
- 81
0
votes
1 answer
SQL Server 2005: Copy database failing with unhelpful error
> Event Name: OnTaskFailed Message:
> Operator: ***\administrator
> Source Name:
> ***_Transfer
> Objects Task Source ID:
> {9135C978-DD50-4418-A843-7E8FCE455181}
> Execution ID:
> {F6819FBA-4258-4723-B87D-525F1CF0673B}
> Start Time:…
Rob Stevenson-Leggett
- 613
- 2
- 7
- 20
0
votes
0 answers
Event Viewer showing 1372 and 1528 errors after unsuccessful Exchange uninstall (SBS 2003)
We recently attempted to uninstall Exchange 2003 from a SBS 2003 server.
Unfortunately, the uninstall failed with the following errors:
Event Viewer is now showing the following Directory Service errors together every 30 minutes:
1373, 1528
I've…
Austin ''Danger'' Powers
- 1,180
- 6
- 21
- 51
0
votes
1 answer
Login failed for user 'sa'. ...... [CLIENT: 59.48.47.215]
I have an Amazon EC2 instance and i don't have anything running on it yet but my event log is full of below error
"Login failed for user 'sa'. Reason: An attempt to login using SQL authentication failed. Server is configured for Windows…
Parham
- 101
0
votes
1 answer
Odds of a given Windows EventID to be unique for a Source?
I am using the basic NRPE plugins for Nagios to passively monitor Windows Eventlog. The plugin allows for an EventID exception list as a command argument. So, for instance, I can block any event that has an EventID of 1024.
Of course, this doesn't…
MattUebel
- 927
- 4
- 13
- 32
0
votes
1 answer
Monitoring when users login to a Terminal Server
Really looking for some ideas (ideally nothing 3rd party based) that we could implement to monitor when users login to a Terminal Server (and log off if possible) so we can monitor activity.
Thanks!
PnP
- 1,684
- 8
- 39
- 65