Since Microsoft uses its own proprietary format, you need the Windows Event Viewer to read the event logs. Since Windows Vista and Windows Server 2008, Microsoft has stored the files in the EVTX format, sending them to C:\Windows\System32\winevt\Logs Instead of storing Windows event logs as a plaintext file, Microsoft uses its own format, meaning that you can’t view them in a text editor. Using Windows Event Viewer to read event logs
The Windows Event Viewer shows all the system messages and logs, providing data about errors and warnings that help with troubleshooting. The event logs provide information about: Administrators, IT support analysts, and security teams use Windows event logs to diagnose system problems, predict future issues, and detect and investigate security incidents. The Windows event log is a detailed and in-depth record about system, security, and application events that the Windows operating systems stores. Windows event logs may not be the most exciting part of working in IT, but understanding what they are and how to use them helps you respond to service calls more rapidly. Windows event logs are the IT version of the plain-looking clay cup that holds the key to answering your service questions and system issues. If you’ve ever seen Indiana Jones and the Last Crusade, you might remember the scene where Indy and his dad are in a room replete with the most ornate chalices possible, only to realize that the Holy Grail is the most plain, utilitarian one in the room.
0 kommentar(er)
