PowerShell read Eventlog
With the command "Get-WinEvent" the Windows Eventlog can be accessed via PowerShell
Evaluation: When was the computer rebooted:
Provided the necessary rights, the event log can also be read from another computer:
With the same user on the logged-in computer:
Get-WinEvent -FilterHashtable @{logname='system'; id=6005}With the logged in user on another computer
Get-WinEvent -FilterHashtable @{logname='system'; id=6005} -ComputerName HOSTNAMEwith another user:
Get-WinEvent -FilterHashtable @{logname='system'; id=6005} -ComputerName HOSTNAME -credentials get-credentialEventlog list
a list of available eventlogs is listed by the following command:
Get-WinEvent -listlog *The -listlog parameter can search for specific logs:
Get-WinEvent -listlog *GroupPolicy*Event log Größe ändern
Limit-Eventlog -logname 'Directory Service' MaximumSize 100MB
({{pro_count}})
{{percentage}} % positive
({{con_count}})
THANK YOU for your review!
Top articles in this section
Log files in PowerShell can be created via the Out-File command, via a custom function, or via PowerShell's built-in Transcript.
Alternatively, if you can't change the screen lock settings, you can move the mouse regularly, or have a script move the mouse. Originally published as an AutoIt script, I recreated the script with a few PowerShell lines. Anyone who copies the following commands into a PowerShell session will prevent the computer from locking the screen or starting the screensaver:
As an alternative to special programs, the date of a file or folder can also be changed with PowerShell.
