How to get windows log notifications

In this article we will look at the Windows tool that is ideal for keeping track of various system events in a structured way: event viewer or module logs†

you can start here Windows key + R pressing and eventvwr.msc will be performed. We assume that you are already somewhat familiar with this tool and know how to apply filters, for example (Filter current log) or how to create your own daily views (Create custom view†

Windows keeps a close eye on all system events, but this is not useful if you have to reference them yourself every time. A possible solution is to right-click Logs on the event and option to monitor. Link task to this activity so the magician Create basic tasks It is displayed in the Task Scheduler. Name the task and Next (2 times).

Unfortunately, you can only use option as an action. start a program as the previous two notification options (via email or popup) have been deprecated by Microsoft. With a diversion via PowerShell, it’s still possible for a popup notification to be shown as soon as such an event is logged.

Choose the option for it start a program and fill powershell.exe inside program/script† Bee add parameter enter the following script:

-WindowStyle hidden -Command “& {[System.Reflection.Assembly]::LoadWithPartialName(‘System.Windows.Forms’); [System.Windows.Forms.MessageBox]::Show(notification,’title’)}”

Of course replace your notification and title with the actual text. Print Next and make a check-in Open the properties window for this task […] To set additional options

You can add other PowerShell scripts to a task yourself. In the Task Scheduler module (which you will find in the start menu), click on the option. create task and click the tab trigger on the button new† Select from the drop-down menu Start select this task is in Event and fill in the fields logbook, Resource and Event ID or choose changed and click New event filter†

on the tab Movements press again new where are you powershell.exe fill program/script† Bee parameters Add the path to your PowerShell script (a file with the .ps1 extension), then -Execution Policy Bypass to avoid execution blocking.

In principle, to view the logs of other Windows computers, simply right-click on the Logs module. logs (local) click, Connect to another computer choose and possibly Connect as another user to choose. But in practice, such a connection is rarely successful, since Windows simply does not accept such remote requests.

Depending on the Windows configuration on the clients, this requires several actions at the registry, firewall and/or services level. Fortunately, there is a tool that takes care of everything at once. You need to download the free Axence netTools program and install it on any PC. in the \ subfoldernetTools\5 you will find the file from the installation folder wmienable.exe† Copy this file to a USB stick and run it as an administrator on the target computer. From now on, the connection should work.

You can read exactly what this tool does and what to do if the connection fails unexpectedly at http://kwikr.nl/axwmi. This tool also provides external links through the applications listed in the following paragraphs.

The logs application is not the only tool for viewing Windows system events. For example, there is NirSoft FullEventLogView, which combines almost all information, including event descriptions, into a single window. You can also select specific events and save them in various formats.

The tool can also be controlled from the Command Prompt. You enter the parameters here yourself or import them from an appropriate configuration file (provided by default) with:

FullEventLogView.exe /cfg Ҡ

Even more powerful, Eventlog Explorer and EventSentry Light are both available for free in a thinned or limited edition.

We briefly show you how you can get started with EventSentry Light to send an email notification for specific events. During installation, indicate that you want to enable email notifications and fill in the requested information including SMTP server and port, email addresses and any authentication ID. Check the connection with. Scale-knob. You will also have the opportunity to enable additional services from EventSentry.

After a while, the management console appears with information about the local computer. event logs† Open menu tools and Select Add host to EventSentry / Network Scan to scan computers (for example, using the CIDR subnet) 192.168.1.0/24† Add the PCs you want. By Deploy the agent to remote hosts You can now also install the EventSentry agent on these computers.

Let’s say you want to receive an email notification for a specific event. Then open the menu Packets in the admin console and right click on Event Logs. To choose Add Package and name it. Right click here, select Add filter using wizard and specify which events you want to filter in a few steps. You can also specify a time frame during which the software should check for this event. Bee Action Selection choose you Default Email† Enter a filter name and complete with: Complete†

Finally, right click on your package and select Assignthen you specify which computers you want to control.