GetEventLog - the utility for work with the Product Security Log.
Short description:
the utility creates the Product Security Log and also
can clean the log after the file creation and export the copy of the Shadow copying storage.
The result of the utility execution is brought to the console.
Note:
To create the Product Security Log the user must have the privilege of log view.
To clean the log after the Product Security Log creation the user must have the privilege
of the security system log management.
The user must have rights to record data on a disk where he is going to create log file.
Startup parameters of the GetEventLog utility:
GetEventLog [command] -n
Commands:
-c "Clean the log and storage after the export of the Product Security Log and the copy of the Shadow copying subsystem storage."
-s "Export the copy of the Shadow copying subsystem storage."
-n "Create the Security Log."
-? "Help on utility call"
Examples of the utility start:
GetEventLog [-c | -s] -n .evtx
- Creation of the Product Security Log:
GetEventLog -n c:\EvtLog\PrEventLog.evt
- Creation of the Product Security Log and export of the copy of the Shadow copying subsystem storage:
GetEventLog -s -n c:\EvtLog\PrEventLog.evt
- During export of the Product Security Log and of the copy of the Shadow copying subsystem storage clean the log and storage:
GetEventLog -c -n c:\EvtLog\PrEventLog.evt