About
My name is Isaac Thompson. I currently work for Prism Microsystems as Director of Sales Engineering and Training, working with EventTracker. EventTracker is an event log management software package. I have been with Prism since 2004. I have helped 100’s of people with their event logs and audit policies. If you have any questions please feel free to leave a comment.
3 Comments »
Leave a comment
-
Archives
- November 2009 (1)
- October 2009 (1)
- September 2009 (1)
- August 2009 (1)
- May 2009 (3)
- April 2009 (1)
- March 2009 (2)
- February 2009 (4)
- September 2008 (1)
- August 2008 (1)
- June 2008 (1)
- May 2008 (1)
-
Categories
-
RSS
Entries RSS
Comments RSS
I´ve readed your post EVENT LOG MANAGEMENT, but next step I´ve problems because I can´t see the description field (in your example ‘60′)
3. Now do another Log Analysis and look for event id 560 and in the description field use the Handle ID value, which will produce the following…
Can you help me?
Thanks
Sorry, the name post is Tracking Down File Deletes
Maria,
In my example I’m using a product called EventTracker to view the events and not the Windows Event Viewer. That may be what is causing your problem.
Isaac