|
The Windows EventLog Reader built-in tool shows the events registered in a specific Windows EventLog. What is interesting with this feature is that it shows how each event is actually registered: its source, its ID and its arguments (or "insertion strings"), the criteria required for monitoring EventLogs.
 | As opposed to other common EventLog Reader tools available, this one shows neither the whole event description string nor the username that has logged the even, because these operations are resource-intensive. By doing so, Monitoring Studio allows you to monitor really heavy EventLogs with no negative impact on performance. |
To access the Windows EventLog Reader tool:
| 1. | Right-click the main Monitoring Studio icon > KM commands > Tools > Windows EventLog Reader. |
Windows EventLog Reader
| 2. | Select the EventLog you wish to view and click the Update button to refresh the window. This may take a few seconds to complete. The latest event is shown first in this list. |
| 3. | The last column in this window shows the arguments registered in each event. |
| 4. | There is one line per argument: the first argument line corresponds to the "Argument 1" field in the Windows Event monitoring wizard, the second argument line corresponds to the "Argument 2" field, etc. |
| 5. | To refresh the window, click the Update button. |
| 6. | To close the window, click the Close button. |
See Also
Acknowledge all and reset
Can I search for Windows Events whose description match a regular expression
What is the meaning of the "Argument1, 2..." field in the Windows Event monitoring wizard?
Windows Event monitoring
SW_NTEVENTS
|
