Windows Management Instrumentation (WMI)

Examining the Event Logs with WMI

The Event Logs on Windows 2000 and Windows NT are central repositories for log information generated by components of the operating system or, in fact, by any application that registers as an event source. On Windows 2000, and Windows NT computers, there are three Event Logs, each of which is intended to store information from different types of sources:

The system log typically receives log entries from drivers and components of the operating system itself. For example, the Netlogon service (whose registered source name is netlogon) would report an inability to find a domain controller; the Print Spooler service (whose registered source name is spooler) would report the addition or removal of a printer. The ...

Get Windows Management Instrumentation (WMI) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Windows Management Instrumentation (WMI) by Matthew M. Lavy, Ashley J. Meggitt

Examining the Event Logs with WMI

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly