How do I find the correct event IDs and patterns for file access?

I

iKAYAKIRAN

we have problem with parsing event types in windows event log. for example some events occured with same event id like (4656) that id can be a delete event or some times read like. we are parsing event types in description text of event log. can we make sure first , can you find all kind of events in event log ? we need

File Create
File Modify
File Delete
Fİle Move
File Rename
File Read Access
Folder Permission Change
Folder Audit Setting Changes
Failed Attemp ro Read File
Failed Attempt to Delete File

that events parsings enough to us just please check on internet to find parsing styles for event log to use correct event names

Continue reading...
 
You must log in or register to reply here.

Similar threads

B
How do I find out what piece of hardware failed
Replies
0
Views
87
Brian Trzepacz
B
S
my system crashed for no reason how do i find out why?(where is the log for that)
Replies
0
Views
80
Shadmehr M
S
M
  • Article
Collaborating with the Office Performance team for better web performance tools
Replies
0
Views
125
Microsoft Edge Team
M
M
in file explorer, I'm trying to copy and paste a template folder I created, but it keeps duplicating the files within instead. How do I correct this?
Replies
0
Views
86
Mr. Z 123
M
S
How do I get to a previous version of the file that was on Onedrive? After it synced the wrong file and overwrote the correct one
Replies
0
Views
107
ShannonReiner
S
Back
Top Bottom