Open lhzw opened 5 years ago
Such as this:
Event Category: 13313 Time Generated: 09/03/18 15:54:24 Source Name: Microsoft-Windows-Security-Auditing Event ID: 4689 Event Type: 8 Computer Name: admin-PC Record Number: 233775 Sid: None TimeWritten: 09/03/18 15:54:24
Event Data:<<<< S-1-5-18 ADMIN-PC$ WORKGROUP 0x3e7 0x0 0x12fc C:\Windows\System32\taskeng.exe
Any help is appriciated.
Such as this:
I can only get the value, no the keys/labels:
Event Category: 13313 Time Generated: 09/03/18 15:54:24 Source Name: Microsoft-Windows-Security-Auditing Event ID: 4689 Event Type: 8 Computer Name: admin-PC Record Number: 233775 Sid: None TimeWritten: 09/03/18 15:54:24
Any help is appriciated.