PowerTip: Get Latest Entry from Event Log with PowerShell

Summary: Use Windows PowerShell to get the latest entry from an event log.  How can I use Windows PowerShell to see the most recent entry from the application log?  Use the Get-EventLog cmdlet, specify the log name, and use the –Newest 1 parameter, for example: Get-EventLog application -Newest 1


Understanding XML and XPath

Summary: Microsoft Scripting Guy, Ed Wilson, explores XML and XPath. Microsoft Scripting Guy, Ed Wilson, is here. One of the things that confused me for a long time about using the Get-WinEvent cmdlet is the difference between the –FilterXPath parameter and the –FilterXml parameters. Part of the problem is that there are nearly no examples…


Using PowerShell to Parse System Log for Windows Updates

Summary: Learn how to use XML and Windows PowerShell to parse the Windows system event log for Windows updates. Microsoft Scripting Guy, Ed Wilson, is here. Sometimes I come up with a solution, and then I go looking for a problem to fix. Not often, but sometimes. This is usually the result of playing around…


Data Mine the Windows Event Log by Using PowerShell and XML

Summary: Microsoft Scripting Guy, Ed Wilson, talks about using Get-WinEvent in Windows PowerShell with FilterXML to parse event logs. Microsoft Scripting Guy, Ed Wilson, is here. Today I am sipping a cup of English Breakfast tea. In my pot, I decided to add a bit of spearmint, peppermint, licorice root, lemon peel, orange peel, and…


Use FilterHashTable to Filter Event Log with PowerShell

Summary: Microsoft Scripting Guy, Ed Wilson, talks about using a filter hash table to filter the event log with Windows PowerShell. Microsoft Scripting Guy, Ed Wilson, is here. The weather here in Charlotte, North Carolina has turned hot and humid. As a result, the Scripting Wife decided to migrate north for a while. Actually, she…


Use PowerShell to Troubleshoot Defrag Issues

Summary: Microsoft Scripting Guy, Ed Wilson, talks about using Windows PowerShell to troubleshoot defrag issues in Windows 8.1. Microsoft Scripting Guy, Ed Wilson, is here. This week, I begin a week-long series about looking at the Windows event and diagnostic logs via Windows PowerShell. I have previously written about this, and you may want to look…


PowerTip: Discover All Event Logs on a Server

Summary: Discover all of the event logs on a server by using Windows PowerShell.  How can I discover the event logs that are available on my server?  There two ways to do this. If you want the classic-type event logs, use: Get-EventLog –List If you want to see all of the event logs, including the…


The Admin’s First Steps: Scan Multiple Event Logs

Summary: Richard Siddaway talks about using Windows PowerShell to automate scanning event logs across many remote machines.  Hey, Scripting Guy! I’ve just starting using Windows PowerShell to administer my systems, and I’ve been asked to test multiple remote machines for a particular event. How can I do that? —CV  Hello CV, Honorary Scripting Guy, Richard…


Use PowerShell and a Filter Hash Table to Speed Boot Trace

Summary: Microsoft Scripting Guy, Ed Wilson, talks about using a filter hash table with Windows PowerShell to speed up boot trace parsing.  Hey, Scripting Guy! I don’t get it. You wrote a script yesterday, and said that the performance was bad. You suggested that you could improve the performance, but then you did not do…


Weekend Scripter: Use PowerShell to Get Boot-Up Trace Events

Summary: Microsoft Scripting Guy, Ed Wilson, talks about using Windows PowerShell to get boot-up trace events. Microsoft Scripting Guy, Ed Wilson, is here. This morning I am sipping the last of my English Breakfast tea with a little lemon grass and a crushed cinnamon stick. Not sure how I ran out of English Breakfast tea,…