Windows Logon Logs deleted [closed]

https://stackoverflow.com/questions/20077271

31-07-2022
|

Question

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.

We don’t allow questions about general computing hardware and software on Stack Overflow. You can edit the question so it’s on-topic for Stack Overflow.

Closed 8 years ago.

Improve this question

I have some how lost my Security Logs prior to today 01:57:11 pm. The file size I had assigned to Security Logs was 160MB. Today (maybe due to virus) I have 273,692 new logs in just few hours so all previous logs are lost. The policy I set was to overwrite oldest logs if file size exceeded. I saved them as csv file and the .csv file size is about 150MB. and the logs count upto 273694 In C:\Windows\System32\winevt\Logs Security has 160MB.

I have attached the picture for reference. All I need is: Logon logs on this computer from 12 hours prior to the last Security event log time.

Can anyone help me how to resolve this problem. enter image description here

Thanks

La solution

I checked the logon Group Policy event logs. From that i was able to see missing users on whom the logon group policy was applied to.

Licencié sous: CC-BY-SA avec attribution

Non affilié à StackOverflow