Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 96
  • Last Modified:

logs of computer

if we change so many settings change for one computer , can we get an history or log file , showing all changes done

like change internet setting , registry........by log file mentioning time and change

any tool
0
techp
Asked:
techp
  • 3
  • 2
  • 2
  • +1
2 Solutions
 
arnoldCommented:
Is this in an AD or standalone/home system.

Auditing GPO in ad, local security policy.
0
 
McKnifeCommented:
No, this is not possible. Auditing will not record what changes have been made, at least not in detail.
So you will have to manage your settings centrally (by GPOs) and do the documentation inside those GPOs (there are many text fields where you can insert details on why and how).
0
 
techpAuthor Commented:
it is in AD , as standalone computer
 some tools are to drag all reports from computer , all history ......
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
McKnifeCommented:
techp, it is expected that an asker gives feedback. If he doesn't, the thread comes to a halt.
0
 
arnoldCommented:
Auditing will record an event that a change occurred it will not record what the change was.
I.e change in GPO x made by user y.

The event will be in a security eventlog which will either using event forwarding can be aggregated on a central windows 2008 or newer server, or if snmp is installed using evntcmd you could configure eventlog to snmptrap ........
0
 
techpAuthor Commented:
there may be some tools to grab all history of computer , ( what installed at what time) ,,,,,,,thats what i am looking for
0
 
arnoldCommented:
trying to cover each item in your request will take a,long time.
There are three main logs application, security, system

Build a VM. Virtualbox or vmware esx aerver both can be obtained for free from their respective sites.

Add the VM to the domain with a detailed auditing GPO, or configure the local group policy to audit

Then install an application and note the application event record.
Let windows update install and see the event in the system/application logs.
Modify the local policy, and you should see under security/application the audit event.
0
 
Danny ChildIT ManagerCommented:
There are various registry comparison programs, and also ones that track installations.
https://www.raymond.cc/blog/tracking-registry-and-files-changes-when-installing-software-in-windows/
and
https://www.raymond.cc/blog/monitor-software-installs-remove-leftovers-install-monitor/

but I don't think any of them will tell you what TIME the change occurred at.

What problem are you trying to solve?  Monitor unapproved software installs?  Track build images?  Build system logs?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now