Clearing Logs On Windows

Lab 6-8:

Another technique of covering tracks is clearing system logs. By clearing the logs, all the events logged during the compromise will be erased. It can be done by either using command line tools or through the control panel on windows platform.

  1. Go to control panel:

Windows Control Panel.

       2.Click System and Security:

System and Security Options.

3.  Click on Event Viewer.

Administrative tools.

4. Click Windows Log.

Here you can find different type of logs, such as application, setup, security, system and forwarded events.
You can import, export and clear these logs using Action section on the right panel.

Event Viewer.



WhatsApp chat