{"id":2447,"date":"2019-11-11T16:37:52","date_gmt":"2019-11-11T15:37:52","guid":{"rendered":"https:\/\/bob-team.de\/wordpress\/?p=2447"},"modified":"2026-02-25T08:47:19","modified_gmt":"2026-02-25T07:47:19","slug":"powershell-sucht-ereignisse","status":"publish","type":"post","link":"https:\/\/bob-team.de\/wordpress\/2019\/11\/11\/powershell-sucht-ereignisse\/","title":{"rendered":"PowerShell sucht Ereignisse"},"content":{"rendered":"
$Begin = Get-Date -Date '8\/11\/2019 00:00:00'\r\n$End = Get-Date -Date '10\/11\/2019 23:59:00'\r\n$A = Get-EventLog -LogName System -After $Begin -Before $End\r\n$B = $A | Where-Object {$_.EventID -eq 7001 -or $_.EventID -eq 7002}\r\n$B | Sort-Object TimeGenerated | Select-Object -Property TimeGenerated, Message<\/pre>\n
Get-ChildItem -Path 'HKLM:\\SOFTWARE\\Microsoft\\NET Framework Setup\\NDP' -Recurse |\r\nGet-ItemProperty -Name Version -ErrorAction SilentlyContinue |\r\nWhere-Object { $_.PSChildName -match '^(?!S)\\p{L}'} |\r\nSelect-Object PSChildName, Version<\/pre>\n
Invoke-WebRequest -Method Post -Uri https:\/\/login.microsoftonline.com\/1565ec385-aa76-7823-884f-f887d9e51432\/oauth2\/v2.0\/token<\/pre>\n
Get-CimInstance -ClassName Win32_OperatingSystem | Select LastBootUpTime<\/pre>\n
mehr Details: microsoft.com<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
$Begin = Get-Date -Date ‚8\/11\/2019 00:00:00′ $End = Get-Date -Date ’10\/11\/2019 23:59:00‘ $A = Get-EventLog -LogName System -After $Begin -Before $End $B = $A | Where-Object {$_.EventID -eq 7001 -or $_.EventID -eq 7002} $B | Sort-Object TimeGenerated | Select-Object -Property TimeGenerated, Message Get-ChildItem -Path ‚HKLM:\\SOFTWARE\\Microsoft\\NET Framework Setup\\NDP‘ -Recurse | Get-ItemProperty -Name Version -ErrorAction SilentlyContinue | […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2447","post","type-post","status-publish","format-standard","hentry","category-uncategorized","entry"],"_links":{"self":[{"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/posts\/2447","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/comments?post=2447"}],"version-history":[{"count":9,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/posts\/2447\/revisions"}],"predecessor-version":[{"id":4337,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/posts\/2447\/revisions\/4337"}],"wp:attachment":[{"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/media?parent=2447"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/categories?post=2447"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bob-team.de\/wordpress\/wp-json\/wp\/v2\/tags?post=2447"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}