{"id":4613,"date":"2012-11-23T11:59:00","date_gmt":"2012-11-23T11:59:00","guid":{"rendered":"https:\/\/blogs.technet.microsoft.com\/heyscriptingguy\/2012\/11\/23\/powertip-find-all-events-from-all-logs-related-to-powershell\/"},"modified":"2012-11-23T11:59:00","modified_gmt":"2012-11-23T11:59:00","slug":"powertip-find-all-events-from-all-logs-related-to-powershell","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/scripting\/powertip-find-all-events-from-all-logs-related-to-powershell\/","title":{"rendered":"PowerTip: Find All Events from All Logs Related to PowerShell"},"content":{"rendered":"

Summary:<\/strong> Learn how to use the Get-WinEvent<\/strong> cmdlet to return all events from all logs related to Windows PowerShell.<\/p>\n

\"Hey, <\/strong>How can I easily find events from all the event logs—both standard and the ETW logs that are related to Windows PowerShell?<\/p>\n

\"Hey, Use the Get-WinEvent<\/strong> cmdlet and use a wild card pattern for the provider name, as shown here.<\/p>\n

Get-WinEvent -ProviderName *powershell*<\/p>\n

Note<\/strong>   You may want to run the command with Admin rights because some logs require Admin rights for access.<\/p>\n

 <\/p>\n

\"\"<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Summary: Learn how to use the Get-WinEvent cmdlet to return all events from all logs related to Windows PowerShell.  How can I easily find events from all the event logs—both standard and the ETW logs that are related to Windows PowerShell?  Use the Get-WinEvent cmdlet and use a wild card pattern for the provider name, as shown here. Get-WinEvent -ProviderName […]<\/p>\n","protected":false},"author":596,"featured_media":87096,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[97,98,356,3,45],"class_list":["post-4613","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-scripting","tag-event-logs","tag-logs-and-monitoring","tag-powertip","tag-scripting-guy","tag-windows-powershell"],"acf":[],"blog_post_summary":"

Summary: Learn how to use the Get-WinEvent cmdlet to return all events from all logs related to Windows PowerShell.  How can I easily find events from all the event logs—both standard and the ETW logs that are related to Windows PowerShell?  Use the Get-WinEvent cmdlet and use a wild card pattern for the provider name, as shown here. Get-WinEvent -ProviderName […]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts\/4613","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/users\/596"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/comments?post=4613"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/posts\/4613\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/media\/87096"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/media?parent=4613"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/categories?post=4613"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/scripting\/wp-json\/wp\/v2\/tags?post=4613"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}