Navigation section
file monitoring
About this tag
File monitoring on Windows involves tracking file creation, modification, deletion, and access events for security, auditing, or automation purposes. Common scenarios include using Windows security event IDs 4660 and 4663 to link file deletions to specific users, setting up folder watches to trigger programs when new files appear, and checking for recently copied files to detect unauthorized access. Users also seek methods to monitor shared folders, track large file dumps on file servers, and log file access times with high precision (e.g., seconds) for forensic analysis. Tools range from built-in Windows auditing and PowerShell to third-party services, with challenges like correlating events across IDs or avoiding intrusive polling.
-
H
Windows 10 What fields are common between IDs 4660 and 4663?
Hello, I want to know which file or folder was deleted by whom. The problem is that there is no file or folder name in ID 4660 and I need to extract the file or folder name from ID 4663, but how do I link these together? How do I know which ID 4660 is related to which ID 4663? What field is...- hack3rcon
- Thread
- audit logs data recovery error resolution event correlation event id file deletion file management file monitoring file system folder deletion folder tracking id 4660 id 4663 james jason security audits user activity windows logs windows security
- Replies: 3
- Forum: Windows Help and Support
-
Windows 7 Activating a program when files in a folder change?
I would like to watch a certain folder and run a program ASAP when it receives any new files. It would seem to me that a service is the logical alert mechanism, but there doesn't seem to be an option in creating a service to trigger a program on that event. The program triggered can most...- Pemmons1
- Thread
- automation batch file efficiency event triggers file changes file monitoring program execution real time services windows
- Replies: 3
- Forum: Windows Help and Support
-
Y
Windows 10 How check every x minutes if there is specific bat file in the folder, and execute if present
I want to do the following - first deploy new version of software to multiple PCs, and then restart all PCs for changes to take effect. First part is not a problem, for second part is it possible to check if there is restart.bat in Dropbox folder every x minutes, and if there is, execute it...- yugo23
- Thread
- automation batch file deployment dropbox file check file monitoring pc restart script execution scripting task scheduler
- Replies: 6
- Forum: Windows Help and Support
-
G
Windows 7 check recently copied files
how to check recently copied files on my computer? can anyone help me? I just want to find out whether someone has copied files from my laptop...- geogia
- Thread
- computer help data recovery data security file check file history file management file monitoring laptop malware privacy recent files security tech tips user guide user query user support windows windows settings windows tools
- Replies: 3
- Forum: Windows Help and Support
-
Windows 10 Does One Drive have an Access Log?
Does any know if there is a way to monitor if files in a Public One Drive Folder are being accessed? I am thinking about putting a link in a forum and would like to know if that folder has been accessed and possibly how many times. I found a thread on the Microsoft site where the suggest has...- Saltgrass
- Thread
- accesslog best practices file access file monitoring onedrive public folder security sharepoint sharing
- Replies: 3
- Forum: Windows Help and Support
-
P
Windows 2003 R2 - Tracking user dumping files
Do you guys know how I can track a user that dumps large files on my file server? I have this old 2003 r2 server that we use as files server. Each and everyday a person puts gb's and gb's of files. I have 350 users with tons of folders. I am trying to track this person down. Please help if...- pepsi4all
- Thread
- data management file monitoring file server it support large files network security server management user activity user tracking windows 2003
- Replies: 2
- Forum: Windows Server Forums
-
Windows 7 Help on monitoring shared folders on Windows 7?
Ok so here is the situation. Not too long ago i decided i would share my folders over my network since i was copying files over to my moms and sisters computers, movies and tv shows. I also had to share them so they could watch whatever they wanted over the network when im using my computer...- dimaisawesome
- Thread
- access control file history file monitoring mac compatibility network network sharing privacy shared folders windows 7
- Replies: 1
- Forum: Windows Help and Support
-
M
Windows 7 Win7 how to display military time and seconds in a DIR command
Hardware/Software . existing HP notebook with Win7 32bit Symptoms . to diagnose a virus attack, it helps to know, to the second, when a file was updated. With only a sorted ADMIN DIR output B 4 the restore, it could only log to the minute. Tho I eventually saw the files it created, seconds...- MtheK
- Thread
- assembler program batch file cmsort dir command executable file monitoring file sorting file updates logging logs military time non-system files powershell system files task scheduler timekeeping accuracy virus diagnosis windows 7 x86
- Replies: 3
- Forum: Windows Help and Support
-
Multi Server Log File Monitoring
Hello All, I currently run several servers and monitor the log files in real-time through putty and multi-tail as I like to see what's going on my remote servers. As I get more and more servers though it's becoming an annoyance to keep logging into them manually and running multitail. Does...- Cache
- Thread
- application file monitoring log analytics monitoring multi-tail putty real time remote server server management x64
- Replies: 1
- Forum: Linux Forums
