Ping a Specific Port

Question

Ivan

Asked: 2012-12-26 14:14:19 +0800 CST2012-12-26 14:14:19 +0800 CST 2012-12-26 14:14:19 +0800 CST

How to clear Windows event logs using command line?

772

Normally I can open the Computer Management console, go to the Event Viewer snap-in, open the Windows Logs folder, right-click on Application/Security/Setup/System subfolder, choose Clear Log and confirm by pressing the Clear or Save and Clear button.

Having enough rights, how can I achieve the same effect through using command line, while raising no confirmation requests?

5 Answers

Voted

Ryan Ries · Answer 1 · 2012-12-26T14:20:21+08:00

Best Answer

Ryan Ries

2012-12-26T14:20:21+08:002012-12-26T14:20:21+08:00

Powershell.

PS C:\>Clear-Eventlog -Log Application, System

The default is not to prompt you, but you can supply the -Confirm switch if you want to be prompted.

Edit:

Get-WinEvent -ListLog Application,Setup,Security -Force | % { Wevtutil.exe cl $_.Logname }

As per the comments, that should get both Operational and Administrative logs.

14

mprill · Answer 2 · 2012-12-26T15:00:10+08:00

mprill

2012-12-26T15:00:10+08:002012-12-26T15:00:10+08:00

wevtutil enum-logs will enumerate all logs in the system while wevtutil clear-log will clear the logs. For your case it would be:

wevtutil clear-log Application
wevtutil clear-log Security
wevtutil clear-log Setup
wevtutil clear-log System

You can also backup while clearing with wevtutil clear-log System /backup:backup.evtx

8

Sopalajo de Arrierez · Answer 3 · 2014-04-28T14:18:15+08:00

Sopalajo de Arrierez

2014-04-28T14:18:15+08:002014-04-28T14:18:15+08:00

For the case you want to clear all logs:

for /f %x in ('wevtutil el') do wevtutil cl "%x"

Extracted from here.

2

Slogmeister Extraordinaire · Answer 4 · 2015-06-06T05:13:16+08:00

Slogmeister Extraordinaire

2015-06-06T05:13:16+08:002015-06-06T05:13:16+08:00

The following PowerShell clears all the event logs on the local machine, including the operational/debug/setup logs programmatically (without instantiating the "wevtutil" process). To clear just one log, modify the code accordingly. It's not perfect, however, sometimes the Debug logs are held open by something, and this does not generate any errors.

$EventLogs=Get-WinEvent -Force -ListLog *
$EventSession=new-object System.Diagnostics.Eventing.Reader.EventLogSession
foreach ($Log in $EventLogs) {
  if ($Log.IsEnabled) {
    if ($Log.RecordCount -gt 0) { 
      if ($Log.LogType -eq "Debug") {
        $Log.IsEnabled=$false
        $Log.SaveChanges()
        $EventSession.ClearLog($Log.LogName)
        $Log.IsEnabled=$true
        $Log.SaveChanges()
      }
      else { $EventSession.ClearLog($Log.LogName) }
  }
}

2

neoghost · Answer 5 · 2015-05-27T04:20:36+08:00

neoghost

2015-05-27T04:20:36+08:002015-05-27T04:20:36+08:00

this is how to clear all event log through powershell, make sure you're running it as administrator

wevtutil el | Foreach-Object {wevtutil cl "$_"}

0

How to clear Windows event logs using command line?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?