Windows Security Event Log shows 'System' as source name RRS feed

  • Question

  • Hi,

    I was going through the windows security logs with event id 5156 and 5157 to figure out what executable s are getting allowed and blocked. However I am unable to do so, because the source name in security log shows as 'System' instead of showing the executable name. Can anyone help me to figure out what is the actual exe getting allowed and blocked?

    • Moved by Just Karl Tuesday, September 8, 2015 2:20 PM Looking for the proper forum.
    Saturday, September 5, 2015 5:15 AM


All replies