I want to search all the logs for my `Device`, they're txt files and the directory structure is like this: `c:\program files\device\device manager\logs\YYYYMMDD.txt`
My query looks something like this
`(source="C:\\Program Files\\Device\\DeviceManager\\Logs\\*.txt") ...stuff to search for... |`
I want the most up to date information, but I'm only getting results from 5 days ago. The logfiles get updated daily. If I open up the logfile myself, I can see things that happened as recently as 1 hour ago.
It seems like using the wildcard would leave the query wide open to look through any (txt) logfile it finds in the directory, but this doesn't seem to be happening, otherwise I'd be getting more recent events.
Does anybody know why this could be happening?
↧