⚠️ Security Warning

ClickFix lures can lead to malware and computer viruses. If you see text like this online, it's likely a scam.

Back to Techniques

eventvwr.exe

eventvwr.exe launches the Windows Event Viewer (MMC). Frequently abused in social engineering to guide users into trusted admin views. Offers Explorer file dialogs via "Save All Events As…" / "Open Saved Log…".

windows gui File Explorer GUI

Open Event Viewer

Try Example
File Explorer GUI

  1. Press Win-R

  2. Type eventvwr and press Enter

  3. In instructions, direct the user to a given log view

Mitigations:

  • Educate users to distrust unsolicited requests to open admin tools

Contributor: ClickGrab (2025-09-16)

Open Saved Log (Explorer Open dialog)

Try Example
File Explorer GUI

  1. Press Win-R

  2. Type eventvwr and press Enter

  3. Press Alt-A to open the Action menu, then press O (Open Saved Log…)

  4. The file picker (Explorer shell UI) opens

Contributor: ClickGrab (2025-09-16)