I need a help to audit some files in Microsoft Windows 2012, files like C:\Windows\System32\drivers\etc\hosts, .dlls and so on. In this moment I want to monitor the files, for example: Who deleted this file? Who changed this file?
I am having problem to understand security logs in Windows. Is there any way to solve my problem?
Do you have any idea about that?