get-wmiobject to pull logs using Win32_NTLogEvent

get-wmiobject to pull logs using Win32_NTLogEvent

I have to use get-wmiobject to pull logs off of a remote server. WinEvent
doesn't work with 2003 servers and I'm getting blocked using eventlog.
When I run the following command in powershell it works just fine, but
when I send the output to a file I get completely different results and
I'm not sure why?
Get-WmiObject -computername $server -query "SELECT * FROM Win32_NTLogEvent
WHERE (logfile='system') AND (EventCode='19') AND
(TimeWritten>'$begindate')")
The output in powershell - Category : 8 CategoryString : Installation
EventCode : 19 EventIdentifier : 19 TypeEvent : InsertionStrings : {Update
for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP
x86 (KB2836941)} LogFile : System Message : Installation Successful:
Windows successfully installed the following update: Update for Microsoft
. NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86
(KB2836941)
The output of the same command made into a variable and moved ($x >
file.txt) is completely different.
servername\root\cimv2:Win32_NTLogEvent.Logfile="System",RecordNumber=89477
Any ideas?