avery Posted August 22, 2008 Share Posted August 22, 2008 (edited) I am trying to work with windows event viewer security log. I've seen some pro's use dll calls and wmi stuff. Can any of that help me here I wonder?My ToDo List:1. Read the event log into a GUICtrlCreateEdit. I know how to get the log there but it appears to be binary stuff 2. Save the event log. If I can find out how to save the current event log and select the CSV format then I would be able to solve issue number 1. also.3. Clear the event log. I'm pretty sure I can do this by just coping the current security log to my archive location. I'll test this once I find out if I can make 1 and 2 happen I searched for help before I posted this and found the below article.http://www.autoitscript.com/forum/index.ph...;hl=eventviewer^ This does what I want but it uses the GUI to click things. I was attempting to make this more of a background process.I think I was spoiled by Perl as it had some win32 module that would read/write/clear event logs. I was able to parse them. Tally up the events and present a report based on the findings. I'm trying to move away from perl and rewrite it using autoit3.I should invest in a book or something :\I really appreciate any help possible.Respectfully,Avery Edited August 22, 2008 by avery www.abox.orgAvery HowellVisit My AutoIt Websitehttp://www.abox.org Link to comment Share on other sites More sharing options...
spudw2k Posted August 22, 2008 Share Posted August 22, 2008 I recommend searching for LogParser. I tool to view and query Event Logs and Logs of other various formats with SQL like syntax. It has a dll with can be used as a com object in AutoIt. Spoiler Things I've Made: Always On Top Tool ◊ AU History ◊ Deck of Cards ◊ HideIt ◊ ICU ◊ Icon Freezer ◊ Ipod Ejector ◊ Junos Configuration Explorer ◊ Link Downloader ◊ MD5 Folder Enumerator ◊ PassGen ◊ Ping Tool ◊ Quick NIC ◊ Read OCR ◊ RemoteIT ◊ SchTasksGui ◊ SpyCam ◊ System Scan Report Tool ◊ System UpTime ◊ Transparency Machine ◊ VMWare ESX BuilderMisc Code Snippets: ADODB Example ◊ CheckHover ◊ Detect SafeMode ◊ DynEnumArray ◊ GetNetStatData ◊ HashArray ◊ IsBetweenDates ◊ Local Admins ◊ Make Choice ◊ Recursive File List ◊ Remove Sizebox Style ◊ Retrieve PNPDeviceID ◊ Retreive SysListView32 Contents ◊ Set IE Homepage ◊ Tickle Expired Password ◊ Transpose ArrayProjects: Drive Space Usage GUI ◊ LEDkIT ◊ Plasma_kIt ◊ Scan Engine Builder ◊ SpeeDBurner ◊ SubnetCalcCool Stuff: AutoItObject UDF ◊ Extract Icon From Proc ◊ GuiCtrlFontRotate ◊ Hex Edit Funcs ◊ Run binary ◊ Service_UDF Link to comment Share on other sites More sharing options...
avery Posted August 22, 2008 Author Share Posted August 22, 2008 I recommend searching for LogParser. I tool to view and query Event Logs and Logs of other various formats with SQL like syntax. It has a dll with can be used as a com object in AutoIt.Thank you. I was able to find it very easy. Now back to breaking things until they work http://www.microsoft.com/downloads/details...b2-f8d975cf8c07 www.abox.orgAvery HowellVisit My AutoIt Websitehttp://www.abox.org Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now