The easiest way would be to use Microsoft's free EventComb program. http://www.microsoft.com/downloads/details.aspx?FamilyId=9964CF42-E236-4D73- AEF4-7B4FDC0A25F6 <http://www.microsoft.com/downloads/details.aspx?FamilyId=9964CF42-E236-4D73 -AEF4-7B4FDC0A25F6&displaylang=en> &displaylang=en Roy Sprague, CISSP, MCSE, MCSA, HPASE Senior Network Specialist Landstar System Holdings, Inc. 904 390-4860 -----Original Message----- From: Leon [mailto:[EMAIL PROTECTED] Sent: Friday, May 30, 2003 8:39 AM To: perl Cc: win32 Subject: windows event log Hi everyone, I am reading David Roth's book win32 perl programming. I would like to create a script to run through the event log and search for a particular object. Not only that but I would like the program to look through the actual text of the message looking for something specific. For example lets say a connection from pc anywhere creates event id 300 in the application log. In text of event 300 it says the user on the domain that actually connected. I would like the script to look through the application log for event id 300 and then actually search the text of message for a particular string. Can anyone give me some advice on how to do this. I understand how to load up the eventlog with win32:eventlog but i am not sure how I would begin searching it for particular event id's or even searching the text of the id's Any tips appreciated. Thx, Leon _____
Do you Yahoo!? Free online <http://us.rd.yahoo.com/mail_us/tag/*http://calendar.yahoo.com> calendar with sync to Outlook(TM).
