Use evt APIs (Windows Event Log)
You can find many samples on Google or MSDN forums, like C++ Program for Extracting data from windows logs in different formats(xml,evts,csv,txt)
Extract data from EventLog
Corobori
26
Reputation points
Hi,
I have got an evtx file containing some information I want to parse. I have seen people pointing to PowerShell scripts, such as this one.
Before dwelling deeper into PowerShell I am wondering if I am going the right way.
What I want to extract from my evtx file are the following data: Exception information and the following Request information: Event time, Request URL, Request path and the User host address
Windows development | Windows API - Win32
1 answer
Sort by: Most helpful
-
Castorix31 91,876 Reputation points2021-07-16T19:25:06.127+00:00 -
Corobori 26 Reputation points
2021-07-19T17:20:54.867+00:00 Thank you for the tip. I should have thought that other ways to read the Event Log were available. I am not a C++ developer but from what I read accessing from a .NET code looks doable, I'll have a look that way.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 34%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXY%3C/text%3E%3C/svg%3E)
Xiaopo Yang - MSFT 12,736 Reputation points Microsoft External Staff2021-07-20T01:23:00.623+00:00 There is a sample in .NET. How to: Query for Events (QueryExternalFile).
Sign in to comment -