Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Unable to get full message text from Windows Event Logs
Top Forums Shell Programming and Scripting Unable to get full message text from Windows Event Logs Post 302769375 by kar_333 on Tuesday 12th of February 2013 04:41:03 AM
Old 02-12-2013
Unable to get full message text from Windows Event Logs
Hi all,

. I am developing a log monitoring solution in perl for Windows I am using the CPAN module Win32 ::EventLog (0.076) version for getting the events from windows. The problem which I am facing now is all the Windows 2008 machines are upgraded with Service pack2 from then I couldn’t able to get the message text even if I set the value 1 to $Win32::EventLog::GetMessageText = 1; for both Windows 2008 sp2 and Windows 2012. I agree this not a bug in the module instead Windows 2008 Sp2 and 2012 event log design might have changed in such a way kindly let me know is there any possibility to modify anything in the .pm file to get the Windows 2008 sp2 message moreover the module cannot pull only the message from the service control manager which has an event ID 7036.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Message Logs Error

I'm about 5 months new on an 5 year old unix system. If anyone can help me identify what causing the below errors i'd really appreciate it! unix: WARNING: /pci@1f,0/pci@1,1/ide@3/dad@1,0 (dad1): Uncorrectable data Error: Block 57e10 Unix: WARNING: /pci@1f,0/pci@1,1/ide@3/dad@1,0 (dad1):... (1 Reply)
Discussion started by: ByasB
1 Replies

2. UNIX for Advanced & Expert Users

ppp errror message in logs

I am getting this message in the log file. Apr 29 15:32:02 router ppp: Warning: Label COPYRIGHT rejected -direct connection: Configuration label not found This repeats every so often, the link is up however...Any ideas why i am getting this. Its freebsd 6.1 and pppoE. Frank (1 Reply)
Discussion started by: frankkahle
1 Replies

3. Shell Programming and Scripting

memory full warning message

Hi I wrote a script #!/usr/bin/ksh #set -x for fs in `df -k|awk '{print $1}'|sed -n "3,14 p"` do x=`df -kl | grep $fs | awk '{ print $5 }'` y=50% if then message="File System `df -k |grep $fs |awk '{print $6\", \"$5}'`... (1 Reply)
Discussion started by: namishtiwari
1 Replies

4. UNIX for Dummies Questions & Answers

Send Text message from unix to windows

Hi Buddies, I have a unix client and want to send a message (containg some data) to a windows Database server to query from it and return the result. I shall be so thankfull if you help me out.:b::) Warm Regards, Jessi (1 Reply)
Discussion started by: jessica-adams
1 Replies

5. Shell Programming and Scripting

Rotating logs in Perl without message loss

(I'm aware log rotation is a common subject, but I tried searching and couldn't find an answer) For some time now, I've been using the Logfile::Rotate module to rotate logs in a log-monitoring script. So far, I haven't experienced any problems, and it works great because I can use it in Linux... (1 Reply)
Discussion started by: w1r3d
1 Replies

6. Solaris

ILOM event logs

Hello I have a server Sun Fire X4250. Few days ago I take a look to ILOM -> System Monitoring -> log events. I saw some lines that I don't understand, for example: 5800 Chassis Action major Oct 30 23:58:35 2009 Hot insertion of /SYS/DBP/HDD12 5799 Chassis ... (3 Replies)
Discussion started by: marimontes
3 Replies

7. Shell Programming and Scripting

script to grep outofmemory message in logs

I have prepare script to grep for outofmemory messages in the logs. I need help in modifying script. I have implemented small logic. The outofmemory messages form six logs will store in variables. var1=`grep -i outofmemory $tomcat1logs | sed -n '$p'| sed -n -e "s/.*\(outofmemory\).*/\1/p"`... (6 Replies)
Discussion started by: coolguyamy
6 Replies

8. Shell Programming and Scripting

Perl script to parse multiple windows event logs.

Hi all, I am developing a log parsing agent in perl to send windows Event logs to Zenoss Monitoring tool. Using Win32::EventLog i can able to get the Event messages but only one Eventype eg Application or System could able to parse at a time. Can you please help to how to open mutiple eventlogs... (3 Replies)
Discussion started by: kar_333
3 Replies

9. AIX

PowerHA(HACMP) full vg loss - cluster hangs on release_vg_fs event

Hello, AIX 6.1 TL7 SP6 POwerHA 6.1 SP10 I was experimenting with new hacmp build. It's 3-node cluster build on AIX 6.1 lpars. It contains Ethernet and diskhb networks. Shared vg disk is SAN disk. Two nodes see disk using vscsi, third node sees disk using npiv. Application is db2 server. ... (4 Replies)
Discussion started by: vilius
4 Replies

LEARN ABOUT LINUX

nteventlog

nteventlog(3erl)					     Erlang Module Definition						  nteventlog(3erl)

NAME

       nteventlog - Interface to Windows Event Log

DESCRIPTION

       nteventlog  provides a generic interface to the Windows event log. It is part of the OS_Mon application, see os_mon(7) . Available for Win-
       dows versions where the event log is available. That is, not for Windows 98 and some other older Windows  versions,  but  for  most  (all?)
       newer Windows versions.

       This module is used as the Windows backend for os_sup , see os_sup(3erl) .

       To  retain  backwards  compatibility, this module can also be used to start a standalone nteventlog process which is not part of the OS_Mon
       supervision tree. When starting such a process, the user has to supply an identifier as well as a callback function to handle the messages.

       The identifier, an arbitrary string, should be reused whenever the same application (or node) wants to start  the  process.  nteventlog	is
       informed about all events that have arrived to the eventlog since the last accepted message for the current identifier. As long as the same
       identifier is used, the same eventlog record will not be sent to nteventlog more than once (with the exception of when graved system  fail-
       ures arise, in which case the last records written before the failure may be sent to Erlang again after reboot).

       If  the event log is configured to wrap around automatically, records that have arrived to the log and been overwritten when nteventlog was
       not running are lost. It however detects this state and loses no records that are not overwritten.

       The callback function works as described in os_sup(3erl) .

EXPORTS

       start(Identifier, MFA) -> Result
       start_link(Identifier, MFA) -> Result

	      Types  Identifier = string() | atom()
		     MFA = {Mod, Func, Args}
		     Mod = Func = atom()
		     Args = [term()]
		     Result = {ok, Pid} | {error, {already_started, Pid}}
		     Pid = pid()

	      This function starts the standalone nteventlog process and, if start_link/2 is used, links to it.

	      Identifier is an identifier as described above.

	      MFA is the supplied callback function. When nteventlog receives information about a new event,  this  function  will  be	called	as
	      apply(Mod, Func, [Event|Args]) where Event is a tuple

       stop() -> stopped

	      Types  Result = stopped

	      Stops nteventlog . Usually only used during development. The server does not have to be shut down gracefully to maintain its state.

SEE ALSO

       os_mon(7) , os_sup(3erl)

       Windows NT documentation

Ericsson AB							   os_mon 2.2.5 						  nteventlog(3erl)
All times are GMT -4. The time now is 07:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy