Logparser learning Summary

Logparser is said to be very powerful. It can analyze IIS logs, System Event Logs, CSV, XML and other format logs. As a beginner, it has not yet experienced these powerful functions, I hope you will understand it later.

Version used: log parser 2.2

: Http://www.microsoft.com/download/en/details.aspx? Displaylang = en & id = 24659

Background: the customer needs to analyze the system logs of the terminal devices and need to collect data remotely. The customer is currently investigating the situation.

Windows (XP-based) system logs are displayed on the visual interface. For details, see cmd-> eventvwr. MSC ()

The data to be collected at that time includes application logs, security logs, and system logs.

Specific log file storage location: c: \ windows \ system32 \ config \(*. EVT), why are these log files unable to view the file content in the usual way, so you need to find a way to read the content of the file.

Search online and search for information related to Java to process such logs, but find logparser. download and install the logparser and run the logparser. The help documentation and related online documents are provided in the collection to start learning.

Run logparser through cmd

 

Input:

D: \ logparser> logparser.exe "select * from system"> note. Log

Write System logs to the note file in the current directory as log files

D: \ logparser> logparser.exe "select * from system to DBO. [Test] "-O: SQL-server:" 10.25.21.69 "-Driver:" SQL Server "-Database:" logparse "-UserName:" sa "-password: & quot; 123 & quot;-I: EVT-createtable: On
The system logs can be remotely stored on the remote server. The data can be obtained, and the rest of the work can be solved.

Follow-up learning

 

References:

Http://www.cnblogs.com/MaoBisheng/archive/2010/05/16/1736604.html