<div>
Hi<br />
<br />
The easiest way is to use something like log parser. You can download it from here<br />
<a href="http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-91b2-f8d975cf8c07&displaylang=en" rel="ugc">http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-91b2-f8d975cf8c07&displaylang=en</a><br />
<br />
You can use this to get all sorts of information. To query your application event log for the last 2 months just do<br />
logparser -i:evt -o:csv &quot;SELECT EventLog, RecordNumber,<br />
TimeGenerated, EventID,<br />
EventType, EventTypeName, EventCategory, SourceName,<br />
ComputerName, Message<br />
FROM Application<br />
where TimeGenerated &gt;&nbsp;'2010-07-06 00:00:00' into test.csv&quot;<br />
<br />
This should export it out to a CSV file called test.csv<br />
<br />
HTH<br />
<br />
Erik
</div>


<div>
Thanks erik_nodland. &nbsp;So I install this on the pc and then run the command you wrote?
</div>


<div>
Yep. Just install it and then run the command from the directory where it was installed.<br />
<br />
cheers<br />
<br />
Erik
</div>


<div>
I was able to create a quick batch file which launches the parcer app and gets the command switches to run except I am getting this error message:<br />
<br />
Error: Syntax Error: extra token(s) after query: 'into'<br />
<br />
Thoughts?
</div>


<div>
Quick snapshot of the script<br />

<pre><code class="code-1 nolinks" id="code-1008553"><span>cd\</span>
<span>cd &quot;c:\program files\log parser 2.2&quot;</span>
<span>logparser -i:evt -o:csv &quot;SELECT EventLog, RecordNumber, TimeGenerated, EventID,EventType, EventTypeName, EventCategory, SourceName,ComputerName, Message FROM Application where TimeGenerated &gt; '2010-07-06 00:00:00' into test.csv&quot;  </span>
<span>pause</span>
</code></pre>
</div>


<div>
Got it!<br />
<br />
Made a quick change to your command (see below):<br />
logparser -i:evt -o:csv &quot;SELECT EventLog, RecordNumber,<br />
TimeGenerated, EventID,<br />
EventType, EventTypeName, EventCategory, SourceName,<br />
ComputerName, Message<i> into test.csv </i>FROM Application where TimeGenerated &gt;&nbsp;'2010-07-06 00:00:00'&quot; <br />
<br />

<pre><code class="code-1 nolinks" id="code-1008573"><span>cd\</span>
<span>cd &quot;c:\program files\log parser 2.2&quot;</span>
<span>logparser -i:evt -o:csv &quot;SELECT EventLog, RecordNumber, TimeGenerated, EventID,EventType, EventTypeName, EventCategory, SourceName, ComputerName, Message INTO test.csv FROM Application where TimeGenerated &gt; '2010-07-06 00:00:00'&quot;  </span>
</code></pre>
</div>


<div>
my ref: &nbsp;<a href="http://technet.microsoft.com/en-us/library/ee692659.aspx" rel="ugc">http://technet.microsoft.com/en-us/library/ee692659.aspx</a><br />
<br />
C:\&gt;LogParser &quot;SELECT TimeGenerated, SourceName, <br />
EventCategoryName, Message INTO report.txt FROM Security WHERE <br />
EventID = 528 AND SID LIKE '%TESTUSER%'&quot; -resolveSIDs:ON<br />
<br />
Thanks for your help!!
</div>


<div>
@erik, if you copy/paste what I put in 33612546 into a new comment, I can accept your answer and award points.
</div>


<div>
Thanks for the help!! &nbsp;Hope to work with you again!<br />
<br />
-Aaron
</div>


<div>
Another tool you could look at for this job:<br />
<br />
<a href="http://technet.microsoft.com/en-us/sysinternals/bb897544.aspx" rel="ugc">http://technet.microsoft.com/en-us/sysinternals/bb897544.aspx</a><br />
<br />
~bp
</div>


<div>
<div class="content wysiwyg-content">
Hi Experts. &nbsp;Much like another question I just asked, I was curious how I could go about using a script or batch file to look through a computers event viewer and export/dump the errors and warnings for a particular time period (last 2 months/1 month/1week, etc).<br />
<br />
This would be for Windows based OS's. &nbsp;Since I am not a programmer/scripter, I appreciate your help and patience with this!
</div>
</div>


Hi Experts.  Much like another question I just asked, I was curious how I could go about using a script or batch file to look through a computers event viewer and export/dump the errors and warnings for a particular time period (last 2 months/1 month/1week, etc).

This would be for Windows based OS's.  Since I am not a programmer/scripter, I appreciate your help and patience with this!

Pull warnings/errors from event viewer via script

VBScript (Visual Basic Scripting Edition) is an interpreted scripting language developed by Microsoft that is modeled on Visual Basic, but with some important differences. VBScript is commonly used for automating administrative and other tasks in Windows operating systems (by means of the Windows Script Host) and for server-side scripting in ASP web applications. It is also used for client-side scripting in Internet Explorer, specifically in intranet web applications.

VB Script

Windows 7 is an operating system from Microsoft. Features include multi-touch support, a redesigned Windows Shell with a new taskbar, referred to as the Superbar, a home networking system called HomeGroup, and performance improvements.

Windows 7

Microsoft Windows XP is the sixth release of the NT series of operating systems, and was the first to be marketed in a variety of editions: XP Home and XP Professional, designed for business and power users. The advanced features in XP Professional are generally disabled in Home Edition, but are there and can be activated. There were two 64-bit editions, an embedded edition and a tablet edition.