02-18-2010 09:06 AM
Solved! Go to Solution.
02-18-2010 09:25 AM
got the correct syntax.
C:\>LogParser.exe -i:EVT -o:CSV "select DISTINCT ComputerName,EventLog,EventID,EventTypeName,EventCategoryName,SourceName,Strings,Message into C:\OPS\testev.evt FROM '\\servername\Symantec Enterprise Vault' WHERE (EventTypeName = 'Error event' AND EventID NOT IN(11;1111;1106))
use ' instead of " while specifying the event log..
02-18-2010 09:14 AM
02-18-2010 09:25 AM
got the correct syntax.
C:\>LogParser.exe -i:EVT -o:CSV "select DISTINCT ComputerName,EventLog,EventID,EventTypeName,EventCategoryName,SourceName,Strings,Message into C:\OPS\testev.evt FROM '\\servername\Symantec Enterprise Vault' WHERE (EventTypeName = 'Error event' AND EventID NOT IN(11;1111;1106))
use ' instead of " while specifying the event log..