Good morning, thanks for the splendid program and for the help.
I m in need of monitoring the Event Logs but I m encountering difficulties in setting a rule for capturing specific Events.
Could you plz explain how to correctely configure the "Source" and "@" fields ?
I' m a little confused about their use.
Thx again
Monitoring events on a machine in LAN
Started by tasselor, Mar 19 2012 06:00 AM
1 reply to this topic
#2
Zak
-
- Root Admin
-
- 650 posts
Administrator
- Gender:Male
Posted 19 March 2012 - 07:49 AM
Hi tasselor,
"@" is the field for the log name (for example, Application, System, Security, Internet Explorer, etc), and "Source" is the source that you see in the details of a specific event. When you have chosen a log in the "@" field, click the refresh button to the right of the "Source" field to load the list of available sources and then you can choose from the drop-down list.
So you might end up with something like:
Source: [Service Control Manager] @ [System]
(square brackets are just to show the input fields, do not enter them).
All logs and sources are listed in the registry, see "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog".
"@" is the field for the log name (for example, Application, System, Security, Internet Explorer, etc), and "Source" is the source that you see in the details of a specific event. When you have chosen a log in the "@" field, click the refresh button to the right of the "Source" field to load the list of available sources and then you can choose from the drop-down list.
So you might end up with something like:
Source: [Service Control Manager] @ [System]
(square brackets are just to show the input fields, do not enter them).
All logs and sources are listed in the registry, see "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog".
Softinventive Lab support
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
