Hello All,Does anyone know of a script or tool that can seach\filter the 2008 Event Logs for a particular string or text? I know how to use wevtutil to filter and dump out Events based on ID's\Dates\etc....to text and then search the text files but I dont want to do that here. I need to be able to run searches on the fly.Thanks.Craig

Hi, Thanks for your post. You can create a custom view in Event Viewer to search/filter the events: Create a Custom View http://technet.microsoft.com/en-us/library/cc709635.aspx You can also edit the query manually so that it only reports the events that have a particular string or text: XPath Reference http://msdn.microsoft.com/en-us/library/ms256115.aspx Hope it helps. Joson Zhou TechNet Subscriber Support in forumThis posting is provided "AS IS" with no warranties, and confers no rights.

I see, you're talking about Windows-based, .NET aware, WPF accessible, multi-processes on the same IP / Port usage, admin's automation tool, PowerShell.Take a chance to check it out:Get-EventLog application | where {$_.message -ike "*your pattern*"}To list available eventlogs, run this command:Get-EventLog -ListWith PowerShell V2 you have some new advantages:Get-EventLog system -message "*your string*" -computer RemoteServerNameThis will search all messages in System eventlog on computer named RemoteServerName. [http://www.sysadmins.lv] As always enjoy the automation of tools within the Windows-based, .NET aware, WPF accessible, multi-processes on the same IP / Port usage, admin's automation tool, powershell.exe! © Flowering Weeds

Thanks to you both. I believe Vadims response will suit. I have just started to get into PS now that v2 is out. It looks like this is what i need and learning more about PS will do me better in the long run.

Hi, Glad that you have got a good solution. For your reference, here are some website related to Windows PowerShell. Hope it would be helpful for your work: Windows PowerShell http://www.microsoft.com/windowsserver2003/technologies/management/powershell/default.mspx Windows PowerShell Getting Started Guide http://msdn.microsoft.com/en-us/library/aa973757(VS.85).aspx Joson Zhou TechNet Subscriber Support in forumThis posting is provided "AS IS" with no warranties, and confers no rights.