This is the code Gary has written in the query.pl file he had in the zip file..
use vars qw( %Log );
use strict;
use Win32::EventLog;
my %EVENT_TYPES = (
error => EVENTLOG_ERROR_TYPE,
warning => EVENTLOG_WARNING_TYPE,
info => EVENTLOG_INFORMATION_TYPE,
success => EVENTLOG_AUDIT_SUCCESS,
failure => EVENTLOG_AUDIT_FAILURE
);
foreach my $Key ( qw( Computer
Source
EventType
EventID ) )
{
$Log{$Key} = shift @ARGV;
}
$Log{Strings} = join( "\0", @ARGV );
if( my $Event = Win32::EventLog->new( $Log{Source}, $Log{Computer} ) )
{
$Log{EventType} = $EVENT_TYPES{$Log{EventType}};
if( $Event->Report( \%Log ) )
{
print "Log was successfully sent.\n";
}
else
{
print "Unable to submit log.\n";
}
$Event->Close();
}
else
{
print "Unable to connect to $Log{Computer}.\n";
}
Ganesh
