Database Search
If you can't find the information using the categories below, post a question over in our WinBatch Tech Support Forum.
TechHome
WMI
 | |
|
- !Microsofts WMI Object Browser!
- !WMI Reference!
- !WMI Security!
- Add Key Qualifier
- Backup Event Log
- Best Way to Read Event Log via WMI
- Check if WMI is Installed
- Clear Event Log via WMI
- Close All but One Instance
- Detect If monitor is in Standby Mode
- Detect Resume From Standby
- Detect Standby or Hibernation Event
- Detecting Local Network Connectivity and Speed
- Determine Laptop or Destop System Enclosure
- Determine Machine Type
- Determining If a Machine is a Domain Controller
- Directory Watcher
- Display Refresh Rate
- Error 1261 on ConnectServer line
- Extract SN from Bios using WMI
- fileSizeEX returns 0 for the Pagefile.sys file
- Get Asset Tag From Dell Computers
- Get Daylight Savings Time
- Get Default Printer
- Get ipv6 IP Address via Host Name
- Get Owner of a Process
- Get Physical Memory
- Get Process List via WMI
- Get Remote Logged in User
- Get Specific Events
- Get Status of Network Adapter
- Get Win32_DiskDrive Data with DeviceID
- Install MSI apps
- Is Computer WMI Enabled UDF
- Last Reboot Time
- List Active Network Adapters
- List All Monitors
- List Available Screen Resolutions
- List Installed Modems
- List Namespaces
- List Processes on a Remote Computer
- List Scheduled Tasks
- Manufacturer Model and Serial from WMI
- Modify DNS Entries
- Monitor Events
- Obtain the Name of the Domain to which the Computer Belongs
- PCMCIA Card Detection
- Physical Memory Inspection
- Ping Status
- Remote Number of Drives
- Remote Process UDFs
- Run an Application on a Remote Computer
- Search Eventlog Example
- Set Adapter Speed Duplex
- SetDNSSuffixSearchOrder MisMatched Type Error
- System Restore Point
- Total CPU Usage
- Using WMI List Applications
- Win32_EncryptableVolume
- Win32_SerialPort Information via WMI
- Windows NT Schedule Service - AT
- WMI - Processor Info
- WMI and Arrays
- WMI and Get IPAddress Property
- WMI and Remote Interactive Desktop Scripts
- WMI and WinPE
- WMI causing LLSMGR to start
- WMI ExecQuery
- WMI Get Fan Speed
- WMI Get MAC Address and NIC info
- WMI hangs
- WMI ObjectOpen Problem on Windows 95
- WMI Query Paths Need Double Backslashes
- WMI Related Resources
- WMI Scriptomatic
- wntGetCon using WMI
- WQL LIKE Operator
Can't find the information you are looking for here? Then leave a message over on our WinBatch Tech Support Forum.
Clear Event Log via WMI
Use the ClearEventlog Method.
ClearEventlog([in] string ArchiveFileName);
Clears the specified event log, and optionally saves the current copy of the logfile to a backup file.
The method returns an integer value that can be interpretted as follows:
ArchiveFileName
Note: Only Localsystem, Administrators and System Operators can clear the logs.
0 - Successful completion.
8 - The user does not have adequate privileges.
21 - Invalid parameter.
Other - For integer values other than those listed above, refer to Win32 error code documentation.
String specifying the name of a file in which a current copy of the event logfile will be placed.
If this file already exists, the function fails.
;This code backs up the event log then clears it.
objSWbemLocator = ObjectOpen("WbemScripting.SWbemLocator")
objSWbemService = objSWbemLocator.ConnectServer("")
objSWbemSecurity = objSWbemService.Security_
objSWbemSecurity.ImpersonationLevel = 3
objSWbemPrivs = objSWbemSecurity.Privileges
objSWbemPrivs.AddAsString("SeSecurityPrivilege")
objSWbemPrivs.AddAsString("SeBackupPrivilege")
strClass = "Win32_NTEventLogFile"
log = "Application" ; !!!CHANGE TO FIT YOUR NEEDS !!!
;log = "Security" ; !!!CHANGE TO FIT YOUR NEEDS !!!
;log = "System" ; !!!CHANGE TO FIT YOUR NEEDS !!!
query = StrCat('SELECT * FROM ' , strClass, ' WHERE logfilename = "',log,'"')
colSWbemObjectSet = objSWbemService.ExecQuery(query)
hEnum = ObjectCollectionOpen(colSWbemObjectSet)
While @true
objEvent = ObjectCollectionNext(hEnum)
If objEvent == 0 Then Break
filename = objEvent.Caption
;Back up the event long
bakfilename = StrCat(DirWindows(1),"config\",FileRoot(filename),"_BACKUP.EVT")
title = StrCat("Clear the ",log," event log?")
prompt = StrCat("Press 'Yes' to clear the ",log," event log and save it to: ",bakfilename)
ret = AskYesNo(title, prompt)
if ret == @no then break
;Clear the event long
ret = objEvent.ClearEventLog(bakfilename)
if ret == 0
Message("Event Log Cleared",StrCat(log," Log Backed Up To:",@crlf,@crlf,bakfilename))
else
Message("Event Log NOT Cleared",StrCat("Error:",@crlf,@crlf,ret))
if ret == 183
Message("Backup File Already Exists",StrCat("Try deleting... ",bakfilename))
endif
endif
ObjectClose(objEvent)
EndWhile
ObjectCollectionClose(hEnum)
ObjectClose(colSWbemObjectSet)
ObjectClose(objSWbemPrivs)
ObjectClose(objSWbemSecurity)
ObjectClose(objSWbemService)
ObjectClose(objSWbemLocator)
Article ID: W16270
File Created: 2004:03:30:15:43:42
Last Updated: 2004:03:30:15:43:42