Event log c++ sample.

1. Init regedit.

bool InitLog( TCHAR *logName, TCHAR *sourceName, TCHAR *MessageDllName )

    {

        // This number of categories for the event source.

        DWORD dwCategoryNum = ;

        HKEY hk;

        DWORD dwData, dwDisp;

        TCHAR szBuf[MAX_PATH];

        size_t cchSize = MAX_PATH;

        // Create the event source as a subkey of the log.

        HRESULT hr = _stprintf_s(szBuf,  //

            _T("SYSTEM\\CurrentControlSet\\Services\\EventLog\\%s\\%s"),

            logName, sourceName); 

        if (RegCreateKeyEx(HKEY_LOCAL_MACHINE, szBuf,

            , NULL, REG_OPTION_NON_VOLATILE,

            KEY_WRITE, NULL, &hk, &dwDisp))

        {

            return false ;

        }

        // Set the name of the message file. 

        if (RegSetValueEx(hk,             // subkey handle

            _T("EventMessageFile"),        // value name

            ,                         // must be zero

            REG_EXPAND_SZ,             // value type

            (LPBYTE) MessageDllName,          // pointer to value data

            (DWORD) (lstrlen(MessageDllName)+)*sizeof(TCHAR))) // data size

        {

            RegCloseKey(hk);

            return false ;

        }

        // Set the supported event types. 

        dwData = EVENTLOG_ERROR_TYPE | EVENTLOG_WARNING_TYPE |

            EVENTLOG_INFORMATION_TYPE; 

        if (RegSetValueEx(hk,      // subkey handle

            _T("TypesSupported"),  // value name

            ,                 // must be zero

            REG_DWORD,         // value type

            (LPBYTE) &dwData,  // pointer to value data

            sizeof(DWORD)))    // length of value data

        {

            RegCloseKey(hk);

            return false ;

        }

        // Set the category message file and number of categories.

        if (RegSetValueEx(hk,              // subkey handle

            _T("CategoryMessageFile"),     // value name

            ,                         // must be zero

            REG_EXPAND_SZ,             // value type

            (LPBYTE) MessageDllName,          // pointer to value data

            (DWORD) (lstrlen(MessageDllName)+)*sizeof(TCHAR))) // data size

        {

            RegCloseKey(hk);

            return false ;

        }

        if (RegSetValueEx(hk,            // subkey handle

            _T("CategoryCount"),         // value name

            ,                       // must be zero

            REG_DWORD,               // value type

            (LPBYTE) &dwCategoryNum, // pointer to value data

            sizeof(DWORD)))          // length of value data

        {

            RegCloseKey(hk);

            return false ;

        }

        RegCloseKey(hk);

        //设置按需要覆盖重写日志

        HKEY hKey;  

        hr = _stprintf_s(szBuf,  //

            _T("SYSTEM\\CurrentControlSet\\Services\\EventLog\\%s"),

            logName); 

        if(::RegOpenKeyEx(HKEY_LOCAL_MACHINE, szBuf, NULL, KEY_ALL_ACCESS, &hKey) == ERROR_SUCCESS)

        {

            DWORD dwRetentionNum = ;

            if (RegSetValueEx(hKey,            // subkey handle

                _T("Retention"),         // value name

                ,                       // must be zero

                REG_DWORD,               // value type

                (LPBYTE) &dwRetentionNum, // pointer to value data

                sizeof(DWORD)))          // length of value data

            {

                RegCloseKey(hKey);

                return false ;

            }

        }

        RegCloseKey(hKey);

        _tcscpy_s ( m_SourceName, sourceName ) ;

        return true ;

    }

2. Insert log

    void Log_Event ( DWORD dwEventId, WORD wType, TCHAR *pStr )

    {

        TCHAR* pBuf[1] ;

        pBuf[0] = pStr ;

        if ( !m_bInit )

        {

            _tcscpy_s ( m_SourceName, _T("FAIL") ) ;

            dwEventId = 0 ;

        }

        HANDLE hEventSource = RegisterEventSource ( NULL, m_SourceName ) ;

        if ( hEventSource != NULL )

        {

            ReportEvent ( hEventSource, // handle of event source

                wType,  // event type

                0,                    // event category

                dwEventId,                    // event ID

                NULL,                 // current user's SID

                1,                    // strings in lpszStrings

                0,                    // no bytes of raw data

                (LPCTSTR*)pBuf,  // array of error strings

                NULL ) ;              // no raw data

            DeregisterEventSource ( hEventSource ) ;

        }

    }

http://msdn.microsoft.com/en-us/library/aa363680(v=vs.85).aspx

Event log c++ sample.的更多相关文章

ora-28056 (Writing audit records to Windows Event Log failed)
系统:windows xp oracle 版本 SQL> select * from v$version; BANNER ------------------------------------ ...
windows 系统无法启动windows event log 服务
windows 系统无法启动windows event log 服务关键词:无法启动系统事件日志尝试解决步骤 [1]权限:把如图中logsfile文件等都给local service [2]把C: ...
application pool can not write to event log
https://stackoverflow.com/questions/9564420/the-source-was-not-found-but-some-or-all-event-logs-coul ...
How to write to an event log by using Visual C#
using System; using System.Diagnostics; namespace WriteToAnEventLog_csharp { /// Summary description ...
AngularJS - $index, $event, $log
原文: https://thinkster.io/egghead/index-event-log --------------------------------------------------- ...
AWR发现TOP Event log file sequential read
对客户DB进行巡检,发现TOP EVENT是LOG FILE Sequential read 等待事件说明 https://www.xuebuyuan.com/zh-hant/1743045.html ...
KMS Event LOG
The 12290 event entry gives a significant amount of information that can be used to figure out what ...
如何在 Windows Event Log 中查找系统重启的信息
事件ID:12 事件ID 13: 事件ID 41: 事件ID 6008: 事件ID 1074:事件ID 1074: ========================================== ...
Android 解读Event和Main Log
1 Android P EventLogTags文件 Android P 9.0.0 所有EventLogTags文件List: system/bt/EventLogTags.logtags syst ...

随机推荐

form表单上传域（type="file"）的使用----上传文件
一,单个文件的上传 1.html/jsp页面 <%@ page language="java" contentType="text/html; charset=UT ...
<Android 应用之路> 天气预报（五）
前言写了上一篇文章,讲了下这个实现天气预报的使用内容,现在又到了看代码的时候,主要还是贴代码,然后添加足够的注释. 聚合数据SDK配置将juhe_sdk_v_X_X.jar以及armeabi文件夹 ...
sublime相关小技巧
1.快速建立一个新文件:Ctrl+n 2.修改多个相同符号:Ctrl+D 3.建立语言后缀的文件保存,例如我想创建PHP的语言脚本,先按Ctrl+Shift+p,打开Command Palette,输 ...
在IIS 7.5上安装WebDAV（http文件下载上传）
WebDAV 简介 WebDAV (Web-based Distributed Authoring and Versioning) 一种基于 HTTP 1.1协议的通信协议.它扩展了HTTP 1.1, ...
如何处理SAP HANA Web-Based Development Workbench的403 Forbidden错误
打开SAP云平台上的SAP HANA Web-Based Development Workbench超链接: 遇到错误信息:403 - Forbidden - The server refused t ...
【洛谷1993】小K的农场（差分约束系统模板题）
点此看题面大致题意: 给你若干组不等式,请你判断它们是否有解. 差分约束系统看到若干组不等式,应该很容易想到差分约束系统吧. $A-B≥C$:转换可得$A-B≥C$ $A-B≤C$:转 ...
mac 扫描存活IP段
法一:脚本内容 MacdeMacBook-Pro:~ root# cat ping-ttl.sh #!/bin/bash [ $UID -ne 0 ]&&{ echo "Pl ...
SyntaxError: Non-ASCII character ‘\xe5′ in file和在代码中插入中文，python中文注释
SyntaxError: Non-ASCII character '\xe7' in file 出现这种错误的原因是程序中的编码出问题了,只要在程序的最前面加上 #coding: utf-8 重新保存 ...
ifup/ifdown ethX 和 ifconfig ehtX up/down的区别
相同点:[启用]和[禁止]网卡 ifup ethX 和 ifconfig ethX up 用来启用网卡设备 ifdown ethX 和 ifconfig ethX ...
1269: [AHOI2006]文本编辑器editor
Time Limit: 10 Sec Memory Limit: 162 MBSubmit: 5269 Solved: 2037[Submit][Status][Discuss] Descript ...

Event log c++ sample.

Event log c++ sample.的更多相关文章

随机推荐

热门专题