There are more problems: In a Win32 application you can use the function BackupEventLog to save a log to a backup file. This works under Windows XP and under Vista. But when you want to reopen the log (which is saved as an .evt file), the function OpenBackupEventLog always receives an error 1500 on Vista. The same app does open the same files fine on XP. So for me it looks like the function OpenBackupEventLog has a bug on Vista when it is opening evt files (there are no problems opening evtx files, though). According to msdn docs, OpenBackupEventLog is supported under Vista, so I would expect that an app for XP which uses this function does run under Vista as well without problems? Frank Heyne Am 6 Jan 2007 um 23:39 hat Susan Bradley, CPA aka Ebitz - SBS Rocks [[logs] Reviewing Vista/2k3 log files from the sam geschrieben: > So I was looking at a 2k3 log file.. and I did it on my test Vista > laptop... and I know and understand that Vista has new event IDs... so > I'm cool with that.. what I didn't realize is that apparently I can't > use the Vista MS Event viewer to open up 2k3/XP log files and review > what's going on... that even such events as 529 have lost information. > .... _______________________________________________ LogAnalysis mailing list LogAnalysis@private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2.1.3 : Mon Jan 08 2007 - 09:44:16 PST