Updated to version: 1.0.0.5! Lets say you have many exported EventLog (evt/evtx) files, and need to search for specific event entries on all of them. How do you do it? Of course you can use but then you have to write the cumbersome query yourself. EvtLogParser to the rescue! EvtLogParser uses the LogParser.dll from, and provides a simple UI for the query.

How to Export Windows Event Logs to Excel. Open Event Viewer and Export logs to CSV file. ' box and click 'Open' to start the Text Import Wizard.

All you need to do, is drag-and-drop or right-click and select to add your files to the list, select the query filter using the query filter panel, and click Query. Then, you’ll be able to see the query results in the grid view below.

Right-click to view a specific event, save it as a text file or export all the data to an XML file. Note that Windows Vista, 7 and Server 2008 uses the new evtx format for event log exports.

Since Log Parser uses system APIs to read event log exports, and the old. Scott Henderson Blues Guitar Collection Rar. evt event log format is not 'native' any more on these OS’s you’ll probably get an error message saying 'The event log file is corrupted'. So if you want to read evt files on Windows Vista, 7 or Server 2008, you should convert them old-school EventLog files into the shiny new format.

You can accomplish this using any of the two methods described below: 1. Through the user interface just double-click the evt file, wait for it to open, then right-click, select Save Event As, enter the location and filename, click Save and OK. Using the Windows Events Command Line Utility (WevtUTIL) It’s built in the OS and it’ll convert those old EventLog files from the command line: wevtutil epl application.evt application.evtx /lf:true Also, you can copy the text below into Notepad, save it with the.reg extension, and merge it into your registry. After restarting your system, you’ll be able to right-click an.evt file and select the 'Convert to evtx' option from the context menu. Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT SystemFileAssociations.evt] [HKEY_CLASSES_ROOT SystemFileAssociations.evt shell] [HKEY_CLASSES_ROOT SystemFileAssociations.evt shell ConvertToEvtx] @='Convert to evt&x' [HKEY_CLASSES_ROOT SystemFileAssociations.evt shell ConvertToEvtx command] @=' 'wevtutil.exe ' epl '%1 ' '%1x ' /lf:true' Download Please note it requires you to have at least installed. And are you running the EvtLogParser on Vista/Win7? Please read the section at the bottom of the post that sais: “Note that Windows Vista, 7 and Server 2008 uses the new evtx format for event log exports.

Since Log Parser uses system APIs to read event log exports, and the old.evt event log format is not “native” any more on these OS’s you’ll probably get an error message saying “The event log file is corrupted”. So if you want to read evt files on Windows Vista, 7 or Server 2008, you should convert them old-school EventLog files into the shiny new format.”.