Forums | Admin Discussion Forums: help Start New Thread Nested Flat Threaded Ultimate Show 25 Show 50 Show 75 Show 100   By: Graham Cowie RE: Interpreting category struct (Win event log) [ reply ]   2008-12-31 15:41 Thanks for your response. What is this .. afaik? Looking through the MC file I can see references to the following create_header create_res_file create_dll_file But these do not relate to anything readable. I thought it would be as simple to say if cat == 1 cat = "foo" etc etc, but this seems to be causing problems and outputing every category as foo. Many thanks By: Daniel Berger RE: Interpreting category struct (Win event log) [ reply ]   2008-12-23 06:14 Use the event_type struct member. In order to match up numbers to types, you'll have to inspect the original .mc file afaik, since that's what sets them. As for the time_written member, it's a Time object, so you can use strftime (converting it to a string first if necessary). Regards, Dan By: Graham Cowie Interpreting category struct (Win event log) [ reply ]   2008-12-21 21:06 I am reading data from the Windows event log however when I call the category struct, it only prints out a number, which I can only assume relates to a category entry. Is there a list of the corresponding categories for me to match the numbers with, as I would like to print the atcual category and not the number. Also, the time written struct can the format of the date be edited? Thanks in advance.