Class WinNT.EVENTLOGRECORD

  • Enclosing interface:
    WinNT

    @FieldOrder({"Length","Reserved","RecordNumber","TimeGenerated","TimeWritten","EventID","EventType","NumStrings","EventCategory","ReservedFlags","ClosingRecordNumber","StringOffset","UserSidLength","UserSidOffset","DataLength","DataOffset"})
    public static class WinNT.EVENTLOGRECORD
    extends Structure
    The EVENTLOGRECORD structure contains information about an event record returned by the ReadEventLog function.
    • Field Detail

      • Length

        public WinDef.DWORD Length
        Size of this event record, in bytes. Note that this value is stored at both ends of the entry to ease moving forward or backward through the log. The length includes any pad bytes inserted at the end of the record for DWORD alignment.
      • RecordNumber

        public WinDef.DWORD RecordNumber
        Record number of the record. This value can be used with the EVENTLOG_SEEK_READ flag in the ReadEventLog function to begin reading at a specified record.
      • TimeGenerated

        public WinDef.DWORD TimeGenerated
        Time at which this entry was submitted. This time is measured in the number of seconds elapsed since 00:00:00 January 1, 1970, Universal Coordinated Time.
      • TimeWritten

        public WinDef.DWORD TimeWritten
        Time at which this entry was received by the service to be written to the log. This time is measured in the number of seconds elapsed since 00:00:00 January 1, 1970, Universal Coordinated Time.
      • EventID

        public WinDef.DWORD EventID
        Event identifier. The value is specific to the event source for the event, and is used with source name to locate a description string in the message file for the event source.
      • EventType

        public WinDef.WORD EventType
        Type of event.
      • NumStrings

        public WinDef.WORD NumStrings
        Number of strings present in the log (at the position indicated by StringOffset). These strings are merged into the message before it is displayed to the user.
      • EventCategory

        public WinDef.WORD EventCategory
        Category for this event. The meaning of this value depends on the event source.
      • ReservedFlags

        public WinDef.WORD ReservedFlags
        Reserved.
      • ClosingRecordNumber

        public WinDef.DWORD ClosingRecordNumber
        Reserved.
      • StringOffset

        public WinDef.DWORD StringOffset
        Offset of the description strings within this event log record.
      • UserSidLength

        public WinDef.DWORD UserSidLength
        Size of the UserSid member, in bytes. This value can be zero if no security identifier was provided.
      • UserSidOffset

        public WinDef.DWORD UserSidOffset
        Offset of the security identifier (SID) within this event log record. To obtain the user name for this SID, use the LookupAccountSid function.
      • DataLength

        public WinDef.DWORD DataLength
        Size of the event-specific data (at the position indicated by DataOffset), in bytes.
      • DataOffset

        public WinDef.DWORD DataOffset
        Offset of the event-specific information within this event log record, in bytes. This information could be something specific (a disk driver might log the number of retries, for example), followed by binary information specific to the event being logged and to the source that generated the entry.
    • Constructor Detail

      • EVENTLOGRECORD

        public EVENTLOGRECORD()
      • EVENTLOGRECORD

        public EVENTLOGRECORD​(Pointer p)