1

I would like to extract certain rows from a log file using native Windows command line tools or batch file (.bat). Here's a sample log file:

2009-12-07 14:32:38,669 INFO  Sample log
2009-12-07 14:32:43,029 INFO  Sample log
2009-12-07 14:32:45,841 DEBUG Sample log
2009-12-07 14:32:45,841 DEBUG Sample log
2009-12-07 14:32:52,029 WARN  Sample log
2009-12-07 14:32:52,466 INFO  Sample log

How to extract and print lines which have tag "WARN"? How to do this with PowerShell?

Improve this question
1

6 Answers 6

Reset to default
8

One way:

findstr WARN log.txt

More complex:

for /f "tokens=1,2,3,4* delims=, " %i in (log.txt) do @if "%l"=="WARN" echo %i %j %m

OUTPUT:
2009-12-07 14:32:52 Sample log
Improve this answer
Sign up to request clarification or add additional context in comments.

1 Comment

I believe you should use " this way findstr "WARN" log.txt
7

you can do it with PowerShell using select-stirng :

select-String  WARN  *.log
Improve this answer

1 Comment

This is the best and the right answer, but requirements often expand and sooner or later we all end up here: gci . -r *.log | % { gc $_.fullname | ? { $_ -cmatch "WARN" }} i.e., get-childitem . -recurse *.log | foreach { get-content $_.fullname | ? { $_ -cmatch "WARN" }}
2

If PowerShell (as suggested by Alon) isn't an option, maybe Logparser will fulfill for your needs: http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-91b2-f8d975cf8c07&displaylang=en

Improve this answer

Comments

1

there are several ways, findstr/find like what others show you. Or you can use vbscript

Set objFS=CreateObject("Scripting.FileSystemObject")
Set objArgs = WScript.Arguments
strFile= objArgs(0)
Set objFile = objFS.OpenTextFile(strFile)
Do Until objFile.AtEndOfStream
    strLine = objFile.ReadLine
    If InStr(strLine,"WARN") > 0 Then
        WScript.Echo strLine
    End If 
Loop

save as mygrep_warn.vbs and on command line

c:\test> cscript //nologo mygrep_warn.vbs myfile.log

Other methods, if you can download stuff and use GNU *nix tools ported to win32

C:\test>grep -i "warn" file
2009-12-07 14:32:52,029 WARN  Sample log

C:\test>gawk "BEGIN{IGNORECASE=1}/warn/" file
2009-12-07 14:32:52,029 WARN  Sample log
Improve this answer

Comments

1 
Get-EventLog -LogName application -EntryType warning

and export the output as you like

Improve this answer

Comments

0

You can always try the original DOS "find" command, it's pretty crappy though:

c:>find " WARN " filename.log

---------- FILENAME.LOG
2009-12-07 14:32:52,029 WARN  Sample log

c:>

You can't use wildcards in the filename either.

Improve this answer

2 Comments

you can with findstr, though, and you got regular expressions—sort of. find isn't the only thing out there :-)
I never use it any more unless I'm using a bare-bones Windows machine and have no alternative. I've never heard of findstr before. That looks somewhat usable!

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.