——————————————————————————————————————-<\/p>\n
If WScript.Arguments.Count > 1 Then
\nWScript.Echo
\nWScript.Echo “Usage: cscript “”Clear Event Logs.vbs”” [computer name]”
\nWScript.Echo
\nWScript.Quit
\nEnd If<\/p>\n
Dim strComputer ‘ As String<\/p>\n
If WScript.Arguments.Count > 0 Then
\nstrComputer= WScript.Arguments(0)
\nElse
\nstrComputer= “localhost”
\nEnd If<\/p>\n
ClearEventLogs strComputer<\/p>\n
WScript.Echo “Done”<\/p>\n
Private Sub ClearEventLogs( _
\nstrComputer)<\/p>\n
WScript.Echo “Clearing event logs on ” & strComputer & “…”<\/p>\n
Set objWMIService = GetObject( _
\n“winmgmts:” & “{impersonationLevel=impersonate,(Backup)}!\\\\” _
\n& strComputer & “\\root\\cimv2”)<\/p>\n
Set colLogFiles = objWMIService.ExecQuery( _
\n“Select * from Win32_NTEventLogFile”)<\/p>\n
For Each objLogfile in colLogFiles
\nClearEventLog strComputer, objLogfile.LogfileName
\nNext
\nEnd Sub<\/p>\n
Private Sub ClearEventLog( _
\nstrComputer, _
\nstrEventLogName)<\/p>\n
WScript.Echo “Clearing ‘” & strEventLogName & “‘ event log on ” _
\n& strComputer & “…”<\/p>\n
Set objWMIService = GetObject( _
\n“winmgmts:” & “{impersonationLevel=impersonate,(Backup)}!\\\\” _
\n& strComputer & “\\root\\cimv2”)<\/p>\n
Set colLogFiles = objWMIService.ExecQuery( _
\n“Select * from Win32_NTEventLogFile where LogFileName='” _
\n& strEventLogName & “‘”)<\/p>\n
For Each objLogfile in colLogFiles
\nDim backupFilename
\nbackupFilename= “C:\\” & strEventLogName & “_” & GetFormattedTimestamp() _
\n& “.evt”<\/p>\n
errBackupLog = objLogFile.BackupEventLog(backupFilename)
\nIf errBackupLog <> 0 Then
\nWScript.Echo “The ” & strEventLogName & ” event log on ” _
\n& strComputer & ” could not be backed up.”
\nElse
\nobjLogFile.ClearEventLog()
\nEnd If
\nNext
\nEnd Sub<\/p>\n
Private Function GetFormattedTimestamp()
\nDim timestamp
\ntimestamp = Now<\/p>\n
GetFormattedTimestamp = Year(timestamp) _
\n& LPad(Month(timestamp), 2, “0”) _
\n& LPad(Day(timestamp), 2, “0”) _
\n& “_” & Replace(FormatDateTime(timestamp, 4), “:”, “”)<\/p>\n
End Function<\/p>\n
Private Function LPad( _
\nstrValue, _
\nnLength, _
\nstrPadCharacter)<\/p>\n
Dim strPaddedValue<\/p>\n
strPaddedValue = strValue<\/p>\n
While (Len(strPaddedValue) < nLength)
\nstrPaddedValue = strPadCharacter & strPaddedValue
\nWEnd<\/p>\n