Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to get the right time?

veveok
Engager
‎05-04-2022 07:41 PM

my log appear:

 

1;1;laptop-rdvt90t4;http://update-software.xxx.com/WeatherFix03_SP03120.exe;C:\Windows\SysWOW64\DynamicWeather.exe;NT AUTHORITY\SYSTEM;2022-05-02 09:23:25;192.168.1.8;;;

1;1;laptop-rdv7446p;http://update-software.xxx.com/qatherFixP00190.exe;C:\Windows\SysWOW64\Der.exe;ScWhJ\lizonghao;2022-05-02 09:25:27;192.168.1.8;;;

I use :strptime()  %H:%M:%S , and reg “202\d+-\d+\-\d+\s” to get the time,

2.jpg

 

but it look like wrong。

like this pic.

 

1.jpg

 

how to write this reg to get the  time?

 

Labels (1)
Labels
Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

veveok
Engager
‎05-04-2022 10:39 PM

it works with:

%Y-%m-%d %H:%M:%S

and

^(?:[^;]*\;){10}\s*

 

 

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

veveok
Engager
‎05-04-2022 10:39 PM

it works with:

%Y-%m-%d %H:%M:%S

and

^(?:[^;]*\;){10}\s*

 

 

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk App for Anomaly Detection End of Life Announcment

Q: What is happening to the Splunk App for Anomaly Detection?A: Splunk is officially announcing the ...

Aligning Observability Costs with Business Value: Practical Strategies

 Join us for an engaging Tech Talk on Aligning Observability Costs with Business Value: Practical ...

Mastering Data Pipelines: Unlocking Value with Splunk

 In today's AI-driven world, organizations must balance the challenges of managing the explosion of data with ...