EventCombMT

EventCombMT is a multi-threaded tool that will parse event logs from many servers at the same time.

It allows you to specify any or all of these criteria:

•  Individual Event IDs
•  Multiple Event IDs
•  A range of Event IDs
• An Event Source 
• Event Text
• How many minutes/hours/days back to scan

Features:

• Multithreaded for very fast performance! Every server gets its own thread.
• SIDs are cached for faster searching of security logs.
• Flexible Searching parameters
• 6 ways to add servers to search
•  Built in Searches (Account Lockout and Several FRS searches)
•  Adjustable Thread count to control bandwidth
• DLL Caching
• Save and load searched

Potential Uses:

• Find the last time all your servers rebooted
• Track down account lockouts
• Troubleshoot FRS issues
• Determine DC Health (look for problems before they become serious)