From 5f6c124d627a44c04333ef4d9b49c8fad7c04ce5 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20Couratin?= Date: Thu, 19 Feb 2026 21:14:17 +0100 Subject: [PATCH] =?UTF-8?q?Initial=20commit=20=E2=80=93=20Milestone=20moni?= =?UTF-8?q?toring=20script=20(SOC09=20/=20CSU=20Ultreia)=20=E2=80=93=20AGP?= =?UTF-8?q?L-3.0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- Milestone_Monitor.ps1 | 63 ++++++++++++++++++++++++++++++++ powershell/Milestone_Monitor.ps1 | 63 ++++++++++++++++++++++++++++++++ 2 files changed, 126 insertions(+) create mode 100644 Milestone_Monitor.ps1 create mode 100644 powershell/Milestone_Monitor.ps1 diff --git a/Milestone_Monitor.ps1 b/Milestone_Monitor.ps1 new file mode 100644 index 0000000..90f45ca --- /dev/null +++ b/Milestone_Monitor.ps1 @@ -0,0 +1,63 @@ +$start = (Get-Date).AddDays(-4) + +$events = @() + +# 🔵 Redémarrages serveur +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + StartTime=$start +} | Where-Object { + ($_.Id -eq 12 -and $_.ProviderName -eq "Microsoft-Windows-Kernel-General") -or + ($_.Id -eq 41) -or + ($_.Id -eq 1074) +} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "REDÉMARRAGE SERVEUR" + Detail = $_.Id + } +} + +# 🟡 Crash service Recording +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + Id=7031 + StartTime=$start +} | Where-Object {$_.Message -like "*Recording Server*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "CRASH SERVICE RECORDING" + Detail = $_.Id + } +} + +# 🔴 Crash application VideoOS +$events += Get-WinEvent -FilterHashtable @{ + LogName='Application' + Id=1000 + StartTime=$start +} | Where-Object {$_.Message -like "*VideoOS*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "CRASH APPLICATION VIDEOOS" + Detail = $_.Id + } +} + +# 🔶 Service démarré +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + Id=7036 + StartTime=$start +} | Where-Object {$_.Message -like "*Recording Server*running*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "SERVICE RECORDING DÉMARRÉ" + Detail = $_.Id + } +} + +# 🔄 Affichage chronologique +$events | +Sort-Object Time | +Format-Table Time, Theme, Detail -AutoSize diff --git a/powershell/Milestone_Monitor.ps1 b/powershell/Milestone_Monitor.ps1 new file mode 100644 index 0000000..90f45ca --- /dev/null +++ b/powershell/Milestone_Monitor.ps1 @@ -0,0 +1,63 @@ +$start = (Get-Date).AddDays(-4) + +$events = @() + +# 🔵 Redémarrages serveur +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + StartTime=$start +} | Where-Object { + ($_.Id -eq 12 -and $_.ProviderName -eq "Microsoft-Windows-Kernel-General") -or + ($_.Id -eq 41) -or + ($_.Id -eq 1074) +} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "REDÉMARRAGE SERVEUR" + Detail = $_.Id + } +} + +# 🟡 Crash service Recording +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + Id=7031 + StartTime=$start +} | Where-Object {$_.Message -like "*Recording Server*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "CRASH SERVICE RECORDING" + Detail = $_.Id + } +} + +# 🔴 Crash application VideoOS +$events += Get-WinEvent -FilterHashtable @{ + LogName='Application' + Id=1000 + StartTime=$start +} | Where-Object {$_.Message -like "*VideoOS*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "CRASH APPLICATION VIDEOOS" + Detail = $_.Id + } +} + +# 🔶 Service démarré +$events += Get-WinEvent -FilterHashtable @{ + LogName='System' + Id=7036 + StartTime=$start +} | Where-Object {$_.Message -like "*Recording Server*running*"} | ForEach-Object { + [PSCustomObject]@{ + Time = $_.TimeCreated + Theme = "SERVICE RECORDING DÉMARRÉ" + Detail = $_.Id + } +} + +# 🔄 Affichage chronologique +$events | +Sort-Object Time | +Format-Table Time, Theme, Detail -AutoSize