Що кліент OfficeScan може розказати про вашу систему?
При аналізі різноманітних проблем на машинах користувачів може знадобитися певна системна інформація: вільне місце на диску, версія системи, спиисок процесів, тощо. Так от, якщо в вашій організації клієнтським антивірусним рішенням є OfficeScan, то він багато чого з цього може показати.
Побачити цю інформацію можна так:
- Правий клік на значку кліента в system tray, вибираємо OfficeScan Main
- Пункт меню Help>ActiveSupport
- Дивимося закладку System Info
CPU type: Pentium 3192 MHz
Number of CPU: 1
Page size: 4096 Bytes
Percent of memory in use: 79
Total physical memory: 796327936 Bytes, 777664 KB, 759 MB
Free physical memory: 161054720 Bytes, 157280 KB, 153 MB
Size of paging file: 1143205888 Bytes, 1116412 KB, 1090 MB
Free bytes of paging file: 495603712 Bytes, 483988 KB, 472 MB
Total virtual memory: 2147352576 Bytes, 2097024 KB, 2047 MB
Available virtual memory: 2109812736 Bytes, 2060364 KB, 2012 MB
-------------------------------------------------------------------------------
Windows version: Windows NT 5.1 Service Pack 2
IE version: Internet Explorer version 6.0.2900.2180
Wininet.dll version: 6.00.2900.2781 (xpsp_sp2_gdr.051020-1730)
User name: ChmelV
Computer name: ВАК
Windows elapsed time: 0 days, 17 hours, 43 minutes, 34 seconds
Current system time: 2006/04/05 10:57:26
-------------------------------------------------------------------------------
Swap file location: C:\pagefile.sys
Swap file size: 380928 KB, 372 MB
-------------------------------------------------------------------------------
Startup program list:
Run key: program = RusLat95, location = RusLat95.exe, File time: 2002/04/15 21:19:02, Version = Version 2.30
Current user: program = C:\Documents and Settings\chmelv\Start Menu\Programs\Startup\Microsoft Office Outlook 2003, location = C:\WINDOWS\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe, File time: 2006/04/04 10:21:12, Version = null
All users: program = C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Desktop Search, location = C:\PROGRA~1\MSNTOO~1\DS\020500~1.111\en-gb\bin\WINDOW~3.EXE, File time: 2005/09/20 19:10:04, Version = 02.05.0001.1119
-------------------------------------------------------------------------------
Running process list:
\SystemRoot\System32\smss.exe, File time: 1601/01/01 03:00:00, Version = (null)
\??\C:\WINDOWS\system32\winlogon.exe, File time: 1601/01/01 03:00:00, Version = (null)
C:\WINDOWS\system32\services.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\system32\lsass.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\system32\svchost.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\System32\svchost.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\system32\spoolsv.exe, File time: 2005/06/11 02:53:32, Version = 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
C:\WINDOWS\system32\cisvc.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe, File time: 2006/02/07 15:49:18, Version = 7.3.0.1020
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe, File time: 2006/02/07 15:48:52, Version = 7.3.0.1020
C:\Program Files\VMware\VMware Workstation\vmware-authd.exe, File time: 2005/12/15 21:42:10, Version = 5.5.1 build-19175
C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe, File time: 2005/12/15 21:28:52, Version = 5.5.1 build-19175
C:\WINDOWS\system32\vmnat.exe, File time: 2005/12/15 21:42:10, Version = 5.5.1 build-19175
C:\WINDOWS\system32\vmnetdhcp.exe, File time: 2005/12/15 21:42:10, Version = 5.5.1 build-19175
C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe, File time: 2006/02/07 16:10:30, Version = 7.3.0.1020
C:\WINDOWS\TEMP\PXAD1E.EXE, File time: 2006/02/07 16:10:04, Version = (null)
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe, File time: 2006/02/07 16:16:46, Version = 7.3.0.1020
C:\WINDOWS\system32\RusLat95.exe, File time: 2002/04/15 21:19:02, Version = Version 2.30
C:\Program Files\Ad Muncher\AdMunch.exe, File time: 2006/03/27 09:52:48, Version = (null)
C:\WINDOWS\system32\ctfmon.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\Program Files\Shareaza\Shareaza.exe, File time: 2005/10/27 18:44:40, Version = 2, 2, 1, 0
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-gb\bin\WindowsSearch.exe, File time: 2005/09/20 19:10:04, Version = 02.05.0001.1119
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-gb\bin\WindowsSearchIndexer.exe, File time: 2005/09/20 19:08:44, Version = 2.5.1.1119
C:\Program Files\Trend Micro\OfficeScan Client\pccntupd.exe, File time: 2006/02/07 16:17:00, Version = 7.3.0.1020
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE, File time: 2005/10/22 15:15:28, Version = 11.0.8000
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE, File time: 2005/07/22 18:21:40, Version = 11.0.6568
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-gb\bin\WindowsSearchFilter.exe, File time: 2005/09/20 19:08:28, Version = 2.5.1.1119
C:\WINDOWS\system32\dllhost.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\system32\cidaemon.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.0 (xpclient.010817-1148)
C:\WINDOWS\system32\cidaemon.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.0 (xpclient.010817-1148)
C:\WINDOWS\system32\svchost.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\WINDOWS\system32\WISPTIS.EXE, File time: 2002/08/21 05:13:12, Version = 1.0.2201.0 (xpsp1.020820-1800)
C:\Program Files\Crimson Editor\cedt.exe, File time: 2004/02/09 09:45:06, Version = 3.60
C:\Program Files\Internet Explorer\IEXPLORE.EXE, File time: 2004/08/04 15:00:00, Version = 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
C:\Program Files\totalcmd\TOTALCMD.EXE, File time: 2005/05/31 06:53:00, Version = 6.53
C:\WINDOWS\hh.exe, File time: 2005/05/27 02:22:01, Version = 5.2.3790.2453 (srv03_sp1_gdr.050525-1542)
C:\WINDOWS\explorer.exe, File time: 2004/08/04 15:00:00, Version = 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
C:\Program Files\Opera\Opera.exe, File time: 2005/09/08 17:48:32, Version = 7700
C:\Program Files\Adobe\Acrobat 6.0\Acrobat\Acrobat.exe, File time: 2006/03/01 15:26:34, Version = 6.0.5.2006030100
C:\Program Files\Trend Micro\OfficeScan Client\pccnt.exe, File time: 2006/02/07 16:16:12, Version = 7.3.0.1020
C:\WINDOWS\system32\mstsc.exe, File time: 2004/08/04 15:00:00, Version = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
C:\Program Files\Trend Micro\OfficeScan Client\ASupport.exe, File time: 2006/02/07 15:36:42, Version = 7.3.0.1020
-------------------------------------------------------------------------------
Drive C:
Drive type: Fixed
Volume:
File system: NTFS
Total available space: 10314432 KB, 8566 MB
Total space: 20482840 KB, 20002 MB
Drive D:
Drive type: Fixed
Volume: DATA
File system: NTFS
Total available space: 2819548 KB, 2341 MB
Total space: 57657252 KB, 56305 MB
Drive E:
Drive type: CD-ROM
Volume:
File system:
Total available space: 0 KB, 0 MB
Total space: 0 KB, 0 MB
Drive V:
Drive type: Remote
Volume:
File system:
Total available space: 0 KB, 0 MB
Total space: 0 KB, 0 MB
Drive W:
Drive type: Remote
Volume: Local Disk
File system: NTFS
Total available space: 3587728 KB, 2979 MB
Total space: 39070048 KB, 38154 MB
Drive X:
Drive type: Remote
Volume: Local Disk
File system: NTFS
Total available space: 3587728 KB, 2979 MB
Total space: 39070048 KB, 38154 MB
Drive Y:
Drive type: Remote
Volume: Local Disk
File system: NTFS
Total available space: 3587728 KB, 2979 MB
Total space: 39070048 KB, 38154 MB
Drive Z:
Drive type: Remote
Volume: OfficeApplications
File system: NTFS
Total available space: 6783864 KB, 5634 MB
Total space: 17767856 KB, 17351 MB
-------------------------------------------------------------------------------
Config.sys:
-------------------------------------------------------------------------------
Autoexec.bat:
-------------------------------------------------------------------------------
Current running services
-------------------------------------------------------------------------------
Current running drivers
-------------------------------------------------------------------------------
IP list
100.152.64.33
193.158.72.1
193.158.181.1
-------------------------------------------------------------------------------
Viktor V. Chmel, 4/05/2006 11:15:00 AM.
