******************************************************************************
*             MiscInf.Bat - (c) 07/11/2010 By Chaslang                       *
*         This version supports Win2K, XP, Vista and Win 7                   *
*    NOTE: WMIC calls are not supported by all versions of Windows           *
*  This batch file uses WMI to collect various system information that could *
*  be helpful especially in instances where other scans fail to run.         *
*    07/11/2010 Version 0.01 - First version                                 *
*    07/14/2010 Version 0.02 - Use full path to wmic.exe, sort process list  *
*                            - also get partition info                       *
******************************************************************************

Running Process List Seen From WMI                              
==============================================================  
Ati2evxx.exe               Ati2evxx.exe -Client                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   1544       
Ati2evxx.exe               C:\Windows\system32\Ati2evxx.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       1220       
audiodg.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       1380       
Caption                    CommandLine                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            ProcessId  
capuserv.exe               "C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                         3396       
CCC.exe                    "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0                                                                                                                                                                                                                                                                                                                                                                                                                                                      2104       
CLMSServer.exe             "C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                   2740       
cmd.exe                    cmd /c ""C:\MGtools\GetLogs.Bat" "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                     4300       
conime.exe                 C:\Windows\system32\conime.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                         608        
csrss.exe                  C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16                                                                                                                                                                                                                                          616        
csrss.exe                  C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16                                                                                                                                                                                                                                          684        
dwm.exe                    "C:\Windows\system32\Dwm.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          1352       
eDSLoader.exe              "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                        2272       
eDSService.exe             "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                       2360       
eRecoveryService.exe       "C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                         3272       
explorer.exe               C:\Windows\Explorer.EXE                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                524        
GoogleToolbarNotifier.exe  "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                              2448       
GoogleToolbarUser_32.exe   "C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                      3568       
iexplore.exe               "C:\Program Files\Internet Explorer\iexplore.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                      3496       
jusched.exe                "C:\Program Files\Common Files\Java\Java Update\jusched.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                           2432       
lsass.exe                  C:\Windows\system32\lsass.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          748        
lsm.exe                    C:\Windows\system32\lsm.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            756        
LSSrvc.exe                 "C:\Program Files\Common Files\LightScribe\LSSrvc.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                 2252       
mDNSResponder.exe          "C:\Program Files\Bonjour\mDNSResponder.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                           1096       
MemCheck.exe               "C:\Acer\Empowering Technology\ePerformance\MemCheck.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                              3100       
MGtools.exe                "C:\MGtools.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       2924       
MOM.exe                    "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM"                                                                                                                                                                                                                                                                                                                                                                                                                                                            2732       
MSASCui.exe                "C:\Program Files\Windows Defender\MSASCui.exe" -hide                                                                                                                                                                                                                                                                                                                                                                                                                                                                  2224       
msnmsgr.exe                "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background                                                                                                                                                                                                                                                                                                                                                                                                                                                      2648       
notepad.exe                "C:\Windows\system32\NOTEPAD.EXE" C:\Users\ALEX\Desktop\antimalware insturies.txt                                                                                                                                                                                                                                                                                                                                                                                                                                      2520       
ntvdm.exe                  "C:\Windows\system32\ntvdm.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        4640       
nvraidservice.exe          "C:\Windows\System32\nvraidservice.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                                2344       
PGPserv.exe                C:\Windows\system32\PGPserv.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        2660       
PMB.exe                    "C:\Program Files\Pando Networks\Media Booster\PMB.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                3220       
RichVideo.exe              "C:\Program Files\CyberLink\Shared Files\RichVideo.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                2208       
RtHDVCpl.exe               "C:\Windows\RtHDVCpl.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              2256       
SearchIndexer.exe          C:\Windows\system32\SearchIndexer.exe /Embedding                                                                                                                                                                                                                                                                                                                                                                                                                                                                       3048       
services.exe               C:\Windows\system32\services.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       720        
SLsvc.exe                  C:\Windows\system32\SLsvc.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          1460       
smss.exe                   \SystemRoot\System32\smss.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                          548        
spoolsv.exe                C:\Windows\System32\spoolsv.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        1840       
svchost.exe                C:\Windows\system32\svchost.exe -k DcomLaunch                                                                                                                                                                                                                                                                                                                                                                                                                                                                          948        
svchost.exe                C:\Windows\system32\svchost.exe -k imgsvc                                                                                                                                                                                                                                                                                                                                                                                                                                                                              2412       
svchost.exe                C:\Windows\system32\svchost.exe -k LocalService                                                                                                                                                                                                                                                                                                                                                                                                                                                                        1504       
svchost.exe                C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted                                                                                                                                                                                                                                                                                                                                                                                                                                                       1268       
svchost.exe                C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork                                                                                                                                                                                                                                                                                                                                                                                                                                                               1916       
svchost.exe                C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted                                                                                                                                                                                                                                                                                                                                                                                                                                                        1296       
svchost.exe                C:\Windows\system32\svchost.exe -k netsvcs                                                                                                                                                                                                                                                                                                                                                                                                                                                                             1316       
svchost.exe                C:\Windows\system32\svchost.exe -k NetworkService                                                                                                                                                                                                                                                                                                                                                                                                                                                                      1140       
svchost.exe                C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted                                                                                                                                                                                                                                                                                                                                                                                                                                                     1752       
svchost.exe                C:\Windows\system32\svchost.exe -k rpcss                                                                                                                                                                                                                                                                                                                                                                                                                                                                               1008       
svchost.exe                C:\Windows\System32\svchost.exe -k secsvcs                                                                                                                                                                                                                                                                                                                                                                                                                                                                             1072       
svchost.exe                C:\Windows\System32\svchost.exe -k WerSvcGroup                                                                                                                                                                                                                                                                                                                                                                                                                                                                         5900       
Switcher.exe               "C:\Program Files\Switcher\Switcher.exe" /quiet                                                                                                                                                                                                                                                                                                                                                                                                                                                                        3228       
SysMonitor.exe             "C:\Acer\Empowering Technology\SysMonitor.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                         2264       
System                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            4          
System Idle Process                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               0          
taskeng.exe                taskeng.exe {76CB7A11-C166-4152-B919-1B606A7E3B33}                                                                                                                                                                                                                                                                                                                                                                                                                                                                     1924       
taskeng.exe                taskeng.exe {E01EBEC8-0786-436E-95B4-FEA53D89DE56}                                                                                                                                                                                                                                                                                                                                                                                                                                                                     1120       
TeamViewer_Service.exe     "C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe" -service                                                                                                                                                                                                                                                                                                                                                                                                                                                 2964       
TSVNCache.exe              "C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                       2320       
unsecapp.exe               C:\Windows\system32\wbem\unsecapp.exe -Embedding                                                                                                                                                                                                                                                                                                                                                                                                                                                                       4236       
wininit.exe                wininit.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            676        
winlogon.exe               winlogon.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           844        
WMIC.exe                   C:\Windows\SYSTEM32\WBEM\wmic.exe  PROCESS get Caption,Commandline,Processid                                                                                                                                                                                                                                                                                                                                                                                                                                           4852       
WmiPrvSE.exe               C:\Windows\system32\wbem\wmiprvse.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  4260       
WmiPrvSE.exe               C:\Windows\system32\wbem\wmiprvse.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  4268       
wmpnetwk.exe               "C:\Program Files\Windows Media Player\wmpnetwk.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                   3992       
wmpnscfg.exe               "C:\Program Files\Windows Media Player\wmpnscfg.exe"                                                                                                                                                                                                                                                                                                                                                                                                                                                                   3236       
WUDFHost.exe               "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-827e1e8e-e97e-4c7a-ab92-862a479b6d57 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-47e179c1-17f2-4957-a27b-f1d902cad244 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0f810fc2-a799-422a-9a13-29d253678c70 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:57b4dee1-0db2-4025-825f-3ec13caeaef5  3304       


Service List See From WMI                                       
==============================================================  
Name                                Started  Status  
Acer HomeMedia Connect Service      TRUE     OK      
AcerMemUsageCheckService            TRUE     OK      
AeLookupSvc                         TRUE     OK      
ALG                                 FALSE    OK      
Appinfo                             FALSE    OK      
Ati External Event Utility          TRUE     OK      
AudioEndpointBuilder                TRUE     OK      
Audiosrv                            TRUE     OK      
BFE                                 TRUE     OK      
BITS                                TRUE     OK      
Bonjour Service                     TRUE     OK      
Browser                             TRUE     OK      
CertPropSvc                         FALSE    OK      
clr_optimization_v2.0.50727_32      FALSE    OK      
COMSysApp                           FALSE    OK      
CryptSvc                            TRUE     OK      
DcomLaunch                          TRUE     OK      
DFSR                                FALSE    OK      
Dhcp                                TRUE     OK      
Dnscache                            TRUE     OK      
dot3svc                             FALSE    OK      
DPS                                 TRUE     OK      
EapHost                             FALSE    OK      
eDataSecurity Service               TRUE     OK      
ehRecvr                             FALSE    OK      
ehSched                             FALSE    OK      
ehstart                             FALSE    OK      
EMDMgmt                             TRUE     OK      
eRecoveryService                    TRUE     OK      
eSettingsService                    TRUE     OK      
Eventlog                            TRUE     OK      
EventSystem                         TRUE     OK      
fdPHost                             TRUE     OK      
FDResPub                            TRUE     OK      
FontCache3.0.0.0                    FALSE    OK      
GoogleDesktopManager-051210-111108  FALSE    OK      
gpsvc                               TRUE     OK      
gupdate                             FALSE    OK      
gusvc                               FALSE    OK      
hidserv                             TRUE     OK      
hkmsvc                              FALSE    OK      
IDriverT                            FALSE    OK      
idsvc                               FALSE    OK      
IKEEXT                              TRUE     OK      
IPBusEnum                           FALSE    OK      
iphlpsvc                            TRUE     OK      
KeyIso                              FALSE    OK      
KtmRm                               TRUE     OK      
LanmanServer                        TRUE     OK      
LanmanWorkstation                   TRUE     OK      
LightScribeService                  TRUE     OK      
lltdsvc                             FALSE    OK      
lmhosts                             TRUE     OK      
Mcx2Svc                             FALSE    OK      
MMCSS                               TRUE     OK      
MpsSvc                              TRUE     OK      
MSDTC                               FALSE    OK      
MSiSCSI                             FALSE    OK      
msiserver                           FALSE    OK      
napagent                            FALSE    OK      
Netlogon                            FALSE    OK      
Netman                              TRUE     OK      
netprofm                            TRUE     OK      
NetTcpPortSharing                   FALSE    OK      
NlaSvc                              TRUE     OK      
npggsvc                             FALSE    OK      
nsi                                 TRUE     OK      
ose                                 FALSE    OK      
p2pimsvc                            FALSE    OK      
p2psvc                              FALSE    OK      
PcaSvc                              TRUE     OK      
PGPserv                             TRUE     OK      
pla                                 FALSE    OK      
PlugPlay                            TRUE     OK      
PNRPAutoReg                         FALSE    OK      
PNRPsvc                             FALSE    OK      
PolicyAgent                         TRUE     OK      
ProfSvc                             TRUE     OK      
ProtectedStorage                    FALSE    OK      
QWAVE                               FALSE    OK      
RasAuto                             FALSE    OK      
RasMan                              TRUE     OK      
RemoteAccess                        FALSE    OK      
RemoteRegistry                      FALSE    OK      
RichVideo                           TRUE     OK      
RpcLocator                          FALSE    OK      
RpcSs                               TRUE     OK      
SamSs                               TRUE     OK      
SCardSvr                            FALSE    OK      
Schedule                            TRUE     OK      
SCPolicySvc                         FALSE    OK      
SDRSVC                              FALSE    OK      
seclogon                            TRUE     OK      
SENS                                TRUE     OK      
SessionEnv                          FALSE    OK      
SharedAccess                        FALSE    OK      
ShellHWDetection                    TRUE     OK      
slsvc                               TRUE     OK      
SLUINotify                          FALSE    OK      
SNMPTRAP                            FALSE    OK      
Spooler                             TRUE     OK      
SSDPSRV                             TRUE     OK      
SstpSvc                             TRUE     OK      
stisvc                              TRUE     OK      
swprv                               FALSE    OK      
SysMain                             TRUE     OK      
TabletInputService                  TRUE     OK      
TapiSrv                             TRUE     OK      
TBS                                 FALSE    OK      
TeamViewer5                         TRUE     OK      
TermService                         TRUE     OK      
Themes                              TRUE     OK      
THREADORDER                         FALSE    OK      
TrkWks                              TRUE     OK      
TrustedInstaller                    FALSE    OK      
UI0Detect                           FALSE    OK      
upnphost                            TRUE     OK      
UxSms                               TRUE     OK      
vds                                 FALSE    OK      
VSS                                 FALSE    OK      
W32Time                             TRUE     OK      
wcncsvc                             FALSE    OK      
WcsPlugInService                    FALSE    OK      
WdiServiceHost                      FALSE    OK      
WdiSystemHost                       TRUE     OK      
WebClient                           TRUE     OK      
Wecsvc                              FALSE    OK      
wercplsupport                       FALSE    OK      
WerSvc                              TRUE     OK      
WinDefend                           TRUE     OK      
WinHttpAutoProxySvc                 TRUE     OK      
Winmgmt                             TRUE     OK      
WinRM                               FALSE    OK      
Wlansvc                             FALSE    OK      
wmiApSrv                            FALSE    OK      
WMPNetworkSvc                       TRUE     OK      
WPCSvc                              FALSE    OK      
WPDBusEnum                          TRUE     OK      
wscsvc                              TRUE     OK      
WSearch                             TRUE     OK      
wuauserv                            TRUE     OK      
wudfsvc                             TRUE     OK      
zcjpdpwr                            FALSE    OK      


Get Partition Info From WMI in K-bytes                          
==============================================================  



Get maxclockspeed From WMI in MHz                              
=============================================================  
M a x C l o c k S p e e d     
 
 2 3 3 6                       
 
 

Get TotalPhysicalMemory From WMI in bytes                       
==============================================================  
T o t a l P h y s i c a l M e m o r y     
 
 3 2 1 9 4 6 4 1 9 2                       
 
 

Get FreePhysicalMemory From WMI in K-bytes                      
==============================================================  
F r e e P h y s i c a l M e m o r y     
 
 1 8 2 4 7 7 6                           
 
 

Get FreeVirtualMemory From WMI in K-bytes                       
==============================================================  
F r e e V i r t u a l M e m o r y     
 
 5 1 3 7 2 8 0                         
 
 

Get TotalVirtualMemorySize From WMI in K-bytes                  
==============================================================  
T o t a l V i r t u a l M e m o r y S i z e     
 
 6 5 1 7 6 0 0                                   
 
 

Get TotalVisibleMemorySize From WMI in K-bytes                  
==============================================================  
T o t a l V i s i b l e M e m o r y S i z e     
 
 3 1 4 4 0 0 8                                   
 
 

