Facing Issue In Analysis ( IEM )

Content Authoring
1

Hi friends,
I’m facing an issue in iem analysis.

In IEM, we executed the below command in the action script and stored the output of the command in the log file.

ActionScript:

// Enter your action script here
dos wmic service get name,status > c:\RBA\log\service-log.log 2>&1

We tried to read that log. once the analysis read the log. we got the below output in the analysis tab.

Output:

GetServiceStatusData

ServiceStatus ÿþN�a�m�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �S�t�a�t�u�s� � � 
 � 
 �A�e�L�o�o�k�u�p�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�E�S�C�l�i�e�n�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�E�S�G�a�t�h�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�E�S�P�l�u�g�i�n�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�E�S�R�o�o�t�S�e�r�v�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�E�S�W�e�b�R�e�p�o�r�t�s�S�e�r�v�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�F�E� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�I�T�S� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �B�r�o�w�s�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �C�A�I�T�P�A�M�A�g�e�n�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �C�e�r�t�P�r�o�p�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �c�l�r�_�o�p�t�i�m�i�z�a�t�i�o�n�_�v�2�.�0�.�5�0�7�2�7�_�3�2� � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �c�l�r�_�o�p�t�i�m�i�z�a�t�i�o�n�_�v�2�.�0�.�5�0�7�2�7�_�6�4� � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
  �p�r�g�n�D�i�s�c�A�g�e�n�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �P�r�o�f�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �P�r�o�t�e�c�t�e�d�S�t�o�r�a�g�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�a�s�A�u�t�o� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�a�s�M�a�n� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�e�m�o�t�e�A�c�c�e�s�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�e�m�o�t�e�R�e�g�i�s�t�r�y� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�p�c�E�p�t�M�a�p�p�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�p�c�L�o�c�a�t�o�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�p�c�S�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�S�o�P�P�r�o�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �R�T�M�A�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �s�a�c�s�v�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�a�m�S�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�C�a�r�d�S�v�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�c�h�e�d�u�l�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�c�o�p�e�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�C�P�o�l�i�c�y�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �s�e�c�l�o�g�o�n� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�E�N�S� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�e�p�M�a�s�t�e�r�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�e�s�s�i�o�n�E�n�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�h�a�r�e�d�A�c�c�e�s�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�h�e�l�l�H�W�D�e�t�e�c�t�i�o�n� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�m�c�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�N�A�C� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�N�M�P� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�N�M�P�T�R�A�P� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�p�o�o�l�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �s�p�p�s�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �s�p�p�u�i�n�o�t�i�f�y� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�Q�L�A�g�e�n�t�$�S�Q�L�B�I�S�C�S�A�1�D� � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�Q�L�B�r�o�w�s�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�Q�L�W�r�i�t�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�S�D�P�S�R�V� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �S�s�t�p�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �s�w�p�r�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�a�p�i�S�r�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�B�S� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �t�e�a�g�e�n�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�e�r�m�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �t�e�s�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�H�R�E�A�D�O�R�D�E�R� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �t�l�m�a�g�e�n�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�r�k�W�k�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�r�u�s�t�e�d�I�n�s�t�a�l�l�e�r� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �T�T�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �U�I�0�D�e�t�e�c�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �U�m�R�d�p�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �u�p�n�p�h�o�s�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �U�x�S�m�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �V�a�u�l�t�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �v�d�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �V�M�T�o�o�l�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �v�m�v�s�s� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �V�R�T�S�p�b�x� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �V�S�S� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�3�2�T�i�m�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�A�S� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�c�s�P�l�u�g�I�n�S�e�r�v�i�c�e� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�d�i�S�e�r�v�i�c�e�H�o�s�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�d�i�S�y�s�t�e�m�H�o�s�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�e�c�s�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �w�e�r�c�p�l�s�u�p�p�o�r�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�e�r�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�i�n�H�t�t�p�A�u�t�o�P�r�o�x�y�S�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�i�n�m�g�m�t� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�i�n�R�M� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �w�m�i�A�p�S�r�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �W�P�D�B�u�s�E�n�u�m� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �w�u�a�u�s�e�r�v� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �w�u�d�f�s�v�c� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �O�K� � � � � � � 
 � 
 �

we tried to execute the bat file in the action script and retrieved the output of the bat using the analysis.
we got the output in the same format.

How to parse this output in the utf-8 format.

Thanks!
Arunkumar Perumal

2

What is the result you are trying to achieve?

It looks like you are trying to get the name and status (running, stopped, etc…) of windows services.

If that is the case, then you do not need to use WMIC to do this. There are built in relevance inspectors that will return info on services directly without the need to run WMIC first. Also there are WMI inspectors that could also be used to get any info from WMI, but the service specific inspectors are much quicker.

If you put the following in the fixlet debugger, you will see a dump of service info:

services

To get the results you are looking for, do the following:

(service name of it, state of it) of services
3 Likes
3

Thank you so much :ok_hand: