Search containing two wildcards across multiple PCs

Hi,

I'd like to perform the following search query on every running PC in our windows domain and like to have the results aggregated in one file: c:\Users\*\AppData\Local\Temp\*.exe
How can I achieve this using standard tools?

Regards,
Andreas
braunmillerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ThinkPaperIT ConsultantCommented:
if you plan on using "standard tools" without using outside products, the only way I can think of doing this is using a script. Note that either way, this will be very time intensive as it will do a search for ALL machines that you specify.

You can use something of a VBS or powershell script to do the job:

http://www.activexperts.com/activmonitor/windowsmanagement/scripts/storage/filesystems/#SFUWQ.htm

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Brent ChallisPrincipal: ITCommented:
Can you provide an example of your search query to inicate what information you are after from the computers?
qz8dswCommented:
braunmiller,
ThinkPaper was correct, you can do this via VBS or windows scripting and his link gives good information on checking files.
But you will also beforehand need to enumerate the domain computers, check if they are up and if they are then run the check for exe's.

Checking all machines on a domain makes it difficult, better to have a part of the login script call the script that itterates through looking for c:\Users\*\AppData\Local\Temp\*.exe
Login scripts for the domain should run with admin access and hence have access to all profiles.
Are you just after the script with this question?
braunmillerAuthor Commented:
Thank you all for the answers. We came across a trojan (troj_ransom.vtg) that seems to be inactive but we would like to know where it has spread it's component files. We know some file names and locations in c:\Users\<username>\AppData\Local\ and would have liked to know what clients still contain these files.
We will try the combined solution of using a custom VBS script being executed upon a user's domain login so we can get at least the files in this particular user's c:\Users\... hierarchy.

Best Regards,
Andreas
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows OS

From novice to tech pro — start learning today.