Solved

Collect file properties from running processes and append to variable for export to CSV

Posted on 2016-08-25
3
43 Views
Last Modified: 2016-08-25
Hi,

I'm trying to export particular meta data from exe files running processes. Ideally everything listed in the VersionInfo tabbed in section., plus the dates. I've been finding PowerShell pretty logical and straight forward so far, but this has me stumped.

I've been trying a whole host of different ways to do this,. And it works if I use out-file, but I'd like the data to be exported as a csv.

I guess I have 2 problems, 1 the Select-Object doesn't seem to access the VersionInfo sub-properties and when ever I try to export it to CSV it fails.

Is there a way of appending objects together, so that they can be handled correctly by the export-csv? Or selecting the data and converting to csv, before appending?

Thank you

$arr = Get-WmiObject Win32_Process -Computer $MachineName  | select ExecutablePath -ExpandProperty ExecutablePath
$data = $null

foreach ($File in $arr)
{
    if (-Not ([string]::IsNullOrWhitespace($file)))
    {
      $Data += Get-ItemProperty -Path $File | Format-list -Property * -Force
      #$Data += Get-ItemProperty -Path $File | Select-Object VersionInfo | ConvertTo-Csv
    }

}

$Data | export-csv $FullPath

Open in new window


This kind of data, but in a single CSV for all files.
VersionInfo       : File:             C:\Windows\system32\taskhostex.exe
                    InternalName:     taskhostex.exe
                    OriginalFilename: taskhostex.exe.mui
                    FileVersion:      6.3.9600.16384 (winblue_rtm.130821-1623)
                    FileDescription:  Host Process for Windows Tasks
                    Product:          Microsoft® Windows® Operating System
                    ProductVersion:   6.3.9600.16384
                    Debug:            False
                    Patched:          False
                    PreRelease:       False
                    PrivateBuild:     False
                    SpecialBuild:     False
                    Language:         English (United States)
CreationTime      : 22/11/2014 12:44:54 PM
CreationTimeUtc   : 22/11/2014 1:44:54 AM
LastAccessTime    : 25/08/2016 1:51:39 PM
LastAccessTimeUtc : 25/08/2016 3:51:39 AM
LastWriteTime     : 22/11/2014 12:44:54 PM
LastWriteTimeUtc  : 22/11/2014 1:44:54 AM
0
Comment
Question by:Dave Scott
  • 2
3 Comments
 
LVL 83

Accepted Solution

by:
oBdA earned 500 total points
ID: 41769910
The VersionInfo field has no defined values. For exes, you can usually rely on ProductVersion and FileVersion, but even those are not set for every file. Inother words: you have to pick a list of properties that are likely to be there if you want the resukts to be exported to a common csv.
$ComputerName = $ENV:ComputerName
Get-WmiObject Win32_Process -Computer $ComputerName |
	Select-Object -ExpandProperty ExecutablePath |
	Get-Item |
	Select-Object -Property `
		@{n='ComputerName'; e={$ComputerName}},
		Name,
		DirectoryName,
		@{n='FileVersion'; e={$_.VersionInfo.FileVersion}},
		@{n='ProductVersion'; e={$_.VersionInfo.ProductVersion}},
		@{n='OriginalFilename'; e={$_.VersionInfo.OriginalFilename}},
		@{n='Language'; e={$_.VersionInfo.Language}},
		CreationTime,
		LastWriteTime |
	Export-Csv -Path C:\Temp\ProcessList.csv -NoTypeInformation

Open in new window

1
 

Author Comment

by:Dave Scott
ID: 41769967
Awesome thank you.

I would never have gotten that, I didn't even know that   `    was a character in use in powershell or any different from '
0
 
LVL 83

Expert Comment

by:oBdA
ID: 41769975
The backtick is Powershell's Escape character, and it can be used for line continuation as well.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Mailbox count with mailbox size 15 49
Shrink automation 2 35
list all GPO's per container/OU 3 68
problem with default throttling policy 2 19
This script checks a path to see if a folder exists. If the folder does exist you will get output "The folder has previously been created. No action taken" If not it will create the folder. Then adds one user modify permission to the folder. It …
Synchronize a new Active Directory domain with an existing Office 365 tenant
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now