Summary
The Support Diagnostics Platform (SDP) manifest file is designed to collect relevant registry data, configuration files, and event log information to help troubleshoot common Forefront Client Security support issues. This article provides details on the data collected by the Forefront Endpoint Protection Troubleshooter.
More Information
This article describes the information that may be collected from a machine when running Forefront Endpoint Protection Troubleshooter.Information CollectedAutoRuns Information
|
Description |
File Name |
|
Autoruns information |
{Computername}_Autoruns.htm{Computername}_Autoruns.xml |
Collecting ConfigMgr Log Files
|
Description |
File Name |
|
ConfigMgr Agent Logs |
{Computername}_ConfigMgrAgentLogs.CAB |
FEP Support files
|
Description |
File Name |
|
FEP2010 Support files |
MPSupportFiles.cab |
Event Log files
|
Description |
File Name |
|
Export of the System event log |
{Computername}_evt_System.csv{Computername}_evt_System.evt(x){Computername}_evt_System.txt |
|
Export of the Application event log |
{Computername}_evt _Application.csv{Computername}_evt _Application.evt(x){Computername}_evt_Application.txt |
|
Export of the Security event log |
{Computername}_evt_Security.csv{Computername}_evt_Security.evt(x){Computername}_evt_Security.txt |
FEP Information
|
Description |
File Name |
|
Program Files Tree |
{Computername}__FEP_PROGRAMFILES_TREE.log |
|
FEP DefinitionUpdate Cycle |
{Computername}_DefsAnalysis.log |
File Version Information (ChkSym)
|
Description |
File Name |
|
CheckSym Output |
{Computername}_sym_ProgramFiles_SYS.CSV{Computername}_sym_ProgramFiles_SYS.TXT{Computername}_sym_ProgramFilesx86_SYS.CSV{Computername}_sym_ProgramFilesx86_SYS.TXT{Computername}_sym_Drivers.CSV{Computername}_sym_Drivers.TXT{Computername}_sym_System32_DLL.CSV{Computername}_sym_System32_DLL.TXT{Computername}_sym_SysWOW64_DLL.CSV{Computername}_sym_SysWOW64_DLL.TXT{Computername}_sym_System32_EXE.CSV{Computername}_sym_System32_EXE.TXT{Computername}_sym_System32_SYS.CSV{Computername}_sym_System32_SYS.TXT{Computername}_sym_SysWOW64_SYS.CSV{Computername}_sym_SysWOW64_SYS.TXT{Computername}_sym_SysWOW64_EXE.CSV{Computername}_sym_SysWOW64_EXE.TXT{Computername}_sym_PrintSpool.CSV{Computername}_sym_PrintSpool.TXT{Computername}_sym_MS_iSCSI.CSV{Computername}_sym_MS_iSCSI.TXT{Computername}_sym_Process.CSV{Computername}_sym_Process.txt{Computername}_sym_RunningDrivers.CSV{Computername}_sym_RunningDrivers.TXT |
Installed Updates/Hotfixes
|
Description |
File Name |
|
Installed updates history |
{Computername}_Hotfixes.csv{Computername}_Hotfixes.txt{Computername}_Hotfixes.htm |
Resultant Set of Policy (RSOP)
|
Description |
File Name |
|
Policy information |
{Computername}_GPResult.txt{Computername}_GPResult.htm |
System Information
|
Description |
File Name |
|
System information |
{Computername}_msinfo32.nfo{Computername}_msinfo32.txt |
System State Information
|
Description |
File Name |
|
Scheduled tasks |
{Computername}_schtasks.csv{Computername}_schtasks.txt |
|
Installed services |
{Computername}_SC_Services_Output.txt |
|
Running processes |
{Computername}_TaskList.txt |
|
Environment Variables |
{Computername}_EnvironmentVariables.txt |
Virtualization Information
|
Description |
File Name |
|
Virtualization information |
{Computername}_Virtualization.txt{Computername}_Virtualization.htm |
ReferencesKB 973559 - Frequently asked questions about the Microsoft Support Diagnostic Tool (MSDT) for Windows 7http://support.microsoft.com/kb/973559
