Viewing the windows services, events, and ports
In the Tools tab, you can see all information about the Windows Services and Events of the local computer.
It is therefore divided into the following parts:
Windows services
Windows services are programs or routines that perform a specific system function to support other programs, particularly at a low (close to hardware) level.
Examples of such services are File Replication, Routing and Remote Access Services. The services part is divided into the following sections:
- Summary
- List
Summary
The Services Summary presents the summary information of the Windows Services of the local host. It displays amongst other information a graphical representation of the services by status and by start type in the form of pie charts
List
The List of Services displays all Windows Services together with the following information:
Column | Description |
---|---|
Name | This column list all Windows Services currently registered. |
Status | This field displays the respective status of the service which can be either Stopped or Running . |
Startup Type | Shows the respective start type of the service, which can be either Manual, Started, Automatic, On Demand, On Start up or Disabled. |
Binary Path | This field displays the installation path for the executable file of the service. |
User | This field shows the user of the service which normally would be LocalSystem. |
You can access more detailed information about each of the loaded agent modules by clicking its name. The browser window displays the following details:
Column | Description |
---|---|
Name | The fields list the Windows Services currently registered. |
Status | This field displays the respective status of the service which can be either Stopped or Running. |
Binary Path | This field shows the complete path of the service's installation directory. |
Start | This field shows the respective start type of the service, which can be either Manual, Started, Automatic, On Demand, On Start up or Disabled. |
User | This field shows the user of the service which normally would be LocalSystem. |
Group | This field displays to which group the currently selected service belongs, if applicable. |
Action | The contents of this field depend on the current status of the service. It provides you with the different running options of the service. If the service is currently running, you can either Stop or Pause it, if it is stopped you can Start it by clicking the respective link. |
Windows Events
An event is any significant occurrence in the system or in application that requires users to be notified. Any event not requiring immediate attention is noted in an event log. Event logging starts automatically each time a Windows device is started.
With an event log and an event viewer you can troubleshoot various hardware and software problems, because the careful monitoring of event logs can help predict and identify the sources of system problems and monitor Windows security events. The Events tab provides event information in the following sections:
Depending on the operating systems and the installed software, you can find further event logs here for IE 7, Microsoft Office, and so on.
Application Events
The Application Events pages display information about events logged by applications. For example, a database program might record a file error in the application log. The details of these events are displayed in the following pages:
- Summary
- List
Summary
The Summary page provides information on the logged application events in the form of a table and a pie chart displaying the distribution:
Information | Description |
---|---|
File Path | This entry shows the full path of the local installation of the application log. |
Maximum File Size | This file displays in MB the maximum size of the log file. If the size is reached, the oldest entry will be deleted to be able to record the newest event in the log file. |
Number of Events | This entry shows how many events were generated for the local client. |
Repartition of the Events by their Type | The graphic below this entry shows the repartition of the generated events by their type, that is, the percentage of Errors, Warnings and Information events. |
List
The Events tab displays the list of Application events of the managed device. It provides the following information:
Information | Description | |
---|---|---|
Date | The date and time the event occurred in the standard format of. | |
Severity | Error | Significant problems, such as a loss of data or loss of functions. An Error might be logged for example, if a service was not loaded during Windows startup. |
Warning | Events that are not necessarily significant but that indicate possible future problems. A Warning event might be logged, when disk space is low. | |
Information | Infrequent significant events that describe successful operations of major server service. An Information event might be logged, when a database program loads successfully or an administrator logged on. | |
AuditFailure | An audited security access attempt that fails. For example, if a user tries to access a network drive and fails, the attempt will be logged as a Failure Audit event. | |
AuditSuccess | An audited security access attempt that succeeds. For example, a user's successful attempt to log on to the system will be logged as a Success Audit event. | |
Source | The software that logged the event, which can be either an application name or a component of the system or of a larger application, such as a driver name. |
Security Events
The Security log records security events. The log can contain valid and invalid login attempts and events related to resource use, such as creating, opening or deleting files or other objects. If helps track changes to the security system and identify any possible security breaches. If, for example, you use User Manager to enable login and logoff auditing, attempts to log on to the system are recorded in the security log. For further details on the individual items and the subnodes Summary and List, refer to the Application login the previous paragraph.
System Events
The System log contains events logged by the Windows system components. Logged events would be for example the failure of a driver or other system components to load during start up. The events types logged by the system components are predetermined by Windows. For further details on the individual items and the subnodes Summary and List, refer to the Application log topic.
Open ports
This menu option provides access to the list of following types of open ports on the local client:
Open TCP Ports
This page displays the list of open TCP ports on the local device and the following information:
Information | Description |
---|---|
Local Address | The local address is the "inside" address of the local client on which the open port was found, possible values for this address are for example 0.0.0.0 and 127.0.0.1. |
Local Port | The inside number of the open port. |
Remote Address | The "outside" IP address on the local client. |
Remote Port | The "outside" address of the port, that is, the port number through which the local client can be accessed from the outside. |
State | The state of the port, possible values are Listening, Established, Close_Wait and Time_Wait. |
Open UDP Ports
This page displays the list of open UDP ports on the local device and the following information:
Information | Description |
---|---|
Logical Address | The logical address is the inside address of the local client on which the open port was found, possible values for this address are for example 0.0.0.0 and 127.0.0.1. |
Local Port | The inside number of the open port. |
Comments
Log in or register to comment.