Description
A technical report containing all the information retrieved during an audit. Amongst others, the report contains information on, vulnerabilities, open ports, hardware and software. 14-06-2012 14:42:58 Vanser
All TESTCLIENT-PC;TESTSERVER
Reviewed by __________________
Signature ____________
VL OS SP
High
Vulns.
Medium Low Potential
Missing Patches
Miss. SP
Malware
Firewall Vulns.
2 Gol d
1 0
6 1
9 8
0 0
1 1
TESTCLIENT-PC
Scan Errors
UDP ports scanning UDP scan is not reliable on this machine 14-06-2012 14:09:29
Vulnerability Assessment
Missing Service Packs
Windows 7 Service Pack 1 (KB976932) Product Windows Timestamp 2011-05-31
Vulnerabilities Medium
Category: Software OVAL:12566: Microsoft Windows Human Interface Device (HID) driver is prone to security bypass vulnerability. Timestamp 2011-02-25T14:33:46
Low
Category: Registry AutoShareServer Product Timestamp AutoShareWKS Product Timestamp Cached Logon Credentials Product Timestamp Shutdown without logon Timestamp Category: Services Service running: HTTP Timestamp Service running: SMTP Timestamp Service running: POP3 Timestamp
Full Audit
Service running: IMAP4 Timestamp 2007-01-31-00:00
Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2656372)
Page: 3 of 96
Full Audit
Security Update for Windows 7 (KB2644615)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2644615 MS12-001 Windows 2012-01-10 N/A Installed Patches 2507618 MS11-032 Windows 2011-04-12 N/A Installed Patches 2509553 MS11-030 Windows 2011-04-12 N/A Installed Patches 2425227 MS11-013 Windows 2011-02-08 N/A Installed Patches 2620704 MS11-085 Windows 2011-11-08 N/A Installed Patches 982132 MS10-076 Windows 2010-12-14 N/A Installed Patches 2423089 MS10-096 Windows 2010-12-14 N/A Installed Patches 2544893 MS11-037 Windows 2011-06-14
Page: 4 of 96
Full Audit
Security Update for Windows 7 (KB2510531)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2510531 MS11-031 Windows 2011-04-12 N/A Installed Patches 2658846 MS12-034 Windows 2012-05-08 N/A Installed Patches 2560656 MS11-059 Windows 2011-08-09 N/A Installed Patches 2685939 MS12-036 Windows 2012-06-12 N/A Installed Patches 2579686 MS11-076 Windows 2011-10-11 N/A Installed Patches 2564958 MS11-075 Windows 2011-10-11 N/A Installed Patches 2532531 MS11-053 Windows 2011-07-12 N/A Installed Patches 2305420 MS10-092 Windows 2010-12-14
Page: 5 of 96
Full Audit
Security Update for Windows 7 (KB974571)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 974571 MS09-056 Windows 2009-10-13 N/A Installed Patches 982799 MS10-059 Windows 2010-08-10 N/A Installed Patches 978542 MS10-030 Windows 2010-05-11 N/A Installed Patches 2079403 MS10-051 Windows 2010-08-10 N/A Installed Patches 979687 MS10-083 Windows 2010-12-14 N/A Installed Patches 2536276 MS11-043 Windows 2011-08-09 N/A Installed Patches 982665 MS10-055 Windows 2010-08-10 N/A Installed Patches 2688338 MS12-032 Windows 2012-05-08
Page: 6 of 96
Full Audit
Security Update for Windows 7 (KB2419640)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2419640 MS11-002 Windows 2011-01-11 N/A Installed Patches 2535512 MS11-042 Windows 2011-06-14 N/A Installed Patches 2659262 MS12-034 Windows 2012-05-08 N/A Installed Patches 2656410 MS12-034 Windows 2012-05-08 N/A Installed Patches 979482 MS10-033 Windows 2010-06-08 N/A Installed Patches 2296011 MS10-081 Windows 2010-12-14 N/A Installed Patches 2387149 MS10-074 Windows 2010-12-14 N/A Installed Patches 2567680 MS11-063 Windows 2011-08-09
Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2656410)
Page: 7 of 96
Full Audit
Security Update for Windows 7 (KB2491683)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2491683 MS11-024 Windows 2011-04-12 N/A Installed Patches 2584146 MS12-005 Windows 2012-01-10 N/A Installed Patches 2393802 MS11-011 Windows 2011-02-28 N/A Installed Patches 2676562 MS12-034 Windows 2012-05-08 N/A Installed Patches 2709162 MS12-041 Windows 2012-06-12 N/A Installed Patches 972270 MS10-001 Windows 2010-01-12 N/A Installed Patches 2667402 MS12-020 Windows 2012-06-12 N/A Installed Patches 977165 MS10-015 Windows 2010-03-02
Page: 8 of 96
Full Audit
Security Update for Windows 7 (KB2281679)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2281679 MS10-075 Windows 2010-12-14 N/A Installed Patches 2620712 MS11-097 Windows 2011-12-13 N/A Installed Patches 2619339 MS11-092 Windows 2011-12-13 N/A Installed Patches 2656355 MS11-100 Windows 2011-12-29 N/A Installed Patches 975560 MS10-013 Windows 2010-02-09 N/A Installed Patches 2483614 MS11-017 Windows 2011-03-08 N/A Installed Patches 2286198 MS10-046 Windows 2010-08-02 N/A Installed Patches 2570947 MS11-071 Windows 2011-09-13
Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2656355)
Page: 9 of 96
Full Audit
Security Update for Windows 7 (KB2631813)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2631813 MS12-004 Windows 2012-01-10 N/A Installed Patches 2479943 MS11-015 Windows 2011-03-08 N/A Installed Patches 2653956 MS12-024 Windows 2012-04-10 N/A Installed Patches 2621440 MS12-020 Windows 2012-03-13 N/A Installed Patches 2633171 MS11-098 Windows 2011-12-13 N/A Installed Patches 2654428 MS12-013 Windows 2012-02-14 N/A Installed Patches 2378111 MS10-082 Windows 2010-10-12 N/A Installed Patches 2660649 MS12-034 Windows 2012-05-08
Page: 10 of 96
Full Audit
Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2686830)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2686830 MS12-038 Windows 2012-06-12 N/A Installed Patches 2585542 MS12-006 Windows 2012-01-10 N/A Installed Patches 2442962 MS10-100 Windows 2010-12-14 N/A Installed Patches 2690533 MS12-033 Windows 2012-05-08 N/A Installed Patches 2511455 MS11-019 Windows 2011-04-12 N/A Installed Patches 979309 MS10-019 Windows 2010-04-13 N/A Installed Patches 2604114 MS12-035 Windows 2012-05-08 N/A Installed Patches 2506212 MS11-024 Windows 2011-04-12
Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 x86 (KB2604114)
Page: 11 of 96
Full Audit
Microsoft .NET Framework 3.5 SP1 Security Update for Windows 7 x86 (KB979916)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 979916 MS10-041 Windows 2010-06-08 N/A Installed Patches 979688 MS10-083 Windows 2010-10-12 High Installed Patches 2633952 N/A Windows 2011-12-29 High Installed Patches 974431 N/A Windows 2009-10-13 High Installed Patches 2718704 N/A Windows 2012-06-04 High Installed Patches 2695962 N/A Windows 2012-05-08 High Installed Patches 982861 N/A Windows 2011-06-21 High Installed Patches 977074 N/A Windows 2010-01-26
Page: 12 of 96
Full Audit
Update for Windows 7 (KB980408)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp High Installed Patches 980408 N/A Windows 2010-04-27 High Installed Patches 2552343 N/A Windows 2011-06-28 High Installed Patches 890830 N/A Windows 2012-06-12
Ports
25 Port Type Description Trojan 80 Port Type Description Trojan 110 Port Type Description Trojan 119 Port Type Description Trojan 135 Port Type Description Trojan 139 Port Type Description Trojan 143 Port Type Description Trojan 445 Port Type Description Trojan
TCP Simple Mail Transfer Protocol (SMTP) No TCP Hypertext Transfer Protocol (HTTP) No TCP Post Office Protocol 3 (POP3) No TCP Network News Transfer Protocol (NNTP) No TCP DCE endpoint resolution No TCP NetBIOS NetBIOS Session Service No TCP Internet Message Access Protocol (IMAP) No TCP Microsoft-DS Active Directory, Windows shares No
Page: 13 of 96
445
TCP Microsoft-DS Active Directory, Windows shares No TCP NNTP protocol over TLS/SSL (NNTPS) No TCP e-mail message submission (SMTP) No TCP Internet Message Access Protocol over SSL (IMAPS) No TCP Post Office Protocol 3 over TLS/SSL (POP3S) No TCP Proxy/Socks, If this service is not installed beware could be trojan: RingZero, Reverse WWW Backdoor No TCP HTTP Alternate No TCP HTTP alternate (http_alt) No TCP NewsEDGE server No
Hardware
Network Devices
Physical
Conexin de red Intel(R) PRO/1000 MT Description Conexin de red Intel(R) PRO/1000 MT Vendor Intel MAC Address 00:0C:29:6E:92:75 IP Address(es) 192.168.0.202, fe80::58aa:7040:a77a:71d0 DHCP set False Status Plugged in Gateway(s) 192.168.0.1 Blacklisted False Netmask address 255.255.255.0, 64
Virtual
Adaptador ISATAP de Microsoft Description Adaptador ISATAP de Microsoft Vendor Microsoft DHCP set False Status Plugged in Blacklisted False
Page: 14 of 96
Full Audit
Adaptador ISATAP de Microsoft Description Adaptador ISATAP de Microsoft Vendor Microsoft DHCP set False Status Plugged in Blacklisted False Adaptador ISATAP de Microsoft #2 Description Adaptador ISATAP de Microsoft Vendor Microsoft DHCP set False Status Plugged in Blacklisted False Teredo Tunneling Pseudo-Interface Description Adaptador de tunelizacin Teredo de Microsoft Vendor Microsoft DHCP set False Status Plugged in Blacklisted False WAN Miniport (IKEv2) Description Vendor DHCP set Blacklisted WAN Miniport (L2TP) Description Vendor DHCP set Blacklisted
WAN Miniport (Network Monitor) Description WAN Miniport (Network Monitor) Vendor Microsoft DHCP set False Blacklisted False WAN Miniport (IP) Description Vendor DHCP set Status Blacklisted WAN Miniport (IPv6) Description Vendor DHCP set Blacklisted WAN Miniport (PPPOE) Description Vendor DHCP set Blacklisted
Page: 15 of 96
WAN Miniport (PPPOE) Description Full Audit Vendor DHCP set Blacklisted WAN Miniport (PPTP) Description Vendor DHCP set Blacklisted WAN Miniport (SSTP) Description Vendor DHCP set Blacklisted
Software Enumerated
RAS Async Adapter Description DHCP set Status Blacklisted
Total Space
49,90 GB N/A N/A
Free space
38,56 GB N/A N/A
Processors
Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz Speed 2394 Vendor GenuineIntel
Motherboard
Name Manufacturer Version BIOS name BIOS Release Date BIOS serial number BIOS Vendor BIOS Version 440BX Desktop Reference Platform Intel Corporation None PhoenixBIOS 4.0 Release 6.0 19-03-2009 VMware-56 4d ef 21 a4 bf 8f 9b-09 8b cf 31 ca 6e 92 75 Phoenix Technologies LTD None
Memory Details
Physical memory Free Physical Memory Virtual Memory Free Virtual Memory 1024 619 2048 1561
Page: 16 of 96
Physical memory
Storage Details
Unidad de disquete Description Manufacturer Partitions count Size
NECVMWar VMware IDE CDR00 ATA Device Description Unidad de CD-ROMUNKNOWN Interface Type SCSI Manufacturer (Unidades de CD-ROM estndar) Partitions count 0 Size 0 VMware Virtual disk SCSI Disk Device Interface Type SCSI Manufacturer (Unidades de disco estndar) Partitions count 2 Size 51199
Display Adapters
Tarjeta grfica VGA estndar Manufacturer (Tipos de pantalla estndar) Installed RAM 0
Other Devices
Interfaz lgica de puerto de impresora Description Interfaz lgica de puerto de impresora Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Controlador de teclado de Terminal Server Description Controlador de teclado de Terminal Server Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Puerto de impresora (LPT1) Description Puerto de impresora Manufacturer (Tipos de puerto estndar) Device Class {4d36e978-e325-11ce-bfc1-08002be10318} Blacklisted False Puerto de comunicaciones (COM1) Description Puerto de comunicaciones Manufacturer (Tipos de puerto estndar) Device Class {4d36e978-e325-11ce-bfc1-08002be10318} Blacklisted False
Page: 17 of 96
Puerto de comunicaciones (COM1) Puerto de comunicaciones Manufacturer (Tipos de puerto estndar) Device Class {4d36e978-e325-11ce-bfc1-08002be10318} Blacklisted False Puerto de comunicaciones (COM2) Description Puerto de comunicaciones Manufacturer (Tipos de puerto estndar) Device Class {4d36e978-e325-11ce-bfc1-08002be10318} Blacklisted False Controlador estndar de disquetes Description Controlador estndar de disquetes Manufacturer (Controladores estndar de disquete) Device Class {4d36e969-e325-11ce-bfc1-08002be10318} Blacklisted False Altavoz del sistema Description Manufacturer Device Class Blacklisted Bus PCI Description Manufacturer Device Class Blacklisted Bus genrico Description Manufacturer Device Class Blacklisted
Sistema CMOS/reloj en tiempo real Description Sistema CMOS/reloj en tiempo real Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Recursos de la placa base Description Manufacturer Device Class Blacklisted VMware Pointing Device Description Manufacturer Device Class Blacklisted
Controladora de acceso directo a memoria Description Controladora de acceso directo a memoria Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False
Page: 18 of 96
Controladora de acceso directo a memoria Description Controladora de acceso directo a memoria Full Audit Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Monitor no PnP genrico Description Manufacturer Device Class Blacklisted Cronmetro del sistema Description Manufacturer Device Class Blacklisted
Adaptador LSI, serie Ultra320 SCSI 2000, con 1020/1030 Description Adaptador LSI, serie Ultra320 SCSI 2000, con 1020/1030 Manufacturer LSI Device Class {4d36e97b-e325-11ce-bfc1-08002be10318} Blacklisted False Puente de PCI Intel 82371AB/EB a ISA (modo ISA) Description Puente de PCI Intel 82371AB/EB a ISA (modo ISA) Manufacturer Intel Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Puente de procesador Intel 82443BX Pentium(R) II a PCI Description Puente de procesador Intel 82443BX Pentium(R) II a PCI Manufacturer Intel Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False ATA Channel 0 Description Manufacturer Device Class Blacklisted
Equipo basado en ACPI x86 Description Equipo basado en ACPI x86 Manufacturer (Equipos estndar) Device Class {4d36e966-e325-11ce-bfc1-08002be10318} Blacklisted False Archivar como controlador de volumen Description Archivar como controlador de volumen Manufacturer Microsoft Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Enumerador de bus compuesto Description Enumerador de bus compuesto Manufacturer Microsoft Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False
Page: 19 of 96
Full Audit
Batera compuesta de Microsoft Description Batera compuesta de Microsoft Manufacturer Microsoft Device Class {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Blacklisted False Controlador BIOS de Microsoft System Management Description Controlador BIOS de Microsoft System Management Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Remote Desktop Device Redirector Bus Description Remote Desktop Device Redirector Bus Manufacturer Microsoft Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Sistema Microsoft compatible con ACPI Description Sistema Microsoft compatible con ACPI Manufacturer Microsoft Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Teclado PS/2 estndar Description Manufacturer Device Class Blacklisted
Controladora de procesador Intel 82443BX Pentium(R) II a AGP Description Controladora de procesador Intel 82443BX Pentium(R) II a AGP Manufacturer Intel Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Adaptador de CA de Microsoft Description Adaptador de CA de Microsoft Manufacturer Microsoft Device Class {72631e54-78a4-11d0-bcf7-00aa00b7b32a} Blacklisted False Botn de caracterstica fija ACPI Description Botn de caracterstica fija ACPI Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Controladora programable de interrupciones EISA Description Controladora programable de interrupciones EISA Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False
Page: 20 of 96
Full Audit
Instantnea de volumen genrico Description Instantnea de volumen genrico Manufacturer Microsoft Device Class {533c5b84-ec70-11d2-9505-00c04f79deaf} Blacklisted False Controlador de mouse de Terminal Server Description Controlador de mouse de Terminal Server Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Controladora IDE principal de bus PCI Intel(R) 82371AB/EB Description Controladora IDE principal de bus PCI Intel(R) 82371AB/EB Manufacturer Intel Device Class {4d36e96a-e325-11ce-bfc1-08002be10318} Blacklisted False Enumerador de UMBus Description Manufacturer Device Class Blacklisted
Instantnea de volumen genrico Description Instantnea de volumen genrico Manufacturer Microsoft Device Class {533c5b84-ec70-11d2-9505-00c04f79deaf} Blacklisted False Instantnea de volumen genrico Description Instantnea de volumen genrico Manufacturer Microsoft Device Class {533c5b84-ec70-11d2-9505-00c04f79deaf} Blacklisted False Instantnea de volumen genrico Description Instantnea de volumen genrico Manufacturer Microsoft Device Class {533c5b84-ec70-11d2-9505-00c04f79deaf} Blacklisted False Enumerador de bus raz de UMBus Description Enumerador de bus raz de UMBus Manufacturer Microsoft Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Volumen genrico Description Manufacturer Device Class Blacklisted
Page: 21 of 96
Full Audit
Volumen genrico Description Manufacturer Device Class Blacklisted
Administrador de volmenes Description Administrador de volmenes Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Controlador de enumerador de unidades virtuales de Microsoft Description Controlador de enumerador de unidades virtuales de Microsoft Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False Instantnea de volumen genrico Description Instantnea de volumen genrico Manufacturer Microsoft Device Class {533c5b84-ec70-11d2-9505-00c04f79deaf} Blacklisted False Enumerador de dispositivos de software Plug and Play Description Enumerador de dispositivos de software Plug and Play Manufacturer (Dispositivos de sistema estndar) Device Class {4d36e97d-e325-11ce-bfc1-08002be10318} Blacklisted False
Software
Publisher
VMware, Inc. Microsoft Corporation
Version
3.1.2.14664 6.1
Unauthorized
No No
Computer Properties
MAC Address Time to Live Network Role Domain Lan Manager 00-0C-29-6E-92-75 128 Workstation GFITEST Windows 7 Ultimate 6.1
NETBIOS Names
Name
TESTCLIENT-PC
Description
Workstation Service Page: 22 of 96
Full Audit
GFITEST TESTCLIENT-PC GFITEST Domain Name File Server Service Browser Service Elections
Groups
Administradores
Description Members Los administradores tienen acceso completo y sin restricciones al equipo o dominio testclient-PC\Administrador, testclient-PC\testclient, GFITEST\Admins. del dominio Pueden replicar archivos en un dominio N/A Grupo integrado usado por Internet Information Services. NT AUTHORITY\IUSR De forma predeterminada, los invitados tienen el mismo acceso que los miembros del grupo Usuarios, excepto la cuenta de invitado que tiene ms restricciones testclient-PC\Invitado Los miembros de este grupo pueden leer registros de eventos del equipo local. N/A Los miembros tienen autorizacin para realizar operaciones criptogrficas. N/A Los miembros en este equipo pueden tener algunos privilegios administrativos para administrar la configuracin de las caractersticas de la red N/A Los operadores de copia de seguridad pueden invalidar restricciones de seguridad con el nico propsito de hacer copias de seguridad o restaurar archivos. N/A Los usuarios no pueden hacer cambios accidentales o intencionados en el sistema y pueden ejecutar la mayora de aplicaciones NT AUTHORITY\INTERACTIVE, NT AUTHORITY\Usuarios autentificados, GFITEST\Usuarios del dominio Los usuarios avanzados se incluyen para la compatibilidad con versiones anteriores y poseen derechos administrativos limitados N/A Los miembros pueden iniciar, activar y usar objetos de COM distribuido en este equipo. N/A A los miembros de este grupo se les concede el derecho de iniciar sesin remotamente N/A Los miembros de este grupo tienen acceso a los datos del contador de rendimiento de forma local y remota N/A Los miembros de este grupo pueden programar contadores de registro y rendimiento, habilitar proveedores de seguimiento y recopilar seguimientos de eventos localmente y a travs del acceso remoto a este equipo
Duplicadores
Description Members
IIS_IUSRS
Description Members
Invitados
Description Members Description Members
Operadores criptogrficos
Description Members Description Members Description Members
Usuarios
Description Members
Usuarios avanzados
Description Members
Page: 23 of 96
Full Audit
Members N/A
Users
Administrador
Privilege Flags Comment User Comment Full Name Last Logon Enabled Logons Count Password Age Administrator (*) ACCOUNT_DISABLED,NORMAL_ACCOUNT Cuenta integrada para la administracin del equipo o dominio
14-07-2009 0:53:58 No 1 1066 Days, 13 Hours, 11 Minutes, 56 Seconds Guest ACCOUNT_DISABLED,PASSWORD_NOT_REQUIRED,PASSWORD_CANNOT_BE_CH ANGED,NORMAL_ACCOUNT Cuenta integrada para el acceso como invitado al equipo o dominio Never No 0 0 Seconds Administrator (*) SCRIPT,PASSWORD_NOT_REQUIRED,NORMAL_ACCOUNT 09-06-2012 8:48:34 Yes 4 10 Days, 18 Hours, 18 Minutes, 35 Seconds
Invitado
Privilege Flags Comment Last Logon Enabled Logons Count Password Age
testclient
Privilege Flags Comment Last Logon Enabled Logons Count Password Age
Logged on Users
NT AUTHORITY\SERVICIO LOCAL
Elapsed Time Idle Time User Type Elapsed Time Idle Time User Type 0 Seconds 0 Seconds Local User 0 Seconds 0 Seconds Local User 4 Hours, 49 Minutes, 5 Seconds 0 Seconds 14-06-2012 9:18:37 Local User 0 Seconds 0 Seconds Local User 9 Seconds 5 Seconds 14-06-2012 14:07:35 Remote User
NT AUTHORITY\Servicio de red
GFITEST\Administrador
Elapsed Time Idle Time Logon Date User Type
NT AUTHORITY\SYSTEM
Elapsed Time Idle Time User Type
Vanser-PC\Administrador
Elapsed Time Idle Time Logon Date User Type
Page: 24 of 96
Vanser-PC\Administrador
9 Seconds 5 Seconds 14-06-2012 14:07:35 Remote User 9 Seconds 0 Seconds 14-06-2012 14:07:35 Remote User
Vanser-PC\administrador
Elapsed Time Idle Time Logon Date User Type
Shares
ADMIN$ Path Remark Passworded Printer C$ Path Remark Passworded Printer IPC$ Path Remark Passworded Printer
Services
Acceso a dispositivo de interfaz humana
Account Name Started Status LocalSystem Manual Stopped
Administracin de aplicaciones
Account Name Started Status LocalSystem Manual Stopped
Page: 25 of 96
Full Audit
Administrador de conexin automtica de acceso remoto
Account Name Started Status localSystem Manual Stopped
Administrador de credenciales
Account Name Started Status LocalSystem Manual Stopped
Page: 26 of 96
Account Name
Almacenamiento protegido
Account Name Started Status LocalSystem Manual Stopped
Aplicacin auxiliar IP
Account Name Started Status LocalSystem Automatic Started
Audio de Windows
Account Name Started Status NT AUTHORITY\LocalService Automatic Started
BranchCache
Account Name Started Status NT AUTHORITY\NetworkService Manual Stopped
Brillo adaptable
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Page: 27 of 96
Captura SNMP
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Centro de seguridad
Account Name Started Status NT AUTHORITY\LocalService Automatic Started
Cliente DHCP
Account Name Started Status NT Authority\LocalService Automatic Started
Cliente DNS
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Cliente web
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Cola de impresin
Account Name Started Status LocalSystem Automatic Started
Page: 28 of 96
Full Audit
Conexiones de red
Account Name Started Status LocalSystem Manual Started
Desfragmentador de disco
Account Name Started Status localSystem Manual Stopped
Deteccin SSDP
Account Name Started Status NT AUTHORITY\LocalService Manual Started
Page: 29 of 96
Deteccin SSDP
NT AUTHORITY\LocalService Manual Started
Disco virtual
Account Name Started Status LocalSystem Manual Stopped
Energa
Account Name Started Status LocalSystem Automatic Started
Estacin de trabajo
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Examinador de equipos
Account Name Started Status LocalSystem Manual Started
Page: 30 of 96
Full Audit
Experiencia de calidad de audio y vdeo de Windows (qWave)
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Fax
Account Name Started Status NT AUTHORITY\NetworkService Manual Stopped
Firewall de Windows
Account Name Started Status NT Authority\LocalService Automatic Started
Hora de Windows
Account Name Started Status NT AUTHORITY\LocalService Manual Started
Identidad de aplicacin
Account Name Started Status NT Authority\LocalService Manual Stopped
Informacin de la aplicacin
Account Name Started Status LocalSystem Manual Stopped
Page: 31 of 96
Account Name
Instantneas de volumen
Account Name Started Status LocalSystem Manual Stopped
Net Logon
Account Name Started Status LocalSystem Automatic Started
Parental Controls
Account Name Started Status NT Authority\LocalService Manual Stopped
Page: 32 of 96
Programador de tareas
Account Name Started Status LocalSystem Automatic Started
Propagacin de certificados
Account Name Started Status LocalSystem Manual Stopped
Proteccin de software
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Page: 33 of 96
Full Audit
Reconocimiento de ubicacin de red
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Registro remoto
Account Name Started Status NT AUTHORITY\LocalService Manual Started
Page: 34 of 96
Page: 35 of 96
Full Audit
Servicio de publicacin de nombres de equipo PNRP
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Page: 36 of 96
Account Name
Servicios de cifrado
Account Name Started Status NT Authority\NetworkService Automatic Started
Servidor
Account Name Started Status LocalSystem Automatic Started
Superfetch
Account Name Started Status LocalSystem Automatic Started
Page: 37 of 96
Tarjeta inteligente
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Telefona
Account Name Started Status NT AUTHORITY\NetworkService Manual Stopped
Temas
Account Name Started Status LocalSystem Automatic Started
Windows CardSpace
Account Name Started Status LocalSystem Manual Stopped
Windows Defender
Account Name Started Status LocalSystem Automatic Started
Windows Installer
Account Name Started Status LocalSystem Manual Stopped
Page: 38 of 96
Full Audit
Windows Presentation Foundation Font Cache 3.0.0.0
Account Name Started Status NT Authority\LocalService Manual Stopped
Windows Search
Account Name Started Status LocalSystem Automatic Started
Windows Update
Account Name Started Status LocalSystem Automatic Started
Processes
csrss.exe
PID PPID User Name Path Command Line 380 360 SYSTEM C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 168 8 13
csrss.exe
PID PPID User Name Path Command Line 332 324 SYSTEM C:\Windows\system32\csrss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 412 9 13
dwm.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 256 808 Administrador C:\Windows\system32\Dwm.exe "C:\Windows\system32\Dwm.exe" 70 3 8
Page: 39 of 96
Full Audit
explorer.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 620 1348 Administrador C:\Windows\Explorer.EXE C:\Windows\Explorer.EXE 882 24 8
lsass.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 472 368 SYSTEM C:\Windows\system32\lsass.exe C:\Windows\system32\lsass.exe 664 8 9
lsm.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 480 368 SYSTEM C:\Windows\system32\lsm.exe C:\Windows\system32\lsm.exe 139 10 8
SearchIndexer.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 384 464 SYSTEM C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchIndexer.exe /Embedding 683 10 8
services.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 464 368 SYSTEM C:\Windows\system32\services.exe C:\Windows\system32\services.exe 227 8 9
smss.exe
PID PPID User Name Command Line Handle Count Thread Count Priority 248 4 SYSTEM \SystemRoot\System32\smss.exe 29 2 11
Page: 40 of 96
smss.exe
Full
PID PPID AuditName User Command Line Handle Count Thread Count Priority
spoolsv.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1204 464 SYSTEM C:\Windows\System32\spoolsv.exe C:\Windows\System32\spoolsv.exe 275 14 8
sppsvc.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1924 464 Servicio de red C:\Windows\system32\sppsvc.exe C:\Windows\system32\sppsvc.exe 148 4 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 768 464 SERVICIO LOCAL C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted 435 17 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 808 464 SYSTEM C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted 386 14 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 988 464 SERVICIO LOCAL C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalService 377 13 8
svchost.exe
PID PPID User Name Path Command Line Handle Count 2084 464 SYSTEM C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k secsvcs 329
Page: 41 of 96
Full Audit
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2084 464 SYSTEM C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k secsvcs 329 13 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1252 464 SERVICIO LOCAL C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork 308 17 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1768 464 Servicio de red C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted 96 5 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1372 464 SERVICIO LOCAL C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation 241 15 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1096 464 Servicio de red C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k NetworkService 418 16 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 836 464 SYSTEM C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k netsvcs 1320 77 8
Page: 42 of 96
Full
PID PPID User Name Audit Path Command Line Handle Count Thread Count Priority
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 668 464 Servicio de red C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k RPCSS 247 8 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 592 464 SYSTEM C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k DcomLaunch 352 11 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2100 464 SERVICIO LOCAL C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe -k regsvc 49 4 8
System
PID PPID Handle Count Thread Count Priority 4 0 501 91 8
taskhost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2004 464 Administrador C:\Windows\system32\taskhost.exe "taskhost.exe" 169 9 8
Page: 43 of 96
Full
PPID User Name Path Audit Command Line Handle Count Thread Count Priority
VMwareService.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1464 464 SYSTEM C:\Program Files\VMware\VMware Tools\VMwareService.exe "C:\Program Files\VMware\VMware Tools\VMwareService.exe" 84 6 13
VMwareTray.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 600 620 Administrador C:\Program Files\VMware\VMware Tools\VMwareTray.exe "C:\Program Files\VMware\VMware Tools\VMwareTray.exe" 67 5 8
VMwareUser.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1872 620 Administrador C:\Program Files\VMware\VMware Tools\VMwareUser.exe "C:\Program Files\VMware\VMware Tools\VMwareUser.exe" 64 2 8
wininit.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 368 324 SYSTEM C:\Windows\system32\wininit.exe wininit.exe 75 3 13
winlogon.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 420 360 SYSTEM C:\Windows\system32\winlogon.exe winlogon.exe 111 3 13
WmiPrvSE.exe
PID PPID User Name Path Command Line Handle Count Thread Count 1176 592 Servicio de red C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe 246 10
Page: 44 of 96
wmpnetwk.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1680 464 Servicio de red C:\Program Files\Windows Media Player\wmpnetwk.exe "C:\Program Files\Windows Media Player\wmpnetwk.exe" 210 9 8
Sessions
Computer/IP Connection Time User Name User Flags Transport Open Files Client Type Idle Time Computer/IP Connection Time User Name User Flags Transport Open Files Client Type Idle Time
Registry Information
Node Name Registry Entry
RegisteredOwner : testclient RegisteredOrganization : ProductName : Windows 7 Ultimate CurrentBuildNumber : 7600 CurrentType : Multiprocessor Free CurrentVersion : 6.1 PathName : C:\Windows ProductId : 00426-292-0000007-85257 SoftwareType : System SystemRoot : C:\Windows Page: 45 of 96
Full Audit
VendorIdentifier : GenuineIntel Identifier : x86 Family 6 Model 23 Stepping 8 ~MHz : 2394 DriverDesc : Tarjeta grfica VGA estndar InstallLanguage : 0C0A Default : 340a DenyTerminalServerConnections : 1 Run Run VMware Tools : "C:\Program Files\VMware\VMware Tools\VMwareTray.exe" VMware User Process : "C:\Program Files\VMware\VMware Tools\VMwareUser.exe"
Password Policy
Minimum Password Length
7 Chars
Force Logoff
Never Force
Password History
24
SNMP Information
No records matching the current criteria were found!
Remote TOD
Time of Day
14-06-2012 10:09:50
Up Time
53 Minutes, 30 Seconds
Virtual Machines
No records matching the current criteria were found!
TESTSERVER
Scan Errors
UDP ports scanning UDP scan is not reliable on this machine 14-06-2012 14:09:52
Vulnerability Assessment
Missing Service Packs
Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update (KB951847) x86 Product Windows Timestamp 2009-06-23
Vulnerabilities High
Page: 46 of 96
Full Audit
Category: Web OVAL:12514: Denial of service vulnerability in the DOM implementation in Microsoft Internet Explorer 9.0.7930.16406 and earlier versions Product Microsoft Internet Explorer Timestamp 2011-03-18T13:10:08
Medium
Category: Software OVAL:12566: Microsoft Windows Human Interface Device (HID) driver is prone to security bypass vulnerability. Timestamp 2011-02-25T14:33:46 Category: Web OVAL:12829: Microsoft Internet Explorer 'AddFavorite' Method Denial of Service Vulnerability Product Microsoft Internet Explorer 7,Microsoft Internet Explorer 8 Timestamp 2011-06-28T13:00:00 OVAL:12817: Microsoft Internet Explorer 6 through 8 spoofing vulnerability Product Microsoft Internet Explorer 6,Microsoft Internet Explorer 7,Microsoft Internet Explorer 8 Timestamp 2011-06-28T13:00:00 OVAL:12700: Microsoft Internet Explorer 'findText()' Unicode Parsing Denial of Service Vulnerability Product Microsoft Internet Explorer 7,Microsoft Internet Explorer 8 Timestamp 2011-06-28T13:00:00 OVAL:12638: Microsoft Internet Explorer cross-site scripting (XSS) vulnerability Product Microsoft Internet Explorer 8 Timestamp 2011-06-28T13:00:00 OVAL:12355: Microsoft Internet Explorer PDF Printing Information Disclosure Product Microsoft Internet Explorer 6,Microsoft Internet Explorer 7,Microsoft Internet Explorer 8 Timestamp 2011-06-28T13:00:00
Low
Category: Registry AutoShareServer Product Windows Timestamp 2002-01-01-00:00 AutoShareWKS Product Windows Timestamp 2002-01-01-00:00 Cached Logon Credentials Product Windows NT Timestamp 2002-01-01-00:00 Last logged-on username visible Product Windows Timestamp 2002-01-01-00:00 Category: Services Service running: HTTP Timestamp 2007-01-31-00:00 Service running: SMTP Timestamp 2007-01-31-00:00 Service running: DNS Timestamp 2007-01-31-00:00 Service running: POP3 Timestamp 2007-01-31-00:00 Service running: IMAP4 Timestamp 2007-01-31-00:00
Full Audit
Windows Server 2003 Service Pack 2 (32-bit x86)
Severity Type Patch Bulletin ID Product Timestamp High Installed Service Packs 914961 N/A Windows 2008-05-27 High Installed Service Packs 899456 N/A MDAC 2006-02-01
Security Update for Microsoft .NET Framework 1.1 SP1 on Windows Server 2003 and Windows Server 2003 R2 x86 (KB2656358)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2656358 MS11-100 Windows 2011-12-29 N/A Installed Patches 972270 MS10-001 Windows 2010-01-12 N/A Installed Patches 2115168 MS10-052 Windows 2010-08-10 N/A Installed Patches 2510531 MS11-031 Windows 2011-04-12 N/A Installed Patches 2699988 MS12-037 Windows 2012-06-12
Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 (KB2699988)
Page: 48 of 96
Full Audit
Security Update for Windows Server 2003 (KB2536276)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2536276 MS11-043 Windows 2011-08-09 N/A Installed Patches 973507 MS09-037 Windows 2009-08-11 N/A Installed Patches 973869 MS09-037 Windows 2009-08-11 N/A Installed Patches 973904 MS09-073 Windows 2009-12-08 N/A Installed Patches 974112 MS09-052 Windows 2009-10-13 N/A Installed Patches 2296011 MS10-081 Windows 2010-10-12 N/A Installed Patches 2566454 MS11-062 Windows 2011-08-09 N/A Installed Patches 2544893 MS11-037 Windows 2011-11-08
Page: 49 of 96
Full Audit
Security Update for Windows Server 2003 (KB2507618)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2507618 MS11-032 Windows 2011-04-12 N/A Installed Patches 925902 MS07-017 Windows 2008-12-09 N/A Installed Patches 2685939 MS12-036 Windows 2012-06-12 N/A Installed Patches 952004 MS09-012 Windows 2009-04-14 N/A Installed Patches 2535512 MS11-042 Windows 2011-06-14 N/A Installed Patches 960859 MS09-042 Windows 2009-08-11 N/A Installed Patches 2644615 MS12-001 Windows 2012-01-10 N/A Installed Patches 952069 MS08-076 Windows 2008-12-09
Page: 50 of 96
Full Audit
Security Update for Windows Server 2003 (KB2478960)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2478960 MS11-014 Windows 2011-02-08 N/A Installed Patches 2478971 MS11-013 Windows 2011-02-08 N/A Installed Patches 961501 MS09-022 Windows 2009-06-09 N/A Installed Patches 925398 MS06-078 Windows 2007-07-10 N/A Installed Patches 954155 MS09-051 Windows 2009-10-13 N/A Installed Patches 960803 MS09-013 Windows 2009-04-14 N/A Installed Patches 2638806 MS12-006 Windows 2012-01-10 N/A Installed Patches 2079403 MS10-051 Windows 2010-08-10
Security Update for Windows Media Format Runtime 9.5 for Windows Server 2003 (KB954155)
Page: 51 of 96
Full Audit
Security Update for Windows Server 2003 (KB2440591)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2440591 MS10-099 Windows 2010-12-14 N/A Installed Patches 929123 MS07-034 Windows 2007-06-12 N/A Installed Patches 2584146 MS12-005 Windows 2012-01-10 N/A Installed Patches 982132 MS10-076 Windows 2010-10-12 N/A Installed Patches 2360937 MS10-084 Windows 2010-10-12 N/A Installed Patches 950974 MS08-049 Windows 2008-08-12 N/A Installed Patches 2676562 MS12-034 Windows 2012-05-08 N/A Installed Patches 2621146 MS11-095 Windows 2011-12-13
Cumulative Security Update for Outlook Express for Windows Server 2003 (KB929123)
Page: 52 of 96
Full Audit
Security Update for Windows Server 2003 (KB2393802)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2393802 MS11-011 Windows 2011-02-08 N/A Installed Patches 978542 MS10-030 Windows 2010-05-11 N/A Installed Patches 974318 MS09-071 Windows 2009-12-08 N/A Installed Patches 946026 MS08-007 Windows 2008-02-12 N/A Installed Patches 979687 MS10-083 Windows 2010-10-12 N/A Installed Patches 2423089 MS10-096 Windows 2010-12-14 N/A Installed Patches 2544521 MS11-052 Windows 2011-06-14 N/A Installed Patches 923561 MS09-010 Windows 2009-04-14
Security Update for Internet Explorer 8 for Windows Server 2003 (KB2544521)
Page: 53 of 96
Full Audit
Security Update for Windows Server 2003 (KB2478953)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2478953 MS11-005 Windows 2011-02-08 N/A Installed Patches 978338 MS10-029 Windows 2010-04-13 N/A Installed Patches 952954 MS08-046 Windows 2008-08-12 N/A Installed Patches 2570947 MS11-071 Windows 2011-09-13 N/A Installed Patches 2443105 MS10-097 Windows 2010-12-14 N/A Installed Patches 933854 MS07-040 Windows 2007-09-11 N/A Installed Patches 975713 MS10-007 Windows 2010-02-09 N/A Installed Patches 2631813 MS12-004 Windows 2012-01-10
Security Update for Microsoft .NET Framework, Version 1.1 Service Pack 1 (KB933854)
Page: 54 of 96
Full Audit
Security Update for Windows Server 2003 (KB2506212)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2506212 MS11-024 Windows 2011-04-12 N/A Installed Patches 971032 MS09-040 Windows 2009-08-11 N/A Installed Patches 981322 MS10-063 Windows 2010-09-14 N/A Installed Patches 2483185 MS11-006 Windows 2011-02-08 N/A Installed Patches 974392 MS09-069 Windows 2009-12-08 N/A Installed Patches 2707511 MS12-042 Windows 2012-06-12 N/A Installed Patches 2620712 MS11-097 Windows 2011-12-13 N/A Installed Patches 2419635 MS11-002 Windows 2011-01-11
Page: 55 of 96
Full Audit
Security Update for Windows Server 2003 (KB2603381)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2603381 MS12-002 Windows 2012-01-10 N/A Installed Patches 2378111 MS10-082 Windows 2010-10-12 N/A Installed Patches 971657 MS09-041 Windows 2009-08-11 N/A Installed Patches 2507938 MS11-056 Windows 2011-07-12 N/A Installed Patches 2229593 MS10-042 Windows 2010-07-13 N/A Installed Patches 932168 MS07-020 Windows 2007-04-10 N/A Installed Patches 975560 MS10-013 Windows 2010-02-09 N/A Installed Patches 944653 MS07-067 Windows 2007-12-11
Page: 56 of 96
Full Audit
Security Update for Windows Server 2003 (KB2653956)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2653956 MS12-024 Windows 2012-04-10 N/A Installed Patches 973815 MS09-037 Windows 2009-08-11 N/A Installed Patches 2646524 MS12-003 Windows 2012-01-10 N/A Installed Patches 2476490 MS11-038 Windows 2011-06-14 N/A Installed Patches 973540 MS09-037 Windows 2009-08-11 N/A Installed Patches 956802 MS08-071 Windows 2008-12-09 N/A Installed Patches 979482 MS10-033 Windows 2010-06-08
Page: 57 of 96
Full Audit
Security Update for Microsoft .NET Framework 1.1 SP1 on Windows Server 2003 and Windows Server 2003 R2 x86 (KB2604078)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2604078 MS12-035 Windows 2012-05-08 N/A Installed Patches 2709162 MS12-041 Windows 2012-06-12 N/A Installed Patches 2618451 MS11-090 Windows 2011-12-13 N/A Installed Patches 977914 MS10-013 Windows 2010-02-09
Cumulative Security Update for ActiveX Killbits for Windows Server 2003 (KB2618451)
Security Update for Microsoft .NET Framework 1.1 SP1 on Windows Server 2003 and Windows Server 2003 R2 x86 (KB2656376)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2656376 MS12-025 Windows 2012-06-12 N/A Installed Patches 2564958 MS11-075 Windows 2011-10-11 N/A Installed Patches 950762 MS08-036 Windows 2008-06-10
Page: 58 of 96
Full Audit
Security Update for Windows Server 2003 (KB2585542)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2585542 MS12-006 Windows 2012-01-10 N/A Installed Patches 2508429 MS11-020 Windows 2011-04-12 N/A Installed Patches 969059 MS09-057 Windows 2009-10-13 N/A Installed Patches 2598479 MS12-004 Windows 2012-01-10 N/A Installed Patches 975025 MS09-051 Windows 2009-10-13 N/A Installed Patches 2347290 MS10-061 Windows 2010-09-14 N/A Installed Patches 975558 MS10-062 Windows 2010-09-14 N/A Installed Patches 2387149 MS10-074 Windows 2010-10-12
Page: 59 of 96
Full Audit
Security Update for Windows Server 2003 (KB959426)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 959426 MS09-015 Windows 2009-04-14 N/A Installed Patches 2485663 MS11-033 Windows 2011-04-12 N/A Installed Patches 941569 MS07-068 Windows 2007-12-11 N/A Installed Patches 977816 MS10-026 Windows 2010-04-13 N/A Installed Patches 2624667 MS11-093 Windows 2011-12-13 N/A Installed Patches 958469 MS09-044 Windows 2009-08-11
Microsoft .NET Framework 1.1 SP1 Security Update for Windows Server 2003 x86 and Windows Server 2003 R2 x86 (KB979907)
Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 979907 MS10-041 Windows 2010-06-08
Page: 60 of 96
Full Audit
Security Update for Windows Server 2003 (KB2509553)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2509553 MS11-030 Windows 2011-04-12 N/A Installed Patches 980232 MS10-020 Windows 2010-04-13 N/A Installed Patches 956572 MS09-012 Windows 2009-04-14 N/A Installed Patches 978695 MS10-033 Windows 2010-06-08 N/A Installed Patches 2686509 MS12-034 Windows 2012-05-08 N/A Installed Patches 979309 MS10-019 Windows 2010-04-13 N/A Installed Patches 2659262 MS12-034 Windows 2012-05-08 N/A Installed Patches 956844 MS09-046 Windows 2009-09-08
Security Update for Windows Media Format Runtime 9.5 for Windows Server 2003 (KB978695)
Page: 61 of 96
Full Audit
Security Update for Windows Server 2003 (KB2647170)
Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp Severity Type Patch Bulletin ID Product Timestamp N/A Installed Patches 2647170 MS12-017 Windows 2012-03-13 N/A Installed Patches 978706 MS10-005 Windows 2010-02-09 N/A Installed Patches 958644 MS08-067 Windows 2008-10-23 N/A Installed Patches 974571 MS09-056 Windows 2009-10-13 High Installed Patches 2633952 N/A Windows 2011-12-29 High Installed Patches 944036 N/A Windows 2009-08-25 High Installed Patches 890830 N/A Windows 2012-06-12 High Installed Patches 2695962 N/A Windows 2012-05-08
Update Rollup for ActiveX Killbits for Windows Server 2003 (KB2695962)
Page: 62 of 96
Full Audit
Ports
25 Port Type Description Trojan 53 Port Type Description Trojan 80 Port Type Description Trojan 88 Port Type Description Trojan 110 Port Type Description Trojan 119 Port Type Description Trojan 135 Port Type Description Trojan 139 Port Type Description Trojan 143 Port Type Description Trojan 389 Port Type Description Trojan 445 Port Type Description Trojan 464 Port Type Description Trojan 563 Port Type Description Trojan 587 Port Type Description Trojan
TCP Simple Mail Transfer Protocol (SMTP) No TCP Domain Name System (DNS) No TCP Hypertext Transfer Protocol (HTTP) No TCP Kerberos - authentication system No TCP Post Office Protocol 3 (POP3) No TCP Network News Transfer Protocol (NNTP) No TCP DCE endpoint resolution No TCP NetBIOS NetBIOS Session Service No TCP Internet Message Access Protocol (IMAP) No TCP Lightweight Directory Access Protocol (LDAP) No TCP Microsoft-DS Active Directory, Windows shares No TCP Kerberos Change/Set password No TCP NNTP protocol over TLS/SSL (NNTPS) No TCP e-mail message submission (SMTP) No
Page: 63 of 96
Full Audit
587 Port Type Description Trojan 593 Port Type Description Trojan 636 Port Type Description Trojan 993 Port Type Description Trojan 995 Port Type Description Trojan 1027 Port Type Description Trojan 1042 Port Type Description Trojan 1043 Port Type Description Trojan 3128 Port Type Description Trojan 3268 Port Type Description Trojan 3269 Port Type Description Trojan 8008 Port Type Description Trojan 8080 Port Type Description Trojan 8888 Port Type Description Trojan TCP e-mail message submission (SMTP) No TCP HTTP RPC Ep Map, Remote procedure call over Hypertext Transfer Protocol No TCP Lightweight Directory Access Protocol over TLS/SSL (LDAPS) No TCP Internet Message Access Protocol over SSL (IMAPS) No TCP Post Office Protocol 3 over TLS/SSL (POP3S) No TCP Inetinfo, If this service is not installed beware could be trojan: Clandestine, DataSpy and others No TCP Ms Project, MSMQ, ismserv, If these services are not installed beware could be trojan: BLA trojan No TCP MSMQ, ISA Server, Inet, If these services are not installed beware could be trojan: Dosh No TCP Proxy/Socks, If this service is not installed beware could be trojan: RingZero, Reverse WWW Backdoor No TCP msft-gc, Microsoft Global Catalog (LDAP service which contains data from Active Directory forests) No TCP msft-gc-ssl, Microsoft Global Catalog over SSL (similar to port 3268, LDAP over SSL) No TCP HTTP Alternate No TCP HTTP alternate (http_alt) No TCP NewsEDGE server No
Page: 64 of 96
8888
Hardware
Network Devices
Physical
VMware Accelerated AMD PCNet Adapter Description VMware Accelerated AMD PCNet Adapter Vendor VMware, Inc. MAC Address 00:0C:29:57:7C:41 IP Address(es) 192.168.0.201 DHCP set False Status Plugged in Blacklisted False Netmask address 255.255.255.0
Virtual
Minipuerto WAN (PPTP) Description Vendor MAC Address DHCP set Status Blacklisted Paralelo directo Description Vendor DHCP set Status Blacklisted Minipuerto WAN (PPPOE) Description Vendor MAC Address DHCP set Status Blacklisted Minipuerto WAN (IP) Description Vendor DHCP set Status Blacklisted Minipuerto WAN (L2TP) Description Vendor DHCP set Status Blacklisted
Page: 65 of 96
Minipuerto WAN (L2TP) Description Full Audit Vendor DHCP set Status Blacklisted
Software Enumerated
Adaptador asnc. de RAS Description DHCP set Status Blacklisted
Total Space
29,99 GB N/A N/A
Free space
24,85 GB N/A N/A
Processors
Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz Speed 2393 Vendor GenuineIntel
Motherboard
Name Manufacturer Version BIOS name BIOS Release Date BIOS serial number BIOS Vendor BIOS Version 440BX Desktop Reference Platform Intel Corporation None PhoenixBIOS 4.0 Release 6.0 19-03-2009 VMware-56 4d 39 bd 94 75 f1 a8-75 fc 86 b4 1c 57 7c 41 Phoenix Technologies LTD None
Memory Details
Physical memory Free Physical Memory Virtual Memory Free Virtual Memory 1024 88 2470 1615
Storage Details
NECVMWar VMware IDE CDR00 Description Unidad de CD-ROM Interface Type SCSI Manufacturer (Unidades de CD-ROM estndar) Partitions count 0 Size 0
Page: 66 of 96
Full Audit
VMware Virtual disk SCSI Disk Device Interface Type SCSI Manufacturer (Unidades de disco estndar) Partitions count 1 Size 30718 Unidad de disquete Description Manufacturer Partitions count Size
Display Adapters
VMware SVGA II Manufacturer Installed RAM Current Resolution
Other Devices
Puerto de impresora (LPT1) Description Puerto de impresora Manufacturer (Tipos de puerto estndar) Device Class {4D36E978-E325-11CE-BFC1-08002BE10318} Blacklisted False Teclado estndar de 101/102 teclas o Microsoft Natural PS/2 Keyboard Description Teclado estndar de 101/102 teclas o Microsoft Natural PS/2 Keyboard Manufacturer (Teclados estndar) Device Class {4D36E96B-E325-11CE-BFC1-08002BE10318} Blacklisted False Controladora de acceso directo a memoria Description Controladora de acceso directo a memoria Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Cronmetro del sistema Description Manufacturer Device Class Blacklisted Bus PCI Description Manufacturer Device Class Blacklisted
Interfaz lgica de puerto de impresora Description Interfaz lgica de puerto de impresora Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False
Page: 67 of 96
Full Audit
Interfaz lgica de puerto de impresora Description Interfaz lgica de puerto de impresora Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Puerto de datos de lectura ISAPNP Description Puerto de datos de lectura ISAPNP Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Sistema Microsoft compatible con ACPI Description Sistema Microsoft compatible con ACPI Manufacturer Microsoft Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False VMware Pointing Device Description Manufacturer Device Class Blacklisted Recursos de la placa base Description Manufacturer Device Class Blacklisted
Controlador estndar de disquetes Description Controlador estndar de disquetes Manufacturer (Controladores estndar de disquete) Device Class {4D36E969-E325-11CE-BFC1-08002BE10318} Blacklisted False Bus genrico Description Manufacturer Device Class Blacklisted Altavoz del sistema Description Manufacturer Device Class Blacklisted
Controladora programable de interrupciones EISA Description Controladora programable de interrupciones EISA Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Puerto de comunicaciones (COM2) Description Puerto de comunicaciones Manufacturer (Tipos de puerto estndar) Device Class {4D36E978-E325-11CE-BFC1-08002BE10318} Blacklisted False
Page: 68 of 96
Puerto de comunicaciones (COM1) Description Puerto de comunicaciones Manufacturer (Tipos de puerto estndar) Device Class {4D36E978-E325-11CE-BFC1-08002BE10318} Blacklisted False Sistema CMOS/reloj en tiempo real Description Sistema CMOS/reloj en tiempo real Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Cdecs de vdeo Description Manufacturer Device Class Blacklisted
Adaptador de host SCSI LSI Logic PCI-X Ultra320 Description Adaptador de host SCSI LSI Logic PCI-X Ultra320 Manufacturer LSI Logic Inc. Device Class {4D36E97B-E325-11CE-BFC1-08002BE10318} Blacklisted False Puente de PCI Intel 82371AB/EB a ISA (modo ISA) Description Puente de PCI Intel 82371AB/EB a ISA (modo ISA) Manufacturer Intel Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Controladora IDE principal de bus PCI Intel(R) 82371AB/EB Description Controladora IDE principal de bus PCI Intel(R) 82371AB/EB Manufacturer Intel Device Class {4D36E96A-E325-11CE-BFC1-08002BE10318} Blacklisted False Procesador de Pentium(R) II Intel 82443BX para puente PCI Description Procesador de Pentium(R) II Intel 82443BX para puente PCI Manufacturer Intel Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Procesador Intel 82443BX Pentium(R) II para controladora AGP Description Procesador Intel 82443BX Pentium(R) II para controladora AGP Manufacturer Intel Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Canal IDE principal Description Manufacturer Device Class Blacklisted
Canal IDE principal (Tarjetas controladoras estndar IDE ATA/ATAPI) {4D36E96A-E325-11CE-BFC1-08002BE10318} False
Page: 69 of 96
Canal IDE principal Manufacturer Device Class Blacklisted Canal IDE principal (Tarjetas controladoras estndar IDE ATA/ATAPI) {4D36E96A-E325-11CE-BFC1-08002BE10318} False
Monoprocesador ACPI de PC Description Monoprocesador ACPI de PC Manufacturer (Equipos estndar) Device Class {4D36E966-E325-11CE-BFC1-08002BE10318} Blacklisted False Batera compuesta de Microsoft Description Batera compuesta de Microsoft Manufacturer Microsoft Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Administrador de discos lgicos Description Administrador de discos lgicos Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Administrador de volmenes Description Administrador de volmenes Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Cdecs de audio Description Manufacturer Device Class Blacklisted
Controladores de audio heredados Description Controladores de audio heredados Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E96C-E325-11CE-BFC1-08002BE10318} Blacklisted False Controlador BIOS de Microsoft System Management Description Controlador BIOS de Microsoft System Management Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Dispositivos de captura de vdeo heredados Description Dispositivos de captura de vdeo heredados Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E96C-E325-11CE-BFC1-08002BE10318} Blacklisted False Redirector de dispositivos de Terminal Server Description Redirector de dispositivos de Terminal Server Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False
Page: 70 of 96
Redirector de dispositivos de Terminal Server Description Redirector de dispositivos de Terminal Server Full Audit Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Controlador de teclado de Terminal Server Description Controlador de teclado de Terminal Server Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Controlador de mouse de Terminal Server Description Controlador de mouse de Terminal Server Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Enumerador de dispositivos de software Plug and Play Description Enumerador de dispositivos de software Plug and Play Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Dispositivo de actualizacin de Microsoft Description Dispositivo de actualizacin de Microsoft Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Volumen genrico Description Manufacturer Device Class Blacklisted
Adaptador de CA de Microsoft Description Adaptador de CA de Microsoft Manufacturer Microsoft Device Class {72631E54-78A4-11D0-BCF7-00AA00B7B32A} Blacklisted False Botn de caracterstica fija ACPI Description Botn de caracterstica fija ACPI Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E97D-E325-11CE-BFC1-08002BE10318} Blacklisted False Dispositivos para el control de multimedia Description Dispositivos para el control de multimedia Manufacturer (Dispositivos de sistema estndar) Device Class {4D36E96C-E325-11CE-BFC1-08002BE10318} Blacklisted False
Software
General Software
Page: 71 of 96
Full Audit
Name
Actualizacin de seguridad para el Reproductor de Windows Media (KB975558) Actualizacin de seguridad para el Reproductor de Windows Media 6.4 (KB925398) Actualizacin de seguridad para Microsoft Windows (KB2564958) Actualizacin de seguridad para Windows Internet Explorer 7 (KB2544521) Actualizacin de seguridad para Windows Internet Explorer 7 (KB2699988) Actualizacin de seguridad para Windows Internet Explorer 8 (KB2510531) Actualizacin de seguridad para Windows Internet Explorer 8 (KB2544521) Actualizacin de seguridad para Windows Internet Explorer 8 (KB2618444) Actualizacin de seguridad para Windows Internet Explorer 8 (KB2699988) Actualizacin de seguridad para Windows Internet Explorer 8 (KB982381) Actualizacin de seguridad para Windows Server 2003 (KB2079403) Actualizacin de seguridad para Windows Server 2003 (KB2115168) Actualizacin de seguridad para Windows Server 2003 (KB2229593) Actualizacin de seguridad para Windows Server 2003 (KB2296011) Actualizacin de seguridad para Windows Server 2003 (KB2347290) Actualizacin de seguridad para Windows Server 2003 (KB2360937) Actualizacin de seguridad para Windows Server 2003 (KB2378111) Actualizacin de seguridad para Windows Server 2003 (KB2387149) Actualizacin de seguridad para Windows Server 2003 (KB2393802) Actualizacin de seguridad para Windows Server 2003 (KB2419635) Actualizacin de seguridad para Windows Server 2003 (KB2423089) Actualizacin de seguridad para Windows Server 2003 (KB2440591) Actualizacin de seguridad para Windows Server 2003 (KB2443105) Actualizacin de seguridad para Windows Server 2003 (KB2476490) Actualizacin de seguridad para Windows Server 2003 (KB2478953) Actualizacin de seguridad para Windows Server 2003 (KB2478960) Actualizacin de seguridad para Windows Server 2003 (KB2478971)
Publisher
Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation
Version
N/A N/A N/A 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1
Unauthorized
No No No No No No No No No No No No No No No No No No No No No No No No No No No
Page: 72 of 96
Full Audit
Actualizacin de seguridad para Windows Server 2003 (KB2483185) Actualizacin de seguridad para Windows Server 2003 (KB2485663) Actualizacin de seguridad para Windows Server 2003 (KB2506212) Actualizacin de seguridad para Windows Server 2003 (KB2507618) Actualizacin de seguridad para Windows Server 2003 (KB2507938) Actualizacin de seguridad para Windows Server 2003 (KB2508429) Actualizacin de seguridad para Windows Server 2003 (KB2509553) Actualizacin de seguridad para Windows Server 2003 (KB2510581) Actualizacin de seguridad para Windows Server 2003 (KB2535512) Actualizacin de seguridad para Windows Server 2003 (KB2536276-v2) Actualizacin de seguridad para Windows Server 2003 (KB2544893-v2) Actualizacin de seguridad para Windows Server 2003 (KB2566454) Actualizacin de seguridad para Windows Server 2003 (KB2570947) Actualizacin de seguridad para Windows Server 2003 (KB2584146) Actualizacin de seguridad para Windows Server 2003 (KB2585542) Actualizacin de seguridad para Windows Server 2003 (KB2598479) Actualizacin de seguridad para Windows Server 2003 (KB2603381) Actualizacin de seguridad para Windows Server 2003 (KB2604078) Actualizacin de seguridad para Windows Server 2003 (KB2618451) Actualizacin de seguridad para Windows Server 2003 (KB2620712) Actualizacin de seguridad para Windows Server 2003 (KB2621146) Actualizacin de seguridad para Windows Server 2003 (KB2624667) Actualizacin de seguridad para Windows Server 2003 (KB2631813) Actualizacin de seguridad para Windows Server 2003 (KB2638806) Actualizacin de seguridad para Windows Server 2003 (KB2644615) Actualizacin de seguridad para Windows Server 2003 (KB2646524) Actualizacin de seguridad para Windows Server 2003 (KB2647170) Actualizacin de seguridad para Windows Server 2003 (KB2653956) Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation 1 1 1 1 1 1 1 1 1 2 2 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 No No No No No No No No No No No No No No No No No No No No No No No No No No No No
Page: 73 of 96
Full Audit
Actualizacin de seguridad para Windows Server 2003 (KB2656358) Actualizacin de seguridad para Windows Server 2003 (KB2656376-v2) Actualizacin de seguridad para Windows Server 2003 (KB2659262) Actualizacin de seguridad para Windows Server 2003 (KB2676562) Actualizacin de seguridad para Windows Server 2003 (KB2685939) Actualizacin de seguridad para Windows Server 2003 (KB2686509) Actualizacin de seguridad para Windows Server 2003 (KB2695962) Actualizacin de seguridad para Windows Server 2003 (KB2707511) Actualizacin de seguridad para Windows Server 2003 (KB2709162) Actualizacin de seguridad para Windows Server 2003 (KB923561) Actualizacin de seguridad para Windows Server 2003 (KB925902-v2) Actualizacin de seguridad para Windows Server 2003 (KB929123) Actualizacin de seguridad para Windows Server 2003 (KB932168) Actualizacin de seguridad para Windows Server 2003 (KB933854) Actualizacin de seguridad para Windows Server 2003 (KB941569) Actualizacin de seguridad para Windows Server 2003 (KB944653) Actualizacin de seguridad para Windows Server 2003 (KB946026) Actualizacin de seguridad para Windows Server 2003 (KB950762) Actualizacin de seguridad para Windows Server 2003 (KB950974) Actualizacin de seguridad para Windows Server 2003 (KB952004) Actualizacin de seguridad para Windows Server 2003 (KB952069) Actualizacin de seguridad para Windows Server 2003 (KB952954) Actualizacin de seguridad para Windows Server 2003 (KB954155) Actualizacin de seguridad para Windows Server 2003 (KB956572) Actualizacin de seguridad para Windows Server 2003 (KB956802) Actualizacin de seguridad para Windows Server 2003 (KB956844) Actualizacin de seguridad para Windows Server 2003 (KB958469) Actualizacin de seguridad para Windows Server 2003 (KB958644) Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation 1 2 1 1 1 1 1 1 1 1 2 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 No No No No No No No No No No No No No No No No No No No No No No No No No No No No
Page: 74 of 96
Full Audit
Actualizacin de seguridad para Windows Server 2003 (KB959426) Actualizacin de seguridad para Windows Server 2003 (KB960803) Actualizacin de seguridad para Windows Server 2003 (KB960859) Actualizacin de seguridad para Windows Server 2003 (KB961501) Actualizacin de seguridad para Windows Server 2003 (KB969059) Actualizacin de seguridad para Windows Server 2003 (KB970430) Actualizacin de seguridad para Windows Server 2003 (KB971032) Actualizacin de seguridad para Windows Server 2003 (KB971657) Actualizacin de seguridad para Windows Server 2003 (KB972270) Actualizacin de seguridad para Windows Server 2003 (KB973507) Actualizacin de seguridad para Windows Server 2003 (KB973540) Actualizacin de seguridad para Windows Server 2003 (KB973869) Actualizacin de seguridad para Windows Server 2003 (KB973904) Actualizacin de seguridad para Windows Server 2003 (KB974112) Actualizacin de seguridad para Windows Server 2003 (KB974318) Actualizacin de seguridad para Windows Server 2003 (KB974392) Actualizacin de seguridad para Windows Server 2003 (KB974571) Actualizacin de seguridad para Windows Server 2003 (KB975025) Actualizacin de seguridad para Windows Server 2003 (KB975467) Actualizacin de seguridad para Windows Server 2003 (KB975560) Actualizacin de seguridad para Windows Server 2003 (KB975713) Actualizacin de seguridad para Windows Server 2003 (KB977816) Actualizacin de seguridad para Windows Server 2003 (KB977914) Actualizacin de seguridad para Windows Server 2003 (KB978338) Actualizacin de seguridad para Windows Server 2003 (KB978542) Actualizacin de seguridad para Windows Server 2003 (KB978695) Actualizacin de seguridad para Windows Server 2003 (KB978706) Actualizacin de seguridad para Windows Server 2003 (KB979309) Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 No No No No No No No No No No No No No No No No No No No No No No No No No No No No
Page: 75 of 96
Full Audit
Actualizacin de seguridad para Windows Server 2003 (KB979482) Actualizacin de seguridad para Windows Server 2003 (KB979687) Actualizacin de seguridad para Windows Server 2003 (KB979907) Actualizacin de seguridad para Windows Server 2003 (KB980232) Actualizacin de seguridad para Windows Server 2003 (KB981322) Actualizacin de seguridad para Windows Server 2003 (KB982132) Actualizacin para Windows Internet Explorer 8 (KB982632) Actualizacin para Windows Server 2003 (KB2345886) Actualizacin para Windows Server 2003 (KB2467659) Actualizacin para Windows Server 2003 (KB2718704) Actualizacin para Windows Server 2003 (KB927891) Actualizacin para Windows Server 2003 (KB936357) Actualizacin para Windows Server 2003 (KB948496) Actualizacin para Windows Server 2003 (KB955759) Actualizacin para Windows Server 2003 (KB968389) Actualizacin para Windows Server 2003 (KB971029) Actualizacin para Windows Server 2003 (KB973815) Microsoft Windows Server 2003 Revisin para Windows Server 2003 (KB2633952-v2) VMware Tools Windows Internet Explorer 8 Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation Microsoft Corporation VMware, Inc. Microsoft Corporation 1 1 1 1 1 1 1 1 1 1 5 1 1 1 1 1 1 5.2 2 3.1.2.14664 20090308.14 0743 No No No No No No No No No No No No No No No No No No No No No
Computer Properties
MAC Address Time to Live Network Role Domain Lan Manager 00-0C-29-57-7C-41 128 PDC (Primary Domain Controller) GFITEST Windows Server 2003 5.2
NETBIOS Names
Name
TESTSERVER TESTSERVER GFITEST
Description
Workstation Service File Server Service Domain Name Page: 76 of 96
Full Audit
GFITEST GFITEST GFITEST ..__MSBROWSE__. GFITEST Domain Controllers Browser Service Elections Master Browser Master Browser Domain Master Browser
Groups
Acceso compatible con versiones anteriores de Windows 2000
Description Members Un grupo de compatibilidad anterior que permite acceso de lectura a todos los usuarios y grupos en el dominio NT AUTHORITY\Usuarios autentificados Los administradores tienen acceso completo y sin restricciones al equipo o dominio GFITEST\Administrador, GFITEST\Administradores de organizacin, GFITEST\Admins. del dominio, GFITEST\gfi Los miembros de este grupo pueden crear confianza de entrada unidireccional a este bosque N/A Los miembros pueden iniciar, activar y usar objetos de COM distribuido en este equipo. N/A Grupo de administradores de DNS N/A Pueden replicar archivos en un dominio N/A Los miembros de este grupo tiene acceso al atributo tokenGroupsGlobalAndUniversal calculado en objetos de usuario NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS Grupo para el Centro de ayuda y soporte tcnico GFITEST\SUPPORT_388945a0 Los invitados tienen predeterminadamente el mismo acceso que los miembros del grupo Usuarios, excepto la cuenta Invitado que tiene ms restricciones GFITEST\Invitado, GFITEST\Invitados del dominio Los miembros en este equipo pueden tener algunos privilegios administrativos para administrar la configuracin de las caractersticas de la red N/A Los operadores de copia pueden sobrescribir restricciones de seguridad con el nico propsito de hacer copias de seguridad o restaurar archivos N/A Pueden administrar cuentas de usuarios y de grupos del dominio N/A Pueden administrar impresoras del dominio N/A Los miembros pueden administrar servidores del dominio
Administradores
Description Members
DnsAdmins
Description Members
Duplicadores
Description Members Description Members
HelpServicesGroup
Description Members
Invitados
Description Members Description Members
Operadores de copia
Description Members
Opers. de cuentas
Description Members
Opers. de impresin
Description Members
Opers. de servidores
Description
Page: 77 of 96
Full Audit
Opers. de servidores
Description Members Description Members Description Members Los miembros pueden administrar servidores del dominio N/A Los miembros de este grupo pueden publicar certificados en Active Directory N/A Servidores de licencias de Terminal Server N/A Los servidores de este grupo pueden obtener propiedades de acceso remoto de los usuarios N/A Miembros de este grupo tienen acceso al servidor Telnet de este sistema. N/A Los usuarios no pueden hacer cambios accidentales o intencionados en el sistema. Pueden ejecutar aplicaciones certificadas pero no la mayora de las heredadas NT AUTHORITY\INTERACTIVE, NT AUTHORITY\Usuarios autentificados, GFITEST\Usuarios del dominio A los miembros de este grupo se les concede el derecho de iniciar sesin remotamente N/A Los miembros de este grupo tiene acceso remoto para supervisar este equipo N/A Los miembros de este grupo tiene acceso remoto al registro de programacin de los contadores de rendimiento de este equipo NT AUTHORITY\Servicio de red
Publicadores de certificados
TelnetClients
Description Members
Usuarios
Description Members
Users
Administrador
Privilege Flags Last Logon Enabled Logons Count Password Age Administrator (*) SCRIPT,NORMAL_ACCOUNT 14-06-2012 10:09:35 Yes 75 11 Days, 0 Hours, 31 Minutes, 29 Seconds Administrator (*) SCRIPT,NORMAL_ACCOUNT 12-06-2012 22:42:01 Yes 20 10 Days, 19 Hours, 51 Minutes, 6 Seconds Guest ACCOUNT_DISABLED,PASSWORD_NOT_REQUIRED,PASSWORD_CANNOT_BE_CH ANGED,NORMAL_ACCOUNT Never No 0 0 Seconds
gfi
Privilege Flags Comment Last Logon Enabled Logons Count Password Age
Invitado
Privilege Flags Full Name Last Logon Enabled Logons Count Password Age
Page: 78 of 96
Full Audit
krbtgt
Privilege Flags Comment Last Logon Enabled Logons Count Password Age User ACCOUNT_DISABLED,NORMAL_ACCOUNT Cuenta de servicio de centro de distribucin principal Never No 0 10 Days, 20 Hours, 1 Minutes, 1 Seconds User ACCOUNT_DISABLED,PASSWORD_CANNOT_BE_CHANGED,NORMAL_ACCOUNT sta es una cuenta de proveedor de Servicios de ayuda y soporte tcnico Never No 0 10 Days, 20 Hours, 14 Minutes, 41 Seconds Guest SCRIPT,WORKSTATION_TRUST_ACCOUNT
SUPPORT_388945a0
Privilege Flags Comment Last Logon Enabled Logons Count Password Age
TESTCLIENT-PC$
Privilege Flags Comment Full Name Last Logon Enabled Logons Count Password Age
14-06-2012 9:56:39 Yes 20 5 Days, 5 Hours, 15 Minutes, 19 Seconds Guest SCRIPT,SERVER_TRUST_ACCOUNT 14-06-2012 9:04:28 Yes 23 10 Days, 20 Hours, 0 Minutes, 30 Seconds
TESTSERVER$
Privilege Flags Last Logon Enabled Logons Count Password Age
Logged on Users
NT AUTHORITY\SERVICIO LOCAL
Elapsed Time Idle Time User Type Elapsed Time Idle Time User Type 0 Seconds 0 Seconds Local User 0 Seconds 0 Seconds Local User 5 Hours, 1 Minutes, 12 Seconds 0 Seconds 14-06-2012 9:06:33 Local User 0 Seconds 0 Seconds Local User 40 Minutes, 43 Seconds 0 Seconds 14-06-2012 14:10:02 \Device\NetbiosSmb Remote User
NT AUTHORITY\Servicio de red
GFITEST\Administrador
Elapsed Time Idle Time Logon Date User Type
NT AUTHORITY\SYSTEM
Elapsed Time Idle Time User Type
Vanser-PC\ADMINISTRADOR
Elapsed Time Idle Time Logon Date Transport User Type
Page: 79 of 96
Vanser-PC\ADMINISTRADOR
Elapsed Time Idle Time Logon Date Transport User Type
Shares
ADMIN$ Path Remark Passworded Printer C$ Path Remark Passworded Printer IPC$ Path Remark Passworded Printer NETLOGON Path Remark Passworded Printer SYSVOL Path Remark Passworded Printer
C:\WINDOWS Admin remota No No C:\ Recurso predeterminado No No N/A IPC remota No No C:\WINDOWS\SYSVOL\sysvol\GFITEST\SCRIPTS Recurso compartido del servidor de inicio de sesin No No C:\WINDOWS\SYSVOL\sysvol Recurso compartido del servidor de inicio de sesin No No
Services
Acceso a dispositivo de interfaz humana
Account Name Started Status LocalSystem Disabled Stopped
Actualizaciones automticas
Account Name Started Status LocalSystem Automatic Started
Page: 80 of 96
Account Name
Administracin de aplicaciones
Account Name Started Status LocalSystem Manual Stopped
Almacenamiento protegido
Account Name Started Status LocalSystem Automatic Started
Audio de Windows
Account Name Started Status LocalSystem Disabled Stopped
Page: 81 of 96
Cliente DHCP
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Cliente DNS
Account Name Started Status NT AUTHORITY\NetworkService Automatic Started
Cliente Web
Account Name Started Status NT AUTHORITY\LocalService Disabled Stopped
Cola de impresin
Account Name Started Status LocalSystem Automatic Started
Conexiones de red
Account Name Started Status LocalSystem Manual Started
Page: 82 of 96
Full Audit
Configuracin inalmbrica
Account Name Started Status LocalSystem Automatic Started
DDE de red
Account Name Started Status LocalSystem Disabled Stopped
Estacin de trabajo
Account Name Started Status LocalSystem Automatic Started
Examinador de equipos
Account Name Started Status LocalSystem Automatic Started
Page: 83 of 96
Examinador de equipos
LocalSystem Automatic Started
Horario de Windows
Account Name Started Status NT AUTHORITY\LocalService Automatic Started
Instantneas de volumen
Account Name Started Status LocalSystem Manual Stopped
Page: 84 of 96
Full Audit
Marco de controlador en modo de usuario Windows
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Mensajera interna
Account Name Started Status LocalSystem Automatic Started
Messenger
Account Name Started Status LocalSystem Disabled Stopped
Portafolios
Account Name Started Status LocalSystem Disabled Stopped
Programador de tareas
Account Name Started Status LocalSystem Automatic Started
Page: 85 of 96
Account Name
Registro de licencias
Account Name Started Status NT AUTHORITY\NetworkService Disabled Stopped
Registro de sucesos
Account Name Started Status LocalSystem Automatic Started
Registro remoto
Account Name Started Status NT AUTHORITY\LocalService Automatic Started
Servicio de alerta
Account Name Started Status NT AUTHORITY\LocalService Disabled Stopped
Page: 86 of 96
Servicios de cifrado
Account Name Started Status LocalSystem Automatic Started
Servicios IPSEC
Account Name Started Status LocalSystem Automatic Started
Servidor
Account Name Started Status LocalSystem Automatic Started
Page: 87 of 96
Full Audit
Servidor DNS
Account Name Started Status LocalSystem Automatic Started
SSL de HTTP
Account Name Started Status LocalSystem Manual Stopped
Tarjeta inteligente
Account Name Started Status NT AUTHORITY\LocalService Manual Stopped
Telefona
Account Name Started Status LocalSystem Manual Started
Telnet
Account Name Started Status NT AUTHORITY\LocalService Disabled Stopped
Temas
Account Name Started Status LocalSystem Disabled Stopped
Page: 88 of 96
Windows Installer
Account Name Started Status LocalSystem Manual Stopped
Processes
alg.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 3532 376 SERVICIO LOCAL C:\WINDOWS\System32\alg.exe C:\WINDOWS\System32\alg.exe 93 5 8
csrss.exe
PID PPID User Name Path Command Line 296 244 SYSTEM C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 531 11 13
ctfmon.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2636 2504 Administrador C:\WINDOWS\system32\ctfmon.exe "C:\WINDOWS\system32\ctfmon.exe" 83 1 8
dfssvc.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1284 376 SYSTEM C:\WINDOWS\system32\Dfssvc.exe C:\WINDOWS\system32\Dfssvc.exe 118 12 8
Page: 89 of 96
dllhost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2032 376 SYSTEM C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D00805FC79235} 197 15 8
dns.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1336 376 SYSTEM C:\WINDOWS\System32\dns.exe C:\WINDOWS\System32\dns.exe 5195 13 8
explorer.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2504 2488 Administrador C:\WINDOWS\Explorer.EXE C:\WINDOWS\Explorer.EXE 448 10 8
ismserv.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1432 376 SYSTEM C:\WINDOWS\System32\ismserv.exe C:\WINDOWS\System32\ismserv.exe 119 9 8
lsass.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 388 324 SYSTEM C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\lsass.exe 917 54 9
Page: 90 of 96
Full
PID PPID User Name Audit Path Command Line Handle Count Thread Count Priority
mmc.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 3300 2504 Administrador C:\WINDOWS\system32\mmc.exe "C:\WINDOWS\system32\mmc.exe" "C:\WINDOWS\system32\gpedit.msc" 336 5 8
msdtc.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1192 376 Servicio de red C:\WINDOWS\system32\msdtc.exe C:\WINDOWS\system32\msdtc.exe 150 13 8
ntfrs.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1672 376 SYSTEM C:\WINDOWS\system32\ntfrs.exe C:\WINDOWS\system32\ntfrs.exe 274 20 8
services.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 376 324 SYSTEM C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\services.exe 340 17 9
smss.exe
PID PPID User Name Command Line Handle Count Thread Count Priority 244 4 SYSTEM \SystemRoot\System32\smss.exe 19 3 11
spoolsv.exe
PID PPID User Name Path Command Line Handle Count Thread Count 1152 376 SYSTEM C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\spoolsv.exe 125 13
Page: 91 of 96
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 756 376 Servicio de red C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe -k rpcss 307 10 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 808 376 Servicio de red C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe -k NetworkService 149 9 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 836 376 SERVICIO LOCAL C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe -k LocalService 178 14 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 876 376 SYSTEM C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs 1526 90 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1404 376 SYSTEM C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe -k WinErr 68 2 8
Page: 92 of 96
Full
PPID User Name Path Audit Command Line Handle Count Thread Count Priority
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1464 376 SERVICIO LOCAL C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe -k regsvc 59 3 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1888 376 SYSTEM C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe -k termsvcs 140 15 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 3020 376 SYSTEM C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe -k tapisrv 224 14 8
svchost.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 628 376 SYSTEM C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch 89 6 8
System
PID PPID User Name Handle Count Thread Count Priority 4 0 SYSTEM 3438 51 8
Page: 93 of 96
PID
0 0 0 1 0
vmacthlp.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 580 376 SYSTEM C:\Archivos de programa\VMware\VMware Tools\vmacthlp.exe "C:\Archivos de programa\VMware\VMware Tools\vmacthlp.exe" 31 1 8
VMwareService.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 1616 376 SYSTEM C:\Archivos de programa\VMware\VMware Tools\VMwareService.exe "C:\Archivos de programa\VMware\VMware Tools\VMwareService.exe" 103 4 13
VMwareTray.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2616 2504 Administrador C:\Archivos de programa\VMware\VMware Tools\VMwareTray.exe "C:\Archivos de programa\VMware\VMware Tools\VMwareTray.exe" 55 1 8
VMwareUser.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 2624 2504 Administrador C:\Archivos de programa\VMware\VMware Tools\VMwareUser.exe "C:\Archivos de programa\VMware\VMware Tools\VMwareUser.exe" 72 2 8
winlogon.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 324 244 SYSTEM C:\WINDOWS\system32\winlogon.exe winlogon.exe 559 20 13
wmiprvse.exe
PID PPID User Name Path Command Line Handle Count Thread Count 744 628 SYSTEM C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\wbem\wmiprvse.exe 157 4
Page: 94 of 96
wmiprvse.exe
PID PPID User Name Path Command Line Handle Count Thread Count Priority 3360 628 Servicio de red C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\wbem\wmiprvse.exe 227 11 8
Sessions
Computer/IP Connection Time User Name User Flags Transport Open Files Client Type Idle Time Computer/IP Connection Time User Name User Flags Transport Open Files Client Type Idle Time
Registry Information
Node Name Registry Entry
RegisteredOwner : Server RegisteredOrganization : Serv ProductName : Microsoft Windows Server 2003 CurrentBuildNumber : 3790 CurrentType : Uniprocessor Free CurrentVersion : 5.2 PathName : C:\WINDOWS ProductId : 69815-640-4593923-45951 SoftwareType : SYSTEM SourcePath : D:\I386 Page: 95 of 96
Full Audit
SystemRoot : C:\WINDOWS VendorIdentifier : GenuineIntel Identifier : x86 Family 6 Model 23 Stepping 8 ~MHz : 2393 DriverDesc : VMware SVGA II CSDVersion : Service Pack 2 InstallLanguage : 0C0A Default : 0c0a DenyTerminalServerConnections : 1 Run Run VMware Tools : "C:\Archivos de programa\VMware\VMware Tools\VMwareTray.exe" VMware User Process : "C:\Archivos de programa\VMware\VMware Tools\VMwareUser.exe"
Password Policy
Minimum Password Length
7 Chars
Force Logoff
Never Force
Password History
24
Success
True True True True False True False False True
Failure
False False False False False False False False False
SNMP Information
No records matching the current criteria were found!
Remote TOD
Time of Day
14-06-2012 10:09:54
Up Time
1 Hours, 7 Minutes, 49 Seconds
Virtual Machines
No records matching the current criteria were found!
Page: 96 of 96