System/Kernel
PS C:\Web\University> cmd /c ver
cmd /c ver
Microsoft Windows [Version 10.0.17763.6414]
PS C:\Web\University> systeminfo ; Get-ComputerInfo
systeminfo ; Get-ComputerInfo
Host Name: DC
OS Name: Microsoft Windows Server 2019 Datacenter
OS Version: 10.0.17763 N/A Build 17763
OS Manufacturer: Microsoft Corporation
OS Configuration: Primary Domain Controller
OS Build Type: Multiprocessor Free
Registered Owner: Windows User
Registered Organization:
Product ID: 00430-00000-00000-AA551
Original Install Date: 2/12/2024, 2:27:39 PM
System Boot Time: 10/26/2024, 10:10:02 PM
System Manufacturer: VMware, Inc.
System Model: VMware7,1
System Type: x64-based PC
Processor(s): 2 Processor(s) Installed.
[01]: AMD64 Family 25 Model 1 Stepping 1 AuthenticAMD ~2595 Mhz
[02]: AMD64 Family 25 Model 1 Stepping 1 AuthenticAMD ~2595 Mhz
BIOS Version: VMware, Inc. VMW71.00V.24224532.B64.2408191458, 8/19/2024
Windows Directory: C:\Windows
System Directory: C:\Windows\system32
Boot Device: \Device\HarddiskVolume2
System Locale: en-us;English (United States)
Input Locale: en-us;English (United States)
Time Zone: (UTC-08:00) Pacific Time (US & Canada)
Total Physical Memory: 6,143 MB
Available Physical Memory: 2,786 MB
Virtual Memory: Max Size: 7,167 MB
Virtual Memory: Available: 3,708 MB
Virtual Memory: In Use: 3,459 MB
Page File Location(s): C:\pagefile.sys
Domain: university.htb
Logon Server: N/A
Hotfix(s): N/A
Network Card(s): 2 NIC(s) Installed.
[01]: Hyper-V Virtual Ethernet Adapter
Connection Name: vEthernet (Internal-VSwitch1)
DHCP Enabled: No
IP address(es)
[01]: 192.168.99.1
[02]: fe80::47c0:fbc9:2d7b:e4bb
[02]: vmxnet3 Ethernet Adapter
Connection Name: Ethernet0 2
DHCP Enabled: Yes
DHCP Server: 10.129.0.1
IP address(es)
[01]: 10.129.252.94
[02]: fe80::381c:7ab:c80:ef91
[03]: dead:beef::5c4a:da33:e1f2:e210
Hyper-V Requirements: A hypervisor has been detected. Features required for Hyper-V will not be displayed.
WindowsBuildLabEx : 17763.1.amd64fre.rs5_release.180914-1434
WindowsCurrentVersion : 6.3
WindowsEditionId : ServerDatacenter
WindowsInstallationType : Server Core
WindowsInstallDateFromRegistry : 2/12/2024 10:27:39 PM
WindowsProductId : 00430-00000-00000-AA551
WindowsProductName : Windows Server 2019 Datacenter
WindowsRegisteredOrganization :
WindowsRegisteredOwner : Windows User
WindowsSystemRoot : C:\Windows
WindowsVersion : 1809
BiosCharacteristics : {4, 7, 9, 11...}
BiosBIOSVersion : {INTEL - 6040000, VMW71.00V.24224532.B64.2408191458,
VMware, Inc. - 10000}
BiosBuildNumber :
BiosCaption : VMW71.00V.24224532.B64.2408191458
BiosCodeSet :
BiosCurrentLanguage :
BiosDescription : VMW71.00V.24224532.B64.2408191458
BiosEmbeddedControllerMajorVersion : 255
BiosEmbeddedControllerMinorVersion : 255
BiosFirmwareType : Uefi
BiosIdentificationCode :
BiosInstallableLanguages :
BiosInstallDate :
BiosLanguageEdition :
BiosListOfLanguages :
BiosManufacturer : VMware, Inc.
BiosName : VMW71.00V.24224532.B64.2408191458
BiosOtherTargetOS :
BiosPrimaryBIOS : True
BiosReleaseDate : 8/18/2024 5:00:00 PM
BiosSeralNumber : VMware-42 14 9c 77 c7 28 fe 14-ca b7 59 5e 3d 7c 2c 08
BiosSMBIOSBIOSVersion : VMW71.00V.24224532.B64.2408191458
BiosSMBIOSMajorVersion : 2
BiosSMBIOSMinorVersion : 7
BiosSMBIOSPresent : True
BiosSoftwareElementState : Running
BiosStatus : OK
BiosSystemBiosMajorVersion : 255
BiosSystemBiosMinorVersion : 255
BiosTargetOperatingSystem : 0
BiosVersion : INTEL - 6040000
CsAdminPasswordStatus : Enabled
CsAutomaticManagedPagefile : True
CsAutomaticResetBootOption : True
CsAutomaticResetCapability : True
CsBootOptionOnLimit : DoNotReboot
CsBootOptionOnWatchDog : DoNotReboot
CsBootROMSupported : True
CsBootStatus : {0, 0, 0, 33...}
CsBootupState : Normal boot
CsCaption : DC
CsChassisBootupState : Safe
CsChassisSKUNumber :
CsCurrentTimeZone : -420
CsDaylightInEffect : True
CsDescription : AT/AT COMPATIBLE
CsDNSHostName : DC
CsDomain : university.htb
CsDomainRole : PrimaryDomainController
CsEnableDaylightSavingsTime : True
CsFrontPanelResetStatus : Unknown
CsHypervisorPresent : True
CsInfraredSupported : False
CsInitialLoadInfo :
CsInstallDate :
CsKeyboardPasswordStatus : Unknown
CsLastLoadInfo :
CsManufacturer : VMware, Inc.
CsModel : VMware7,1
CsName : DC
CsNetworkAdapters : {vEthernet (Internal-VSwitch1), Ethernet0 2}
CsNetworkServerModeEnabled : True
CsNumberOfLogicalProcessors : 4
CsNumberOfProcessors : 2
CsProcessors : {AMD EPYC 7513 32-Core Processor , AMD EPYC
7513 32-Core Processor }
CsOEMStringArray : {[MS_VM_CERT/SHA1/27d66596a61c48dd3dc7216fd715126e33f59ae7],
Welcome to the Virtual Machine}
CsPartOfDomain : True
CsPauseAfterReset : 3932100000
CsPCSystemType : Desktop
CsPCSystemTypeEx : Desktop
CsPowerManagementCapabilities :
CsPowerManagementSupported :
CsPowerOnPasswordStatus : Disabled
CsPowerState : Unknown
CsPowerSupplyState : Safe
CsPrimaryOwnerContact :
CsPrimaryOwnerName : Windows User
CsResetCapability : Other
CsResetCount : -1
CsResetLimit : -1
CsRoles : {LM_Workstation, LM_Server, Primary_Domain_Controller,
Timesource...}
CsStatus : OK
CsSupportContactDescription :
CsSystemFamily :
CsSystemSKUNumber :
CsSystemType : x64-based PC
CsThermalState : Safe
CsTotalPhysicalMemory : 6441402368
CsPhyicallyInstalledMemory : 6291456
CsUserName :
CsWakeUpType : PowerSwitch
CsWorkgroup :
OsName : Microsoft Windows Server 2019 Datacenter
OsType : WINNT
OsOperatingSystemSKU : DatacenterServerEdition
OsVersion : 10.0.17763
OsCSDVersion :
OsBuildNumber : 17763
OsHotFixes : {}
OsBootDevice : \Device\HarddiskVolume2
OsSystemDevice : \Device\HarddiskVolume3
OsSystemDirectory : C:\Windows\system32
OsSystemDrive : C:
OsWindowsDirectory : C:\Windows
OsCountryCode : 1
OsCurrentTimeZone : -420
OsLocaleID : 0409
OsLocale : en-US
OsLocalDateTime : 10/27/2024 1:43:39 AM
OsLastBootUpTime : 10/26/2024 10:10:02 PM
OsUptime : 03:33:36.7118010
OsBuildType : Multiprocessor Free
OsCodeSet : 1252
OsDataExecutionPreventionAvailable : True
OsDataExecutionPrevention32BitApplications : True
OsDataExecutionPreventionDrivers : True
OsDataExecutionPreventionSupportPolicy : OptOut
OsDebug : False
OsDistributed : False
OsEncryptionLevel : 256
OsForegroundApplicationBoost : Maximum
OsTotalVisibleMemorySize : 6290432
OsFreePhysicalMemory : 2842356
OsTotalVirtualMemorySize : 7339008
OsFreeVirtualMemory : 3789520
OsInUseVirtualMemory : 3549488
OsTotalSwapSpaceSize :
OsSizeStoredInPagingFiles : 1048576
OsFreeSpaceInPagingFiles : 964196
OsPagingFiles : {C:\pagefile.sys}
OsHardwareAbstractionLayer : 10.0.17763.4644
OsInstallDate : 2/12/2024 2:27:39 PM
OsManufacturer : Microsoft Corporation
OsMaxNumberOfProcesses : 4294967295
OsMaxProcessMemorySize : 137438953344
OsMuiLanguages : {en-US}
OsNumberOfLicensedUsers :
OsNumberOfProcesses : 85
OsNumberOfUsers : 5
OsOrganization :
OsArchitecture : 64-bit
OsLanguage : en-US
OsProductSuites : {TerminalServices, DatacenterEdition,
TerminalServicesSingleSession}
OsOtherTypeDescription :
OsPAEEnabled :
OsPortableOperatingSystem : False
OsPrimary : True
OsProductType : DomainController
OsRegisteredUser : Windows User
OsSerialNumber : 00430-00000-00000-AA551
OsServicePackMajorVersion : 0
OsServicePackMinorVersion : 0
OsStatus : OK
OsSuites : {TerminalServices, DatacenterEdition,
TerminalServicesSingleSession}
OsServerLevel : ServerCore
KeyboardLayout : en-US
TimeZone : (UTC-08:00) Pacific Time (US & Canada)
LogonServer :
PowerPlatformRole : Desktop
HyperVisorPresent : True
HyperVRequirementDataExecutionPreventionAvailable :
HyperVRequirementSecondLevelAddressTranslation :
HyperVRequirementVirtualizationFirmwareEnabled :
HyperVRequirementVMMonitorModeExtensions :
DeviceGuardSmartStatus : Off
DeviceGuardRequiredSecurityProperties : {0}
DeviceGuardAvailableSecurityProperties : {BaseVirtualizationSupport, 5, 6}
DeviceGuardSecurityServicesConfigured : {0}
DeviceGuardSecurityServicesRunning : {0}
DeviceGuardCodeIntegrityPolicyEnforcementStatus :
DeviceGuardUserModeCodeIntegrityPolicyEnforcementStatus : Version 10.0.17763.6414Windows Server 2019 Datacenterx64-based2 Processor(s)
Networks
PS C:\Web\University> ipconfig /all ; arp -a ; print route
ipconfig /all ; arp -a ; print route
Windows IP Configuration
Host Name . . . . . . . . . . . . : DC
Primary Dns Suffix . . . . . . . : university.htb
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : university.htb
.htb
Ethernet adapter vEthernet (Internal-VSwitch1):
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hyper-V Virtual Ethernet Adapter
Physical Address. . . . . . . . . : 00-15-5D-05-80-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::47c0:fbc9:2d7b:e4bb%6(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.99.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 234886493
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-2D-5C-60-6E-08-00-27-66-73-4A
DNS Servers . . . . . . . . . . . : 127.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled
Ethernet adapter Ethernet0 2:
Connection-specific DNS Suffix . : .htb
Description . . . . . . . . . . . : vmxnet3 Ethernet Adapter
Physical Address. . . . . . . . . : 00-50-56-94-B5-45
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : dead:beef::5c4a:da33:e1f2:e210(Preferred)
Link-local IPv6 Address . . . . . : fe80::381c:7ab:c80:ef91%4(Preferred)
IPv4 Address. . . . . . . . . . . : 10.129.252.94(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Lease Obtained. . . . . . . . . . : Saturday, October 26, 2024 10:10:30 PM
Lease Expires . . . . . . . . . . : Sunday, October 27, 2024 2:40:25 AM
Default Gateway . . . . . . . . . : fe80::250:56ff:fe94:3911%4
10.129.0.1
DHCP Server . . . . . . . . . . . : 10.129.0.1
DHCPv6 IAID . . . . . . . . . . . : 251678806
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-2D-5C-60-6E-08-00-27-66-73-4A
DNS Servers . . . . . . . . . . . : 127.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled
Interface: 10.129.252.94 --- 0x4
Internet Address Physical Address Type
10.129.0.1 00-50-56-94-39-11 dynamic
10.129.1.206 00-50-56-94-5d-e5 dynamic
10.129.2.74 00-50-56-94-fc-78 dynamic
10.129.4.244 00-50-56-94-1f-95 dynamic
10.129.5.47 00-50-56-94-1c-0f dynamic
10.129.6.200 00-50-56-94-57-68 dynamic
10.129.8.121 00-50-56-94-8f-ab dynamic
10.129.8.150 00-50-56-94-18-b5 dynamic
10.129.11.12 00-50-56-94-09-e3 dynamic
10.129.14.15 00-50-56-94-34-0d dynamic
10.129.14.255 00-50-56-94-b8-ed dynamic
10.129.17.94 00-50-56-94-d4-fa dynamic
10.129.19.196 00-50-56-94-b0-3a dynamic
10.129.21.10 00-50-56-94-80-33 dynamic
10.129.21.138 00-50-56-94-66-a8 dynamic
10.129.21.151 00-50-56-94-ea-6e dynamic
10.129.22.87 00-50-56-94-3f-ce dynamic
10.129.23.58 00-50-56-94-b9-a9 dynamic
10.129.24.14 00-50-56-94-a6-d5 dynamic
10.129.26.67 00-50-56-94-14-a3 dynamic
10.129.29.17 00-50-56-94-85-fd dynamic
10.129.29.153 00-50-56-94-d7-8d dynamic
10.129.31.44 00-50-56-94-af-87 dynamic
10.129.31.200 00-50-56-94-9b-0c dynamic
10.129.32.61 00-50-56-94-55-63 dynamic
10.129.33.46 00-50-56-94-b9-9a dynamic
10.129.34.94 00-50-56-94-fd-70 dynamic
10.129.35.136 00-50-56-94-f8-52 dynamic
10.129.36.68 00-50-56-94-84-02 dynamic
10.129.37.94 00-50-56-94-1c-09 dynamic
10.129.37.136 00-50-56-94-85-ed dynamic
10.129.37.207 00-50-56-94-45-1e dynamic
10.129.39.141 00-50-56-94-09-5d dynamic
10.129.40.43 00-50-56-94-73-36 dynamic
10.129.42.221 00-50-56-94-81-c5 dynamic
10.129.44.109 00-50-56-94-72-19 dynamic
10.129.44.183 00-50-56-94-37-ce dynamic
10.129.45.141 00-50-56-94-5b-73 dynamic
10.129.46.132 00-50-56-94-fe-f1 dynamic
10.129.47.179 00-50-56-94-bd-25 dynamic
10.129.47.193 00-50-56-94-dc-fe dynamic
10.129.47.238 00-50-56-94-14-87 dynamic
10.129.48.252 00-50-56-94-4c-19 dynamic
10.129.49.23 00-50-56-94-f6-7a dynamic
10.129.49.145 00-50-56-94-8f-2a dynamic
10.129.51.194 00-50-56-94-98-07 dynamic
10.129.52.34 00-50-56-94-bb-e4 dynamic
10.129.52.171 00-50-56-94-6e-68 dynamic
10.129.52.217 00-50-56-94-2d-bd dynamic
10.129.53.55 00-50-56-94-f0-45 dynamic
10.129.56.177 00-50-56-94-51-c1 dynamic
10.129.58.239 00-50-56-94-0d-37 dynamic
10.129.59.28 00-50-56-94-01-80 dynamic
10.129.60.165 00-50-56-94-cd-b3 dynamic
10.129.63.132 00-50-56-94-1a-56 dynamic
10.129.64.17 00-50-56-94-cf-c8 dynamic
10.129.64.212 00-50-56-94-41-f7 dynamic
10.129.66.206 00-50-56-94-29-cf dynamic
10.129.68.143 00-50-56-94-17-e6 dynamic
10.129.68.216 00-50-56-94-6d-20 dynamic
10.129.70.1 00-50-56-94-06-c4 dynamic
10.129.70.230 00-50-56-94-0b-2c dynamic
10.129.71.253 00-50-56-94-68-13 dynamic
10.129.73.197 00-50-56-94-06-44 dynamic
10.129.74.135 00-50-56-94-03-35 dynamic
10.129.77.132 00-50-56-94-bf-f5 dynamic
10.129.79.64 00-50-56-94-b5-dc dynamic
10.129.80.218 00-50-56-94-c7-d4 dynamic
10.129.82.19 00-50-56-94-76-39 dynamic
10.129.88.45 00-50-56-94-84-e4 dynamic
10.129.89.7 00-50-56-94-22-c5 dynamic
10.129.89.108 00-50-56-94-ca-62 dynamic
10.129.92.255 00-50-56-94-09-33 dynamic
10.129.95.7 00-50-56-94-4e-3c dynamic
10.129.95.251 00-50-56-94-0e-46 dynamic
10.129.96.171 00-50-56-94-c6-b1 dynamic
10.129.100.218 00-50-56-94-82-54 dynamic
10.129.101.87 00-50-56-94-6f-7f dynamic
10.129.101.152 00-50-56-94-5a-09 dynamic
10.129.103.107 00-50-56-94-c4-57 dynamic
10.129.104.202 00-50-56-94-cc-e8 dynamic
10.129.106.109 00-50-56-94-a9-14 dynamic
10.129.108.81 00-50-56-94-a1-27 dynamic
10.129.109.24 00-50-56-94-c2-fb dynamic
10.129.109.202 00-50-56-94-cf-9f dynamic
10.129.110.137 00-50-56-94-91-73 dynamic
10.129.111.230 00-50-56-94-54-c9 dynamic
10.129.114.26 00-50-56-94-b5-c2 dynamic
10.129.115.128 00-50-56-94-c8-42 dynamic
10.129.116.47 00-50-56-94-95-99 dynamic
10.129.116.56 00-50-56-94-89-46 dynamic
10.129.116.79 00-50-56-94-ec-a7 dynamic
10.129.116.98 00-50-56-94-a9-6d dynamic
10.129.118.105 00-50-56-94-9a-c0 dynamic
10.129.118.169 00-50-56-94-cd-94 dynamic
10.129.120.22 00-50-56-94-fb-79 dynamic
10.129.126.29 00-50-56-94-75-44 dynamic
10.129.127.49 00-50-56-94-42-5d dynamic
10.129.129.0 00-50-56-94-25-bb dynamic
10.129.129.86 00-50-56-94-a8-03 dynamic
10.129.131.61 00-50-56-94-c2-ca dynamic
10.129.132.116 00-50-56-94-fc-52 dynamic
10.129.132.225 00-50-56-94-8b-e0 dynamic
10.129.134.140 00-50-56-94-6b-18 dynamic
10.129.134.234 00-50-56-94-00-69 dynamic
10.129.137.79 00-50-56-94-e4-91 dynamic
10.129.138.172 00-50-56-94-e0-2a dynamic
10.129.140.8 00-50-56-94-48-5a dynamic
10.129.140.162 00-50-56-94-5f-b8 dynamic
10.129.141.17 00-50-56-94-af-ce dynamic
10.129.142.91 00-50-56-94-d4-34 dynamic
10.129.143.71 00-50-56-94-c7-da dynamic
10.129.144.77 00-50-56-94-a4-5e dynamic
10.129.146.222 00-50-56-94-37-37 dynamic
10.129.147.157 00-50-56-94-bb-32 dynamic
10.129.147.245 00-50-56-94-0e-6f dynamic
10.129.150.244 00-50-56-94-c8-0b dynamic
10.129.152.232 00-50-56-94-24-22 dynamic
10.129.154.231 00-50-56-94-e3-d5 dynamic
10.129.155.12 00-50-56-94-22-41 dynamic
10.129.157.227 00-50-56-94-47-3f dynamic
10.129.158.156 00-50-56-94-d3-1d dynamic
10.129.159.10 00-50-56-94-b7-24 dynamic
10.129.159.110 00-50-56-94-35-2b dynamic
10.129.159.236 00-50-56-94-c8-25 dynamic
10.129.160.142 00-50-56-94-a8-d4 dynamic
10.129.162.3 00-50-56-94-04-8c dynamic
10.129.164.54 00-50-56-94-02-f3 dynamic
10.129.164.125 00-50-56-94-58-74 dynamic
10.129.164.242 00-50-56-94-97-fb dynamic
10.129.165.198 00-50-56-94-8b-dc dynamic
10.129.165.251 00-50-56-94-b3-cd dynamic
10.129.167.11 00-50-56-94-06-aa dynamic
10.129.170.41 00-50-56-94-df-f2 dynamic
10.129.175.60 00-50-56-94-38-d2 dynamic
10.129.177.204 00-50-56-94-7b-78 dynamic
10.129.178.134 00-50-56-94-81-f7 dynamic
10.129.180.115 00-50-56-94-44-ce dynamic
10.129.184.20 00-50-56-94-b5-7c dynamic
10.129.185.102 00-50-56-94-cb-e4 dynamic
10.129.185.205 00-50-56-94-28-d2 dynamic
10.129.187.119 00-50-56-94-fa-0c dynamic
10.129.188.233 00-50-56-94-26-05 dynamic
10.129.189.63 00-50-56-94-0e-4f dynamic
10.129.190.157 00-50-56-94-eb-06 dynamic
10.129.192.72 00-50-56-94-68-66 dynamic
10.129.192.136 00-50-56-94-64-f8 dynamic
10.129.193.76 00-50-56-94-34-f9 dynamic
10.129.196.190 00-50-56-94-32-bc dynamic
10.129.197.17 00-50-56-94-de-c3 dynamic
10.129.197.157 00-50-56-94-f8-d4 dynamic
10.129.198.108 00-50-56-94-54-d0 dynamic
10.129.198.244 00-50-56-94-4f-18 dynamic
10.129.199.127 00-50-56-94-1c-2b dynamic
10.129.199.150 00-50-56-94-5e-71 dynamic
10.129.199.183 00-50-56-94-d6-c7 dynamic
10.129.200.145 00-50-56-94-a2-e5 dynamic
10.129.200.179 00-50-56-94-cd-e4 dynamic
10.129.200.183 00-50-56-94-0d-6e dynamic
10.129.202.18 00-50-56-94-6b-7e dynamic
10.129.204.163 00-50-56-94-6d-c5 dynamic
10.129.205.8 00-50-56-94-f2-82 dynamic
10.129.209.168 00-50-56-94-5f-50 dynamic
10.129.211.72 00-50-56-94-1e-a3 dynamic
10.129.211.81 00-50-56-94-6e-db dynamic
10.129.212.123 00-50-56-94-47-d1 dynamic
10.129.213.27 00-50-56-94-10-cf dynamic
10.129.214.100 00-50-56-94-d5-05 dynamic
10.129.217.201 00-50-56-94-70-07 dynamic
10.129.217.238 00-50-56-94-fe-98 dynamic
10.129.218.89 00-50-56-94-f5-fd dynamic
10.129.220.246 00-50-56-94-e3-45 dynamic
10.129.224.14 00-50-56-94-32-29 dynamic
10.129.226.52 00-50-56-94-ee-43 dynamic
10.129.226.156 00-50-56-94-82-78 dynamic
10.129.228.154 00-50-56-94-bc-b2 dynamic
10.129.229.225 00-50-56-94-11-0b dynamic
10.129.230.161 00-50-56-94-8e-20 dynamic
10.129.231.26 00-50-56-94-8e-34 dynamic
10.129.231.182 00-50-56-94-79-bc dynamic
10.129.232.109 00-50-56-94-7a-07 dynamic
10.129.232.142 00-50-56-94-05-05 dynamic
10.129.234.240 00-50-56-94-ca-18 dynamic
10.129.235.240 00-50-56-94-3b-68 dynamic
10.129.237.45 00-50-56-94-f0-38 dynamic
10.129.242.2 00-50-56-94-07-fa dynamic
10.129.242.162 00-50-56-94-fb-70 dynamic
10.129.243.82 00-50-56-94-99-7e dynamic
10.129.243.190 00-50-56-94-70-28 dynamic
10.129.244.4 00-50-56-94-3c-36 dynamic
10.129.244.144 00-50-56-94-71-1f dynamic
10.129.244.153 00-50-56-94-e1-aa dynamic
10.129.248.125 00-50-56-94-8b-df dynamic
10.129.251.20 00-50-56-94-85-12 dynamic
10.129.252.211 00-50-56-94-fd-c4 dynamic
10.129.253.174 00-50-56-94-6f-cd dynamic
10.129.255.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.251 01-00-5e-00-00-fb static
224.0.0.252 01-00-5e-00-00-fc static
255.255.255.255 ff-ff-ff-ff-ff-ff static
Interface: 192.168.99.1 --- 0x6
Internet Address Physical Address Type
192.168.99.2 00-15-5d-05-80-00 dynamic
192.168.99.12 00-15-5d-05-80-07 dynamic
192.168.99.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.251 01-00-5e-00-00-fb static
224.0.0.252 01-00-5e-00-00-fc static
Unable to initialize device PRN192.168.99.1192.168.99.2192.168.99.12
PS C:\Web\University> netstat -ano | Select-String LIST
netstat -ano | Select-String LIST
TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 2240
TCP 0.0.0.0:88 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 408
TCP 0.0.0.0:389 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:464 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:593 0.0.0.0:0 LISTENING 408
TCP 0.0.0.0:636 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:2179 0.0.0.0:0 LISTENING 2668
TCP 0.0.0.0:3268 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:3269 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:5985 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:9389 0.0.0.0:0 LISTENING 2908
TCP 0.0.0.0:47001 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:49664 0.0.0.0:0 LISTENING 608
TCP 0.0.0.0:49665 0.0.0.0:0 LISTENING 1196
TCP 0.0.0.0:49666 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:49668 0.0.0.0:0 LISTENING 1600
TCP 0.0.0.0:49669 0.0.0.0:0 LISTENING 1764
TCP 0.0.0.0:49670 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:49671 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:49673 0.0.0.0:0 LISTENING 780
TCP 0.0.0.0:49677 0.0.0.0:0 LISTENING 752
TCP 0.0.0.0:49697 0.0.0.0:0 LISTENING 2796
TCP 0.0.0.0:53815 0.0.0.0:0 LISTENING 2664
TCP 10.129.252.94:53 0.0.0.0:0 LISTENING 2796
TCP 10.129.252.94:139 0.0.0.0:0 LISTENING 4
TCP 127.0.0.1:53 0.0.0.0:0 LISTENING 2796
TCP 127.0.0.1:8000 0.0.0.0:0 LISTENING 964
TCP 192.168.99.1:53 0.0.0.0:0 LISTENING 2796
TCP 192.168.99.1:139 0.0.0.0:0 LISTENING 4
TCP [::]:88 [::]:0 LISTENING 780
TCP [::]:135 [::]:0 LISTENING 408
TCP [::]:389 [::]:0 LISTENING 780
TCP [::]:445 [::]:0 LISTENING 4
TCP [::]:464 [::]:0 LISTENING 780
TCP [::]:593 [::]:0 LISTENING 408
TCP [::]:636 [::]:0 LISTENING 780
TCP [::]:2179 [::]:0 LISTENING 2668
TCP [::]:3268 [::]:0 LISTENING 780
TCP [::]:3269 [::]:0 LISTENING 780
TCP [::]:5985 [::]:0 LISTENING 4
TCP [::]:9389 [::]:0 LISTENING 2908
TCP [::]:47001 [::]:0 LISTENING 4
TCP [::]:49664 [::]:0 LISTENING 608
TCP [::]:49665 [::]:0 LISTENING 1196
TCP [::]:49666 [::]:0 LISTENING 780
TCP [::]:49668 [::]:0 LISTENING 1600
TCP [::]:49669 [::]:0 LISTENING 1764
TCP [::]:49670 [::]:0 LISTENING 780
TCP [::]:49671 [::]:0 LISTENING 780
TCP [::]:49673 [::]:0 LISTENING 780
TCP [::]:49677 [::]:0 LISTENING 752
TCP [::]:49697 [::]:0 LISTENING 2796
TCP [::]:53815 [::]:0 LISTENING 2664
TCP [::1]:53 [::]:0 LISTENING 2796
TCP [dead:beef::5c4a:da33:e1f2:e210]:53 [::]:0 LISTENING 2796
TCP [fe80::381c:7ab:c80:ef91%4]:53 [::]:0 LISTENING 2796
TCP [fe80::47c0:fbc9:2d7b:e4bb%6]:53 [::]:0 LISTENING 2796127.0.0.1:8000
Users & Groups
PS C:\Web\University> net users ; ls C:\Users
net users ; ls C:\Users
User accounts for \\
-------------------------------------------------------------------------------
A.Crouz Administrator Alice.Z
Arnold.G Brose.W C.Freez
Choco.L Emma.H George.A
Guest hana Jakken.C
John.D Kai.K Kareem.A
karma.watterson Karol.J krbtgt
Leon.K Lisa.K Martin.T
Nya.R Rose.L Steven.P
WAO William.B
The command completed with one or more errors.
Directory: C:\Users
Mode LastWriteTime Length Name
---- ------------- ------ ----
d----- 10/18/2024 11:20 AM Administrator
d----- 3/2/2024 2:39 PM Choco.L
d----- 2/12/2024 6:19 PM John.D
d----- 2/28/2024 1:17 PM Nya.R
d-r--- 10/27/2024 12:27 AM Public
d----- 9/13/2024 2:31 AM Rose.L
d----- 9/14/2024 9:36 AM WAO Choco.LJohn.DNya.RRose.L
PS C:\Web\University> net localgroup ; net group /DOMAIN
net localgroup ; net group /DOMAIN
Aliases for \\DC
-------------------------------------------------------------------------------
*Access Control Assistance Operators
*Account Operators
*Administrators
*Allowed RODC Password Replication Group
*Backup Operators
*Cert Publishers
*Certificate Service DCOM Access
*Cryptographic Operators
*Denied RODC Password Replication Group
*Distributed COM Users
*DnsAdmins
*Event Log Readers
*Guests
*Hyper-V Administrators
*IIS_IUSRS
*Incoming Forest Trust Builders
*Network Configuration Operators
*Performance Log Users
*Performance Monitor Users
*Pre-Windows 2000 Compatible Access
*Print Operators
*RAS and IAS Servers
*RDS Endpoint Servers
*RDS Management Servers
*RDS Remote Access Servers
*Remote Desktop Users
*Remote Management Users
*Replicator
*Server Operators
*Storage Replica Administrators
*Terminal Server License Servers
*Users
*Windows Authorization Access Group
The command completed successfully.
Group Accounts for \\
-------------------------------------------------------------------------------
*Cloneable Domain Controllers
*Content Evaluators
*Customer Support
*DnsUpdateProxy
*Domain Admins
*Domain Computers
*Domain Controllers
*Domain Guests
*Domain Users
*Enterprise Admins
*Enterprise Key Admins
*Enterprise Read-only Domain Controllers
*Group Policy Creator Owners
*Help Desk
*Key Admins
*Protected Users
*Read-only Domain Controllers
*Research & Development
*Schema Admins
*SecurityOps
*Web Developers
The command completed with one or more errors.Content EvaluatorCustomer SupportHelp DeskResearch & DevelopmentSecurityOpsWeb Developers
Processes
PS C:\Web\University> cmd /c tasklist /svc ; ps
cmd /c tasklist /svc ; ps
Image Name PID Services
========================= ======== ============================================
System Idle Process 0 N/A
System 4 N/A
Secure System 56 N/A
Registry 112 N/A
smss.exe 420 N/A
csrss.exe 504 N/A
wininit.exe 608 N/A
csrss.exe 616 N/A
winlogon.exe 680 N/A
services.exe 752 N/A
LsaIso.exe 772 N/A
lsass.exe 780 N/A
svchost.exe 996 N/A
svchost.exe 1016 N/A
fontdrvhost.exe 76 N/A
fontdrvhost.exe 440 N/A
svchost.exe 408 N/A
svchost.exe 808 N/A
svchost.exe 1120 N/A
svchost.exe 1128 N/A
svchost.exe 1136 N/A
svchost.exe 1188 N/A
svchost.exe 1196 N/A
svchost.exe 1260 N/A
svchost.exe 1268 N/A
svchost.exe 1280 N/A
svchost.exe 1288 N/A
svchost.exe 1356 N/A
svchost.exe 1508 N/A
svchost.exe 1536 N/A
svchost.exe 1600 N/A
svchost.exe 1652 N/A
svchost.exe 1732 N/A
svchost.exe 1756 N/A
svchost.exe 1764 N/A
svchost.exe 1796 N/A
svchost.exe 1892 N/A
svchost.exe 1968 N/A
svchost.exe 1836 N/A
svchost.exe 2112 N/A
svchost.exe 2204 N/A
svchost.exe 2776 N/A
svchost.exe 3008 N/A
svchost.exe 2704 N/A
svchost.exe 2676 N/A
svchost.exe 2688 N/A
ismserv.exe 2696 N/A
vm3dservice.exe 2948 N/A
dfsrs.exe 2664 N/A
dns.exe 2796 N/A
vmms.exe 2668 N/A
VGAuthService.exe 2500 N/A
Microsoft.ActiveDirectory 2908 N/A
vmtoolsd.exe 3076 N/A
svchost.exe 3240 N/A
vm3dservice.exe 3320 N/A
dfssvc.exe 3364 N/A
vds.exe 3640 N/A
LogonUI.exe 3740 N/A
conhost.exe 3816 N/A
dllhost.exe 4008 N/A
WmiPrvSE.exe 2708 N/A
msdtc.exe 3864 N/A
vmcompute.exe 4148 N/A
vmwp.exe 4604 N/A
vmwp.exe 4684 N/A
cmd.exe 4156 N/A
cmd.exe 4484 N/A
conhost.exe 4492 N/A
conhost.exe 2124 N/A
nginx.exe 644 N/A
python.exe 964 N/A
nginx.exe 2240 N/A
conhost.exe 5056 N/A
svchost.exe 3620 N/A
svchost.exe 3612 N/A
svchost.exe 3140 N/A
powershell.exe 2452 N/A
xhtml2pdf.exe 2316 N/A
python.exe 1300 N/A
cmd.exe 736 N/A
nc64.exe 3560 N/A
cmd.exe 2856 N/A
powershell.exe 2348 N/A
cmd.exe 692 N/A
tasklist.exe 3088 N/A
Handles NPM(K) PM(K) WS(K) CPU(s) Id SI ProcessName
------- ------ ----- ----- ------ -- -- -----------
85 5 2308 4052 0.02 736 0 cmd
90 5 2324 4244 0.03 2856 0 cmd
84 5 2616 416 0.05 4156 0 cmd
84 5 2616 412 0.00 4484 0 cmd
166 10 6836 6076 1.13 2124 0 conhost
175 11 6964 16408 3816 1 conhost
158 10 6660 664 0.03 4492 0 conhost
133 8 6452 388 0.03 5056 0 conhost
485 18 2412 4740 504 0 csrss
184 13 1828 4460 616 1 csrss
400 33 16288 23520 2664 0 dfsrs
158 8 1932 6148 3364 0 dfssvc
268 14 3912 13868 4008 0 dllhost
10420 12420 250232 241728 2796 0 dns
53 6 1508 4344 76 1 fontdrvhost
53 6 1388 3968 440 0 fontdrvhost
0 0 56 8 0 0 Idle
143 12 1964 5724 2696 0 ismserv
325 16 3016 14068 3740 1 LogonUI
46 6 1196 3312 772 0 LsaIso
1859 309 60608 73904 780 0 lsass
595 36 37936 48108 2908 0 Microsoft.ActiveDirectory.WebServices
238 13 2896 10668 3864 0 msdtc
108 6 872 3864 0.03 3560 0 nc64
142 9 1496 420 0.05 644 0 nginx
146 11 2120 1856 0.31 2240 0 nginx
950 31 92372 46120 1.11 2348 0 powershell
608 26 68788 4360 0.53 2452 0 powershell
283 23 43076 14752 3.16 964 0 python
163 20 48620 5748 1.23 1300 0 python
0 4 196 36952 112 0 Registry
0 0 168 17412 56 0 Secure System
482 12 4656 11356 752 0 services
53 3 524 1244 420 0 smss
504 20 3528 10148 408 0 svchost
253 11 1796 7204 808 0 svchost
96 5 960 4244 996 0 svchost
315 12 3080 10012 1016 0 svchost
132 15 3524 7640 1120 0 svchost
150 9 1620 6604 1128 0 svchost
236 12 1816 7844 1136 0 svchost
114 8 1136 5440 1188 0 svchost
311 13 9540 14272 1196 0 svchost
258 16 3280 12848 1260 0 svchost
233 11 2568 10536 1268 0 svchost
235 10 2408 8020 1280 0 svchost
432 9 2860 9220 1288 0 svchost
265 15 3640 9708 1356 0 svchost
131 9 1280 5704 1508 0 svchost
390 32 5488 13492 1536 0 svchost
337 17 4192 13380 1600 0 svchost
212 12 2076 8812 1652 0 svchost
448 16 10924 20768 1732 0 svchost
272 13 2488 8024 1756 0 svchost
172 12 1700 7332 1764 0 svchost
166 9 2288 7584 1796 0 svchost
181 9 1748 8388 1836 0 svchost
147 7 1248 6016 1892 0 svchost
458 16 3180 11108 1968 0 svchost
366 18 5664 13588 2112 0 svchost
288 10 2584 8780 2204 0 svchost
149 8 1560 6644 2676 0 svchost
129 7 1208 5904 2688 0 svchost
398 20 15404 28184 2704 0 svchost
183 22 2556 10344 2776 0 svchost
213 11 2268 8780 3008 0 svchost
308 17 4608 17012 3140 0 svchost
289 16 5112 15776 3240 0 svchost
282 20 8184 13884 3612 0 svchost
254 14 11272 12308 3620 0 svchost
1381 0 192 152 4 0 System
213 16 2412 10864 3640 0 vds
176 11 2864 11540 2500 0 VGAuthService
156 9 1812 7340 2948 0 vm3dservice
159 10 2508 8496 3320 1 vm3dservice
189 10 2872 10396 4148 0 vmcompute
642 25 44176 31352 2668 0 vmms
388 23 10532 23376 3076 0 vmtoolsd
391 18 7260 22012 4604 0 vmwp
413 19 9488 21016 4684 0 vmwp
178 11 1448 6508 608 0 wininit
246 13 2672 11052 680 1 winlogon
408 19 14576 25532 2708 0 WmiPrvSE
53 4 512 2304 0.02 2316 0 xhtml2pdf vds.exevmcompute.exevmwp.exenginx.exepython.exe
Tasks
PS C:\Web\University> Get-ScheduledTask | where {$_.TaskPath -notlike "\Microsoft*" } | ft TaskName,TaskPath,State
Get-ScheduledTask | where {$_.TaskPath -notlike "\Microsoft*" } | ft TaskName,TaskPath,State
TaskName TaskPath State
-------- -------- -----
DB Backup \ Ready\DB Backup
Firewall & AV
PS C:\Web\University> netsh firewall show config
netsh firewall show config
Domain profile configuration (current):
-------------------------------------------------------------------
Operational mode = Disable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Disable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Enable No Remote Desktop
Allowed programs configuration for Domain profile:
Mode Traffic direction Name / Program
-------------------------------------------------------------------
Port configuration for Domain profile:
Port Protocol Mode Traffic direction Name
-------------------------------------------------------------------
80 TCP Enable Inbound nginx
Standard profile configuration:
-------------------------------------------------------------------
Operational mode = Disable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Disable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Enable No Remote Desktop
Allowed programs configuration for Standard profile:
Mode Traffic direction Name / Program
-------------------------------------------------------------------
Port configuration for Standard profile:
Port Protocol Mode Traffic direction Name
-------------------------------------------------------------------
80 TCP Enable Inbound nginx
Log configuration:
-------------------------------------------------------------------
File location = C:\Windows\system32\LogFiles\Firewall\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Disable
IMPORTANT: Command executed successfully.
However, "netsh firewall" is deprecated;
use "netsh advfirewall firewall" instead.
For more information on using "netsh advfirewall firewall" commands
instead of "netsh firewall", see KB article 947709
at https://go.microsoft.com/fwlink/?linkid=121488 .PS C:\Web\University> Get-MpComputerStatus ; Get-MpPreference | Select-Object -Property ExclusionPath
Get-MpComputerStatus ; Get-MpPreference | Select-Object -Property ExclusionPath
AMEngineVersion : 0.0.0.0
AMProductVersion : 4.18.24080.9
AMRunningMode : Not running
AMServiceEnabled : False
AMServiceVersion : 0.0.0.0
AntispywareEnabled : False
AntispywareSignatureAge : 0
AntispywareSignatureLastUpdated :
AntispywareSignatureVersion :
AntivirusEnabled : False
AntivirusSignatureAge : 65535
AntivirusSignatureLastUpdated :
AntivirusSignatureVersion :
BehaviorMonitorEnabled : False
ComputerID : 436AD699-511C-4404-883B-1E75A32E4D02
ComputerState : 0
DefenderSignaturesOutOfDate : False
DeviceControlDefaultEnforcement : Unknown
DeviceControlPoliciesLastUpdated : 12/31/1600 4:00:00 PM
DeviceControlState : Unknown
FullScanAge : 4294967295
FullScanEndTime :
FullScanOverdue : False
FullScanRequired : False
FullScanSignatureVersion :
FullScanStartTime :
InitializationProgress : ServiceStartedSuccessfully
IoavProtectionEnabled : False
IsTamperProtected : False
IsVirtualMachine : False
LastFullScanSource : 0
LastQuickScanSource : 0
NISEnabled : False
NISEngineVersion : 0.0.0.0
NISSignatureAge : 65535
NISSignatureLastUpdated :
NISSignatureVersion :
OnAccessProtectionEnabled : False
ProductStatus : 1
QuickScanAge : 4294967295
QuickScanEndTime :
QuickScanOverdue : False
QuickScanSignatureVersion :
QuickScanStartTime :
RealTimeProtectionEnabled : False
RealTimeScanDirection : 0
RebootRequired : False
SmartAppControlExpiration :
SmartAppControlState :
TamperProtectionSource : N/A
TDTCapable : N/A
TDTMode : N/A
TDTSiloType : N/A
TDTStatus : N/A
TDTTelemetry : N/A
TroubleShootingDailyMaxQuota :
TroubleShootingDailyQuotaLeft :
TroubleShootingEndTime :
TroubleShootingExpirationLeft :
TroubleShootingMode :
TroubleShootingModeSource :
TroubleShootingQuotaResetTime :
TroubleShootingStartTime :
PSComputerName :
Get-MpPreference : Operation failed with the following error: 0x%1!x!
At line:1 char:24
+ Get-MpComputerStatus ; Get-MpPreference | Select-Object -Property Exc ...
+ ~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (MSFT_MpPreference:root\Microsoft\...FT_MpPreference) [Get-MpPreference],
CimException
+ FullyQualifiedErrorId : HRESULT 0x800106ba,Get-MpPreferenceNo AV
Session Architecture
PS C:\Web\University> [Environment]::Is64BitProcess
[Environment]::Is64BitProcess
TrueInstalled .NET Frameworks
S C:\Web\University> cmd /c dir /A:D C:\Windows\Microsoft.NET\Framework ; cmd /c reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP" ; cmd /c reg query "HKLM\SOFTWARE\Microsoft\Net Framework Setup\NDP" /s
cmd /c dir /A:D C:\Windows\Microsoft.NET\Framework ; cmd /c reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP" ; cmd /c reg query "HKLM\SOFTWARE\Microsoft\Net Framework Setup\NDP" /s
Volume in drive C has no label.
Volume Serial Number is 8E7E-469B
Directory of C:\Windows\Microsoft.NET\Framework
09/15/2018 12:12 AM <DIR> .
09/15/2018 12:12 AM <DIR> ..
09/15/2018 12:12 AM <DIR> v1.0.3705
09/15/2018 12:12 AM <DIR> v1.1.4322
09/15/2018 12:12 AM <DIR> v2.0.50727
10/26/2024 10:20 PM <DIR> v4.0.30319
0 File(s) 0 bytes
6 Dir(s) 9,707,233,280 bytes free
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\CDF
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v4.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\CDF
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\CDF\v4.0
HttpNamespaceReservationInstalled REG_DWORD 0x1
NetTcpPortSharingInstalled REG_DWORD 0x1
NonHttpActivationInstalled REG_DWORD 0x1
SMSvcHostPath REG_SZ C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
WMIInstalled REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4\Client
CBS REG_DWORD 0x1
Install REG_DWORD 0x1
InstallPath REG_SZ C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
Release REG_DWORD 0x70bf6
Servicing REG_DWORD 0x0
TargetVersion REG_SZ 4.0.0
Version REG_SZ 4.7.03190
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4\Client\1033
CBS REG_DWORD 0x1
Install REG_DWORD 0x1
Release REG_DWORD 0x70bf6
Servicing REG_DWORD 0x0
TargetVersion REG_SZ 4.0.0
Version REG_SZ 4.7.03190
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4\Full
CBS REG_DWORD 0x1
Install REG_DWORD 0x1
InstallPath REG_SZ C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
Release REG_DWORD 0x70bf6
Servicing REG_DWORD 0x0
TargetVersion REG_SZ 4.0.0
Version REG_SZ 4.7.03190
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4\Full\1033
CBS REG_DWORD 0x1
Install REG_DWORD 0x1
Release REG_DWORD 0x70bf6
Servicing REG_DWORD 0x0
TargetVersion REG_SZ 4.0.0
Version REG_SZ 4.7.03190
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4.0
(Default) REG_SZ deprecated
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v4.0\Client
Install REG_DWORD 0x1
Version REG_SZ 4.0.0.0.NET 4.7.03190