System/Kernel
C:\wamp\bin\apache\Apache2.2.21> cmd /c ver
Microsoft Windows [Version 6.0.6001]
C:\wamp\bin\apache\Apache2.2.21> systeminfo
Host Name: LIVDA
OS Name: Microsoftr Windows Serverr 2008 Standard
OS Version: 6.0.6001 Service Pack 1 Build 6001
OS Manufacturer: Microsoft Corporation
OS Configuration: Standalone Server
OS Build Type: Multiprocessor Free
Registered Owner: Windows User
Registered Organization:
Product ID: 92573-OEM-7502905-27565
Original Install Date: 12/19/2009, 11:25:57 AM
System Boot Time: 2/28/2025, 11:17:27 AM
System Manufacturer: VMware, Inc.
System Model: VMware Virtual Platform
System Type: X86-based PC
Processor(s): 1 Processor(s) Installed.
[01]: x64 Family 25 Model 1 Stepping 1 AuthenticAMD ~2650 Mhz
BIOS Version: Phoenix Technologies LTD 6.00, 11/12/2020
Windows Directory: C:\Windows
System Directory: C:\Windows\system32
Boot Device: \Device\HarddiskVolume1
System Locale: en-us;English (United States)
Input Locale: en-us;English (United States)
Time Zone: (GMT-08:00) Pacific Time (US & Canada)
Total Physical Memory: 2,047 MB
Available Physical Memory: 1,654 MB
Page File: Max Size: 1,985 MB
Page File: Available: 1,535 MB
Page File: In Use: 450 MB
Page File Location(s): N/A
Domain: WORKGROUP
Logon Server: N/A
Hotfix(s): N/A
Network Card(s): N/AMicrosoft Windows [Version 6.0.6001]Microsoft Windows Server 2008 Standard1 Processor(s)X86-based PC
Networks
C:\wamp\bin\apache\Apache2.2.21> ipconfig /all && arp -a && print route
Windows IP Configuration
Host Name . . . . . . . . . . . . : LIVDA
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Ethernet adapter Local Area Connection 2:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : vmxnet3 Ethernet Adapter
Physical Address. . . . . . . . . : 00-50-56-9E-A7-F4
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d12:cfc9:2a58:43c4%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.203.46(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.203.254
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter Local Area Connection*:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Interface: 192.168.203.46 --- 0xc
Internet Address Physical Address Type
192.168.203.254 00-50-56-9e-8d-f2 dynamic
192.168.203.255 ff-ff-ff-ff-ff-ff static
224.0.0.22 01-00-5e-00-00-16 static
224.0.0.252 01-00-5e-00-00-fc static
Unable to initialize device PRNC:\wamp\bin\apache\Apache2.2.21> netstat -ano
Active Connections
Proto Local Address Foreign Address State PID
TCP 0.0.0.0:21 0.0.0.0:0 LISTENING 740
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 856
TCP 0.0.0.0:242 0.0.0.0:0 LISTENING 1860
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:3145 0.0.0.0:0 LISTENING 740
TCP 0.0.0.0:3306 0.0.0.0:0 LISTENING 1880
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING 1152
TCP 0.0.0.0:5357 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:49152 0.0.0.0:0 LISTENING 532
TCP 0.0.0.0:49153 0.0.0.0:0 LISTENING 932
TCP 0.0.0.0:49154 0.0.0.0:0 LISTENING 1000
TCP 0.0.0.0:49155 0.0.0.0:0 LISTENING 624
TCP 0.0.0.0:49156 0.0.0.0:0 LISTENING 612
TCP 192.168.203.46:139 0.0.0.0:0 LISTENING 4
TCP 192.168.203.46:242 192.168.45.245:39356 ESTABLISHED 1860
TCP 192.168.203.46:3145 192.168.45.245:48834 ESTABLISHED 740
TCP 192.168.203.46:49176 192.168.45.245:242 ESTABLISHED 1888
TCP [::]:135 [::]:0 LISTENING 856
TCP [::]:242 [::]:0 LISTENING 1860
TCP [::]:445 [::]:0 LISTENING 4
TCP [::]:3306 [::]:0 LISTENING 1880
TCP [::]:3389 [::]:0 LISTENING 1152
TCP [::]:5357 [::]:0 LISTENING 4
TCP [::]:49152 [::]:0 LISTENING 532
TCP [::]:49153 [::]:0 LISTENING 932
TCP [::]:49154 [::]:0 LISTENING 1000
TCP [::]:49155 [::]:0 LISTENING 624
TCP [::]:49156 [::]:0 LISTENING 612
UDP 0.0.0.0:123 *:* 1072
UDP 0.0.0.0:500 *:* 1000
UDP 0.0.0.0:4500 *:* 1000
UDP 0.0.0.0:5355 *:* 1152
UDP 192.168.203.46:137 *:* 4
UDP 192.168.203.46:138 *:* 4
UDP [::]:123 *:* 1072
UDP [::]:500 *:* 1000
UDP [::]:5355 *:* 1152TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 856TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4TCP 0.0.0.0:3306 0.0.0.0:0 LISTENING 1880TCP 0.0.0.0:5357 0.0.0.0:0 LISTENING 4
Users & Groups
C:\wamp\bin\apache\Apache2.2.21> net users && dir C:\Users
User accounts for \\LIVDA
-------------------------------------------------------------------------------
Administrator apache Guest
The command completed successfully.
Volume in drive C has no label.
Volume Serial Number is BCAD-595B
Directory of C:\Users
07/09/2020 10:07 AM <DIR> .
07/09/2020 10:07 AM <DIR> ..
02/14/2010 04:16 PM <DIR> Administrator
11/08/2011 04:34 AM <DIR> apache
01/19/2008 01:40 AM <DIR> Public
0 File(s) 0 bytes
5 Dir(s) 5,863,043,072 bytes freeC:\wamp\bin\apache\Apache2.2.21> net localgroup && net group /DOMAIN
System error 1355 has occurred.
The specified domain either does not exist or could not be contacted.
Aliases for \\LIVDA
-------------------------------------------------------------------------------
*Administrators
*Backup Operators
*Certificate Service DCOM Access
*Cryptographic Operators
*Distributed COM Users
*Event Log Readers
*Guests
*IIS_IUSRS
*Network Configuration Operators
*Performance Log Users
*Performance Monitor Users
*Power Users
*Print Operators
*Remote Desktop Users
*Replicator
*Users
The command completed successfully.
The request will be processed at a domain controller for domain WORKGROUP.Processes
C:\wamp\bin\apache\Apache2.2.21> cmd /c tasklist /svc
Image Name PID Services
========================= ======== ============================================
System Idle Process 0 N/A
System 4 N/A
smss.exe 412 N/A
csrss.exe 480 N/A
csrss.exe 524 N/A
wininit.exe 532 N/A
winlogon.exe 564 N/A
services.exe 612 N/A
lsass.exe 624 SamSs
lsm.exe 632 N/A
svchost.exe 792 DcomLaunch, PlugPlay
svchost.exe 856 RpcSs
LogonUI.exe 924 N/A
svchost.exe 932 Dhcp, EventLog, lmhosts
svchost.exe 980 gpsvc
svchost.exe 1000 AeLookupSvc, BITS, CertPropSvc, IKEEXT,
iphlpsvc, LanmanServer, ProfSvc, Schedule,
seclogon, SENS, SessionEnv,
ShellHWDetection, Winmgmt, wuauserv
SLsvc.exe 1016 slsvc
svchost.exe 1072 EventSystem, FDResPub, LanmanWorkstation,
netprofm, nsi, W32Time
svchost.exe 1128 Netman, TrkWks, UmRdpService, UxSms,
WdiSystemHost
svchost.exe 1152 CryptSvc, Dnscache, KtmRm, NlaSvc,
TermService, WinRM
svchost.exe 1308 BFE, DPS, MpsSvc
taskeng.exe 1416 N/A
spoolsv.exe 1508 Spooler
svchost.exe 1584 PolicyAgent
svchost.exe 1596 RemoteRegistry
vmtoolsd.exe 1704 VMTools
httpd.exe 1860 wampapache
mysqld.exe 1880 wampmysqld
httpd.exe 1888 N/A
svchost.exe 604 WerSvc
zFTPServer.exe 740 zFTPSvc
dllhost.exe 2276 COMSysApp
msdtc.exe 2504 MSDTC
cmd.exe 3016 N/A
cmd.exe 2100 N/A
TrustedInstaller.exe 2512 TrustedInstaller
cmd.exe 3580 N/A
tasklist.exe 3308 N/A
WmiPrvSE.exe 2716 N/A taskeng.exe 1416 N/Aspoolsv.exe 1508 Spoolermysqld.exe 1880 wampmysqldzFTPServer.exe 740 zFTPSvcTrustedInstaller.exe 2512 TrustedInstaller
Tasks
C:\wamp\bin\apache\Apache2.2.21> cmd /c schtasks /QUERY /FO TABLE
Folder: \
TaskName Next Run Time Status
======================================== ====================== ===============
INFO: There are no scheduled tasks presently available at your access level.
Folder: \Microsoft
TaskName Next Run Time Status
======================================== ====================== ===============
INFO: There are no scheduled tasks presently available at your access level.
Folder: \Microsoft\Windows
TaskName Next Run Time Status
======================================== ====================== ===============
INFO: There are no scheduled tasks presently available at your access level.
Folder: \Microsoft\Windows\Active Directory Rights Management Services Client
TaskName Next Run Time Status
======================================== ====================== ===============
AD RMS Rights Policy Template Management Disabled
AD RMS Rights Policy Template Management N/A Ready
Folder: \Microsoft\Windows\Customer Experience Improvement Program
TaskName Next Run Time Status
======================================== ====================== ===============
Consolidator 3/1/2025 1:00:00 AM Could not start
Folder: \Microsoft\Windows\Defrag
TaskName Next Run Time Status
======================================== ====================== ===============
ManualDefrag N/A Ready
ScheduledDefrag N/A Ready
Folder: \Microsoft\Windows\MUI
TaskName Next Run Time Status
======================================== ====================== ===============
LPRemove N/A Ready
Folder: \Microsoft\Windows\Multimedia
TaskName Next Run Time Status
======================================== ====================== ===============
SystemSoundsService N/A Could not start
Folder: \Microsoft\Windows\NetworkAccessProtection
TaskName Next Run Time Status
======================================== ====================== ===============
NAPStatus UI N/A Ready
Folder: \Microsoft\Windows\PLA
TaskName Next Run Time Status
======================================== ====================== ===============
INFO: There are no scheduled tasks presently available at your access level.
Folder: \Microsoft\Windows\Server Manager
TaskName Next Run Time Status
======================================== ====================== ===============
ServerManager N/A Ready
Folder: \Microsoft\Windows\Tcpip
TaskName Next Run Time Status
======================================== ====================== ===============
IpAddressConflict1 N/A Ready
IpAddressConflict2 N/A Ready
Folder: \Microsoft\Windows\TextServicesFramework
TaskName Next Run Time Status
======================================== ====================== ===============
MsCtfMonitor N/A Could not start
Folder: \Microsoft\Windows\Windows Error Reporting
TaskName Next Run Time Status
======================================== ====================== ===============
QueueReporting N/A Ready
Folder: \Microsoft\Windows\Wired
TaskName Next Run Time Status
======================================== ====================== ===============
GatherWiredInfo N/A Ready Services
C:\wamp\bin\apache\Apache2.2.21> net start
These Windows services are started:
Application Experience
Background Intelligent Transfer Service
Base Filtering Engine
Certificate Propagation
COM+ Event System
COM+ System Application
Cryptographic Services
DCOM Server Process Launcher
Desktop Window Manager Session Manager
DHCP Client
Diagnostic Policy Service
Diagnostic System Host
Distributed Link Tracking Client
Distributed Transaction Coordinator
DNS Client
Function Discovery Resource Publication
Group Policy Client
IKE and AuthIP IPsec Keying Modules
IP Helper
IPsec Policy Agent
KtmRm for Distributed Transaction Coordinator
Network Connections
Network List Service
Network Location Awareness
Network Store Interface Service
Plug and Play
Print Spooler
Remote Procedure Call (RPC)
Remote Registry
Secondary Logon
Security Accounts Manager
Server
Shell Hardware Detection
Software Licensing
System Event Notification Service
Task Scheduler
TCP/IP NetBIOS Helper
Terminal Services
Terminal Services Configuration
Terminal Services UserMode Port Redirector
User Profile Service
VMTools
wampapache
wampmysqld
Windows Error Reporting Service
Windows Event Log
Windows Firewall
Windows Management Instrumentation
Windows Modules Installer
Windows Remote Management (WS-Management)
Windows Time
Windows Update
Workstation
zFTPServer
The command completed successfully.Print Spooler
Firewall & AV
C:\wamp\bin\apache\Apache2.2.21> netsh firewall show config
Domain profile configuration:
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Disable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No Remote Desktop
Allowed programs configuration for Domain profile:
Mode Traffic direction Name / Program
-------------------------------------------------------------------
Port configuration for Domain profile:
Port Protocol Mode Traffic direction Name
-------------------------------------------------------------------
ICMP configuration for Domain profile:
Mode Type Description
-------------------------------------------------------------------
Enable 2 Allow outbound packet too big
Standard profile configuration (current):
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Disable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable Yes Network Discovery
Enable No Remote Desktop
Enable No Remote Administration
Allowed programs configuration for Standard profile:
Mode Traffic direction Name / Program
-------------------------------------------------------------------
Port configuration for Standard profile:
Port Protocol Mode Traffic direction Name
-------------------------------------------------------------------
8080 TCP Enable Inbound web
139 TCP Enable Inbound smb-dis
445 TCP Enable Inbound smb
ICMP configuration for Standard profile:
Mode Type Description
-------------------------------------------------------------------
Enable 2 Allow outbound packet too big
Log configuration:
-------------------------------------------------------------------
File location = C:\Windows\system32\LogFiles\Firewall\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Disable
8080 TCP Enable Inbound web
Installed .NET Frameworks
C:\wamp\bin\apache\Apache2.2.21> cmd /c dir /A:D C:\Windows\Microsoft.NET\Framework && cmd /c reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP" && cmd /c reg query "HKLM\SOFTWARE\Microsoft\Net Framework Setup\NDP" /s
Volume in drive C has no label.
Volume Serial Number is BCAD-595B
Directory of C:\Windows\Microsoft.NET\Framework
01/19/2008 01:41 AM <DIR> .
01/19/2008 01:41 AM <DIR> ..
01/19/2008 01:41 AM <DIR> v1.0.3705
01/19/2008 01:41 AM <DIR> v1.1.4322
01/19/2008 03:55 AM <DIR> v2.0.50727
0 File(s) 0 bytes
5 Dir(s) 5,863,043,072 bytes free
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\NET Framework Setup\NDP\v2.0.50727
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727
Install REG_DWORD 0x1
Increment REG_SZ 1434
Version REG_SZ 2.0.50727.1434
CBS REG_DWORD 0x1
OCM REG_DWORD 0x1
SP REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1028
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1029
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1030
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1031
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1032
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1033
Version REG_SZ 2.0.50727.1434
CBS REG_DWORD 0x1
Increment REG_SZ 1434
SP REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1035
Install REG_DWORD 0x1
MSI REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1036
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1038
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1040
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1041
MSI REG_DWORD 0x1
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1042
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1043
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1044
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1045
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1046
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1049
MSI REG_DWORD 0x1
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1053
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\1055
MSI REG_DWORD 0x1
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\2052
MSI REG_DWORD 0x1
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\2070
Install REG_DWORD 0x1
OCM REG_DWORD 0x1
MSI REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\3076
MSI REG_DWORD 0x1
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Net Framework Setup\NDP\v2.0.50727\3082
OCM REG_DWORD 0x1
Install REG_DWORD 0x1
MSI REG_DWORD 0x1.NET 2.0.50727.1434