SystemLook 30.07.11 by jpshortstuff Log created at 14:05 on 08/05/2013 by Henry Administrator - Elevation successful ========== reg ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP] "DisplayName"="@%SystemRoot%\system32\drivers\http.sys,-1" "ImagePath"="system32\drivers\HTTP.sys" "Description"="@%SystemRoot%\system32\drivers\http.sys,-2" "ErrorControl"= 0x0000000001 (1) "Start"= 0x0000000003 (3) "Type"= 0x0000000001 (1) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP\Parameters] (No values found) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP\Parameters\SslBindingInfo] (No values found) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP\Parameters\UrlAclInfo] "http://*:2869/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 1c 00 01 00 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 05 13 00 00 00 (REG_BINARY) "http://+:80/Temporary_Listen_Addresses/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 1c 00 01 00 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 01 00 00 00 00 (REG_BINARY) "http://+:80/116B50EB-ECE2-41ac-8429-9F9E963361B7/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 1c 00 01 00 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 05 14 00 00 00 (REG_BINARY) "https://+:443/C574AC30-5794-4AEE-B1BB-6651C5315029/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 1c 00 01 00 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 05 14 00 00 00 (REG_BINARY) "http://*:5357/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 34 00 02 00 00 00 00 00 18 00 00 00 00 20 01 02 00 00 00 00 00 05 20 00 00 00 21 02 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 05 13 00 00 00 (REG_BINARY) "https://*:5358/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 34 00 02 00 00 00 00 00 18 00 00 00 00 20 01 02 00 00 00 00 00 05 20 00 00 00 21 02 00 00 00 00 14 00 00 00 00 20 01 01 00 00 00 00 00 05 13 00 00 00 (REG_BINARY) "http://+:47001/wsman/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 58 00 02 00 00 00 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 86 2a ee 21 d7 5b 09 b0 a4 5b 6c ad bb 83 93 4d ea 67 90 18 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 43 b4 fa f1 d3 d4 54 34 a8 d5 3e 4a 53 0a 6c 1f 3d ee 9b b2 (REG_BINARY) "http://+:5985/wsman/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 58 00 02 00 00 00 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 86 2a ee 21 d7 5b 09 b0 a4 5b 6c ad bb 83 93 4d ea 67 90 18 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 43 b4 fa f1 d3 d4 54 34 a8 d5 3e 4a 53 0a 6c 1f 3d ee 9b b2 (REG_BINARY) "https://+:5986/wsman/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 58 00 02 00 00 00 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 86 2a ee 21 d7 5b 09 b0 a4 5b 6c ad bb 83 93 4d ea 67 90 18 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 43 b4 fa f1 d3 d4 54 34 a8 d5 3e 4a 53 0a 6c 1f 3d ee 9b b2 (REG_BINARY) "https://+:443/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 5c 00 03 00 00 00 00 00 28 00 00 00 00 10 01 06 00 00 00 00 00 05 50 00 00 00 7e a6 c8 cc 2a ae a7 2f c1 eb fb e1 ba e3 6b c0 da d0 2b af 00 00 18 00 00 00 00 80 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 00 00 00 10 01 01 00 00 00 00 00 05 12 00 00 00 (REG_BINARY) "http://+:10243/WMPNSSv4/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 30 00 01 00 00 00 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 39 0b 9a 8d 3e 6d c7 2d 58 a4 ad d2 48 66 ef 3b c8 b6 4a ab (REG_BINARY) "https://+:10245/WMPNSSv4/"=01 00 04 80 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 02 00 30 00 01 00 00 00 00 00 28 00 00 00 00 20 01 06 00 00 00 00 00 05 50 00 00 00 39 0b 9a 8d 3e 6d c7 2d 58 a4 ad d2 48 66 ef 3b c8 b6 4a ab (REG_BINARY) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP\Security] "Security"=01 00 14 80 a0 00 00 00 ac 00 00 00 14 00 00 00 30 00 00 00 02 00 1c 00 01 00 00 00 02 80 14 00 ff 01 0f 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 70 00 05 00 00 00 00 00 14 00 ff 01 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 ff 01 0f 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 9d 00 02 00 01 01 00 00 00 00 00 05 04 00 00 00 00 00 14 00 9d 00 02 00 01 01 00 00 00 00 00 05 06 00 00 00 00 00 14 00 9d 00 02 00 01 01 00 00 00 00 00 05 03 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00 (REG_BINARY) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\HTTP\Enum] "0"="Root\LEGACY_HTTP\0000" "Count"= 0x0000000001 (1) "NextInstance"= 0x0000000001 (1) "INITSTARTFAILED"= 0x0000000001 (1) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\mrxsmb] "DisplayName"="@%systemroot%\system32\wkssvc.dll,-1002" "Group"="Network" "ImagePath"="system32\DRIVERS\mrxsmb.sys" "Description"="@%systemroot%\system32\wkssvc.dll,-1003" "ErrorControl"= 0x0000000001 (1) "Start"= 0x0000000003 (3) "Tag"= 0x0000000005 (5) "Type"= 0x0000000002 (2) "DependOnService"="rdbss" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\mrxsmb\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Mup] "DisplayName"="@%systemroot%\system32\drivers\mup.sys,-101" "Group"="Network" "ImagePath"="System32\Drivers\mup.sys" "Description"="@%systemroot%\system32\drivers\mup.sys,-102" "ErrorControl"= 0x0000000001 (1) "Start"= 0x0000000000 (0) "Type"= 0x0000000002 (2) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Mup\Parameters] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Mup\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Smb] "Type"= 0x0000000001 (1) "Start"= 0x0000000003 (3) "ErrorControl"= 0x0000000001 (1) "Tag"= 0x0000000008 (8) "ImagePath"="system32\DRIVERS\smb.sys" "DisplayName"="@%SystemRoot%\system32\tcpipcfg.dll,-50005" "Group"="PNP_TDI" "DependOnService"="Tcpip" "Description"="@%SystemRoot%\system32\tcpipcfg.dll,-50006" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Smb\Linkage] "Bind"="\Device\Tcpip_{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95} \Device\Tcpip_{7DEAD7D9-182C-4D7B-912E-7B200565FB98} \Device\Tcpip6_{7DC80AE1-E2E4-42EF-A6E0-B6DEFDDF25F2} \Device\Tcpip6_{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95} \Device\Tcpip6_{E27ADE2F-B88A-4709-BE13-1717ED9D9BE4} \Device\Tcpip6_{AD1680ED-8E7F-400B-9879-269628165DA4} \Device\Tcpip6_{1D91EFC0-9AAD-47D5-8077-D72966642E97} \Device\Tcpip6_{7DEAD7D9-182C-4D7B-912E-7B200565FB98}" "Route"=""Tcpip" "{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95}" "Tcpip" "{7DEAD7D9-182C-4D7B-912E-7B200565FB98}" "Tcpip6" "{7DC80AE1-E2E4-42EF-A6E0-B6DEFDDF25F2}" "Tcpip6" "{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95}" "Tcpip6" "{E27ADE2F-B88A-4709-BE13-1717ED9D9BE4}" "Tcpip6" "{AD1680ED-8E7F-400B-9879-269628165DA4}" "Tcpip6" "{1D91EFC0-9AAD-47D5-8077-D72966642E97}" "Tcpip6" "{7DEAD7D9-182C-4D7B-912E-7B200565FB98}"" "Export"="\Device\Smb_Tcpip_{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95} \Device\Smb_Tcpip_{7DEAD7D9-182C-4D7B-912E-7B200565FB98} \Device\Smb_Tcpip6_{7DC80AE1-E2E4-42EF-A6E0-B6DEFDDF25F2} \Device\Smb_Tcpip6_{9A8B94BF-CA89-4EE1-83BB-BD393A9EDD95} \Device\Smb_Tcpip6_{E27ADE2F-B88A-4709-BE13-1717ED9D9BE4} \Device\Smb_Tcpip6_{AD1680ED-8E7F-400B-9879-269628165DA4} \Device\Smb_Tcpip6_{1D91EFC0-9AAD-47D5-8077-D72966642E97} \Device\Smb_Tcpip6_{7DEAD7D9-182C-4D7B-912E-7B200565FB98}" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\rdbss] "DisplayName"="@%systemroot%\system32\wkssvc.dll,-1000" "Group"="Network" "ImagePath"="system32\DRIVERS\rdbss.sys" "Description"="@%systemroot%\system32\wkssvc.dll,-1001" "ErrorControl"= 0x0000000001 (1) "Start"= 0x0000000001 (1) "Tag"= 0x0000000004 (4) "Type"= 0x0000000002 (2) "DependOnService"="Mup" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\rdbss\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\srvnet] "Group"="Network" "ImagePath"="System32\DRIVERS\srvnet.sys" "ErrorControl"= 0x0000000001 (1) "Start"= 0x0000000003 (3) "Type"= 0x0000000002 (2) "DisplayName"="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\srvnet\Enum] -= EOF =-