Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Subkey Setting
CodeIdentifiers\AuthenticodeEnabled 0
Driver Signing\Policy 00000000
Eventlog\Application\RestrictGuestAccess 1
Eventlog\Security\RestrictGuestAccess
Eventlog\System\RestrictGuestAccess 1
Eventlog\Application\Retention 0
Eventlog\Security\Retention
Eventlog\System\Retention 0
Eventlog\Application\MaxSize 20971520
Eventlog\Security\MaxSize
Eventlog\System\MaxSize 20971520
LanManServer\Parameters\AutoDisconnect 15
LanManServer\Parameters\EnableForcedLogOff 1
LanManServer\Parameters\EnableSecuritySign 0
ature
LanManServer\Parameters\NullSessionPipes
LanManServer\Parameters\RequireSecuritySign 0
ature
LanManServer\Parameters\RestrictNullSessAcc 1
ess
LanmanWorkstation\Parameters\EnablePlainTe 0
xtPassword
LanmanWorkstation\Parameters\EnableSecurit 1
ySignature
LanmanWorkstation\Parameters\RequireSecurit 0
ySignature
LDAP\LDAPClientIntegrity 1
Lsa\AuditBaseObjects 0
Lsa\CrashOnAuditFail 0
Lsa\DisableDomainCreds 0
Lsa\EveryoneIncludesAnonymous 0
Lsa\FIPSAlgorithmPolicy\Enabled
Lsa\ForceGuest 0
Lsa\FullPrivilegeAuditing 00
Lsa\LimitBlankPasswordUse 1
Lsa\LmCompatibilityLevel
Lsa\MSV1_0\NTLMMinClientSec 536870912
Lsa\MSV1_0\NTLMMinServerSec 536870912
Lsa\NoLMHash 1
Lsa\RestrictAnonymous 0
Lsa\RestrictAnonymousSAM 1
Netlogon\Parameters\DisablePasswordChange 0
Netlogon\Parameters\MaximumPasswordAge 30
Netlogon\Parameters\RequireSignOrSeal 1
Netlogon\Parameters\RequireStrongKey 1
Netlogon\Parameters\SealSecureChannel 1
Netlogon\Parameters\SignSecureChannel 1
NTDS\Parameters\LDAPServerIntegrity
Session Manager\Kernel\ObCaseInsensitive 1
Session Manager\ProtectionMode 1
Session Manager\SubSystems\optional
System\ConsentPromptBehaviorAdmin 5
System\ConsentPromptBehaviorUser 3
System\DisableCAD
System\DontDisplayLastUserName 0
System\EnableInstallerDetection 1
System\EnableLUA 1
System\EnableSecureUIAPaths 1
System\EnableUIADesktopToggle 0
System\EnableVirtualization 1
System\FilterAdministratorToken
System\LegalNoticeCaption
System\LegalNoticeText
System\PromptOnSecureDesktop 1
System\ScForceOption 0
System\ShutdownWithoutLogon 1
System\UndockWithoutLogon 1
System\ValidateAdminCodeSignatures 0
Winlogon\CachedLogonsCount
Winlogon\ForceUnlockLogon
Winlogon\PasswordExpiryWarning
Winlogon\ScRemoveOption
Security Settings
Windows Firewall
Name Setting
Firewall Enabled No
Authorised Application Skype for Business UcMapi
Authorised Application Skype for Business
Authorised Application OpenJDK Platform binary
Authorised Service Compartir archivos e impresoras
Authorised Service Detección de redes
Authorised Service Escritorio remoto
Administradores
Item Value
Group Type Local
Group Name Administradores
Comment Los administradores tienen acceso completo y sin restricciones
al equipo o dominio
Administradores de Hyper-V
Item Value
Group Type Local
Group Name Administradores de Hyper-V
Comment Los miembros de este grupo tienen acceso completo y sin
restricciones a todas las características de Hyper-V.
IIS_IUSRS
Item Value
Group Type Local
Group Name IIS_IUSRS
Comment Grupo integrado usado por Internet Information Services.
Invitados
Item Value
Group Type Local
Group Name Invitados
Comment De forma predeterminada, los invitados tienen el mismo
acceso que los miembros del grupo Usuarios, excepto la
cuenta de invitado que tiene más restricciones
Ninguno
Item Value
Group Type Global
Group Name Ninguno
Comment Usuarios comunes
Usuarios
Item Value
Group Type Local
Group Name Usuarios
Comment Los usuarios no pueden hacer cambios accidentales o
intencionados en el sistema y pueden ejecutar la mayoría de
aplicaciones
Usuarios COM distribuidos
Item Value
Group Type Local
Group Name Usuarios COM distribuidos
Comment Los miembros pueden iniciar, activar y usar objetos de COM
distribuido en este equipo.
Item Value
Task Name RTKCPL
Status Running
Schedule When a specific user logs on.
Next Run Time 1899-12-30 00:00:00
Run Command "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
Maximum Run Time PT0S
Last Run Time 2019-08-17 09:35:49
Last Result 267009
Network Shares
9. Que puertos TCP y UDP están abiertos y que servicios se relacionan a cada puerto
TCP ::0:135
Item Value
Port Protocol TCP
Local Address ::0
Local Port 135
Caption TCP ::0:135
Service Name epmap
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 1144
Process Description
Process Manufacturer
TCP ::0:445
Item Value
Port Protocol TCP
Local Address ::0
Local Port 445
Caption TCP ::0:445
Service Name microsoft-ds
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 4
Process Description
Process Manufacturer
TCP ::0:7680
Item Value
Port Protocol TCP
Local Address ::0
Local Port 7680
Caption TCP ::0:7680
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 1568
Process Description
Process Manufacturer
TCP ::0:49664
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49664
Caption TCP ::0:49664
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 68
Process Description
Process Manufacturer
TCP ::0:49665
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49665
Caption TCP ::0:49665
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 868
Process Description
Process Manufacturer
TCP ::0:49666
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49666
Caption TCP ::0:49666
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 1780
Process Description
Process Manufacturer
TCP ::0:49667
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49667
Caption TCP ::0:49667
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 2024
Process Description
Process Manufacturer
TCP ::0:49668
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49668
Caption TCP ::0:49668
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 3504
Process Description
Process Manufacturer
TCP ::0:49669
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49669
Caption TCP ::0:49669
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 3736
Process Description
Process Manufacturer
TCP ::0:49672
Item Value
Port Protocol TCP
Local Address ::0
Local Port 49672
Caption TCP ::0:49672
Service Name
Remote Address ::0
Remote Port 0
Connection State Listening (LISTEN)
Process Name
Process ID 1004
Process Description
Process Manufacturer
UDP ::0:500
Item Value
Port Protocol UDP
Local Address ::0
Local Port 500
Caption UDP ::0:500
Service Name isakmp
Remote Address
Remote Port
Connection State
Process Name
Process ID 3728
Process Description
Process Manufacturer
UDP ::0:4500
Item Value
Port Protocol UDP
Local Address ::0
Local Port 4500
Caption UDP ::0:4500
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 3728
Process Description
Process Manufacturer
UDP ::0:5353
Item Value
Port Protocol UDP
Local Address ::0
Local Port 5353
Caption UDP ::0:5353
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4300
Process Description
Process Manufacturer
UDP ::0:5353
Item Value
Port Protocol UDP
Local Address ::0
Local Port 5353
Caption UDP ::0:5353
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4300
Process Description
Process Manufacturer
UDP ::0:5353
Item Value
Port Protocol UDP
Local Address ::0
Local Port 5353
Caption UDP ::0:5353
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 2200
Process Description
Process Manufacturer
UDP ::0:5355
Item Value
Port Protocol UDP
Local Address ::0
Local Port 5355
Caption UDP ::0:5355
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 2200
Process Description
Process Manufacturer
UDP ::1:1900
Item Value
Port Protocol UDP
Local Address ::1
Local Port 1900
Caption UDP ::1:1900
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
UDP ::1:52285
Item Value
Port Protocol UDP
Local Address ::1
Local Port 52285
Caption UDP ::1:52285
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
UDP FE80:0000:0000:0000:64BE:019A:2238:6626:1900
Item Value
Port Protocol UDP
Local Address FE80:0000:0000:0000:64BE:019A:2238:6626
Local Port 1900
Caption UDP FE80:0000:0000:0000:64BE:019A:2238:6626:1900
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
UDP FE80:0000:0000:0000:64BE:019A:2238:6626:52283
Item Value
Port Protocol UDP
Local Address FE80:0000:0000:0000:64BE:019A:2238:6626
Local Port 52283
Caption UDP FE80:0000:0000:0000:64BE:019A:2238:6626:52283
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
UDP FE80:0000:0000:0000:A4BD:A437:1F65:E132:1900
Item Value
Port Protocol UDP
Local Address FE80:0000:0000:0000:A4BD:A437:1F65:E132
Local Port 1900
Caption UDP FE80:0000:0000:0000:A4BD:A437:1F65:E132:1900
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
UDP FE80:0000:0000:0000:A4BD:A437:1F65:E132:52284
Item Value
Port Protocol UDP
Local Address FE80:0000:0000:0000:A4BD:A437:1F65:E132
Local Port 52284
Caption UDP FE80:0000:0000:0000:A4BD:A437:1F65:E132:52284
Service Name
Remote Address
Remote Port
Connection State
Process Name
Process ID 4624
Process Description
Process Manufacturer
10. Que puertos de comunicaciones se muestran y que acciones permiten esos puertos
Puertos de comunicación
SHRFAX:
Item Value
Port Number 1
Port Name SHRFAX:
Monitor Name Microsoft Shared Fax Monitor
Description Puerto para supervisión de fax
Port Type Can write, Cannot read
COM1:
Item Value
Port Number 2
Port Name COM1:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
COM2:
Item Value
Port Number 3
Port Name COM2:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
COM3:
Item Value
Port Number 4
Port Name COM3:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
COM4:
Item Value
Port Number 5
Port Name COM4:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
FILE:
Item Value
Port Number 6
Port Name FILE:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
LPT1:
Item Value
Port Number 7
Port Name LPT1:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
LPT2:
Item Value
Port Number 8
Port Name LPT2:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
LPT3:
Item Value
Port Number 9
Port Name LPT3:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
PORTPROMPT:
Item Value
Port Number 10
Port Name PORTPROMPT:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
nul:
Item Value
Port Number 11
Port Name nul:
Monitor Name Local Monitor
Description Puerto local
Port Type Can write, Can read
Favor resolver las anteriores preguntas y elabore un informe de auditoría tome como base el
Formato de Auditoria publicado en el blog. Grupo de 2 personas.