Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Farbar Service Scanner Version: 10-11-2013
- Ran by Belnap (administrator) on 13-11-2013 at 10:24:05
- Running from "C:\Users\Belnap\Downloads"
- Microsoft Windows 7 Home Premium Service Pack 1 (X86)
- Boot Mode: Normal
- ****************************************************************
- Internet Services:
- ============
- Connection Status:
- ==============
- Localhost is accessible.
- LAN connected.
- Google IP is accessible.
- Google.com is accessible.
- Yahoo.com is accessible.
- Windows Firewall:
- =============
- Firewall Disabled Policy:
- ==================
- "HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile" registry key does not exist.
- System Restore:
- ============
- System Restore Disabled Policy:
- ========================
- Action Center:
- ============
- Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.
- Windows Update:
- ============
- Windows Autoupdate Disabled Policy:
- ============================
- Windows Defender:
- ==============
- WinDefend Service is not running. Checking service configuration:
- The start type of WinDefend service is set to Demand. The default start type is Auto.
- The ImagePath of WinDefend service is OK.
- The ServiceDll of WinDefend service is OK.
- Windows Defender Disabled Policy:
- ==========================
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
- "DisableAntiSpyware"=DWORD:1
- Other Services:
- ==============
- Checking FirewallRules of SharedAccess: ATTENTION!=====> Unable to open "SharedAccess\Defaults\FirewallPolicy\FirewallRules" registry key. The key does not exist.
- Checking Start type of PolicyAgent: ATTENTION!=====> Unable to open PolicyAgent registry key. The service key does not exist.
- Checking ImagePath of PolicyAgent: ATTENTION!=====> Unable to open PolicyAgent registry key. The service key does not exist.
- Checking ServiceDll of PolicyAgent: ATTENTION!=====> Unable to open PolicyAgent registry key. The service key does not exist.
- Checking Start type of RemoteAccess: ATTENTION!=====> Unable to open RemoteAccess registry key. The service key does not exist.
- Checking ImagePath of RemoteAccess: ATTENTION!=====> Unable to open RemoteAccess registry key. The service key does not exist.
- Checking ServiceDll of RemoteAccess: ATTENTION!=====> Unable to open RemoteAccess registry key. The service key does not exist.
- File Check:
- ========
- C:\Windows\system32\nsisvc.dll => MD5 is legit
- C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
- C:\Windows\system32\dhcpcore.dll => MD5 is legit
- C:\Windows\system32\Drivers\afd.sys
- [2013-10-18 10:34] - [2013-09-13 17:48] - 0338944 ____A (Microsoft Corporation) F81BB7E487EDCEAB630A7EE66CF23913
- C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
- C:\Windows\system32\Drivers\tcpip.sys
- [2013-10-18 10:34] - [2013-09-07 19:07] - 1294272 ____A (Microsoft Corporation) CA59F7C570AF70BC174F477CFE2D9EE3
- C:\Windows\system32\dnsrslvr.dll => MD5 is legit
- C:\Windows\system32\mpssvc.dll => MD5 is legit
- C:\Windows\system32\bfe.dll => MD5 is legit
- C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
- C:\Windows\system32\SDRSVC.dll => MD5 is legit
- C:\Windows\system32\vssvc.exe => MD5 is legit
- C:\Windows\system32\wscsvc.dll => MD5 is legit
- C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
- C:\Windows\system32\wuaueng.dll => MD5 is legit
- C:\Windows\system32\qmgr.dll => MD5 is legit
- C:\Windows\system32\es.dll => MD5 is legit
- C:\Windows\system32\cryptsvc.dll
- [2013-09-28 18:05] - [2013-07-08 21:46] - 0140288 ____A (Microsoft Corporation) 7CA1BECEA5DE2643ADDAD32670E7A4C9
- C:\Program Files\Windows Defender\MpSvc.dll
- [2013-07-14 09:16] - [2013-05-26 21:57] - 0680960 ____A (Microsoft Corporation) 082CF481F659FAE0DE51AD060881EB47
- C:\Windows\system32\ipnathlp.dll => MD5 is legit
- C:\Windows\system32\iphlpsvc.dll => MD5 is legit
- C:\Windows\system32\svchost.exe => MD5 is legit
- C:\Windows\system32\rpcss.dll => MD5 is legit
- **** End of log ****
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement