Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-11-2017
- Ran by willt (21-11-2017 12:46:46)
- Running from C:\Users\willt\Downloads
- Windows 10 Home Version 1703 15063.726 (X64) (2017-11-16 15:42:30)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-4071306032-2743384199-1857835800-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-4071306032-2743384199-1857835800-503 - Limited - Disabled)
- Guest (S-1-5-21-4071306032-2743384199-1857835800-501 - Limited - Disabled)
- willt (S-1-5-21-4071306032-2743384199-1857835800-1001 - Administrator - Enabled) => C:\Users\willt
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
- Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
- Discord (HKU\S-1-5-21-4071306032-2743384199-1857835800-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
- Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
- Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
- GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
- Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
- Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
- Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
- Microsoft OneDrive (HKU\S-1-5-21-4071306032-2743384199-1857835800-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
- Mozilla Firefox 57.0 (x64 en-US) (HKLM\...\Mozilla Firefox 57.0 (x64 en-US)) (Version: 57.0 - Mozilla)
- Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
- OpenOffice 4.1.4 (HKLM-x32\...\{BDB210E1-06C5-451F-BDAC-C18DDC7C2F14}) (Version: 4.14.9788 - Apache Software Foundation)
- qBittorrent 3.3.16 (HKLM-x32\...\qBittorrent) (Version: 3.3.16 - The qBittorrent project)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7898 - Realtek Semiconductor Corp.)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
- TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.88438 - TeamViewer)
- VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
- Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
- ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
- ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
- ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_881839e4512f7396\igfxDTCM.dll [2017-07-20] (Intel Corporation)
- ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- ==================== Shortcuts & WMI ========================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2017-11-16 08:26 - 2017-11-01 11:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
- 2017-11-16 08:26 - 2017-11-01 11:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
- 2017-03-18 15:58 - 2017-03-18 15:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
- 2017-03-18 15:59 - 2017-03-18 21:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2017-11-16 08:29 - 2017-11-16 08:30 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
- 2017-11-16 08:29 - 2017-11-16 08:30 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
- 2017-11-16 08:29 - 2017-11-16 08:30 - 025461760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkyWrap.dll
- 2017-11-16 08:29 - 2017-11-16 08:30 - 002552832 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\skypert.dll
- 2017-11-16 08:29 - 2017-11-16 08:29 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
- 2016-07-18 13:39 - 2016-07-18 13:39 - 000154816 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
- 2017-11-16 08:23 - 2017-11-16 08:23 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11710.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
- 2017-11-16 08:24 - 2017-08-08 17:13 - 001893880 _____ () C:\Users\willt\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
- 2017-11-16 08:25 - 2017-11-16 08:25 - 001577976 _____ () \\?\C:\Users\willt\AppData\Roaming\discord\0.0.298\modules\discord_toaster\discord_toaster.node
- 2017-11-17 21:56 - 2017-09-09 14:25 - 000688416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2017-11-17 21:56 - 2016-08-31 20:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2017-11-17 21:56 - 2017-10-30 22:22 - 002546976 _____ () C:\Program Files (x86)\Steam\video.dll
- 2017-11-17 21:56 - 2016-01-27 02:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2017-11-17 21:56 - 2016-01-27 02:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2017-11-17 21:56 - 2016-01-27 02:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2017-11-17 21:56 - 2016-01-27 02:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2017-11-17 21:56 - 2016-01-27 02:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2017-11-17 21:56 - 2016-08-31 20:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2017-11-17 21:56 - 2016-08-31 20:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2017-11-17 21:56 - 2017-10-30 22:22 - 000901408 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2017-11-17 21:56 - 2016-07-04 17:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
- 2017-11-16 08:24 - 2017-08-08 17:13 - 001938424 _____ () C:\Users\willt\AppData\Local\Discord\app-0.0.298\libglesv2.dll
- 2017-11-16 08:24 - 2017-08-08 17:13 - 000095736 _____ () C:\Users\willt\AppData\Local\Discord\app-0.0.298\libegl.dll
- 2017-11-17 21:58 - 2017-08-16 17:28 - 073130272 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
- 2017-11-17 21:58 - 2017-09-06 21:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
- 2017-11-17 21:56 - 2015-09-24 18:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2017-11-16 08:25 - 2017-11-16 08:25 - 009722360 _____ () \\?\C:\Users\willt\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
- 2017-11-16 08:25 - 2017-11-16 08:25 - 001471992 _____ () \\?\C:\Users\willt\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
- 2017-11-19 05:03 - 2017-11-19 05:03 - 000148992 _____ () \\?\C:\Users\willt\AppData\Local\Temp\F71C.tmp.node
- 2017-11-16 08:24 - 2017-11-16 08:24 - 002658296 _____ () \\?\C:\Users\willt\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
- 2017-11-16 08:26 - 2017-11-16 08:26 - 002673656 _____ () \\?\C:\Users\willt\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2017-11-16 10:09 - 2017-11-16 10:06 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-4071306032-2743384199-1857835800-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\willt\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\desktop background.bmp
- DNS Servers: 209.18.47.61 - 209.18.47.62
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [{B3D093A3-48CD-4C75-9976-21CFE7D421F0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
- FirewallRules: [{92B183A0-A386-4E89-924E-39FCA60BCD42}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
- FirewallRules: [{692CE74D-B975-47F5-AE6A-933A4F0D2B2C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{20596B3A-D9A8-4759-87FA-6043EC614048}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{DACC51FA-AD74-4A07-A9C2-F0AEF67C2D65}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{1E516C89-B337-41C1-BB1B-BC513D0E7CB7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
- FirewallRules: [{39975037-18C0-4517-B67C-23DC8B04DE69}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{95A53D5C-2498-4548-928E-4377749799FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- FirewallRules: [{3C85A8A6-79F8-480D-BE53-597D54C66558}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
- FirewallRules: [{ADAA6A98-7C9C-4045-9B36-EE254AB185C6}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe
- FirewallRules: [{17BDC627-C0A4-439C-A618-D991EFF0EB88}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{C14D64E1-8FA9-43E0-AFB2-C6F62D45835A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{3E76FA37-942A-417E-AE4B-FE98B3C0BF48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
- FirewallRules: [{0CD3549A-A806-4D1E-AEDA-40234FA188F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
- FirewallRules: [{7142FB6A-2216-48DA-9749-2870182BB42E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
- FirewallRules: [{802BDAD3-8887-40D5-90B9-74CBB3752B22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
- FirewallRules: [{24CD3F68-BEC2-4270-9296-D9EFFF4DC5FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock Remastered\Build\Final\BioshockHD.exe
- FirewallRules: [{11E0D1C2-9C45-4B54-8E21-71DD22218F26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock Remastered\Build\Final\BioshockHD.exe
- ==================== Restore Points =========================
- 19-11-2017 23:17:56 Scheduled Checkpoint
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (11/21/2017 04:36:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KMV6PA0)
- Description: Activation of app king.com.BubbleWitch3Saga_kgqvnymyfvs32!App failed with error: -2144927148 See the Microsoft-Windows-TWinUI/Operational log for additional information.
- Error: (11/17/2017 05:43:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KMV6PA0)
- Description: Activation of app Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
- Error: (11/17/2017 05:26:42 PM) (Source: ESENT) (EventID: 489) (User: )
- Description: SettingSyncHost (1920) {7000CF36-F3A6-4EA2-A086-8EFF7D7436D4}: An attempt to open the file "C:\Users\willt\AppData\Local\Microsoft\Windows\SettingSync\remotemetastore\v1\meta.edb" for read only access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).
- Error: (11/16/2017 05:40:46 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: SystemSettings.exe, version: 10.0.15063.0, time stamp: 0x7c8bd05a
- Faulting module name: SettingsHandlers_Display.dll, version: 10.0.15063.332, time stamp: 0x281dcef7
- Exception code: 0xc0000005
- Fault offset: 0x000000000001ce74
- Faulting process id: 0xcf8
- Faulting application start time: 0x01d35ef4a927b235
- Faulting application path: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
- Faulting module path: C:\Windows\System32\SettingsHandlers_Display.dll
- Report Id: 1e7cda67-0d25-47b9-aa63-a8f8f0c6879b
- Faulting package full name: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy
- Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel
- Error: (11/16/2017 07:54:03 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KMV6PA0)
- Description: Activation of app Microsoft.MicrosoftEdge_8wekyb3d8bbwe!ContentProcess failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
- Error: (11/16/2017 10:33:53 AM) (Source: SecurityCenter) (EventID: 16) (User: )
- Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.
- Error: (11/16/2017 10:33:53 AM) (Source: SecurityCenter) (EventID: 16) (User: )
- Description: Error while updating Windows Defender status to SECURITY_PRODUCT_STATE_ON.
- System errors:
- =============
- Error: (11/21/2017 10:01:42 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/21/2017 04:35:49 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
- Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9WZDNCRFJ3TJ-4DF9E0F8.Netflix.
- Error: (11/21/2017 01:12:45 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/20/2017 11:12:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/20/2017 02:04:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/20/2017 12:04:49 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/19/2017 10:54:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/19/2017 08:02:01 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/19/2017 05:02:12 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
- and APPID
- {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
- to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (11/19/2017 05:02:12 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
- and APPID
- {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
- to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- CodeIntegrity:
- ===================================
- Date: 2017-11-17 14:10:24.537
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-17 07:29:17.525
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-17 07:07:55.265
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-17 06:46:59.505
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-17 06:39:06.913
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-17 06:16:26.461
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-16 18:24:11.073
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-16 17:40:14.805
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\WinMetadata\Windows.Graphics.winmd because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-16 17:40:14.255
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- Date: 2017-11-16 17:40:06.221
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
- Percentage of memory in use: 66%
- Total physical RAM: 8101.08 MB
- Available physical RAM: 2707.2 MB
- Total Virtual: 11338.16 MB
- Available Virtual: 2425.36 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:930.13 GB) (Free:869.72 GB) NTFS
- Drive d: (Elements) (Fixed) (Total:931.48 GB) (Free:60.15 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
- Partition: GPT.
- ========================================================
- Disk: 1 (Size: 931.5 GB) (Disk ID: 16F2A91F)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement