Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 29634 21:12:16 (0) ** WMIDiag v2.2 started on sábado, 15 de outubro de 2016 at 21:07.
- 29635 21:12:16 (0) **
- 29636 21:12:16 (0) ** Copyright (c) Microsoft Corporation. All rights reserved - July 2007.
- 29637 21:12:16 (0) **
- 29638 21:12:16 (0) ** This script is not supported under any Microsoft standard support program or service.
- 29639 21:12:16 (0) ** The script is provided AS IS without warranty of any kind. Microsoft further disclaims all
- 29640 21:12:16 (0) ** implied warranties including, without limitation, any implied warranties of merchantability
- 29641 21:12:16 (0) ** or of fitness for a particular purpose. The entire risk arising out of the use or performance
- 29642 21:12:16 (0) ** of the scripts and documentation remains with you. In no event shall Microsoft, its authors,
- 29643 21:12:16 (0) ** or anyone else involved in the creation, production, or delivery of the script be liable for
- 29644 21:12:16 (0) ** any damages whatsoever (including, without limitation, damages for loss of business profits,
- 29645 21:12:16 (0) ** business interruption, loss of business information, or other pecuniary loss) arising out of
- 29646 21:12:16 (0) ** the use of or inability to use the script or documentation, even if Microsoft has been advised
- 29647 21:12:16 (0) ** of the possibility of such damages.
- 29648 21:12:16 (0) **
- 29649 21:12:16 (0) **
- 29650 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29651 21:12:16 (0) ** ----------------------------------------------------- WMI REPORT: BEGIN ----------------------------------------------------------
- 29652 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29653 21:12:16 (0) **
- 29654 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29655 21:12:16 (0) ** Windows 7 - Service Pack 1 - 64-bit (7601) - User 'PAULOSTAVIS-DPC\PAULO STAVIS' on computer 'PAULOSTAVIS-DPC'.
- 29656 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29657 21:12:16 (0) ** INFO: Environment: .................................................................................................. 1 ITEM(S)!
- 29658 21:12:16 (0) ** INFO: => 1 possible incorrect shutdown(s) detected on:
- 29659 21:12:16 (0) ** - Shutdown on 06 October 2016 10:33:04 (GMT-0).
- 29660 21:12:16 (0) **
- 29661 21:12:16 (0) ** System drive: ....................................................................................................... C: (Disk #0 Partition #1).
- 29662 21:12:16 (0) ** Drive type: ......................................................................................................... IDE (ST1000DM003-1CH162 ATA Device).
- 29663 21:12:16 (0) ** There are no missing WMI system files: .............................................................................. OK.
- 29664 21:12:16 (0) ** There are no missing WMI repository files: .......................................................................... OK.
- 29665 21:12:16 (0) ** WMI repository state: ............................................................................................... N/A.
- 29666 21:12:16 (0) ** AFTER running WMIDiag:
- 29667 21:12:16 (0) ** The WMI repository has a size of: ................................................................................... 23 MB.
- 29668 21:12:16 (0) ** - Disk free space on 'C:': .......................................................................................... 291202 MB.
- 29669 21:12:16 (0) ** - INDEX.BTR, 5087232 bytes, 15/10/2016 21:10:54
- 29670 21:12:16 (0) ** - MAPPING1.MAP, 62700 bytes, 15/10/2016 16:29:08
- 29671 21:12:16 (0) ** - MAPPING2.MAP, 62700 bytes, 15/10/2016 21:04:43
- 29672 21:12:16 (0) ** - OBJECTS.DATA, 18980864 bytes, 15/10/2016 21:10:54
- 29673 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29674 21:12:16 (2) !! WARNING: Windows Firewall: .......................................................................................... DISABLED.
- 29675 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29676 21:12:16 (0) ** DCOM Status: ........................................................................................................ OK.
- 29677 21:12:16 (0) ** WMI registry setup: ................................................................................................. OK.
- 29678 21:12:16 (0) ** INFO: WMI service has dependents: ................................................................................... 2 SERVICE(S)!
- 29679 21:12:16 (0) ** - Security Center (WSCSVC, StartMode='Automatic')
- 29680 21:12:16 (0) ** - Internet Connection Sharing (ICS) (SHAREDACCESS, StartMode='Disabled')
- 29681 21:12:16 (0) ** => If the WMI service is stopped, the listed service(s) will have to be stopped as well.
- 29682 21:12:16 (0) ** Note: If the service is marked with (*), it means that the service/application uses WMI but
- 29683 21:12:16 (0) ** there is no hard dependency on WMI. However, if the WMI service is stopped,
- 29684 21:12:16 (0) ** this can prevent the service/application to work as expected.
- 29685 21:12:16 (0) **
- 29686 21:12:16 (0) ** RPCSS service: ...................................................................................................... OK (Already started).
- 29687 21:12:16 (0) ** WINMGMT service: .................................................................................................... OK (Already started).
- 29688 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29689 21:12:16 (0) ** WMI service DCOM setup: ............................................................................................. OK.
- 29690 21:12:16 (2) !! WARNING: WMI DCOM components registration is missing for the following EXE/DLLs: .................................... 2 WARNING(S)!
- 29691 21:12:16 (0) ** - C:\WINDOWS\SYSTEM32\WBEM\IPMIPRV.DLL (\CLSID\{FD209E2E-813B-41C0-8646-4C3E9C917511}\InProcServer32)
- 29692 21:12:16 (0) ** - C:\WINDOWS\SYSTEM32\WBEM\SERVERCOMPPROV.DLL (\CLSID\{9042E1B1-8FD4-4008-89FE-4040CC74575A}\InProcServer32)
- 29693 21:12:16 (0) ** => WMI System components are not properly registered as COM objects, which could make WMI to
- 29694 21:12:16 (0) ** fail depending on the operation requested.
- 29695 21:12:16 (0) ** => For a .DLL, you can correct the DCOM configuration by executing the 'REGSVR32.EXE <Filename.DLL>' command.
- 29696 21:12:16 (0) **
- 29697 21:12:16 (0) ** WMI ProgID registrations: ........................................................................................... OK.
- 29698 21:12:16 (0) ** WMI provider DCOM registrations: .................................................................................... OK.
- 29699 21:12:16 (0) ** WMI provider CIM registrations: ..................................................................................... OK.
- 29700 21:12:16 (0) ** WMI provider CLSIDs: ................................................................................................ OK.
- 29701 21:12:16 (0) ** WMI providers EXE/DLL availability: ................................................................................. OK.
- 29702 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29703 21:12:16 (0) ** INFO: User Account Control (UAC): ................................................................................... DISABLED.
- 29704 21:12:16 (0) ** INFO: Local Account Filtering: ...................................................................................... ENABLED.
- 29705 21:12:16 (0) ** => WMI tasks remotely accessing WMI information on this computer and requiring Administrative
- 29706 21:12:16 (0) ** privileges MUST use a DOMAIN account part of the Local Administrators group of this computer
- 29707 21:12:16 (0) ** to ensure that administrative privileges are granted. If a Local User account is used for remote
- 29708 21:12:16 (0) ** accesses, it will be reduced to a plain user (filtered token), even if it is part of the Local Administrators group.
- 29709 21:12:16 (0) **
- 29710 21:12:16 (0) ** DCOM security for 'My Computer' (Access Permissions/Edit Limits): ................................................... MODIFIED.
- 29711 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\ANONYMOUS LOGON' has been REMOVED!
- 29712 21:12:16 (0) ** - REMOVED ACE:
- 29713 21:12:16 (0) ** ACEType: &h0
- 29714 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29715 21:12:16 (0) ** ACEFlags: &h0
- 29716 21:12:16 (0) ** ACEMask: &h3
- 29717 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29718 21:12:16 (0) ** DCOM_RIGHT_ACCESS_LOCAL
- 29719 21:12:16 (0) **
- 29720 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29721 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29722 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29723 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29724 21:12:16 (0) **
- 29725 21:12:16 (0) ** DCOM security for 'My Computer' (Access Permissions/Edit Limits): ................................................... MODIFIED.
- 29726 21:12:16 (1) !! ERROR: Default trustee 'BUILTIN\PERFORMANCE LOG USERS' has been REMOVED!
- 29727 21:12:16 (0) ** - REMOVED ACE:
- 29728 21:12:16 (0) ** ACEType: &h0
- 29729 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29730 21:12:16 (0) ** ACEFlags: &h0
- 29731 21:12:16 (0) ** ACEMask: &h7
- 29732 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29733 21:12:16 (0) ** DCOM_RIGHT_ACCESS_LOCAL
- 29734 21:12:16 (0) ** DCOM_RIGHT_ACCESS_REMOTE
- 29735 21:12:16 (0) **
- 29736 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29737 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29738 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29739 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29740 21:12:16 (0) **
- 29741 21:12:16 (0) ** DCOM security for 'My Computer' (Access Permissions/Edit Limits): ................................................... MODIFIED.
- 29742 21:12:16 (1) !! ERROR: Default trustee 'EVERYONE' has been REMOVED!
- 29743 21:12:16 (0) ** - REMOVED ACE:
- 29744 21:12:16 (0) ** ACEType: &h0
- 29745 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29746 21:12:16 (0) ** ACEFlags: &h0
- 29747 21:12:16 (0) ** ACEMask: &h7
- 29748 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29749 21:12:16 (0) ** DCOM_RIGHT_ACCESS_LOCAL
- 29750 21:12:16 (0) ** DCOM_RIGHT_ACCESS_REMOTE
- 29751 21:12:16 (0) **
- 29752 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29753 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29754 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29755 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29756 21:12:16 (0) **
- 29757 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Default): ..................................... MODIFIED.
- 29758 21:12:16 (1) !! ERROR: Default trustee 'BUILTIN\ADMINISTRATORS' has been REMOVED!
- 29759 21:12:16 (0) ** - REMOVED ACE:
- 29760 21:12:16 (0) ** ACEType: &h0
- 29761 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29762 21:12:16 (0) ** ACEFlags: &h0
- 29763 21:12:16 (0) ** ACEMask: &h1F
- 29764 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29765 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29766 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29767 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29768 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29769 21:12:16 (0) **
- 29770 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29771 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29772 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29773 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29774 21:12:16 (0) **
- 29775 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Default): ..................................... MODIFIED.
- 29776 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\INTERACTIVE' has been REMOVED!
- 29777 21:12:16 (0) ** - REMOVED ACE:
- 29778 21:12:16 (0) ** ACEType: &h0
- 29779 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29780 21:12:16 (0) ** ACEFlags: &h0
- 29781 21:12:16 (0) ** ACEMask: &h1F
- 29782 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29783 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29784 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29785 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29786 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29787 21:12:16 (0) **
- 29788 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29789 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29790 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29791 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29792 21:12:16 (0) **
- 29793 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Default): ..................................... MODIFIED.
- 29794 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\SYSTEM' has been REMOVED!
- 29795 21:12:16 (0) ** - REMOVED ACE:
- 29796 21:12:16 (0) ** ACEType: &h0
- 29797 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29798 21:12:16 (0) ** ACEFlags: &h0
- 29799 21:12:16 (0) ** ACEMask: &h1F
- 29800 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29801 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29802 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29803 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29804 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29805 21:12:16 (0) **
- 29806 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29807 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29808 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29809 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29810 21:12:16 (0) **
- 29811 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Limits): ...................................... MODIFIED.
- 29812 21:12:16 (1) !! ERROR: Default trustee 'BUILTIN\ADMINISTRATORS' has been REMOVED!
- 29813 21:12:16 (0) ** - REMOVED ACE:
- 29814 21:12:16 (0) ** ACEType: &h0
- 29815 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29816 21:12:16 (0) ** ACEFlags: &h0
- 29817 21:12:16 (0) ** ACEMask: &h1F
- 29818 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29819 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29820 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29821 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29822 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29823 21:12:16 (0) **
- 29824 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29825 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29826 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29827 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29828 21:12:16 (0) **
- 29829 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Limits): ...................................... MODIFIED.
- 29830 21:12:16 (1) !! ERROR: Default trustee 'BUILTIN\PERFORMANCE LOG USERS' has been REMOVED!
- 29831 21:12:16 (0) ** - REMOVED ACE:
- 29832 21:12:16 (0) ** ACEType: &h0
- 29833 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29834 21:12:16 (0) ** ACEFlags: &h0
- 29835 21:12:16 (0) ** ACEMask: &h1F
- 29836 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29837 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29838 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29839 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29840 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29841 21:12:16 (0) **
- 29842 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29843 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29844 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29845 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29846 21:12:16 (0) **
- 29847 21:12:16 (0) ** DCOM security for 'My Computer' (Launch & Activation Permissions/Edit Limits): ...................................... MODIFIED.
- 29848 21:12:16 (1) !! ERROR: Default trustee 'EVERYONE' has been REMOVED!
- 29849 21:12:16 (0) ** - REMOVED ACE:
- 29850 21:12:16 (0) ** ACEType: &h0
- 29851 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29852 21:12:16 (0) ** ACEFlags: &h0
- 29853 21:12:16 (0) ** ACEMask: &hB
- 29854 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29855 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29856 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29857 21:12:16 (0) **
- 29858 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29859 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29860 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29861 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29862 21:12:16 (0) **
- 29863 21:12:16 (0) ** DCOM security for 'Microsoft WMI Provider Subsystem Host' (Launch & Activation Permissions): ........................ MODIFIED.
- 29864 21:12:16 (1) !! ERROR: Default trustee 'BUILTIN\ADMINISTRATORS' has been REMOVED!
- 29865 21:12:16 (0) ** - REMOVED ACE:
- 29866 21:12:16 (0) ** ACEType: &h0
- 29867 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29868 21:12:16 (0) ** ACEFlags: &h0
- 29869 21:12:16 (0) ** ACEMask: &h1F
- 29870 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29871 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29872 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29873 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29874 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29875 21:12:16 (0) **
- 29876 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29877 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29878 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29879 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29880 21:12:16 (0) **
- 29881 21:12:16 (0) ** DCOM security for 'Microsoft WMI Provider Subsystem Host' (Launch & Activation Permissions): ........................ MODIFIED.
- 29882 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\INTERACTIVE' has been REMOVED!
- 29883 21:12:16 (0) ** - REMOVED ACE:
- 29884 21:12:16 (0) ** ACEType: &h0
- 29885 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29886 21:12:16 (0) ** ACEFlags: &h0
- 29887 21:12:16 (0) ** ACEMask: &h1F
- 29888 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29889 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29890 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29891 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29892 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29893 21:12:16 (0) **
- 29894 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29895 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29896 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29897 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29898 21:12:16 (0) **
- 29899 21:12:16 (0) ** DCOM security for 'Microsoft WMI Provider Subsystem Host' (Launch & Activation Permissions): ........................ MODIFIED.
- 29900 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\SYSTEM' has been REMOVED!
- 29901 21:12:16 (0) ** - REMOVED ACE:
- 29902 21:12:16 (0) ** ACEType: &h0
- 29903 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29904 21:12:16 (0) ** ACEFlags: &h0
- 29905 21:12:16 (0) ** ACEMask: &h1F
- 29906 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29907 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29908 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29909 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29910 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29911 21:12:16 (0) **
- 29912 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29913 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29914 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29915 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29916 21:12:16 (0) **
- 29917 21:12:16 (0) ** DCOM security for 'Microsoft WMI Provider Subsystem Host' (Launch & Activation Permissions): ........................ MODIFIED.
- 29918 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\NETWORK SERVICE' has been REMOVED!
- 29919 21:12:16 (0) ** - REMOVED ACE:
- 29920 21:12:16 (0) ** ACEType: &h0
- 29921 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29922 21:12:16 (0) ** ACEFlags: &h0
- 29923 21:12:16 (0) ** ACEMask: &h1F
- 29924 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29925 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29926 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29927 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29928 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29929 21:12:16 (0) **
- 29930 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29931 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29932 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29933 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29934 21:12:16 (0) **
- 29935 21:12:16 (0) ** DCOM security for 'Microsoft WMI Provider Subsystem Host' (Launch & Activation Permissions): ........................ MODIFIED.
- 29936 21:12:16 (1) !! ERROR: Default trustee 'NT AUTHORITY\LOCAL SERVICE' has been REMOVED!
- 29937 21:12:16 (0) ** - REMOVED ACE:
- 29938 21:12:16 (0) ** ACEType: &h0
- 29939 21:12:16 (0) ** ACCESS_ALLOWED_ACE_TYPE
- 29940 21:12:16 (0) ** ACEFlags: &h0
- 29941 21:12:16 (0) ** ACEMask: &h1F
- 29942 21:12:16 (0) ** DCOM_RIGHT_EXECUTE
- 29943 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_LOCAL
- 29944 21:12:16 (0) ** DCOM_RIGHT_LAUNCH_REMOTE
- 29945 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_LOCAL
- 29946 21:12:16 (0) ** DCOM_RIGHT_ACTIVATE_REMOTE
- 29947 21:12:16 (0) **
- 29948 21:12:16 (0) ** => The REMOVED ACE was part of the DEFAULT setup for the trustee.
- 29949 21:12:16 (0) ** Removing default security will cause some operations to fail!
- 29950 21:12:16 (0) ** It is possible to fix this issue by editing the security descriptor and adding the ACE.
- 29951 21:12:16 (0) ** For DCOM objects, this can be done with 'DCOMCNFG.EXE'.
- 29952 21:12:16 (0) **
- 29953 21:12:16 (0) **
- 29954 21:12:16 (0) ** DCOM security warning(s) detected: .................................................................................. 0.
- 29955 21:12:16 (0) ** DCOM security error(s) detected: .................................................................................... 14.
- 29956 21:12:16 (0) ** WMI security warning(s) detected: ................................................................................... 0.
- 29957 21:12:16 (0) ** WMI security error(s) detected: ..................................................................................... 0.
- 29958 21:12:16 (0) **
- 29959 21:12:16 (1) !! ERROR: Overall DCOM security status: ................................................................................ ERROR!
- 29960 21:12:16 (0) ** Overall WMI security status: ........................................................................................ OK.
- 29961 21:12:16 (0) ** - Started at 'Root' --------------------------------------------------------------------------------------------------------------
- 29962 21:12:16 (0) ** INFO: WMI permanent SUBSCRIPTION(S): ................................................................................ 2.
- 29963 21:12:16 (0) ** - ROOT/SUBSCRIPTION, CommandLineEventConsumer.Name="BVTConsumer".
- 29964 21:12:16 (0) ** 'SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99'
- 29965 21:12:16 (0) ** - ROOT/SUBSCRIPTION, NTEventLogEventConsumer.Name="SCM Event Log Consumer".
- 29966 21:12:16 (0) ** 'select * from MSFT_SCMEventLogEvent'
- 29967 21:12:16 (0) **
- 29968 21:12:16 (0) ** WMI TIMER instruction(s): ........................................................................................... NONE.
- 29969 21:12:16 (0) ** INFO: WMI namespace(s) requiring PACKET PRIVACY: .................................................................... 4 NAMESPACE(S)!
- 29970 21:12:16 (0) ** - ROOT/CIMV2/SECURITY/MICROSOFTTPM.
- 29971 21:12:16 (0) ** - ROOT/CIMV2/SECURITY/MICROSOFTVOLUMEENCRYPTION.
- 29972 21:12:16 (0) ** - ROOT/CIMV2/TERMINALSERVICES.
- 29973 21:12:16 (0) ** - ROOT/SERVICEMODEL.
- 29974 21:12:16 (0) ** => When remotely connecting, the namespace(s) listed require(s) the WMI client to
- 29975 21:12:16 (0) ** use an encrypted connection by specifying the PACKET PRIVACY authentication level.
- 29976 21:12:16 (0) ** (RPC_C_AUTHN_LEVEL_PKT_PRIVACY or PktPrivacy flags)
- 29977 21:12:16 (0) ** i.e. 'WMIC.EXE /NODE:"PAULOSTAVIS-DPC" /AUTHLEVEL:Pktprivacy /NAMESPACE:\\ROOT\SERVICEMODEL Class __SystemSecurity'
- 29978 21:12:16 (0) **
- 29979 21:12:16 (0) ** WMI MONIKER CONNECTIONS: ............................................................................................ OK.
- 29980 21:12:16 (0) ** WMI CONNECTIONS: .................................................................................................... OK.
- 29981 21:12:16 (0) ** WMI GET operations: ................................................................................................. OK.
- 29982 21:12:16 (0) ** WMI MOF representations: ............................................................................................ OK.
- 29983 21:12:16 (0) ** WMI QUALIFIER access operations: .................................................................................... OK.
- 29984 21:12:16 (0) ** WMI ENUMERATION operations: ......................................................................................... OK.
- 29985 21:12:16 (0) ** WMI EXECQUERY operations: ........................................................................................... OK.
- 29986 21:12:16 (1) !! ERROR: WMI GET VALUE operation errors reported: ..................................................................... 1 ERROR(S)!
- 29987 21:12:16 (0) ** - Root/CIMV2, Instance: Win32_Service='WSCSVC', Property: Displayname='Central de Segurança' (Expected default='Security Center').
- 29988 21:12:16 (0) **
- 29989 21:12:16 (0) ** WMI WRITE operations: ............................................................................................... NOT TESTED.
- 29990 21:12:16 (0) ** WMI PUT operations: ................................................................................................. NOT TESTED.
- 29991 21:12:16 (0) ** WMI DELETE operations: .............................................................................................. NOT TESTED.
- 29992 21:12:16 (0) ** WMI static instances retrieved: ..................................................................................... 1788.
- 29993 21:12:16 (0) ** WMI dynamic instances retrieved: .................................................................................... 0.
- 29994 21:12:16 (0) ** WMI instance request cancellations (to limit performance impact): ................................................... 1.
- 29995 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 29996 21:12:16 (0) ** # of Event Log events BEFORE WMIDiag execution since the last 20 day(s):
- 29997 21:12:16 (0) ** DCOM: ............................................................................................................. 0.
- 29998 21:12:16 (0) ** WINMGMT: .......................................................................................................... 0.
- 29999 21:12:16 (0) ** WMIADAPTER: ....................................................................................................... 0.
- 30000 21:12:16 (0) **
- 30001 21:12:16 (0) ** # of additional Event Log events AFTER WMIDiag execution:
- 30002 21:12:16 (0) ** DCOM: ............................................................................................................. 0.
- 30003 21:12:16 (0) ** WINMGMT: .......................................................................................................... 0.
- 30004 21:12:16 (0) ** WMIADAPTER: ....................................................................................................... 0.
- 30005 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30006 21:12:16 (0) ** WMI Registry key setup: ............................................................................................. OK.
- 30007 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30008 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30009 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30010 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30011 21:12:16 (0) **
- 30012 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30013 21:12:16 (0) ** ------------------------------------------------------ WMI REPORT: END -----------------------------------------------------------
- 30014 21:12:16 (0) ** ----------------------------------------------------------------------------------------------------------------------------------
- 30015 21:12:16 (0) **
- 30016 21:12:16 (0) ** ERROR: WMIDiag detected issues that could prevent WMI to work properly!. Check 'C:\USERS\PAULO STAVIS\APPDATA\LOCAL\TEMP\WMIDIAG-V2.2_WIN7_.CLI.SP1.64_PAULOSTAVIS-DPC_2016.10.15_21.07.24.LOG' for details.
- 30017 21:12:16 (0) **
- 30018 21:12:16 (0) ** WMIDiag v2.2 ended on sábado, 15 de outubro de 2016 at 21:12 (W:86 E:25 S:1).
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement