3
« on: April 09, 2019, 06:35:14 am »
Hi, I am having issues with viewing the domain network, and I am unable to edit the permissions on the BFE reg key (access denied, even after trying several take ownership utilities and running all as admin). When I run Tweaking.com's Windows Repair 2018 (v4.4.6), the start up check shows this message: Missing File: Files\regfiles\10_1809\SharedAccess.reg. I do have a SharedAccess.reg file, but perhaps it is corrupted or incorrect. I have run MS Windows Repair, but the problem remains. I did try to import the bfe.reg key from bleeping computer, but I have "insufficient privileges" to do so.
I am running Windows 10 v1809. I am an admin on my computer. My computer is clean of viruses (have run RogueKiller, MalwareBytes, & Adware Removal and all were clear).
I know that DCOM, BFE, MpsSvc, BITS, firewall, etc. are all intertwined and they need to have correct permissions to run, just not sure how to fix the issues. I use Avast as my AV.
Please assist. Thank you very much!
And here are the errors from a FarBar Scan:
==================== Event log errors: =========================
Application errors:
==================
Error: (04/04/2019 03:19:41 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Cannot find object or property.
Error: (04/04/2019 03:19:41 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Cannot find object or property.
Error: (04/04/2019 02:32:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program regedit.exe version 10.0.17763.168 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 4570
Start Time: 01d4eb1abef2d67c
Termination Time: 0
Application Path: C:\Windows\regedit.exe
Report Id: 05fcdf49-1a67-4818-9439-7ca4e95210a4
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (04/03/2019 02:07:40 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating (unknown) status to SECURITY_PRODUCT_STATE_ON.
Error: (04/03/2019 02:07:40 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating (unknown) status to SECURITY_PRODUCT_STATE_ON.
Error: (04/03/2019 02:07:39 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating (unknown) status to SECURITY_PRODUCT_STATE_ON.
Error: (04/03/2019 02:07:39 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating (unknown) status to SECURITY_PRODUCT_STATE_ON.
Error: (04/03/2019 02:07:39 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating (unknown) status to SECURITY_PRODUCT_STATE_ON.
System errors:
=============
Error: (04/08/2019 08:12:38 AM) (Source: DCOM) (EventID: 10016) (User: OTC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user OTC\skb SID (S-1-5-21-669097519-3148179253-668925197-1614) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (04/08/2019 08:12:38 AM) (Source: DCOM) (EventID: 10016) (User: OTC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user OTC\skb SID (S-1-5-21-669097519-3148179253-668925197-1614) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (04/08/2019 08:04:55 AM) (Source: DCOM) (EventID: 10016) (User: OTC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user OTC\skb SID (S-1-5-21-669097519-3148179253-668925197-1614) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (04/08/2019 07:19:27 AM) (Source: DCOM) (EventID: 10016) (User: OTC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user OTC\skb SID (S-1-5-21-669097519-3148179253-668925197-1614) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (04/08/2019 07:15:09 AM) (Source: DCOM) (EventID: 10016) (User: OTC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user OTC\skb SID (S-1-5-21-669097519-3148179253-668925197-1614) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (04/08/2019 06:41:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Connectivity Assistant service depends on the Base Filtering Engine service which failed to start because of the following error:
Access is denied.
Error: (04/08/2019 06:41:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Base Filtering Engine service terminated with the following error:
Access is denied.
Error: (04/08/2019 05:05:14 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Connectivity Assistant service depends on the Base Filtering Engine service which failed to start because of the following error:
Access is denied.