 |
 | Help any thoughts on this whats real whats not? |  |
|
Hakaken
|
|
This is the output of a scan I ran on a friends windows machine It is a Toshiba laptop running vista yea I know but its a software thing on a work computer and she cannot change the OS. Myself I have been running Linux so long that the days of spot shotting a windows registry have long been forgotten by me. I know norton locks its files and much of what I see I understand but some of this stuff other than obvious positives has me scratching my head I would be grateful for any of you windows pros help Thanks for reading Haka WARNING: Can't open file C:\pagefile.sys: Permission denied
WARNING: Can't open file C:\Program Files (x86)\InstallShield Installation Information\008D69EB-70FF-46AB-9C75- 924620DF191A\setup.ilg: Permission denied WARNING: Can't open file C:\Program Files (x86)\InstallShield Installation Information\3FBF6F99-8EC6-41B4-8527- 0A32241B5496\setup.ilg: Permission denied WARNING: Can't open file C:\Program Files (x86)\InstallShield Installation Information\BB8AE808-F003-4C7F-B56B- 8C80EEAFFE23\setup.ilg: Permission denied WARNING: Can't open file C:\Program Files (x86)\InstallShield Installation Information\EE033C1F-443E-41EC-A0E2- 559B539A4E4D\setup.ilg: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\319879698eee535dddba5897ee8c03a1_dfe2d20e-4214-4e5a-ae65- f2885d4edc50: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\fc1e3851f429ea606d6ff1e01a5229f1_dfe2d20e-4214-4e5a-ae65- f2885d4edc50: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SeaNote.cab: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.cab: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SearchBoxExt.cab: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Search Enhancement Pack\SeaPort\SHelper.cab: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwfoim.db: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmh.db: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmrc.db: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmrc.db.bak: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwperfm.db: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwsubs.db: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwsubs.db.bak: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\SymDS\Temp\musdmys_JuGhveZc6iZ05N6psztp: Permission denied WARNING: Can't open file C:\ProgramData\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\SymDS\Temp\musdmys_vFMjpUDBG4xbepDTlyIf: Permission denied WARNING: Can't open file C:\ProgramData\VCOM\Web Easy\Temporary_Thumbnail_Files\CPVWeb_Easy_Professional_6.ctf: Permission denied WARNING: Can't open file C:\ProgramData\VCOM\Web Easy\Temporary_Thumbnail_Files\CPVWeb_Easy_Professional_6.cxf: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\319879698eee535dddba5897ee8c03a1_dfe2d20e-4214-4e5a-ae65- f2885d4edc50: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\fc1e3851f429ea606d6ff1e01a5229f1_dfe2d20e-4214-4e5a-ae65-f2885d4edc50: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SeaNote.cab: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.cab: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SearchBoxExt.cab: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Search Enhancement Pack\SeaPort\SHelper.cab: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwfoim.db: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmh.db: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmrc.db: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwmrc.db.bak: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwperfm.db: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwsubs.db: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\NCW\ncwsubs.db.bak: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\SymDS\Temp\musdmys_JuGhveZc6iZ05N6psztp: Permission denied WARNING: Can't open file C:\Users\All Users\Norton\0C55C096-0F1D-4F28-AAA2- 85EF591126E7\N360_6.2.1.5\SymDS\Temp\musdmys_vFMjpUDBG4xbepDTlyIf: Permission denied WARNING: Can't open file C:\Users\All Users\VCOM\Web Easy\Temporary_Thumbnail_Files\CPVWeb_Easy_Professional_6.ctf: Permission denied WARNING: Can't open file C:\Users\All Users\VCOM\Web Easy\Temporary_Thumbnail_Files\CPVWeb_Easy_Professional_6.cxf: Permission denied WARNING: Can't open file C:\Users\nb\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\nb\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\nb\AppData\Roaming\VCOM\Web Easy\History\Default.hst: Permission denied WARNING: Can't open file C:\Users\nb\ntuser.dat.LOG1: Permission denied WARNING: Can't open file C:\Windows\Installer\MSI713E.tmp: Permission denied WARNING: Can't open file C:\Windows\Installer\MSIBB65.tmp: Permission denied WARNING: Can't open file C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe.config: Permission denied WARNING: Can't open file C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe.config: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289- 439d-8115-601632D005A0: Permission denied WARNING: Can't open file C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289- 439d-8115-601632D005A0: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\127D0A1D-4EF2-11D1-8608-00C04FC295EE\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\F750E6C3-38EE-11D1-85E5-00C04FC295EE\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file C:\Windows\System32\sysprep\Panther\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows\System32\sysprep\Panther\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\0332A97878022BD4B34ECC098E57783A.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\040270F850D5C3C91057DDDA2DA294D8.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\073C87A5E65451B9C103BE54832C90C3.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\0FF162C67AD719BB7258CA5874D0E6EC.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\1328355F476A6C04BC174C8FEFED6030.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\191095FB4864B1AE365957B3B2D28C4F.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\1A4E55E3BE96FF394FB5020C4D537AB1.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\1F260613E85F3D0BACEC07DCEF35396B.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\22A0F05220E6420CA3AA86E34805F752.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\241F1954DCD7B0310958D9540754CEC3.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\2B8B1A8B0ACD3EE28B421D3918DC1F29.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\2CEA854D125A606E70A7CD04392A2AAE.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\394EF2A769C648E61B41BFAD23BACF0E.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\39EF661167099C8B2F81F813871BA3BC.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\3CF854648793305D1D2A7AC41F80E9D6.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\3DFD050CBBC8EA38EA5F1066285F0F4E.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\3EFE5AEBC6F1152375E7674497F7043F.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\3FC136B9AA8D71056333AF0137119E93.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\422F2CA2C538F8B8C6D7F7D2B92DC785.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\4461018BFFC22A809EBE8FA05567B686.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\451233ED13E097000776690B79D8D753.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\45D86E53E6ADF70035B0034F9D8C42FE.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\4B2660072B052959CB2A0C8B6A1E9B6A.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\4FFAA3E7CB3131376614E98F756EE7AD.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\542DC56D520FDDEDA279A0D2F398203D.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\58F6DC94AE063187572E906AE0B9DC24.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\5F8AAE81E6AA25DDECD426311EDC3CEA.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\6389D91E49CCAF02640B61214A97211F.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\63E48B1766A961491E55D10F8F08C0E7.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\66231762529A003735024004DCDE643C.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\68C49405800705A386C338BECA8D0719.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\6DD1779321E1C86B32D09A35DA5E4ED2.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\6F8564A71977AE6B940705DCC4847A8D.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\716FDC254E211F547A560E1A71D0E6CA.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\734834D588DA61453DEA4E0AF499ADCE.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\7424188A11F3D829BB76C98170DB45E5.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\75054C3771DF289038069A9BB1C1FB6E.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\79CD84A83C85E4F4FEED13F704AFD1A6.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\7A7E1B1832596F5C49CD70E9755EED39.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\7C45C8B7490D3AD44A961494C7FBFAFD.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\7DFE880F785D5AB82870BFC0C3F814A2.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\8608CDBF407B09DF27C3406379384843.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\86824C24FDE0A58E4EB1A7918FBEF0C5.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\8911086DE2019A3125DB34F979DF099B.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\89B278BD994A4232365F0E916C19916C.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\8E7C06671AFE3C491CA1A729ECB02971.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\902DBFF6F0C3BF7CE18405EF33C5B2C0.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\9202D7C90F498A9BFE4E12205CBE26F1.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\9B2AE30BDA2ED3E7E1378B8770C99C54.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\9FB731EA48C7701EB7978CEB7E0314AD.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\A02DB69DBBC4F298AD0CE59F677EBF22.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\A851D3BCFCE697C24E7112D24AFBE9E3.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\B7890DE53F3A6B3C277523E82A081C04.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\B88E8B639804BA063AC1D11AC4C196C1.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\BA991ACFF19ADCEED9AFD4DD6559F22A.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\BF2ADAFC80AB82D412CD9F0B99A0AD2C.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\C3613D92FBA5F820823577D6FC2CE8A9.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\C599AFA5A6F053BAD70179501868318E.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\C5B3C3C921790F19FCDE9367A797A2EF.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\CF881EBD6F50B8BAA9BD57DC3DAC5CB2.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\CFD53C8456D58010BA580B1D5CFF68D3.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\D361F8B496FD6DAF7BEEF497E09C0DC1.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\D4CB64722F050ABEB5F8B6B143A19A6C.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\D5B60695D4528B9B368FC0C80DC5129F.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\D6149C45B68480CA184F2D9C7CB312A5.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\DED51090917AEE019629CE420A50F3C2.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\DF2FB1F3C8DCD25B01FDE5A4697177CB.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\E6195BA9E153534E5472835E2F29A5B0.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\EC4E4D2526C1F24E4D610677CF1EA0E7.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\EEDD6F5F4BEDFEA1C780FFC78DCDE051.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\F001D607C389EDBCFB1D1F3C9AE0FFC5.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\F10B24E451DC4F5B5B66AEE71603E35B.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\F1E5535EC8A153BF2EB4F202C2704228.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\FA01281653BC6D33CB10F9E5C36E4047.mof: Permission denied WARNING: Can't open file C:\Windows\System32\wbem\AutoRecover\FBD0E57ECE5A9402023443B148D93F98.mof: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\ACEEventLog.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\AMPingLog.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\DFS Replication.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Media Center.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Support-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Support-Diagnosis-Scripted%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bluetooth-MTPEnum%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics- Networking%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics- Performance%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows- DiskDiagnosticDataCollector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks- UserMode%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Forwarding%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Help%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WDI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows- NetworkAccessProtection%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility- Assistant%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows- ReliabilityAnalysisComponent%4Metrics.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows- ReliabilityAnalysisComponent%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion- Detector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion- Resolver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak- Diagnostic%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC- FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows- WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD- MTPClassDriver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\ODiag.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\OSession.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file C:\Windows\Tasks\Adobe Flash Player Updater.job: Permission denied WARNING: Can't open file C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job: Permission denied WARNING: Can't open file C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job: Permission denied WARNING: Can't open file C:\Windows\winsxs\amd64_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.18000_none_2d4d2c2fee5d2889\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\amd64_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_2d3d91dfee67f2c3\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\amd64_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_2d89500107b38638\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\amd64_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6002.18005_none_2f38a53beb7ef3d5\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\x86_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.18000_none_d12e90ac35ffb753\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\x86_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\x86_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\winsxs\x86_microsoft-windows- n..n_service_datastore_31bf3856ad364e35_6.0.6002.18005_none_d31a09b83321829f\dnary.xsd: Permission denied C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.95\chrome_frame_helper.exe: WIN.Trojan.Agent-45045 FOUND C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\chrome_frame_helper.exe: WIN.Trojan.Agent-45045 FOUND C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.95\chrome_frame_helper.exe: WIN.Trojan.Agent-45045 FOUND C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\chrome_frame_helper.exe: WIN.Trojan.Agent-45045 FOUND C:\Program Files (x86)\iLivid\ilivid.exe: Trojan.Ramnit-94 FOUND C:\Program Files (x86)\Luxor 3\hkbgnsd.exe: Trojan.Generic-12 FOUND C:\Program Files (x86)\Mplayer\codecs\avizlib.dll: Trojan.Generic-15 FOUND C:\Program Files (x86)\Mplayer\codecs\MVCodec.dll: Trojan.Generic-14 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64auxstb.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64bar.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64barsvc.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64brmon.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64brstub.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64datact.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64dlghk.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64dyn.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64feedmg.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64highin.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64hkstub.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64html.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64htmlmu.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64httpct.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64idle.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64ieovr.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64medint.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64mlbtn.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64msg.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64Plugin.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64radio.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64regfft.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64reghk.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64regiet.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64script.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64skin.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64sknlcr.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64skplay.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64SrcAs.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64SrchMn.exe: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64tpinst.dll: Adware.MyWebSearch-18 FOUND C:\Program Files (x86)\TelevisionFanatic\bar\1.bin\64uabtn.dll: Adware.MyWebSearch-18 FOUND C:\Users\nb\AppData\LocalLow\TelevisionFanaticEI\Installr\Cache\0015273E.exe: Adware.MyWebSearch-18 FOUND ----------- SCAN SUMMARY ----------- Known viruses: 1421399 Engine version: 0.97.6 Scanned directories: 43022 Scanned files: 232854 Infected files: 41 Data scanned: 59039.00 MB Data read: 92272.64 MB (ratio 0.64:1) Time: 11856.775 sec (197 m 36 s) -------------------------------------- Completed |
|||||||||||
|
|||||||||||||
 |
| |
|
GuitarBob
|
|
I wouldn't worry too much about those permission denied files. They all looklike Windows system stuff to me. I also haven't seen very much malware now that uses permission denied.
The adware stuff looks okay--it's related to a toolbar, and a lot of that stuff is adware. The other stuff--trojans, etc. are probably valid detections, but you never can tell. I suggest you set ClamWin's infected file option to quarantine and do a re-scan. Every file detected will be placed in quarantine. To verify an infected file, you can upload it to the Virus Total or Jotti online scanning services where they will scan it with multiple AV programs. Jotti will let you scan about 10 files in one session--one after another. If a file turns out to be a false positive detection and not really infected, you can restore them via the ClamWin Quarantine Browser program (via Start, All Programs, ClamWin, Quarantine Browser). They will be wrongly detected again on the next scan, however, so you should upload the falsely-detected files to Clam AV at https://www.clamav.net/lang/en/sendvirus/ on the web. For a false positive file detection, select the false positive link. Clam AV will correct their false positive signatures within a few days. If you don't need a falsely-detected file for a while, you might just leave it in quarantine for that time frame and restore it via the ClamWin Quarantine Browser program after a few days. ClamWin has protection against false detections (false positives) in Windows system files that prevents them from being quarantined. Regards, |
|||||||||||
|
|||||||||||||
|
| Whats real | |
|
Hakaken
|
|
Thank you I appreciate the advise.
 |
|||||||||||
|
|||||||||||||
|
| |
|
GuitarBob
|
|
Thank you for using ClamWin!
Regards, |
|||||||||||
|
|||||||||||||
|
 | Help any thoughts on this whats real whats not? | |
|
||
|
|
|
Powered by phpBB © phpBB Group
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.