Hacker haben Kontrolle über PC und Handys. - Spyware Hilfe

Home » Spyware & Browser Hijacker Support Forum » Hacker haben Kontrolle über PC und Handys. » Themenansicht

Seite(n): 1

Antworten

Hacker haben Kontrolle über PC und Handys.

14.07.2019, 14:33 zantekka Gesperrt Beiträge: 6	#1 Hallo zusammen, Ich habe seit ein paar Monaten Probleme mit einem oder mehreren Hacker/n und ich würde gerne wissen, ob einem von euch noch was einfällt, um die Plage zu beenden. 1. Problembeschreibung: Es fing an mit Kleinigkeiten wie z. B. eine plötzliche 180° Wende während des spielens, in Black Ops 4 springt ein Aimbot / Aim-assist an oder auch gerne mal die Taschenlampe auf meinem Smartphone (S6 nicht gerootet). Bei YouTube bekomme ich ab und an komische Suchvorschläge wie: "end ur life". Nach ein paar Minuten/Stunden ist dieser Suchvorschlag gelöscht. Notizen, die ich auf ner .txt Datei erstellt habe wurden gelöscht / verändert. (gefühlt Speichere ich nach jedem Satz mit STRG-S und vorm schliessen noch 10 mal ) Passwörter und ähnliches wurden nicht gestohlen / geändert, das einzige was mir aufgefallen war, das sich jemand mit ner VPN über mein Twitch account eingeloggt hat. Leider habe ich keine dieser Logs mehr, da ich so frustriert war, dass ich einfach alles formatiert habe. (Dennoch waren die logs auch sehr clean) Hat aber leider auch nicht geholfen, Probleme bestehen weiterhin. ----------------------------------------------------------------------------------------------- 2. Temporäre Dateien beseitigen Ich benutze jetzt seit neustem Linux und kenne mich mit dem Betriebssystem überhaupt nicht aus, jedoch kann ich hier normal surfen ohne zwischenfälle. ----------------------------------------------------------------------------------------------- 3. mache einen Scan mit Malwarebytes - http://www.malwarebytes.org/mbam/program/mbam-setup.exe Ich versuche es gerade über Linux zu installieren. Ich weiss aber nicht recht, ob es überhaupt Sinn macht. (Logs auf Windows waren clean bis auf 1 - 2 PUPS. ----------------------------------------------------------------------------------------------- 4. Erstelle ein Gmer Report: Ist mit Linux leider nicht möglich. ----------------------------------------------------------------------------------------------- 5. Erstellen eines Hijackthis-Logfiles Hab ich damals, immer mal wieder gemacht sobald Probleme aufgetreten waren. Ich und mein Kollege haben die Logs ausgewertet und haben auch nichts auffälliges entdeckt. ----------------------------------------------------------------------------------------------- 6. Erstellen einer Uninstall Liste: Leider immernoch nicht möglich mit Linux. Ich weiß auch nicht, welche Daten noch relevant wären, um halt besagtes Rootkit oder dergleichen, zu entfernen. ---------------------------------------------------------------------------------------------- Wenn noch irgendwelche Fragen aufkommen, oder ich was vergessen habe, lasst es mich wissen und ich versuche schnellstmöglich zu antworten. Vielen dank im voraus. Hier noch meine Systeminformationen: System: Host: marvin-desktop Kernel: 4.15.0-54-generic x86_64 bits: 64 compiler: gcc v: 7.4.0 Desktop: Cinnamon 4.0.10 wm: muffin dm: LightDM Distro: Linux Mint 19.1 Tessa base: Ubuntu 18.04 bionic Machine: Type: Desktop Mobo: ASRock model: Z97 Extreme4 serial: <filter> UEFI [Legacy]: American Megatrends v: P2.60 date: 03/06/2018 CPU: Topology: Quad Core model: Intel Core i7-4790K bits: 64 type: MT MCP arch: Haswell rev: 3 L2 cache: 8192 KiB flags: lm nx pae sse sse2 sse3 sse4_1 sse4_2 ssse3 vmx bogomips: 63987 Speed: 3310 MHz min/max: 800/4400 MHz Core speeds (MHz): 1: 4235 2: 4234 3: 4236 4: 4256 5: 4248 6: 4252 7: 4220 8: 4206 Graphics: Device-1: NVIDIA GP106 [GeForce GTX 1060 6GB] vendor: Micro-Star MSI driver: nvidia v: 390.116 bus ID: 01:00.0 chip ID: 10de:1c03 Display: x11 server: X.Org 1.19.6 driver: nvidia unloaded: fbdev,modesetting,nouveau,vesa tty: N/A OpenGL: renderer: GeForce GTX 1060 6GB/PCIe/SSE2 v: 4.6.0 NVIDIA 390.116 direct render: Yes Audio: Device-1: Intel 9 Series Family HD Audio vendor: ASRock driver: snd_hda_intel v: kernel bus ID: 00:1b.0 chip ID: 8086:8ca0 Device-2: NVIDIA GP106 High Definition Audio vendor: Micro-Star MSI driver: snd_hda_intel v: kernel bus ID: 01:00.1 chip ID: 10de:10f1 Sound Server: ALSA v: k4.15.0-54-generic Network: Device-1: Intel Ethernet I218-V vendor: ASRock driver: e1000e v: 3.2.6-k port: f040 bus ID: 00:19.0 chip ID: 8086:15a1 IF: enp0s25 state: up speed: 1000 Mbps duplex: full mac: <filter> Drives: Local Storage: total: 2.04 TiB used: 529.91 GiB (25.4%) ID-1: /dev/sda vendor: Samsung model: SSD 850 EVO 500GB size: 465.76 GiB speed: 6.0 Gb/s serial: <filter> ID-2: /dev/sdb vendor: SanDisk model: Ultra II 240GB size: 223.57 GiB speed: 6.0 Gb/s serial: <filter> ID-3: /dev/sdc vendor: Samsung model: HD502IJ size: 465.76 GiB speed: 3.0 Gb/s serial: <filter> ID-4: /dev/sdd vendor: Seagate model: ST31000528AS size: 931.51 GiB speed: 3.0 Gb/s serial: <filter> ID-5: /dev/sde type: USB model: USB 2.0 Flash Drive size: 1.88 GiB serial: <filter> Partition: ID-1: / size: 457.45 GiB used: 73.78 GiB (16.1%) fs: ext4 dev: /dev/sda1 Sensors: System Temperatures: cpu: 41.0 C mobo: N/A gpu: nvidia temp: 60 C Fan Speeds (RPM): N/A gpu: nvidia fan: 0% Repos: No active apt repos in: /etc/apt/sources.list Active apt repos in: /etc/apt/sources.list.d/additional-repositories.list 1: deb https: //dl.winehq.org/wine-builds/ubuntu/ bionic main Active apt repos in: /etc/apt/sources.list.d/official-package-repositories.list 1: deb http: //mirror.bauhuette.fh-aachen.de/linuxmint tessa main upstream import backport 2: deb http: //archive.ubuntu.com/ubuntu bionic main restricted universe multiverse 3: deb http: //archive.ubuntu.com/ubuntu bionic-updates main restricted universe multiverse 4: deb http: //archive.ubuntu.com/ubuntu bionic-backports main restricted universe multiverse 5: deb http: //security.ubuntu.com/ubuntu/ bionic-security main restricted universe multiverse 6: deb http: //archive.canonical.com/ubuntu/ bionic partner Info: Processes: 308 Uptime: 1d 19h 52m Memory: 23.49 GiB used: 7.91 GiB (33.7%) Init: systemd v: 237 runlevel: 5 Compilers: gcc: 7.4.0 alt: 7 Client: Unknown python3.6 client inxi: 3.0.27 Dieser Beitrag wurde am 14.07.2019 um 14:42 Uhr von zantekka editiert.

14.07.2019, 14:36 zantekka Gesperrt Themenstarter Beiträge: 6	#2 Ich wollte eigentlich meinen Beitrag Bearbeiten und nicht überschreiben. ;) Einen neuen Router hab ich von der Telekom bekommen und mein Kollege meinte, es sei OK, den neuen Router schon an zu schließen (aber gleiche Probleme wie gehabt). EDIT:// Leider, klappt der Spoiler hier nicht, daher schonmal im voraus: Sorry, for the long post. Ich habe mich dann auch mal wieder auf Windows getraut und alles nachgeholt. Alte Malwarebytes Logfiles und eine neue: Malwarebytes www.malwarebytes.com -Protokolldetails- Scan-Datum: 03.06.19 Scan-Zeit: 19:32 Protokolldatei: 81258bb4-8625-11e9-92a6-d050998c343c.json -Softwaredaten- Version: 3.7.1.2839 Komponentenversion: 1.0.586 Version des Aktualisierungspakets: 1.0.10886 Lizenz: Testversion -Systemdaten- Betriebssystem: Windows 10 (Build 17763.253) CPU: x64 Dateisystem: NTFS Benutzer: DESKTOP-PD4V7V3\Marvin -Scan-Übersicht- Scan-Typ: Bedrohungs-Scan Scan gestartet von: Manuell Ergebnis: Abgeschlossen Gescannte Objekte: 259410 Erkannte Bedrohungen: 2 In die Quarantäne verschobene Bedrohungen: 0 Abgelaufene Zeit: 0 Min., 30 Sek. -Scan-Optionen- Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Erkennung PUM: Erkennung -Scan-Details- Prozess: 0 (keine bösartigen Elemente erkannt) Modul: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswert: 2 PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT\|DONTREPORTINFECTIONINFORMATION, Keine Aktion durch Benutzer, [7101], [676881],1.0.10886 PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT\|DONTREPORTINFECTIONINFORMATION, Keine Aktion durch Benutzer, [7101], [676881],1.0.10886 Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Daten-Stream: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Datei: 0 (keine bösartigen Elemente erkannt) Physischer Sektor: 0 (keine bösartigen Elemente erkannt) WMI: 0 (keine bösartigen Elemente erkannt) (end) Malwarebytes www.malwarebytes.com -Protokolldetails- Scan-Datum: 04.07.19 Scan-Zeit: 14:56 Protokolldatei: 140ea904-9e5b-11e9-bcb3-d050998c343c.json -Softwaredaten- Version: 3.7.1.2839 Komponentenversion: 1.0.586 Version des Aktualisierungspakets: 1.0.11404 Lizenz: Kostenlos -Systemdaten- Betriebssystem: Windows 10 (Build 18362.207) CPU: x64 Dateisystem: NTFS Benutzer: DESKTOP-PD4V7V3\Marvin -Scan-Übersicht- Scan-Typ: Bedrohungs-Scan Scan gestartet von: Manuell Ergebnis: Abgeschlossen Gescannte Objekte: 270169 Erkannte Bedrohungen: 2 In die Quarantäne verschobene Bedrohungen: 2 Abgelaufene Zeit: 0 Min., 19 Sek. -Scan-Optionen- Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Erkennung PUM: Erkennung -Scan-Details- Prozess: 0 (keine bösartigen Elemente erkannt) Modul: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswert: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Daten-Stream: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Datei: 2 PUP.Optional.ChipDe, C:\USERS\MARVIN\DOWNLOADS\YUMI-2.0.6.6 - CHIP-INSTALLER.EXE, In Quarantäne, [527], [562568],1.0.11404 PUP.Optional.ChipDe, C:\USERS\MARVIN\DOWNLOADS\PROCESS EXPLORER - CHIP-INSTALLER.EXE, In Quarantäne, [527], [562568],1.0.11404 Physischer Sektor: 0 (keine bösartigen Elemente erkannt) WMI: 0 (keine bösartigen Elemente erkannt) (end) Malwarebytes www.malwarebytes.com -Protokolldetails- Scan-Datum: 14.07.19 Scan-Zeit: 14:59 Protokolldatei: 40c6cd76-a637-11e9-87ab-d050998c343c.json -Softwaredaten- Version: 3.7.1.2839 Komponentenversion: 1.0.586 Version des Aktualisierungspakets: 1.0.11542 Lizenz: Kostenlos -Systemdaten- Betriebssystem: Windows 10 (Build 18362.207) CPU: x64 Dateisystem: NTFS Benutzer: DESKTOP-PD4V7V3\Marvin -Scan-Übersicht- Scan-Typ: Bedrohungs-Scan Scan gestartet von: Manuell Ergebnis: Abgeschlossen Gescannte Objekte: 269841 Erkannte Bedrohungen: 0 In die Quarantäne verschobene Bedrohungen: 0 Abgelaufene Zeit: 1 Min., 36 Sek. -Scan-Optionen- Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Erkennung PUM: Erkennung -Scan-Details- Prozess: 0 (keine bösartigen Elemente erkannt) Modul: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswert: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Daten-Stream: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Datei: 0 (keine bösartigen Elemente erkannt) Physischer Sektor: 0 (keine bösartigen Elemente erkannt) WMI: 0 (keine bösartigen Elemente erkannt) (end) [/ISPOILER] Obwohl ich das System gar nicht mehr angefasst habe und ich vor nem Monat auch ClamWin öfter mal drüber laufen lassen habe, (die logs waren alle clean) hat er jetzt anscheinend doch was gefunden.: Clam scan log: Scan Started Mon Jun 03 21:09:08 2019 ------------------------------------------------------------------------------- WARNING: Can't open file C:\hiberfil.sys: Permission denied WARNING: Can't open file C:\pagefile.sys: Permission denied WARNING: Can't open file C:\swapfile.sys: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\Cache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\Cache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\Cache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\Cache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\Cache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\GPUCache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\GPUCache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\GPUCache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\GPUCache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Battle.net\BrowserCache\GPUCache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.LockApp_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\ntuser.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\ntuser.dat.LOG2: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows\PLA\System\System Diagnostics.xml: Permission denied WARNING: Can't open file C:\Windows\PLA\System\System Performance.xml: Permission denied WARNING: Can't open file C:\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file C:\Windows\SoftwareDistribution\Download\ac11a1448c704a0635a8ca504ea99ebb\windlp.state-old.xml: Permission denied WARNING: Can't open file C:\Windows\SoftwareDistribution\Download\ac11a1448c704a0635a8ca504ea99ebb\windlp.state.xml: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file C:\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-All-User-Install-Agent%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4PlaybackManager.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Authentication User Interface%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Biometrics%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-FeatureConfiguration%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PriResources-Deployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4AutoPilot.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4KernelMode.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4UserMode.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-Notifications%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Informational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-ClassPnP%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Win32k%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_10.0.17763.1_none_c1f47a918e29234f\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..tings-windowsclient_31bf3856ad364e35_10.0.17763.1_none_6b116fa61becf6e5\offlineblocklist.json: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.json: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.txt: Permission denied ----------- SCAN SUMMARY ----------- Known viruses: 6144631 Engine version: 0.99.4 Scanned directories: 41549 Scanned files: 159586 Infected files: 0 Data scanned: 14911.97 MB Data read: 20472.24 MB (ratio 0.73:1) Time: 7409.955 sec (123 m 29 s) Scan Started Thu Jul 04 04:18:45 2019 ------------------------------------------------------------------------------- Scan Started Thu Jul 04 04:18:57 2019 ------------------------------------------------------------------------------- WARNING: Can't open file C:\hiberfil.sys: Permission denied WARNING: Can't open file C:\pagefile.sys: Permission denied WARNING: Can't open file C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file C:\swapfile.sys: Permission denied WARNING: Can't open file C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Current Session: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA\NvBackend\VRDevicesInfo.data: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\GPUCache\data_0: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\GPUCache\data_1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\GPUCache\data_2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\GPUCache\data_3: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\GPUCache\index: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file C:\Users\Marvin\ntuser.dat.LOG1: Permission denied WARNING: Can't open file C:\Users\Marvin\ntuser.dat.LOG2: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows\PLA\System\System Diagnostics.xml: Permission denied WARNING: Can't open file C:\Windows\PLA\System\System Performance.xml: Permission denied WARNING: Can't open file C:\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file C:\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state-old.xml: Permission denied WARNING: Can't open file C:\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state.xml: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file C:\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-All-User-Install-Agent%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4PlaybackManager.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Authentication User Interface%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Biometrics%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CertificateServicesClient-Lifecycle-System%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-FeatureConfiguration%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NcdAutoSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-NlaSvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PriResources-Deployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4AutoPilot.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4KernelMode.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4UserMode.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-Notifications%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Informational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-ClassPnP%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-TZSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Win32k%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_10.0.17763.1_none_c1f47a918e29234f\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..tings-windowsclient_31bf3856ad364e35_10.0.17763.1_none_6b116fa61becf6e5\offlineblocklist.json: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.json: Permission denied WARNING: Can't open file C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.txt: Permission denied ----------- SCAN SUMMARY ----------- Known viruses: 6165915 Engine version: 0.99.4 Scanned directories: 44690 Scanned files: 180001 Infected files: 0 Total errors: 35 Data scanned: 25931.48 MB Data read: 205676.15 MB (ratio 0.13:1) Time: 6532.080 sec (108 m 52 s) Scan Started Sun Jul 14 15:04:01 2019 ------------------------------------------------------------------------------- * Scanning Programs in Computer Memory * ---Please login as an Administrator to scan System processes loaded in computer memory--- * Memory Scan: using ToolHelp * * Scanned 6 processes - 249 modules * * Computer Memory Scan Completed * ----------- SCAN SUMMARY ----------- Known viruses: 6213086 Engine version: 0.99.4 Scanned directories: 0 Scanned files: 255 Infected files: 0 Data scanned: 255.02 MB Data read: 0.00 MB (ratio 0.00:1) Time: 246.127 sec (4 m 6 s) Scan Started Sun Jul 14 15:11:27 2019 ------------------------------------------------------------------------------- WARNING: Can't open file \\?\C:\hiberfil.sys: Permission denied WARNING: Can't open file \\?\C:\pagefile.sys: Permission denied WARNING: Can't open file \\?\C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.toc: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__0.bin: Permission denied WARNING: Can't open file \\?\C:\ProgramData\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__0.bin: Permission denied WARNING: Can't open file \\?\C:\swapfile.sys: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.toc: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3: Permission denied C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0005b6: Win.Trojan.Generic-6766806-0 FOUND WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Cache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Current Session: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Microsoft\Windows\usrClass.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Microsoft\Windows\usrClass.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA\NvBackend\VRDevicesInfo.data: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\Cache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.LockApp_cw5n1h2txyewy\AC\NVIDIA Corporation\NV_Cache\39661e167be3f64830fd063b6be7ad31_fce8395c8fd8a999_ee48b965fb597a48_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.LockApp_cw5n1h2txyewy\AC\NVIDIA Corporation\NV_Cache\39661e167be3f64830fd063b6be7ad31_fce8395c8fd8a999_ee48b965fb597a48_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.LockApp_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.LockApp_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.jfm: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\Cache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\Cache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\Cache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\Cache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\Cache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\GPUCache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\GPUCache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\GPUCache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\GPUCache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\AppData\Local\Steam\htmlcache\GPUCache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\Cache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\Cache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\Cache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\Cache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\Cache\index: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\GPUCache\data_0: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\GPUCache\data_1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\GPUCache\data_2: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\GPUCache\data_3: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\Documents\Rockstar Games\Social Club\Launcher\Renderer\GPUCache\index: Permission denied C:\Users\Marvin\Downloads\OTL.exe: Win.Trojan.Generic-6766806-0 FOUND WARNING: Can't open file \\?\C:\Users\Marvin\ntuser.dat.LOG1: Permission denied WARNING: Can't open file \\?\C:\Users\Marvin\ntuser.dat.LOG2: Permission denied WARNING: Can't open file \\?\C:\Windows\appcompat\appraiser\Appraiser_AlternateData.cab: Permission denied WARNING: Can't open file \\?\C:\Windows\diagerr.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\diagwrn.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\Panther\windlp.state-old.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\Panther\windlp.state.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\PLA\System\System Diagnostics.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\PLA\System\System Performance.xml: Permission denied WARNING: Can't open file \\?\C:\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb.jfm: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\wbem\AutoRecover\C88ABFAF26DAC8A62CEF6C44D5A351F8.mof: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-AppV-Client%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-AppV-Client%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-AppV-Client%4Virtual Applications.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-User Experience Virtualization-Agent Driver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-User Experience Virtualization-App Agent%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-User Experience Virtualization-IPC%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-User Experience Virtualization-SQM Uploader%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AAD%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-All-User-Install-Agent%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AllJoyn%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppHost%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppID%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ApplicabilityEngine%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application Server-Applications%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application Server-Applications%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppLocker%4EXE and DLL.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppLocker%4MSI and Script.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppLocker%4Packaged app-Deployment.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppLocker%4Packaged app-Execution.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AssignedAccess%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-AssignedAccessBroker%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4PlaybackManager.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Authentication User Interface%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BackgroundTaskInfrastructure%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Backup.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Biometrics%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BitLocker%4BitLocker Management.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BitLocker-DrivePreparationTool%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BitLocker-DrivePreparationTool%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bluetooth-BthLEPrepairing%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bluetooth-MTPEnum%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BranchCache%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-BranchCacheSMB%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CertificateServicesClient-Lifecycle-System%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CertificateServicesClient-Lifecycle-User%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CloudStorageWizard%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CloudStore%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Compat-Appraiser%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-BindFlt%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcnfs%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CoreApplication%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Client%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-CorruptedFileRecovery-Server%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DAL-Provider%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DataIntegrityScan%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DataIntegrityScan%4CrashRecovery.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DateTimeControlPanel%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Deduplication%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Deduplication%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Deduplication%4Scrubbing.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceGuard%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Devices-Background%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSync%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceUpdateAgent%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PCW%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnostic%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticResolver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DSC%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DSC%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DxgKrnl-Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-DxgKrnl-Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EapHost%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EapMethods-RasChap%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EapMethods-RasTls%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EapMethods-Sim%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EapMethods-Ttls%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EDP-Application-Learning%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EDP-Audit-Regular%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EDP-Audit-TCB%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-EventCollector%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Fault-Tolerant-Heap%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-FeatureConfiguration%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Engine%4BackupLog.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-FMS%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Folder Redirection%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Forwarding%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-GenericRoaming%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Help%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-HomeGroup Control Panel%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-HomeGroup Listener Service%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-HomeGroup Provider Service%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Hyper-V-Guest-Drivers%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Hyper-V-Hypervisor-Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Hyper-V-Hypervisor-Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Hyper-V-VID-Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-IdCtrls%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-IKE%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-International-RegionalOptionsControlPanel%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Iphlpsvc%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-IPxlatCfg%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-KdsSvc%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ApphelpCache%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-IO%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WDI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-MemoryDiagnostics-Results%4Debug.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Mobile-Broadband-Experience-Parser-Task%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Mobile-Broadband-Experience-SmsRouter%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ModernDeployment-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ModernDeployment-Diagnostics-Provider%4Autopilot.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ModernDeployment-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Mprddm%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NcdAutoSetup%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NdisImPlatform%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkLocationWizard%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProvider%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProvisioning%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NlaSvc%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-NTLM%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-OfflineFiles%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-OneBackup%4Debug.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-OOBE-Machine-DUI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PackageStateRoaming%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ParentalControls%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PerceptionRuntime%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PerceptionSensorDataService%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PersistentMemory-Nvdimm%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PersistentMemory-PmemDisk%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PersistentMemory-ScmBus%4Certification.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PersistentMemory-ScmBus%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Policy%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell-DesiredStateConfiguration-FileDownloadManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PrintBRM%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PrintService%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PriResources-Deployment%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4AutoPilot.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoostDriver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReFS%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Regsvr32%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteApp and Desktop Connections%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteApp and Desktop Connections%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteAssistance%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteAssistance%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-RdpCoreTS%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-RdpCoreTS%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-RemoteFX-Synth3dvsc%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-SessionServices%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RetailDemo%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-RetailDemo%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SearchUI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Adminless%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Audit-Configuration-Client%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-EnterpriseData-FileRevocationManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4KernelMode.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4UserMode.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Netlogon%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-GenuineCenter-Logging%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-Notifications%4ActionCenter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Security-UserConsentVerifier%4Audit.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SecurityMitigationsBroker%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SENSE%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SenseIR%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync-Azure%4Debug.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync-Azure%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync-OneDrive%4Debug.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync-OneDrive%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmartCard-Audit%4Authentication.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmartCard-DeviceEnum%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmartCard-TPM-VCard-Module%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmartCard-TPM-VCard-Module%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBDirect%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Informational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-ClassPnP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Tiering%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageManagement%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-Driver%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-Driver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-SpaceManager%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-SpaceManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Storsvc%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-SystemSettingsThreshold%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TCPIP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ClientUSBDevices%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ClientUSBDevices%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-PnPDevices%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-PnPDevices%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-Printers%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-Printers%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RDPClient%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ServerUSBDevices%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-ServerUSBDevices%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service-PTP-Provider%4PTP-Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Troubleshooting-Recommended%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Troubleshooting-Recommended%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TZSync%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-TZUtil%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Control Panel%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-User-Loader%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VDRVROOT%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VerifyHardwareSecurity%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VHDMP-Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Volume%4Diagnostic.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VPN%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-VPN-Client%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WDAG-PolicyEvaluator-CSP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WDAG-PolicyEvaluator-GP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WFP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Win32k%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsSystemAssessmentTool%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Winsock-WS2HELP%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Wired-AutoConfig%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WMPNSS-Service%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-Workplace Join%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-CompositeClassDriver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-MTPClassDriver%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-Windows-WWAN-SVC-Events%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Microsoft-WindowsPhone-Connectivity-WiFiConnSvc-Channel.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\OpenSSH%4Admin.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\OpenSSH%4Operational.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\SMSApi.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file \\?\C:\Windows\WinSxS\amd64_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_10.0.18362.1_none_a38c00a7b3382633\dnary.xsd: Permission denied WARNING: Can't open file \\?\C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.18362.1_none_5f36214c9498167b\SBCModel.json: Permission denied WARNING: Can't open file \\?\C:\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.18362.1_none_5f36214c9498167b\SBCModel.txt: Permission denied WARNING: Can't open file \\?\C:\Windows.old\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\Microsoft\Crypto\RSA\MachineKeys\1c2c566d75d273b595a3a1246a619723_105f8470-dc0a-49be-9e8c-915913c02b96: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__0.toc: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.bin: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_0_0__1.toc: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.bin: Permission denied WARNING: Can't open file \\?\C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_4__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_5__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\Marvin\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin: Permission denied WARNING: Can't open file C:\Windows.old\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\PLA\System\System Diagnostics.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\PLA\System\System Performance.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file C:\Windows.old\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state-old.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-All-User-Install-Agent%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4PlaybackManager.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Authentication User Interface%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Biometrics%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CertificateServicesClient-Lifecycle-System%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-FeatureConfiguration%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NcdAutoSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NlaSvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PriResources-Deployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4AutoPilot.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4KernelMode.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4UserMode.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-Notifications%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Informational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-ClassPnP%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TZSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Win32k%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_10.0.17763.1_none_c1f47a918e29234f\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..tings-windowsclient_31bf3856ad364e35_10.0.17763.1_none_6b116fa61becf6e5\offlineblocklist.json: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.json: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.txt: Permission denied WARNING: E:\: Can't access file ----------- SCAN SUMMARY ----------- Known viruses: 6213086 Engine version: 0.99.4 Scanned directories: 67334 Scanned files: 280096 Infected files: 2 Total errors: 150 Data scanned: 42678.01 MB Data read: 266655.16 MB (ratio 0.16:1) Time: 17709.634 sec (295 m 9 s) The following files are Digitally Signed by Microsoft Corporation and may have been incorrectly detected as viruses: C:\Windows\System32\drivers\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\System32\DriverStore\FileRepository\arcsas.inf_amd64_b3d75f82c617ac6a\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\System32\recdisc.exe: [Win.Trojan.Agent-7015560-0] FALSE POSITIVE FOUND C:\Windows\System32\wusa.exe: [Win.Trojan.Agent-7029271-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_dual_arcsas.inf_31bf3856ad364e35_10.0.18362.1_none_df45d7260451884b\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_microsoft-windows-recdisc-main_31bf3856ad364e35_10.0.18362.1_none_56d96a6d30d9b491\recdisc.exe: [Win.Trojan.Agent-7015560-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_microsoft-windows-wusa_31bf3856ad364e35_10.0.18362.1_none_7f5e017895d54a0c\wusa.exe: [Win.Trojan.Agent-7029271-0] FALSE POSITIVE FOUND C:\Windows.old\Program Files\Windows Defender Advanced Threat Protection\SenseSampleUploader.exe: [Win.Trojan.Agent-7029298-0] FALSE POSITIVE FOUND C:\Windows.old\Windows\WinSxS\amd64_windows-senseclient-service_31bf3856ad364e35_10.0.17763.404_none_1d178b3c14bf2ab5\SenseSampleUploader.exe: [Win.Trojan.Agent-7029298-0] FALSE POSITIVE FOUND Please do not be alarmed and help us by submitting the files identified above as FALSE POSITIVE at http://www.clamav.net/sendvirus/ Clam update log: -------------------------------------- ClamAV update process started at Mon Jun 03 19:35:23 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) WARNING: getfile: daily-24360.cdiff not found on database.clamav.net (IP: 104.16.219.84) WARNING: getpatch: Can't download daily-24360.cdiff from database.clamav.net Trying host database.clamav.net (104.16.218.84)... WARNING: getfile: daily-24360.cdiff not found on database.clamav.net (IP: 104.16.218.84) WARNING: getpatch: Can't download daily-24360.cdiff from database.clamav.net WARNING: getpatch: Can't download daily-24360.cdiff from database.clamav.net WARNING: Incremental update failed, trying to download daily.cvd Downloading daily.cvd [100%] daily.cvd updated (version: 25469, sigs: 1587497, f-level: 63, builder: raynman) Downloading bytecode-320.cdiff [100%] Downloading bytecode-321.cdiff [100%] Downloading bytecode-322.cdiff [100%] Downloading bytecode-323.cdiff [100%] Downloading bytecode-324.cdiff [100%] Downloading bytecode-325.cdiff [100%] Downloading bytecode-326.cdiff [100%] Downloading bytecode-327.cdiff [100%] Downloading bytecode-328.cdiff [100%] bytecode.cld updated (version: 328, sigs: 94, f-level: 63, builder: neo) Database updated (6153840 signatures) from database.clamav.net (IP: 104.16.218.84) -------------------------------------- ClamAV update process started at Mon Jun 03 19:35:00 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) daily.cvd is up to date (version: 25469, sigs: 1587497, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) -------------------------------------- ClamAV update process started at Tue Jun 04 19:35:00 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) Downloading daily-25470.cdiff [100%] daily.cld updated (version: 25470, sigs: 1588120, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) Database updated (6154463 signatures) from database.clamav.net (IP: 104.16.219.84) -------------------------------------- ClamAV update process started at Wed Jun 05 19:35:00 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) Downloading daily-25471.cdiff [100%] daily.cld updated (version: 25471, sigs: 1588778, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) Database updated (6155121 signatures) from database.clamav.net (IP: 104.16.219.84) -------------------------------------- ClamAV update process started at Wed Jul 03 23:20:59 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) -------------------------------------- ClamAV update process started at Thu Jul 04 00:03:26 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) WARNING: getpatch: Can't download daily-25472.cdiff from database.clamav.net WARNING: getpatch: Can't download daily-25472.cdiff from database.clamav.net WARNING: getpatch: Can't download daily-25472.cdiff from database.clamav.net WARNING: Incremental update failed, trying to download daily.cvd Downloading daily.cvd [100%] daily.cvd updated (version: 25499, sigs: 1609077, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) Database updated (6175420 signatures) from database.clamav.net (IP: 104.16.219.84) -------------------------------------- ClamAV update process started at Sun Jul 14 14:54:56 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) Downloading daily-25500.cdiff [100%] Downloading daily-25501.cdiff [100%] Downloading daily-25502.cdiff [100%] Downloading daily-25503.cdiff [100%] Downloading daily-25504.cdiff [100%] Downloading daily-25505.cdiff [100%] Downloading daily-25506.cdiff [100%] Downloading daily-25507.cdiff [100%] Downloading daily-25508.cdiff [100%] Downloading daily-25509.cdiff [100%] Downloading daily-25510.cdiff [100%] daily.cld updated (version: 25510, sigs: 1656278, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) Database updated (6222621 signatures) from database.clamav.net (IP: 104.16.219.84) -------------------------------------- ClamAV update process started at Sun Jul 14 15:03:52 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) daily.cld is up to date (version: 25510, sigs: 1656278, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) -------------------------------------- ClamAV update process started at Sun Jul 14 19:35:00 2019 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.99.4 Recommended version: 0.101.2 DON'T PANIC! Read http://www.clamav.net/documents/upgrading-clamav main.cvd is up to date (version: 58, sigs: 4566249, f-level: 60, builder: sigmgr) daily.cld is up to date (version: 25510, sigs: 1656278, f-level: 63, builder: raynman) bytecode.cld is up to date (version: 328, sigs: 94, f-level: 63, builder: neo) noch ein Clam log?!: 2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_354977e6866b2432_1_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_1__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_2__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_3__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_4__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\6596a3be2f6b1cc66d450c0cda48b050_fce8395c8fd8a999_a74cded635b88a5f_0_5__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\89cdacca8586a7a2da9bd3e3864171fa_fce8395c8fd8a999_808b26c36f16da25_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__0.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_0__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__0.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__1.bin: Permission denied WARNING: Can't open file C:\Windows.old\Users\All Users\NVIDIA Corporation\NV_Cache\9565b68d6993b6d4501d6191f5681bd6_fce8395c8fd8a999_e50ef3f330b0ee2e_0_1__1.toc: Permission denied WARNING: Can't open file C:\Windows.old\Users\Marvin\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin: Permission denied WARNING: Can't open file C:\Windows.old\Windows\Panther\UnattendGC\diagerr.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\Panther\UnattendGC\diagwrn.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\PLA\System\System Diagnostics.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\PLA\System\System Performance.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\security\database\secedit.sdb: Permission denied WARNING: Can't open file C:\Windows.old\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state-old.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\SoftwareDistribution\Download\6914d84bdb8b23f897561604213ff09c\windlp.state.xml: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\restore\MachineGuid.txt: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Application.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\HardwareEvents.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Internet Explorer.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Key Management Service.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-All-User-Install-Agent%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppReadiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4CaptureMonitor.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Audio%4PlaybackManager.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Authentication User Interface%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Biometrics%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CertificateServicesClient-Lifecycle-System%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-CoreSystem-SmsRouter-Events%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-PLA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scripted%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-ScriptedDiagnosticsProvider%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Networking%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-DiskDiagnosticDataCollector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-FeatureConfiguration%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-EventTracing%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-PnP%4Configuration.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-MUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NcdAutoSetup%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-NlaSvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PriResources-Deployment%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4AutoPilot.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Provisioning-Diagnostics-Provider%4ManagementService.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4KernelMode.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-Mitigations%4UserMode.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Security-SPP-UX-Notifications%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-SMBWitnessClient%4Informational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-ClassPnP%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Time-Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-TZSync%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UAC%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UAC-FileVirtualization%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4DeviceInstall.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Win32k%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Microsoft-Windows-WPD-ClassInstaller%4Operational.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Security.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Setup.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\System.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\System32\winevt\Logs\Windows PowerShell.evtx: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_10.0.17763.1_none_c1f47a918e29234f\dnary.xsd: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..tings-windowsclient_31bf3856ad364e35_10.0.17763.1_none_6b116fa61becf6e5\offlineblocklist.json: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.json: Permission denied WARNING: Can't open file C:\Windows.old\Windows\WinSxS\amd64_microsoft-windows-u..userpredictionmodel_31bf3856ad364e35_10.0.17763.1_none_7d9e9b366f891397\SBCModel.txt: Permission denied WARNING: E:\: Can't access file ----------- SCAN SUMMARY ----------- Known viruses: 6213086 Engine version: 0.99.4 Scanned directories: 67334 Scanned files: 280096 Infected files: 2 Total errors: 150 Data scanned: 42678.01 MB Data read: 266655.16 MB (ratio 0.16:1) Time: 17709.634 sec (295 m 9 s) The following files are Digitally Signed by Microsoft Corporation and may have been incorrectly detected as viruses: C:\Windows\System32\drivers\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\System32\DriverStore\FileRepository\arcsas.inf_amd64_b3d75f82c617ac6a\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\System32\recdisc.exe: [Win.Trojan.Agent-7015560-0] FALSE POSITIVE FOUND C:\Windows\System32\wusa.exe: [Win.Trojan.Agent-7029271-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_dual_arcsas.inf_31bf3856ad364e35_10.0.18362.1_none_df45d7260451884b\arcsas.sys: [Win.Trojan.Agent-7029285-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_microsoft-windows-recdisc-main_31bf3856ad364e35_10.0.18362.1_none_56d96a6d30d9b491\recdisc.exe: [Win.Trojan.Agent-7015560-0] FALSE POSITIVE FOUND C:\Windows\WinSxS\amd64_microsoft-windows-wusa_31bf3856ad364e35_10.0.18362.1_none_7f5e017895d54a0c\wusa.exe: [Win.Trojan.Agent-7029271-0] FALSE POSITIVE FOUND C:\Windows.old\Program Files\Windows Defender Advanced Threat Protection\SenseSampleUploader.exe: [Win.Trojan.Agent-7029298-0] FALSE POSITIVE FOUND C:\Windows.old\Windows\WinSxS\amd64_windows-senseclient-service_31bf3856ad364e35_10.0.17763.404_none_1d178b3c14bf2ab5\SenseSampleUploader.exe: [Win.Trojan.Agent-7029298-0] FALSE POSITIVE FOUND Please do not be alarmed and help us by submitting the files identified above as FALSE POSITIVE at http://www.clamav.net/sendvirus/ -------------------------------------- Completed -------------------------------------- Dieser Beitrag wurde am 15.07.2019 um 06:38 Uhr von zantekka editiert.

15.07.2019, 07:18 zantekka Gesperrt Themenstarter Beiträge: 6	#3 und hier jetzt im Anhang die restlichen Auswertungen. Sorry wenn ich zum ende hin etwas schlampigg geworden bin. ich bin mega frustriert, todmüde und ich werde langsam echt wahnsinnig wenn das so weiter geht.... Vielen dank schon mal im voraus für jeden tipp den ich ktriegen kann. <3<3<3<3<3<3<3<3<3<3<3<3<3 https://www.file-upload.net/download-13663892/RestlicheLogsGMEROTLetc..html

20.07.2019, 04:54 zantekka Gesperrt Themenstarter Beiträge: 6	#4 BITTE HELFT MIR!!! wenn es nicht anders geht auch gerne gegen bezahlung... langsam werd ich wahnsinnig... Am besten wäre es noch, wenn man ihn zurückverfolgen könnte. Ich glaube nämlich das es jemand aus dem näheren umfeld ist und wenn dem so ist will ich RACHE! ich bin am besten über Telegram oder Steam erreichbar: Telegram link: https://t.me/cbashee%20Marfu Steam invite link: http://s.team/p/dvc-twmp/KVWKBNBW

31.07.2019, 14:50 zantekka Gesperrt Themenstarter Beiträge: 6	#5 Hat wenigstens einer ne Idee wo mir geholfen wird? -.- Polizei, hilft nicht, FOREN helfen nicht, Bundeszentrale für IT Sicherheit hilft nicht. Auch gerne gegebn bezahlung!!!!!!!!!!!!!!!!!!! BITTE!!!!! ich krieg verdammt nochmal nachrichten von fremden, dass ich benutzt werde. etc.... Mittlerweile krieg ich echt Panik

Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:

»
»
»
»
»

Seite(n): 1

Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten