PDA

View Full Version : Rootkit-Scan



ExMachinÆ
2015-04-19, 12:29
Hello, Good Morning, Konichiwa, Ohayo, Hallo, Guten Tag, Zdravo, Dobro Jutro, Whatever.

I've run a quick rootkit-scan and found following.


PhysicalDrive1
PhysicalDrive2
PhysicalDrive3
PhysicalDrive4
PhysicalDrive5
PhysicalDrive6
C:\Windows\Œ÷¼
C:\Windows\System32\෣䬡•
C:\Windows\System32\ๅ£
C:\Windows\System32\穂먑Q
C:\Windows\System32\⓲C

While I know that PhysicalDrive doesn't mean to be necessarily malicious, I can't figure out why there's 6 of 'em.
The chinese symbols are kinda pestering me though.

I have no real problem with my PC. About a week or two, my PC started to crash every once in a while on any given day, but never twice on the same day. It didn't matter if while playing, surfing on the internet or whatsoever. Now since a week or so, it doesn't crash anymore.
I'm just always cautious. Sometimes you can't protect your PC, even more if its already infected and overrun by "evil forces".

I also tried to run a long rootkit-scan, but after 43 minutes I grew weary and stopped it. The results are all marked as No Admin in ACL and from what I understand, isn't necessarily malicious. Still I'll post it. Maybe something pops up.


:: RootAlyzer Results
File:"Hidden file","C:\Windows\Œ÷¼"
File:"Hidden file","C:\Windows\System32\෣䬡•"
File:"Hidden file","C:\Windows\System32\ๅ£"
File:"Hidden file","C:\Windows\System32\穂먑Q"
File:"Hidden file","C:\Windows\System32\⓲C"
File:"No admin in ACL","K:\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{1024083A-700E-4930-8C75-DA9DFD3F4CE8}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{120BB232-922B-4B9B-9209-69C66CACC926}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{2BD26FC8-8218-400C-B78A-7F076A4526FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{33C12629-6AC2-43A0-9891-A949FE5350FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{371733A1-12F5-4E38-82E8-A3CFCF9D666F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{4422A9FE-7955-465F-80D2-FDEE1776D49D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{49037F55-F502-45C1-BE68-6E1CD32F54AC}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{4C8F4015-7EF4-439F-B88F-F717416666EE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{4EA1C3C6-7D38-40D4-976C-CA2709E27637}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{5B1399CA-1799-4327-A60F-D5C6C62810AF}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{6121FC78-E211-4E36-A552-AA0E839322B7}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{72F0146C-3427-4BD1-9A1B-C426667A7C24}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{8834A25A-B03E-465C-95AC-F362BB0E5C36}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{93C437AE-7470-4C97-AE14-760C7AF79028}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{95ADC026-C053-4D40-8F72-5EDFAB892EAD}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{A807D72D-4267-43FA-8217-07C9FDCDBFF6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{B1D216ED-FBFF-48EB-8474-804E3D81BA07}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{BADE2EB5-0AA5-467A-B073-231B828EBF9F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{CC1B58C4-F064-48E0-9EBE-5C926A09697F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{D0FDD7F1-FD9A-4961-9C38-C446531C681D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{D8FCFAC3-5612-45EB-81F3-90132F213681}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{DC931526-CD37-4631-8E2A-11C96465EF8C}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{EA627572-8E23-4148-95D4-9568BB1B9788}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{EAEF6852-066B-469A-B4DD-61E95DF7234E}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\","{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{EAEF6852-066B-469A-B4DD-61E95DF7234E}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{EA627572-8E23-4148-95D4-9568BB1B9788}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{DC931526-CD37-4631-8E2A-11C96465EF8C}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{D8FCFAC3-5612-45EB-81F3-90132F213681}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{D0FDD7F1-FD9A-4961-9C38-C446531C681D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{CC1B58C4-F064-48E0-9EBE-5C926A09697F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{BADE2EB5-0AA5-467A-B073-231B828EBF9F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{B1D216ED-FBFF-48EB-8474-804E3D81BA07}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{A807D72D-4267-43FA-8217-07C9FDCDBFF6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{95ADC026-C053-4D40-8F72-5EDFAB892EAD}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{93C437AE-7470-4C97-AE14-760C7AF79028}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{8834A25A-B03E-465C-95AC-F362BB0E5C36}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{72F0146C-3427-4BD1-9A1B-C426667A7C24}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{6121FC78-E211-4E36-A552-AA0E839322B7}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{5B1399CA-1799-4327-A60F-D5C6C62810AF}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{4EA1C3C6-7D38-40D4-976C-CA2709E27637}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{4C8F4015-7EF4-439F-B88F-F717416666EE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{49037F55-F502-45C1-BE68-6E1CD32F54AC}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{4422A9FE-7955-465F-80D2-FDEE1776D49D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{371733A1-12F5-4E38-82E8-A3CFCF9D666F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{33C12629-6AC2-43A0-9891-A949FE5350FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{2BD26FC8-8218-400C-B78A-7F076A4526FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{120BB232-922B-4B9B-9209-69C66CACC926}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{1024083A-700E-4930-8C75-DA9DFD3F4CE8}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\Wow6432Node\CLSID\{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{1024083A-700E-4930-8C75-DA9DFD3F4CE8}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{120BB232-922B-4B9B-9209-69C66CACC926}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{2BD26FC8-8218-400C-B78A-7F076A4526FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{33C12629-6AC2-43A0-9891-A949FE5350FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{371733A1-12F5-4E38-82E8-A3CFCF9D666F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{4422A9FE-7955-465F-80D2-FDEE1776D49D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{49037F55-F502-45C1-BE68-6E1CD32F54AC}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{4C8F4015-7EF4-439F-B88F-F717416666EE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{4EA1C3C6-7D38-40D4-976C-CA2709E27637}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{5B1399CA-1799-4327-A60F-D5C6C62810AF}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{6121FC78-E211-4E36-A552-AA0E839322B7}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{72F0146C-3427-4BD1-9A1B-C426667A7C24}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{8834A25A-B03E-465C-95AC-F362BB0E5C36}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{93C437AE-7470-4C97-AE14-760C7AF79028}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{95ADC026-C053-4D40-8F72-5EDFAB892EAD}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{A807D72D-4267-43FA-8217-07C9FDCDBFF6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{B1D216ED-FBFF-48EB-8474-804E3D81BA07}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{BADE2EB5-0AA5-467A-B073-231B828EBF9F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{CC1B58C4-F064-48E0-9EBE-5C926A09697F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{D0FDD7F1-FD9A-4961-9C38-C446531C681D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{D8FCFAC3-5612-45EB-81F3-90132F213681}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{DC931526-CD37-4631-8E2A-11C96465EF8C}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{EA627572-8E23-4148-95D4-9568BB1B9788}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{EAEF6852-066B-469A-B4DD-61E95DF7234E}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\","{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{EAEF6852-066B-469A-B4DD-61E95DF7234E}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{EA627572-8E23-4148-95D4-9568BB1B9788}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{DC931526-CD37-4631-8E2A-11C96465EF8C}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{D8FCFAC3-5612-45EB-81F3-90132F213681}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{D0FDD7F1-FD9A-4961-9C38-C446531C681D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{CC1B58C4-F064-48E0-9EBE-5C926A09697F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{BADE2EB5-0AA5-467A-B073-231B828EBF9F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{B1D216ED-FBFF-48EB-8474-804E3D81BA07}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{A807D72D-4267-43FA-8217-07C9FDCDBFF6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{95ADC026-C053-4D40-8F72-5EDFAB892EAD}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{93C437AE-7470-4C97-AE14-760C7AF79028}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{8834A25A-B03E-465C-95AC-F362BB0E5C36}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{72F0146C-3427-4BD1-9A1B-C426667A7C24}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{6121FC78-E211-4E36-A552-AA0E839322B7}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{5B1399CA-1799-4327-A60F-D5C6C62810AF}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{4EA1C3C6-7D38-40D4-976C-CA2709E27637}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{4C8F4015-7EF4-439F-B88F-F717416666EE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{49037F55-F502-45C1-BE68-6E1CD32F54AC}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{4422A9FE-7955-465F-80D2-FDEE1776D49D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{371733A1-12F5-4E38-82E8-A3CFCF9D666F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{33C12629-6AC2-43A0-9891-A949FE5350FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{2BD26FC8-8218-400C-B78A-7F076A4526FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{120BB232-922B-4B9B-9209-69C66CACC926}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{1024083A-700E-4930-8C75-DA9DFD3F4CE8}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\Wow6432Node\CLSID\{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{1024083A-700E-4930-8C75-DA9DFD3F4CE8}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{120BB232-922B-4B9B-9209-69C66CACC926}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{2BD26FC8-8218-400C-B78A-7F076A4526FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{33C12629-6AC2-43A0-9891-A949FE5350FA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{371733A1-12F5-4E38-82E8-A3CFCF9D666F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{4422A9FE-7955-465F-80D2-FDEE1776D49D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{49037F55-F502-45C1-BE68-6E1CD32F54AC}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{4C8F4015-7EF4-439F-B88F-F717416666EE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{4EA1C3C6-7D38-40D4-976C-CA2709E27637}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{5B1399CA-1799-4327-A60F-D5C6C62810AF}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{6121FC78-E211-4E36-A552-AA0E839322B7}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{72F0146C-3427-4BD1-9A1B-C426667A7C24}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{8834A25A-B03E-465C-95AC-F362BB0E5C36}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{93C437AE-7470-4C97-AE14-760C7AF79028}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{95ADC026-C053-4D40-8F72-5EDFAB892EAD}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{A807D72D-4267-43FA-8217-07C9FDCDBFF6}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{B1D216ED-FBFF-48EB-8474-804E3D81BA07}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{BADE2EB5-0AA5-467A-B073-231B828EBF9F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{CC1B58C4-F064-48E0-9EBE-5C926A09697F}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{D0FDD7F1-FD9A-4961-9C38-C446531C681D}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{D8FCFAC3-5612-45EB-81F3-90132F213681}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{DC931526-CD37-4631-8E2A-11C96465EF8C}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{EA627572-8E23-4148-95D4-9568BB1B9788}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{EAEF6852-066B-469A-B4DD-61E95DF7234E}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\","{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{F6E7C51A-4CAE-4B5A-9998-9CE6327DB844}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{F11C06FD-4CBB-42F1-BB87-6EED8BEA1BC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{F01E6D9D-6E5E-4468-A3CD-99D5FBCE8489}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{EAEF6852-066B-469A-B4DD-61E95DF7234E}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{EA627572-8E23-4148-95D4-9568BB1B9788}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{E888F9A1-FD68-4FD4-912A-CCBDA5AE07CA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{DC931526-CD37-4631-8E2A-11C96465EF8C}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{DAE78F2B-5E1A-4236-AB92-D7B452EF984B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{D8FCFAC3-5612-45EB-81F3-90132F213681}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{D0FDD7F1-FD9A-4961-9C38-C446531C681D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{CC1B58C4-F064-48E0-9EBE-5C926A09697F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{C8E4EF25-BC61-43B9-9EEE-5F31529F33E5}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{C8E13E25-FE30-46C2-90FA-B72B69BB9E16}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{BADE2EB5-0AA5-467A-B073-231B828EBF9F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{B1D216ED-FBFF-48EB-8474-804E3D81BA07}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{B05EA49F-5EF1-41E2-AB5E-F8E4E0397B1D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{AD484EB1-AF35-4D73-8116-82BA4D41EDB2}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{A807D72D-4267-43FA-8217-07C9FDCDBFF6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{95ADC026-C053-4D40-8F72-5EDFAB892EAD}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{93C437AE-7470-4C97-AE14-760C7AF79028}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{8834A25A-B03E-465C-95AC-F362BB0E5C36}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{806D06AA-4042-4AB5-A12B-0C823F3CA7F1}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{7CCD2C87-CCC2-4DBF-9849-0EECD338F4CE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{72F0146C-3427-4BD1-9A1B-C426667A7C24}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{6733C283-3FC0-4D2D-9F8A-12BF6AF70C13}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{6461DDD1-48E9-41D4-8B5B-03618C68BB0B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{6121FC78-E211-4E36-A552-AA0E839322B7}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{5B1399CA-1799-4327-A60F-D5C6C62810AF}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{50BE94FA-13F1-4756-90B3-F2B5E5B520A6}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{4EEEE2C4-945B-4AB1-B9A9-9013CFD5D37D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{4EA1C3C6-7D38-40D4-976C-CA2709E27637}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{4C8F4015-7EF4-439F-B88F-F717416666EE}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{49037F55-F502-45C1-BE68-6E1CD32F54AC}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{4422A9FE-7955-465F-80D2-FDEE1776D49D}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{371733A1-12F5-4E38-82E8-A3CFCF9D666F}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{33C12629-6AC2-43A0-9891-A949FE5350FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{2BD26FC8-8218-400C-B78A-7F076A4526FA}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{120BB232-922B-4B9B-9209-69C66CACC926}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{1024083A-700E-4930-8C75-DA9DFD3F4CE8}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{09861A51-6626-4D6A-9B6B-1B82E8E9AD4B}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\Classes\CLSID\{02DDA8BD-182F-4C35-A0F7-9CC378822AC3}\","InprocServer32"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","AACCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","AACMCCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","AACV4Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","AVCHDV2Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","AVCINTRACodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","DAC3VDLPLCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","DEPV1Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","DolbyAC3Stereo"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","DolbyAC3_5.1"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","GoGoCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MP3Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG2E_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG2_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4Basic_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4V8_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4_MC0B_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4_MC1D_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4_MCC3_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MPEG4_MCE8_Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","MVCCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","NBFXV5Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","PDAV4Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","PDHCodes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","RGMBV1Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VDCV2Codes"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst01"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst02"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst03"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst04"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst05"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst06"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst07"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst08"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst09"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst10"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst11"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst12"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst13"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst14"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst15"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst16"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst17"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst18"
RegyValue:"No admin in ACL","HKEY_LOCAL_MACHINE","\SOFTWARE\MAGIX\","VitaInst19"

Thanks in advance.

tashi
2015-04-21, 18:35
Hello ExMachinÆ,

I don't why the Chinese characters are there but if you are unsure if the computer is infected you can post in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22)

If you decide to do so please see that forum's FAQ which also includes instructions in post #2 on how to provide the logs from Farbar Recovery Scan Tool and aswMBR, which are the logs used in the preliminary analysis.

http://forums.spybot.info/showthread.php?t=288

Best regards.