virus blocking antivirus

Tags:
Windows
desktop
antivirus
microsoft
August 3, 2011 at 13:37:39
Specs: Windows 7
Running from: C:\Users\Administrator\Downloads\Win32kDiag.exe

Log file at : C:\Users\Administrator\Desktop\Win32kDiag.txt

WARNING: Could not get backup privileges!

Searching 'C:\Windows'...

Found symbolic link : C:\Windows\$NtUninstallKB29595$

Found symlink destination : \Device\svchost.exe\setup

Cannot access: C:\Windows\assembly\GAC_MSIL\Desktop.ini

[1] 2009-07-13 21:42:31 227 C:\Windows\assembly\Desktop.ini ()

[1] 2011-08-03 22:22:28 25600 C:\Windows\assembly\GAC_MSIL\Desktop.ini ()

[1] 2009-07-13 21:52:25 65 C:\Windows\Downloaded Program Files\desktop.ini ()

[1] 2009-06-10 14:31:19 65 C:\Windows\Fonts\desktop.ini ()

[1] 2009-07-14 00:54:31 81 C:\Windows\Globalization\MCT\MCT-AU\Wallpaper\desktop.ini ()

[1] 2009-07-14 00:54:53 81 C:\Windows\Globalization\MCT\MCT-CA\Wallpaper\desktop.ini ()

[1] 2009-07-14 00:55:15 262 C:\Windows\Globalization\MCT\MCT-GB\Link\desktop.ini ()

[1] 2009-07-14 00:55:15 82 C:\Windows\Globalization\MCT\MCT-GB\Wallpaper\desktop.ini ()

[1] 2009-07-14 00:55:38 210 C:\Windows\Globalization\MCT\MCT-US\Link\desktop.ini ()

[1] 2009-07-14 00:55:38 82 C:\Windows\Globalization\MCT\MCT-US\Wallpaper\desktop.ini ()

[1] 2009-07-14 00:55:57 82 C:\Windows\Globalization\MCT\MCT-ZA\Wallpaper\desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Afternoon\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Calligraphy\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Characters\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Cityscape\Desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Delta\Desktop.ini ()

[1] 2009-06-10 14:22:39 3050 C:\Windows\Media\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Festival\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Garden\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Heritage\Desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Landscape\Desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Quirky\Desktop.ini ()

[1] 2009-07-13 21:52:25 1278 C:\Windows\Media\Raga\Desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Savanna\Desktop.ini ()

[1] 2009-07-13 21:52:26 1278 C:\Windows\Media\Sonata\Desktop.ini ()

[1] 2009-07-13 21:52:26 65 C:\Windows\Offline Web Pages\desktop.ini ()

[1] 2010-10-20 20:48:58 145 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\desktop.ini ()

[1] 2010-10-20 20:48:58 145 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini ()

[1] 2010-10-20 20:48:58 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7HI1GMJX\desktop.ini ()

[1] 2010-10-20 20:48:57 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini ()

[1] 2010-10-20 20:48:58 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F43ZMZZ8\desktop.ini ()

[1] 2010-10-20 20:48:58 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IOW7P1BI\desktop.ini ()

[1] 2010-10-20 20:48:58 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VEQZ4LQT\desktop.ini ()

[1] 2010-10-20 20:48:57 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini ()

[1] 2010-10-24 16:09:24 145 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\desktop.ini ()

[1] 2010-10-24 16:09:24 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\BQOZ4LM3\desktop.ini ()

[1] 2010-10-24 16:09:24 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\desktop.ini ()

[1] 2010-10-24 16:09:24 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\G2FRSLSR\desktop.ini ()

[1] 2010-10-24 16:09:24 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\JANLW4T1\desktop.ini ()

[1] 2010-10-24 16:09:24 67 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\P2R15HOE\desktop.ini ()

[1] 2009-07-13 21:34:14 440 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini ()

[1] 2009-07-13 21:34:14 166 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini ()

[1] 2009-07-13 21:34:14 170 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini ()

[1] 2009-07-13 21:34:14 170 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini ()

[1] 2009-07-13 21:34:14 170 C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini ()

[1] 2009-07-13 21:34:13 440 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\SendTo\Desktop.ini ()

[1] 2009-07-13 21:34:13 166 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini ()

[1] 2009-07-13 21:34:13 170 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini ()

[1] 2009-07-13 21:34:13 170 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini ()

[1] 2009-07-13 21:34:13 170 C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini ()

[1] 2009-07-13 21:41:53 145 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\desktop.ini ()

[1] 2009-07-13 21:41:53 145 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GBMCUAB8\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MU4N543O\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YSJAPYE2\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZZXMGT7I\desktop.ini ()

[1] 2010-10-20 19:02:02 67 C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini ()

[1] 2009-07-13 21:42:29 73 C:\Windows\System32\desktop.ini ()

[1] 2009-07-14 00:48:36 81 C:\Windows\Web\Wallpaper\Architecture\Desktop.ini ()

[1] 2009-07-14 00:48:36 81 C:\Windows\Web\Wallpaper\Characters\Desktop.ini ()

[1] 2009-07-14 00:48:36 81 C:\Windows\Web\Wallpaper\Landscapes\Desktop.ini ()

[1] 2009-07-14 00:48:36 81 C:\Windows\Web\Wallpaper\Nature\Desktop.ini ()

[1] 2009-07-14 00:48:36 81 C:\Windows\Web\Wallpaper\Scenes\Desktop.ini ()

[1] 2009-06-10 14:43:35 80 C:\Windows\winsxs\x86_microsoft-windows-ehome-reg-inf_31bf3856ad364e35_6.1.7600.16385_none_f50296a82442d6ca\desktop.ini ()

[1] 2009-06-10 14:43:36 171 C:\Windows\winsxs\x86_microsoft-windows-ehome-samplemedia_31bf3856ad364e35_6.1.7600.16385_none_5a9b169fb8adc6cc\desktop.ini ()

[1] 2009-06-10 14:31:19 65 C:\Windows\winsxs\x86_microsoft-windows-fontext_31bf3856ad364e35_6.1.7600.16385_none_9e5beea654f0e08f\desktop.ini ()

[1] 2009-06-10 14:20:41 746 C:\Windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.1.7600.16385_none_41d6a532229096ec\Desktop.ini ()

[1] 2009-06-10 14:15:07 65 C:\Windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.7600.16385_none_51b70586ec78a39f\desktop.ini ()

[1] 2009-06-10 14:15:34 65 C:\Windows\winsxs\x86_microsoft-windows-ie-offlinefavorites_31bf3856ad364e35_8.0.7600.16385_none_7bbc80532a0f1e83\desktop.ini ()

[1] 2009-07-14 00:55:14 262 C:\Windows\winsxs\x86_microsoft-windows-m..-gb-links-component_31bf3856ad364e35_6.1.7600.16385_none_b0506f4c29c81b62\desktop.ini ()

[1] 2009-07-14 00:55:38 210 C:\Windows\winsxs\x86_microsoft-windows-m..-us-links-component_31bf3856ad364e35_6.1.7600.16385_none_54d5fafce815ded5\desktop.ini ()

[1] 2009-07-14 00:54:31 81 C:\Windows\winsxs\x86_microsoft-windows-m..ttheme-au-component_31bf3856ad364e35_6.1.7600.16385_none_d855c602bd91962f\desktop.ini ()

[1] 2009-07-14 00:54:52 81 C:\Windows\winsxs\x86_microsoft-windows-m..ttheme-ca-component_31bf3856ad364e35_6.1.7600.16385_none_9c90b2572b625b49\desktop.ini ()

[1] 2009-07-14 00:55:14 82 C:\Windows\winsxs\x86_microsoft-windows-m..ttheme-gb-component_31bf3856ad364e35_6.1.7600.16385_none_34856afd75952bc6\desktop.ini ()

[1] 2009-07-14 00:55:38 82 C:\Windows\winsxs\x86_microsoft-windows-m..ttheme-us-component_31bf3856ad364e35_6.1.7600.16385_none_56d5c461d90038b9\desktop.ini ()

[1] 2009-07-14 00:55:56 82 C:\Windows\winsxs\x86_microsoft-windows-m..ttheme-za-component_31bf3856ad364e35_6.1.7600.16385_none_4742bbc8c4f5499a\desktop.ini ()

[1] 2009-06-10 14:29:17 645 C:\Windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\Desktop.ini ()

[1] 2009-06-10 14:41:17 208 C:\Windows\winsxs\x86_microsoft-windows-musicsamples_31bf3856ad364e35_6.1.7600.16385_none_aa2ab686137b7805\desktop.ini ()

[1] 2009-06-10 14:41:17 475 C:\Windows\winsxs\x86_microsoft-windows-photosamples_31bf3856ad364e35_6.1.7600.16385_none_974f72e1e322d188\desktop.ini ()

[1] 2009-06-10 14:41:18 612 C:\Windows\winsxs\x86_microsoft-windows-ringtonesamples_31bf3856ad364e35_6.1.7600.16385_none_b73fb7eb03882af2\desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..-soundthemes-garden_31bf3856ad364e35_6.1.7600.16385_none_9b86239a5d28cceb\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..-soundthemes-quirky_31bf3856ad364e35_6.1.7600.16385_none_8935696c2c3e4895\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..-soundthemes-sonata_31bf3856ad364e35_6.1.7600.16385_none_c3f8b73d5a679656\Desktop.ini ()

[1] 2009-06-10 14:28:23 81 C:\Windows\winsxs\x86_microsoft-windows-s..allpaper-characters_31bf3856ad364e35_6.1.7600.16385_none_61c24f69cc3498eb\Desktop.ini ()

[1] 2009-06-10 14:28:29 81 C:\Windows\winsxs\x86_microsoft-windows-s..allpaper-landscapes_31bf3856ad364e35_6.1.7600.16385_none_895c1fabae7e0073\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..dthemes-calligraphy_31bf3856ad364e35_6.1.7600.16385_none_6521e04384521cc6\Desktop.ini ()

[1] 2009-06-10 14:18:18 166 C:\Windows\winsxs\x86_microsoft-windows-s..i-accessibilityuser_31bf3856ad364e35_6.1.7600.16385_none_631ad0256a1095cc\Desktop.ini ()

[1] 2009-06-10 14:18:18 170 C:\Windows\winsxs\x86_microsoft-windows-s..ini-accessoriesuser_31bf3856ad364e35_6.1.7600.16385_none_23da83d97579563a\Desktop.ini ()

[1] 2009-06-10 14:18:18 170 C:\Windows\winsxs\x86_microsoft-windows-s..ini-maintenanceuser_31bf3856ad364e35_6.1.7600.16385_none_05ddf62fb732aa51\Desktop.ini ()

[1] 2009-06-10 14:18:19 170 C:\Windows\winsxs\x86_microsoft-windows-s..ini-systemtoolsuser_31bf3856ad364e35_6.1.7600.16385_none_208203e244db0d22\Desktop.ini ()

[1] 2009-06-10 14:18:18 170 C:\Windows\winsxs\x86_microsoft-windows-s..ktopini-accessories_31bf3856ad364e35_6.1.7600.16385_none_ebed72081abd7309\Desktop.ini ()

[1] 2009-06-10 14:18:18 170 C:\Windows\winsxs\x86_microsoft-windows-s..ktopini-maintenance_31bf3856ad364e35_6.1.7600.16385_none_5e708a1ffe7aa932\Desktop.ini ()

[1] 2009-06-10 14:18:19 170 C:\Windows\winsxs\x86_microsoft-windows-s..ktopini-systemtools_31bf3856ad364e35_6.1.7600.16385_none_7e4396bce8f78221\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..l-soundthemes-delta_31bf3856ad364e35_6.1.7600.16385_none_9fd944e3d3073382\Desktop.ini ()

[1] 2009-06-10 14:28:23 81 C:\Windows\winsxs\x86_microsoft-windows-s..lpaper-architecture_31bf3856ad364e35_6.1.7600.16385_none_7d726b356f4d064c\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..ndthemes-characters_31bf3856ad364e35_6.1.7600.16385_none_acbb972d455020ea\Desktop.ini ()

[1] 2009-06-10 14:18:18 166 C:\Windows\winsxs\x86_microsoft-windows-s..opini-accessibility_31bf3856ad364e35_6.1.7600.16385_none_da41b324de9c3847\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..oundthemes-festival_31bf3856ad364e35_6.1.7600.16385_none_b6008531a6ae6d32\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..oundthemes-heritage_31bf3856ad364e35_6.1.7600.16385_none_fc5424ff54aed611\Desktop.ini ()

[1] 2009-06-10 14:18:18 440 C:\Windows\winsxs\x86_microsoft-windows-s..sktopini-sendtouser_31bf3856ad364e35_6.1.7600.16385_none_081ae7a4f56c5467\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..soundthemes-savanna_31bf3856ad364e35_6.1.7600.16385_none_28e34d1952a3a85c\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..undthemes-afternoon_31bf3856ad364e35_6.1.7600.16385_none_cde749f9a255f468\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..undthemes-cityscape_31bf3856ad364e35_6.1.7600.16385_none_ff2a58ae8feb93cd\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-s..undthemes-landscape_31bf3856ad364e35_6.1.7600.16385_none_1e650d9135666d13\Desktop.ini ()

[1] 2009-06-10 14:22:39 3050 C:\Windows\winsxs\x86_microsoft-windows-shell-sounds_31bf3856ad364e35_6.1.7600.16385_none_16e8d25616dd2c98\Desktop.ini ()

[1] 2009-06-10 14:22:41 1278 C:\Windows\winsxs\x86_microsoft-windows-shell-soundthemes-raga_31bf3856ad364e35_6.1.7600.16385_none_d3c4653bd6165c87\Desktop.ini ()

[1] 2009-06-10 14:28:29 81 C:\Windows\winsxs\x86_microsoft-windows-shell-wallpaper-nature_31bf3856ad364e35_6.1.7600.16385_none_7971f9ecb7ec988a\Desktop.ini ()

[1] 2009-06-10 14:28:29 81 C:\Windows\winsxs\x86_microsoft-windows-shell-wallpaper-scenes_31bf3856ad364e35_6.1.7600.16385_none_481a9f966ced79b8\Desktop.ini ()

[1] 2009-06-10 14:27:32 91 C:\Windows\winsxs\x86_microsoft-windows-tabletpc-journal_31bf3856ad364e35_6.1.7600.16385_none_1787de7505ebcb56\Desktop.ini ()

[1] 2009-10-12 00:28:42 266 C:\Windows\winsxs\x86_microsoft-windows-v..alpc-ui-knownfolder_31bf3856ad364e35_7.1.7600.16393_none_4629d716ee0102da\desktop.ini ()

[1] 2009-06-10 14:41:19 78 C:\Windows\winsxs\x86_microsoft-windows-videosamples_31bf3856ad364e35_6.1.7600.16385_none_f583837f77a63ec7\desktop.ini ()

[1] 2009-06-10 14:46:41 81 C:\Windows\winsxs\x86_subsystem-for-unix-based-applications_31bf3856ad364e35_6.1.7600.16385_none_73beade95143314a\Desktop.ini ()

Cannot access: C:\Windows\CSC\v2.0.6\pq

[1] 2010-10-20 19:04:14 64 C:\Windows\CSC\v2.0.6\pq ()

Cannot access: C:\Windows\CSC\v2.0.6\sm

[1] 2010-10-20 19:04:14 4 C:\Windows\CSC\v2.0.6\sm ()

Cannot access: C:\Windows\CSC\v2.0.6\temp\ea-{1e9aedf5-dcb7-11df-b0a1-88ae1d21d2fc}

[1] 2010-10-20 19:04:14 0 C:\Windows\CSC\v2.0.6\temp\ea-{1e9aedf5-dcb7-11df-b0a1-88ae1d21d2fc} ()

Finished!


See More: virus blocking antivirus

Report •

#1
August 3, 2011 at 14:21:28
Download and launch ProcMon | Attempt to launch your AV software | Once it fails, kill ProcMon's hook | Locate the POF (Point Of Failure) | Post your results here.

Report •

#2
August 4, 2011 at 08:37:00
I downloaded Proc Mon, but can't launch it. It says "Windows cannot access the specified device, path or file. You may not have the appropriate permissions to access the item"...something like that. It happens with everything I download

Report •

#3
August 4, 2011 at 13:11:51
Rename the file explorer.exe and attempt to launch it.

Report •

Related Solutions
See More ↓

#4
August 4, 2011 at 14:35:41
Says I need a permission from WIN-K7P7V7K3IPH/Administrator to change the file. Looks like I have some mean stuff messin' with my computer

Report •

#5
August 4, 2011 at 15:24:58
"Looks like I have some mean stuff messin' with my computer"
Correct, now to outsmart it.

Two things to try.

1: Rename any download before it starts the download.

2: Use Safe mode.


Report •

#6
August 5, 2011 at 01:57:40
The easiest thing here, is to launch cmd as admin and use either move or rename commands.

Report •

#7
August 5, 2011 at 13:22:10
just do a full scan with malwarebytes and fix all it finds for starters

Some HELP in posting on Computing.net plus free progs and instructions Cheers


Report •

#8
August 5, 2011 at 17:13:31
"Says I need a permission from WIN-K7P7V7K3IPH/Administrator to change the file"
Did you right click on the program & select > Run as administrator?

Report •
Start a discussion

Ask Question