1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive Virus changed display properties [Desktop locked, icons missing]

Discussion in 'Malware and Virus Removal Archive' started by MAnza, 2011/04/28.

Thread Status:
Not open for further replies.
  1. 2011/04/28
    MAnza

    MAnza Inactive Thread Starter

    Joined:
    2010/08/06
    Messages:
    1
    Likes Received:
    0
    [Inactive] Virus changed display properties [Desktop locked, icons missing]

    Thanks for any and all advice.

    On August 25th my system locked up while my virus protection intercepted a problem. Every since then my desktop has been locked and all my icons are missing. I can still get to everything through explorer but obviously having a useless desktop is not acceptable.

    I found a ton of great advice so far and have everything back to normal EXCEPT my desktop is still not accessable.

    I reviewed the logs in C:\WINDOWS to compare information from yesterday to a time before the problem and discovered some minor changes. I don't know if these changes are the problem (I assume they are) but I have no idea how to fix them. I also only checked these three logs. There may be changes in others, I've haven't looked.

    The logs are from:

    MedCtrOC.txt - comparing 4/18/11 to 4/27/11
    comsetup.txt - comparing the same dates
    msmquinst.tex - comparing the same dates

    Not sure how to attach files here so I am cutting and pasting the relevant sections.

    MedCtrOC.txt

    Initialize setup: MedCtrOC.DLL 04/18/11 17:21:40
    [freestyle - OC_PREINITIALIZE] - complete
    [freestyle - OC_INIT_COMPONENT] OnOcInitComponent enter OnOcInitComponent leave - complete
    [freestyle - OC_QUERY_STATE] - complete
    [freestyle - OC_CALC_DISK_SPACE] g_SetupInfo.ComponentInfHandle = 0x00ec7010 addComponent = TRUE Leaving OnCalcDiskSpace... rc = 0x0000000d - complete
    [freestyle - OC_CLEANUP] - complete

    Initialize setup: MedCtrOC.DLL 04/27/11 10:37:01
    [freestyle - OC_PREINITIALIZE] - complete
    [freestyle - OC_INIT_COMPONENT] OnOcInitComponent enter
    OnOcInitComponent leave - complete
    [freestyle - OC_QUERY_STATE] - complete
    [freestyle - OC_CALC_DISK_SPACE] g_SetupInfo.ComponentInfHandle = 0x01631f70 addComponent = TRUE
    Leaving OnCalcDiskSpace... rc = 0x0000000d - complete
    [freestyle - OC_WIZARD_CREATED] - complete
    [freestyle - OC_QUERY_STATE] - complete
    [freestyle - OC_QUERY_CHANGE_SEL_STATE] - complete
    [freestyle - OC_CALC_DISK_SPACE] g_SetupInfo.ComponentInfHandle = 0x01631f70 addComponent = TRUE Leaving OnCalcDiskSpace... rc = 0x0000000d - complete
    [freestyle - OC_CLEANUP] - complete


    comsetup.txt

    COM+[5:21:39]: Setup started - [DATE:04,18,2011 TIME: 05:21 pm]
    ********************************************************************************
    COM+[5:21:39]: Start OC_INIT_COMPONENT Component = com
    COM+[5:21:39]: INF VERSION (com) = 2001,12,4414,700
    COM+[5:21:39]: Instantiating CMasterNT5Wks
    COM+[5:21:39]: Memory usage for setup process...
    COM+[5:21:39]: PeakWorkingSetSize: 12752 Kb, WorkingSetSize: 12752 Kb
    COM+[5:21:39]: QuotaPeakPagedPoolUsage: 56 Kb, QuotaPagedPoolUsage: 53 Kb
    COM+[5:21:39]: PeakPagefileUsage: 10924 Kb, PagefileUsage: 10712 Kb
    COM+[5:21:39]: MTSS: Answer File =
    COM+[5:21:39]: Calling SetupOpenInfFile.
    COM+[5:21:39]: Unable to open Answer File!!
    COM+[5:21:39]: DRID-39104 -> Path: C:\WINDOWS\Java\Trustlib\
    COM+[5:21:39]: Installed COM product version = 3.0.0.4414
    COM+[5:21:39]: SETUP VERSION = 3.0.0.4414
    COM+[5:21:40]: Installation Mode = MAINTENANCE
    COM+[5:21:40]: Maintnenance Mode = ADD_REMOVE
    COM+[5:21:40]: DRID-39103 -> Path: C:\Program Files\Common Files\ODBC\Data Sources\
    COM+[5:21:40]: End OC_INIT_COMPONENT Return Value = 0
    COM+[5:21:41]: Start OC_QUERY_STATEComponent = com Subcomponent = com
    COM+[5:21:41]: Subcomponent com state: O-,C-,R+
    COM+[5:21:41]: End OC_QUERY_STATE Return Value = 0
    COM+[5:21:41]: Start OC_CLEANUP Component = com
    COM+[5:21:41]: Stopping service COM+ System Application...
    COM+[5:21:42]: Memory usage for setup process...
    COM+[5:21:42]: PeakWorkingSetSize: 28320 Kb, WorkingSetSize: 23500 Kb
    COM+[5:21:42]: QuotaPeakPagedPoolUsage: 78 Kb, QuotaPagedPoolUsage: 71 Kb
    COM+[5:21:42]: PeakPagefileUsage: 12976 Kb, PagefileUsage: 12972 Kb
    COM+[5:21:42]: End OC_CLEANUP Return Value = 0
    COM+[10:38:40]: ********************************************************************************
    COM+[10:38:40]: Setup started - [DATE:04,27,2011 TIME: 10:38 am]
    ********************************************************************************
    COM+[10:38:40]: Start OC_INIT_COMPONENT Component = com
    COM+[10:38:40]: INF VERSION (com) = 2001,12,4414,700
    COM+[10:38:40]: Instantiating CMasterNT5Wks
    COM+[10:38:40]: Memory usage for setup process...
    COM+[10:38:40]: PeakWorkingSetSize: 9140 Kb, WorkingSetSize: 9140 Kb
    COM+[10:38:40]: QuotaPeakPagedPoolUsage: 44 Kb, QuotaPagedPoolUsage: 44 Kb
    COM+[10:38:40]: PeakPagefileUsage: 4592 Kb, PagefileUsage: 4592 Kb
    COM+[10:38:40]: MTSS: Answer File =
    COM+[10:38:40]: Calling SetupOpenInfFile.
    COM+[10:38:40]: Unable to open Answer File!!
    COM+[10:38:40]: DRID-39104 -> Path: C:\WINDOWS\Java\Trustlib\
    COM+[10:38:40]: Installed COM product version = 3.0.0.4414
    COM+[10:38:40]: SETUP VERSION = 3.0.0.4414
    COM+[10:38:40]: Installation Mode = MAINTENANCE
    COM+[10:38:40]: Maintnenance Mode = ADD_REMOVE
    COM+[10:38:40]: DRID-39103 -> Path: C:\Program Files\Common Files\ODBC\Data Sources\
    COM+[10:38:40]: End OC_INIT_COMPONENT Return Value = 0
    COM+[10:38:40]: Start OC_QUERY_STATEComponent = com Subcomponent = com
    COM+[10:38:40]: Subcomponent com state: O-,C-,R+
    COM+[10:38:40]: End OC_QUERY_STATE Return Value = 0
    COM+[10:38:40]: Start OC_QUERY_STATEComponent = com Subcomponent = com
    COM+[10:38:40]: End OC_QUERY_STATE Return Value = 1
    COM+[10:38:41]: Start OC_QUERY_CHANGE_SEL_STATE Component = com Subcomponent = com
    COM+[10:38:41]: Subcomponent com state: O+,C+,R+
    COM+[10:38:41]: End OC_QUERY_CHANGE_SEL_STATE Return Value = 1
    COM+[10:38:41]: Start OC_CALC_DISK_SPACE Component = com Subcomponent = com
    COM+[10:38:41]: End OC_CALC_DISK_SPACE Return Value = 0
    COM+[10:38:43]: Start OC_CLEANUP Component = com
    COM+[10:38:43]: Stopping service COM+ System Application...
    COM+[10:38:43]: Memory usage for setup process...
    COM+[10:38:43]: PeakWorkingSetSize: 32036 Kb, WorkingSetSize: 27060 Kb
    COM+[10:38:43]: QuotaPeakPagedPoolUsage: 70 Kb, QuotaPagedPoolUsage: 63 Kb
    COM+[10:38:43]: PeakPagefileUsage: 8016 Kb, PagefileUsage: 7868 Kb
    COM+[10:38:43]: End OC_CLEANUP Return Value = 0
    COM+[10:38:43]: ********************************************************************************
    COM+[10:38:43]: Setup finished - [DATE:04,27,2011 TIME: 10:38 am]
    COM+[10:38:43]: ********************************************************************************


    msmqinst.txt

    ?*** Message Queuing 3.0 Setup ***4-18-2011 17:21:40:708
    4-18-2011 17:21:40:708 Tracing: Starting initialization...
    4-18-2011 17:21:40:708 Tracing: Dump of OCM flags:
    4-18-2011 17:21:40:708 Tracing: ProductType=0x0
    4-18-2011 17:21:40:708 Tracing: OperationFlags=0x10
    4-18-2011 17:21:40:708 Tracing: SourcePath=C:\WINDOWS\inf\sysoc.inf
    4-18-2011 17:21:40:708 Tracing: ComponentId=18425868
    4-18-2011 17:21:40:848 Tracing: Checking for installed components...
    4-18-2011 17:21:40:858 Tracing: Message Queuing 2.0 Beta3 or later is NOT installed. Skipping check for other versions...
    4-18-2011 17:21:40:868 Tracing: Consider Message Queuing NOT installed on this computer.
    4-18-2011 17:21:40:868 Tracing: Initializing OS Version.
    4-18-2011 17:21:40:868 Tracing: ProductType=0x0
    4-18-2011 17:21:40:868 Tracing: The number of subcomponents is 5
    4-18-2011 17:21:40:878 Tracing: Initialization was completed successfully!

    ?*** Message Queuing 3.0 Setup ***4-27-2011 10:38:40:568
    4-27-2011 10:38:40:568 Tracing: Starting initialization...
    4-27-2011 10:38:40:568 Tracing: Dump of OCM flags:
    4-27-2011 10:38:40:568 Tracing: ProductType=0x0
    4-27-2011 10:38:40:568 Tracing: OperationFlags=0x10
    4-27-2011 10:38:40:579 Tracing: SourcePath=C:\WINDOWS\system32
    4-27-2011 10:38:40:579 Tracing: ComponentId=841396
    4-27-2011 10:38:40:679 Tracing: Checking for installed components...
    4-27-2011 10:38:40:679 Tracing: Message Queuing 2.0 Beta3 or later is NOT installed. Skipping check for other versions...
    4-27-2011 10:38:40:679 Tracing: Consider Message Queuing NOT installed on this computer.
    4-27-2011 10:38:40:679 Tracing: Initializing OS Version.
    4-27-2011 10:38:40:699 Tracing: ProductType=0x0
    4-27-2011 10:38:40:699 Tracing: The number of subcomponents is 5
    4-27-2011 10:38:40:699 Tracing: Initialization was completed successfully!
     
    MAnza,
    #1
  2. 2011/04/28
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,896
    Likes Received:
    389
    Welcome to WindowsBBS :)
    Good chance that your computer is infected - I have moved your thread to the Malware & Virus Removal forum

    Please read this as indicated at the head of the forum and post the logs requested in this thread via copy/paste.
     
    PeteC,
    #2


  3. to hide this advert.

Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...