WiredWX Hobby Weather ToolsLog in

 


Desktop's icons disappeared!

2 posters

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
Dave,

I did not create that folder, I don't even know what it is, how to or where to create it.

This morning when I started the computer, my monitors wouldn't show any activity not even the mouse, like they weren't connected. I had to reboot and then started working. Would I be having trouble with my video card?

I really appreciate all the help you're giving me! Thanks


SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

No Hidden Processes found

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \SystemRoot\System32\Drivers\dump_iaStor.sys
Service Name: ---
Module Base: B465B000
Module End: B4712000
Hidden: Yes

******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwAddBootEntry
Address: B47D7610
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwAllocateVirtualMemory
Address: B48B35FA
Driver Base: B48A6000
Driver End: B48FE000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

Function Name: ZwAssignProcessToJobObject
Address: B47D80E6
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwClose
Address: B481BB36
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateEvent
Address: B47E3F18
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateEventPair
Address: B47E3F64
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateIoCompletion
Address: B47E40FE
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateKey
Address: B481B4EA
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateMutant
Address: B47E3E86
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateSection
Address: B47E3FA8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateSemaphore
Address: B47E3ECE
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateThread
Address: B47D85E4
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwCreateTimer
Address: B47E40B8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwDebugActiveProcess
Address: B47D8E9C
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwDeleteBootEntry
Address: B47D7676
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwDeleteKey
Address: B481C1FC
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwDeleteValueKey
Address: B481C4B2
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwDuplicateObject
Address: B47DC596
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwEnumerateKey
Address: B481C067
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwEnumerateValueKey
Address: B481BED2
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwFreeVirtualMemory
Address: B48B36C2
Driver Base: B48A6000
Driver End: B48FE000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

Function Name: ZwLoadDriver
Address: B47D725E
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwModifyBootEntry
Address: B47D76DC
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwNotifyChangeKey
Address: B47DC98C
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwNotifyChangeMultipleKeys
Address: B47D992C
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenEvent
Address: B47E3F42
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenEventPair
Address: B47E3F86
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenIoCompletion
Address: B47E4122
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenKey
Address: B481B846
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenMutant
Address: B47E3EAC
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenProcess
Address: B47DBE78
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenSection
Address: B47E4036
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenSemaphore
Address: B47E3EF6
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenThread
Address: B47DC26E
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwOpenTimer
Address: B47E40DC
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwProtectVirtualMemory
Address: B48B3822
Driver Base: B48A6000
Driver End: B48FE000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

Function Name: ZwQueryKey
Address: B481BD4D
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwQueryObject
Address: B47D97F8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwQueryValueKey
Address: B481BB9F
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwQueueApcThread
Address: B47D934E
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwRenameKey
Address: B48C0744
Driver Base: B48A6000
Driver End: B48FE000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

Function Name: ZwRestoreKey
Address: B481AB30
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetBootEntryOrder
Address: B47D7742
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetBootOptions
Address: B47D77A8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetContextThread
Address: B47D8D16
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetSystemInformation
Address: B47D72F8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetSystemPowerState
Address: B47D74CE
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSetValueKey
Address: B481C303
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwShutdownSystem
Address: B47D745C
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSuspendProcess
Address: B47D9066
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSuspendThread
Address: B47D91C8
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwSystemDebugControl
Address: B47D7556
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwTerminateProcess
Address: B47D8B54
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwTerminateThread
Address: B47D8CF6
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwUnloadDriver
Address: B48B1C42
Driver Base: B48A6000
Driver End: B48FE000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

Function Name: ZwVdmControl
Address: B47D780E
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

Function Name: ZwWriteVirtualMemory
Address: B47D8142
Driver Base: B47BF000
Driver End: B487E000
Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

******************************************************************************************
******************************************************************************************
Kernel Hooks:
Hooked Function: ZwCreateProcessEx
At Address: 805D11CA
Jump To: B48CCE04
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

Hooked Function: ZwClose
At Address: 805BC58A
Jump To: B48C9C9A
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

Hooked Function: PsCreateSystemThread
At Address: 805D11CA
Jump To: B48CCE04
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

Hooked Function: ObMakeTemporaryObject
At Address: 805BC58A
Jump To: B48C9C9A
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

Hooked Function: ObInsertObject
At Address: 805C300E
Jump To: B48CB7B4
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

Hooked Function: ObCloseHandle
At Address: 805BC58A
Jump To: B48C9C9A
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: C:\Documents and Settings\Rosa\Application Data\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\KckDveDsBuHdHi8TJUXQAFOpavQ=\SxQ9ILGlvY8_GGjQGsVelJ4fq9sg=\QTU4QzlBOTEtQkFEMS0zMDY2LTk5RjQtRDA2MzEwMDU3RTI0\OEJFNEE5OUEtRUI0NS0zNjUxLUFBOTMtOTdCMzE4QUU2Q
Status: Hidden

Object: C:\Documents and Settings\Rosa\Application Data\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\KckDveDsBuHdHi8TJUXQAFOpavQ=\SxQ9ILGlvY8_GGjQGsVelJ4fq9sg=\ZDI4MzkyZGEtMTliNy00MmZiLTg3NmQtOTQzNDQwNTY0ZTMx\QTI0MjcwQjMtQzVFNi0zOEY3LUE5NkEtOTgyNjFEQzM5R
Status: Hidden

Object: C:\Qoobox\BackEnv\AppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cache.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Cookies.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Desktop.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Favorites.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\History.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalAppData.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\LocalSettings.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Music.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\NetHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Personal.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Pictures.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\PrintHood.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Profiles.Folder.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Programs.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Recent.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SendTo.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SetPath.bat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartMenu.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\StartUp.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\SysPath.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\Templates.folder.dat
Status: Access denied

Object: C:\Qoobox\BackEnv\VikPev00
Status: Access denied

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
I did not create that folder, I don't even know what it is, how to or where to create it.
Please go to Jotti's malware scan
(If more than one file needs scanned they must be done separately and links posted for each one)

* Copy the file path in the below Code box:

Code:

C:\Layers.scr

* At the upload site, click once inside the window next to Browse.
* Press Ctrl+V on the keyboard (both at the same time) to paste the file path into the window.
* Next click Submit file
* Your file will possibly be entered into a queue which normally takes less than a minute to clear.
* This will perform a scan across multiple different virus scanning engines.
* Important: Wait for all of the scanning engines to complete.
* Once the scan is finished, Copy and then Paste the link in the address bar into your next reply.
**********************************************
Would I be having trouble with my video card?
It could be something like that or the monitor itself. Do you have two monitors on that computer?

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
I hope this is what you meant! http://virusscan.jotti.org/en/scanresult/b0fa70df4573ce9f052d9666a4ed6d635879afbf

I have my regular monitor and a Wacom tablet.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
Please download Farbar Service Scanner and run it on the computer with the issue.

  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
Farbar Service Scanner Version: 13-09-2013
Ran by Rosa (administrator) on 03-10-2013 at 21:54:16
Running from "C:\Documents and Settings\Rosa\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Other Services:
==============


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
aswFW(10) aswTdi(8) Gpc(6) IPSec(4) NetBT(5) Tcpip(3)
0x0A00000004000000030000000A00000008000000020000000100000009000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
When you run the Unhide program do the icons return?

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
The first time I tried it, yes, but not anymore.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
Dave, two days in a row I have started the computer with no problem. I will try it for few more days and let you know. I have to thank you for your patience and all the help you have given me.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
rrolon123 wrote:
Dave, two days in a row I have started the computer with no problem. I will try it for few more days and let you know. I have to thank you for your patience and all the help you have given me.
Ok, let me know how it goes.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
Dave, so far so good with the icons and couldn't be happier but... I have an error with net framework visual studio 8. Don't know if it's important or not, I'm sending you the log, hopefully you can help.

Here is the log:
QueueVer=1
UI LCID=1033
Date=10/6/2013
Time=9:47:19 PM
ReportSize=4142
Bytes=bytes
Kilobytes=KB
Megabytes=MB
MoreInfo=What data does this error report contain?
ErrorSubPath=Generic\visualstudio8setup\microsoft .net framework 2.0-kb979909\1033\1605\msi\f\9.0.40302.0\install\x86\xp\0
Stage1URL=/StageOne/Generic/visualstudio8setup/microsoft .net framework 2.0-kb979909/1033/1605/msi/f/9.0.40302.0/install/x86/xp/0.htm
Stage2URL=/dw/generictwo.asp?EventType=visualstudio8setup&P1=microsoft .net framework 2.0-kb979909&P2=1033&P3=1605&P4=msi&P5=f&P6=9.0.40302.0&P7=install&P8=x86&P9=xp&P10=0
BP0=visualstudio8setup
BP1=microsoft .net framework 2.0-kb979909
BP2=1033
BP3=1605
BP4=msi
BP5=f
BP6=9.0.40302.0
BP7=install
BP8=x86
BP9=xp
BP10=0
CBP=11
DWVer0=12
DWVer1=0
DWVer2=6010
DWVer3=5000
Details_Sig_Body=EventType : visualstudio8setup P1 : microsoft .net framework 2.0-kb979909
P2 : 1033 P3 : 1605 P4 : msi P5 : f P6 : 9.0.40302.0
P7 : install P8 : x86 P9 : xp P10 : 0
QueueMode=268435457
EventID=5000
ReportingFlags=12
UIFlags=1
LoggingFlags=0
MiscFlags=0
EventLogSource=HotFixInstaller
Queued_EventDescription=Queue Servicing Report
General_AppName=Software Update Microsoft .NET Framework 2.0-KB979909 I
Final_Link=Prevent this problem in the future

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
I have an error with net framework visual studio 8.
I just searched the problem and I found this. Something there might help.

To uninstall ComboFix


  • Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
  • In the field, type in ComboFix /uninstall


Desktop's icons disappeared! - Page 2 Combofix_uninstall_image

(Note: Make sure there's a space between the word ComboFix and the forward-slash.)


  • Then, press Enter, or click OK.
  • This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.

*****************************************
Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.

Desktop's icons disappeared! - Page 2 Diskcleanup2

Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.

Desktop's icons disappeared! - Page 2 Diskcleanup

This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
**************************************
Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

descriptionDesktop's icons disappeared! - Page 2 EmptyRe: Desktop's icons disappeared!

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum