scan causing desktop login problems

I ran the Microsoft Update, but this did not resolve the issue.  When I arrived at work this morning, the same thing happened again.

"Repeat M$ update not windows update."

Message Edited by doctortt on 05-19-2008 07:10 AM

As I mentioned, I did try the Microsoft Update option with the same results.  I still get the walpaper with no icons or taskbar after I logon for the first time after a SEP scan. 

Luck with the Microsoft Update, yes... Luck with the original problem, no.

Actually,
  This is only happening with some of the newest machines I've installed.  All of them have either 2 or 3 GB of RAM.  What do you mean by "All other scans are not enabled with SEPM?"  Also, new definitions arrive almost daily, but I only have this trouble once a week.

No, that didn't do the trick.   This morning, when all the users complained about the same problem I noticed something in the log that differed from the few users that didn't have the problem.  The ones that did have the problem had this entry about once an hour from the time of the scan until the time they restarted their PC's:

Event Type:        Information
Event Source:      Service Control Manager
Event Category:    None
Event ID:          7035
Date:              5/21/2008
Time:              1:45:03 AM
User:              NT AUTHORITY\SYSTEM
Computer:          XXXX###
Description:
The COH_Mon service was successfully sent a start control.

COH_Mon is listed online as a Symantec driver.  Can you tell me more about how this might be a part of my issue?

I didn't even think to scan for it.  I must be loosing my mind.  Anyway, here's the info on it.  All of the affected PC's have had norton installed fresh since about December. Mine in particular is a new PC as of March 2008.

;
; COH_Mon INF File
;
; Copyright (c) 2001-2007 Symantec Corporation. All rights reserved.
;
; NOTE: Only use this installation file in conjunction with the
; Microsoft Windows Hardware Compatibility Test (HCT) kit.
;
[Version]
signature   = "$Windows NT$"
Class       = "ActivityMonitor"
ClassGuid   = {b86dff51-a31e-4bac-b3cf-e8cfe75c9fc2}
Provider    = %Symc%
DriverVer   = 05/24/2007,6.1.2.3
CatalogFile = COH_Mon.cat

[SourceDisksNames]
1 = %Disk1%

[SourceDisksFiles]
COH_Mon.sys = 1

[DestinationDirs]
DefaultDestDir = 01,temp.^^^

[DefaultInstall]
CopyFiles = @COH_Mon.sys

[DefaultUninstall]

[Strings]
Symc = "Symantec Corporation"
Disk1 = "COH_Mon Source Media"

No, I have not been able to solve this.  It is also happening with our newer computers which have 2-3 GB of RAM.

Bump...

We are experiencing this same issue intermittently at my company also.  The system will boot, user will login, system appears to be loading but never gets past the blank background.  Performing a Ctrl+Alt+Del and then running Explorer will load the desktop and the system performs normally after that.  System and Application logs do not show anything out of the ordinary that I can see.  This is starting to occur more and more frequently since the installation of SEP MR3 and users are starting to get irritated.

Any help or suggestions will be appreciated!

found this article on the Symantec support site....

http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/a1bc009c2a17abf488257424006ab6a3?OpenDocument

doesn't seem like much of an answer since everything was working fine prior to the install.

Wow,
I'd given up on this thread.  A few months back, the natives got so restless that I ended up removing the script and manually configuring the network drives on all of my machines.  Once I get my current definition update issues resolved, I'm going to try that fix.

David

Well,
We got 2 new Dell Windows XP Pro SP 3 PC's in and they're both doing the same thing again.  They had 4 GB of RAM installed, which I pulled down to 2 GB upon report of the problem.  However, the problem still remains.  I am not running any startup scripts on these computers, and no other machines have this issue.

David

Hi.

I also have almost the same problem in my company: Some mornings when I arrive, my computer is "dead". I can see the desktop and move the mouse pointer. The desktop is empty (no icons - only the background picture), and the keyboard is responding on Num-lock, Caps-lock, Print-screen (mouse pointer briefly dissapears), etc..

But - I cannot do ANYTHING. Ctrl+Alt+Delete doesn't respond, nor pressing Enter or inputting password and pressing Enter (if the login dialog should be invisible). Also the computer will not power down by pressing the power button for a short while (as it usually can).

The error can happen weeks apart or every day.

In the event log I can see that the last executed application before the computer "freezes" is Microsoft Backup (which I'm running every evening at 20:00 - it takes about 2 hours) and in the eventlog's System folder, the last event is (at 20:55) 

Event source: Service Control Manager
Event-id: 7035
Service COH_Mon received a start-control.   (BUT IT DOESN'T START)

The only thing for me to do is to reset the PC (turn off (hold power button for 7+ seconds)+turn on).

I run SEP 11.0.4014.26 on Windows XP SP3 (all service packs applied).

PLEASE HELP !!