T
tizzo
As the IT guy in the family, I have been called upon to help
troubleshoot a problem with my nephew's PC. His dad is very security
conscious, and has installed all kinds of protection software on the
machine, including Panda's AntiVirus product.
I'm still trying to sort out everything that was done to the machine
lately. What I know right now, however, is that the machine was
running slowly, so while my nephew was out of town, his father did
some "maintenance" on the computer. Dad went out of town and nephew
came home, and now the PC reboots itself within about 30 seconds of
startup.
I disabled autorestart on system error, and was able to determine that
the cause of the reboot is a STOP 0x000000D4 (driver unloaded without
canceling pending operations) in av5flt.sys, which is part of Panda.
The same thing happens in safe mode, so I can't even get in to look at
anything or try to disable Panda from starting automatically. Safe
Mode with Command Prompt just boots right into normal GUI safe mode,
which is not how I remember it working. I also thought there was an
option in which you could be prompted y/n on whether to start each and
every startup process, and was hoping I could prevent Panda from being
loaded that way, but none of the options on the F8 menu do that for
me. I thought it was the Enable Boot Logging option, but when I
choose that, it just boots right into GUI safe mode without any
prompting or printing, and the system halts about 30-60 seconds later.
Does this sound familiar to anyone? Any ideas on how to control
what's loaded at boot time? I'm quite concerned about the seemingly
anomalous behavior of some of the options on the F8 boot menu. Does
that sound like the work of a virus? Is it possible that Panda or
some other piece of defensive software interferes with or disables
some of the low-level control afforded by Windows XP in order to
prevent hackers from getting around it? I'm really at a loss here,
and any advice would be appreciated. Thanks.
troubleshoot a problem with my nephew's PC. His dad is very security
conscious, and has installed all kinds of protection software on the
machine, including Panda's AntiVirus product.
I'm still trying to sort out everything that was done to the machine
lately. What I know right now, however, is that the machine was
running slowly, so while my nephew was out of town, his father did
some "maintenance" on the computer. Dad went out of town and nephew
came home, and now the PC reboots itself within about 30 seconds of
startup.
I disabled autorestart on system error, and was able to determine that
the cause of the reboot is a STOP 0x000000D4 (driver unloaded without
canceling pending operations) in av5flt.sys, which is part of Panda.
The same thing happens in safe mode, so I can't even get in to look at
anything or try to disable Panda from starting automatically. Safe
Mode with Command Prompt just boots right into normal GUI safe mode,
which is not how I remember it working. I also thought there was an
option in which you could be prompted y/n on whether to start each and
every startup process, and was hoping I could prevent Panda from being
loaded that way, but none of the options on the F8 menu do that for
me. I thought it was the Enable Boot Logging option, but when I
choose that, it just boots right into GUI safe mode without any
prompting or printing, and the system halts about 30-60 seconds later.
Does this sound familiar to anyone? Any ideas on how to control
what's loaded at boot time? I'm quite concerned about the seemingly
anomalous behavior of some of the options on the F8 boot menu. Does
that sound like the work of a virus? Is it possible that Panda or
some other piece of defensive software interferes with or disables
some of the low-level control afforded by Windows XP in order to
prevent hackers from getting around it? I'm really at a loss here,
and any advice would be appreciated. Thanks.