[Resolved] Wiley Virus?

[Hoov]

I need you to go to the administration tools in XP. They are in the Control Panel. Open the Admin tools, then open the event viewer. Over on the left hand side and click on System. Then up at the top click on Action and then click on Save Events As, type in system as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Over on the left hand side and click on Application. Then up at the top click on Action and then click on Save Events As, type in application as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Zip them both up into a single zip file, post them back here in your next reply as attachments.

[ssheltmire]

OK, I hope this was done correctly.  Let me know if you have any trouble with the files.  Thanks again.

SS

[Hoov]

OK, what I found out is that there is a dozen or so drivers that don't startup the first time, but work just fine the second time. So lets try something. Disconnect physically from the internet. Then turn off the online armor so it won't startup with the boot process. Also I need you to go into the control panel, then to the admin tools, then to the services, scroll down to the AdAware service and double click on it. Click the stop button, and then where it sats advanced, click the menu and select disabled. Click apply, then close everythng back to the desktop. Now reboot your computer like you normally would and see if you end up at a BSOD again. Once you have figured out what it is going to do, run the online armor and let me know what happened.

[ssheltmire]

I went through those steps (hoipefully correctly) and did not encounter the same error upon reboot.  I had disabled Online Armor within the Services tab on MSCONFIG and could not manually restart it without re-enabling it the same way.  But, it started up upon reboot.  Anything specific I need to be looking for after starting up Online Armor?


SS

[Hoov]

Re enable the online armor in Services (put it back to auto) and reboot. If you still don't get the BSOD, then re enable one program at a time until you get the BSOD. Basically we are looking for the one piece of software that is causing the conflict. I know this is a lot of rebooting, but this is the only way to be sure you find the problem.

[ssheltmire]

Hoov,
  I THINK AdAware might be this issue.  I had gone through selective re-enabling of each service as recommended and still did not get the auto-reboot.  AdAware was the last thing I re-added.  I had gone back into the Cotnrol-panel - Admin Tools - Services to restart AdAware before manually rebooting. That still not result in the auto-reboot after the next power-up.

I noticed that, even though I had restarted AdAware, it was not showing up in the background program tray in the lower right of the screen along with the other services that had been re-added.   It wasn't until I opened AdAware and did an update that it then showed up in the tray and the system did the auto-reboot the next time I brought it up from a power-down status.

SS

[Hoov]

Are you using the new Anniversary Edition?

[ssheltmire]

Yes.

[Hoov]

Uninstall it and run for a day or so. Make sure that is the problem. If you are running fine, then reinstall it and see what happens. It could be just a bad install.

Let me know if it is the problem child after the reinstall.

[ssheltmire]

Will do.  Again, will probably not be able to get to that until Monday.  I will get back to you later in the week.

Thanks.

SS

[Hoov]

OK

[ssheltmire]

Hmmm, some interesting developments here.  As discussed, I uninstalled AdAware, BUT, upon the next boot-up from power-off status, it did go through the auto-reboot process.  So, I verified that the AdAware was, indeed, gone.  The last boot-up that I did resulted, even more strangely, in auto-reboot just barely past the iniitial screen that allows you to select between Microsoft Windows XP or the Recovery Console.  It didn't even get to the Desktop load process.  I think I need to go back to square one and remove all the background programs again and do some more boot testing.

Another perplexing message received was during MSCONFIG changes in the Services tab.  I tried to un-check services related to the background processes and received a message indicating "service change denied....log in as system administrator".  As far as I know, my "owner" login IS the adniministrator.

SS

[Hoov]

Run windows update. I think that it will install the fix for that problem. If not it will let us know moire (Hopefully).

[ssheltmire]

Unless I am not referencing the right Windows update service here, the only update that is awaiting installation through the little shield icon in the lower right tray is Windows Service Pack 3.  However, having tried that twice now, it runs about half-way through the check/install process and stops with an "Access" error and then backs out.

So, I am still encountering an authorization problem when I try to disable programs or services through the MSCONFIG.  Bascially, still just trying to eliminate most of the non-essential background programs showing in the lower right icon tray.  I've tried the "switching user" option, but it only shows my HP-Owner ID.

[Hoov]

Does your computer have an AMD processor?