Need Help

Discussion in 'malware problems & news' started by Rico, Feb 23, 2013.

Thread Status:
Not open for further replies.
  1. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Malware shutsdown computer:

    Eset on line scan finds 0

    Emsisoft Emergency Scanner (updated) finds 0

    Attempt to update AdobeReader > system turns OFF

    <restart> Adobe reader gone, folder, mntion in add/remove gone

    <reboot> try to install reader > computer tries then shutsdown

    Try MBAM full scan > runs a little then SHUTdown

    <reboot> TDSSkiller 0 found

    MBAM full scan > runs some then shutdown

    TDSSkiller,Rougekiller Tigzy,HMP 0 found

    HJT nothing unusual

    Combofix > shutsdown

    Rkill > combofix completes <reboot>

    Avira rescue boot disc 0 found

    MBAM full scan >shutdown

    Download 2/23/13 dr web cureit >enhanced mode > system shutdown, does not complete.

    As usual no backub, no disc.

    Any ideas or strategies?

    Thanks
    Rico
     
  2. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Just a Guess but it sounds like a bad memory module to me.If you have a recovery partition you can boot into and reinstall windows from scratch that will take care of malware.However I don't think its malware but more of a hardware ram issue.

    If you can access your ram easily you can remove one stick at a time to see if that corrects the issue and If it does then its a matter of a Bad stick or Bad memory Slot.
     
    Last edited: Feb 23, 2013
  3. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Hi Dark Shadow,

    Not in my first post.

    System very quick 2mb RAM, XP Pro, many orphans dealt with by chkdsk c: /r

    _______________

    System seemed fast & responsive. EMSI & ESET found 0. All other scans would shutdown system. see post #1.

    NOTE: rkill > combofix > reboot > avira boot disc > normal windows > mbam would not complete & shutdown.

    <reboot> msconfig diagnostic restatrt > failed windows start > failed all safe modes > avira rescue scan in process.

    Note: out of sequence here, I tried Safe Mode with command prompt & entered... rstrui.exe got unrecognized command.
    --------------------------

    Avira rescue comleted, just visible screen, the avira scan normal screen readability.

    Since diagnostic startup, not able to enter windwos
     
  4. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    4,215
    Last edited: Feb 23, 2013
  5. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    5,828
    Location:
    Last Breath Farm
  6. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    it could simple be those hd errors causing system crash
     
  7. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Hi Guys,

    The last thing i did in windows, was:

    msconfig > ticked diagnostic startup <reboot>

    All safe modes, result in shutdown, before getting to SM

    normal boot, gives faint screen (like laptop monitor light burned out) the faint msg says middlw of screen "Windows" lower right "Microsoft", it will sit at this screen forever & not advance.

    Avira rescue runs fin zero found

    F8 last known good, = faint screen.
    ______________________________

    Next

    1. repair install xp (hope they have a disk.
    2. format
    ______________________________

    Afterthought:
    iran very good, but several times, the laptops keyboard would stop working, reboot & keyboard back to normal. During no keyboard only the mouse (USB) would work. Dev Mgr. showed no errors.
    ______________________________

    Can it be doneo_O? System restore (rstrui.exe)
    from "Ultimate Boot Disc for Win?"

    Thanks
    Rico
     
  8. mick92z

    mick92z Registered Member

    Joined:
    Apr 27, 2007
    Posts:
    499
    Location:
    Nottingham
  9. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Update:

    Finished repair install XP pro. Success! Kind of instead of going to desktop, opening screen (prior to desktop) hung. Reboot then desktop.


    I found my old memtest86 ver. 1.65 ran that aborted at test #7.
    Now running new version: memtest86 4.1 So far no errors.


    Thanks
    Rico
     
  10. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Two passes memtest86 v4.1 - no errors

    Exit boot to windows faint screen, hung at logo screen. I noticed the usb mouse, did not show the usual redish light. Two more restarts end the same.

    Removed laptop battery, waited, re-insert. Normal boot (probably did not need to do repair install), next MBAR & GMER

    Rico
     
  11. gambla

    gambla Registered Member

    Joined:
    Sep 4, 2007
    Posts:
    161
    Location:
    Frankfurt, Germany
    yes, this or memory would be my bet, doesn't really look like malware
    good luck
     
  12. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,871
    Your computer will shutdown automatically if it is overheating.Maybe you should check your power management settings.
     
  13. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,694
    Location:
    Texas
    Update:

    Panda Cloud during the previous troubles quarantined 7 virus. Now that things have settled down:

    Panda caught a TR.
    MBAR - found 0
    MBAM - still scanning

    Chkdsk Fragments - deleted CCleaner
    memory seems fine
    Removing the battery seems to have helped, does not sem to be a tight fit, or a little wiggle room for it.
    _____________________

    I was thinking about the heat issue, I'll try "Speedfan" what temp. would be close to causing shutdown?
     
Loading...
Thread Status:
Not open for further replies.