Pc Locking up in normal mode but fine in safe mode

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by saggy9999, Apr 15, 2013.

  1. saggy9999

    saggy9999 Private E-2

    Everything was fine until yesterday morning when my PC locked up and was
    forced to do a hard reset with power button. restarted and worked for around 5 mins before doing same, this happened 3 or 4 times before finally
    got a blue screen with error 124 ?
    Seemed to only lock up when I started a browser either IE9 or Chrome, Ran Malwarebytes it found some stuff but seems to freeze before completing removal. Ran CCcleaner, Ran Spybot S&D, ran avg scan, deleted and reinstalled graphics card drivers as I noticed windows had updated during the night, opened up and hoovered out all dust around fans. downloaded speedfan to check temps, GPU was 62degrees rest were all around 35.
    everything works in safe mode with networking, no lock ups, can use any browser fine. this makes me think it must be driver/software/malware/virus related ?
    downloaded Hitman in safe mode and ran it, removed a fair bit but still no fix.
    did a hard disk defrag, no joy,
    System is an Advent, running Vista Home Premium, Service Pack 2, Intel Core 2 quad cpu @2.40GHz 2.00GB RAM, 32bit system
    Typing all this in safe mode, can boot and run most things in normal mode but starting any browser is sure to lock it up ??
    As a photographer I am lost without my workhorse desktop machine

    hopefully included all I know just now

    Andy
     
    Last edited: Apr 15, 2013
    saggy9999, Apr 15, 2013
    #1
  2. saggy9999

    saggy9999 Private E-2

    RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
    mail : tigzyRK<at>gmail<dot>com
    Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
    Website : http://tigzy.geekstogo.com/roguekiller.php
    Blog : http://tigzyrk.blogspot.com/

    Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
    Started in : Normal mode
    User : Andrew [Admin rights]
    Mode : Scan -- Date : 04/16/2013 00:03:05
    | ARK || FAK || MBR |

    ¤¤¤ Bad processes : 0 ¤¤¤

    ¤¤¤ Registry Entries : 1 ¤¤¤
    [TASK][SUSP PATH] RunAsStdUser Task : "C:\Users\Andrew\AppData\Local\gameflakeSA\bin\1.0.10.0\GameFlakeSA.exe" [x] -> FOUND

    ¤¤¤ Particular Files / Folders: ¤¤¤

    ¤¤¤ Driver : [LOADED] ¤¤¤

    ¤¤¤ Extern Hives: ¤¤¤
    -> F:\windows\system32\config\SOFTWARE
    -> F:\windows\system32\config\SYSTEM
    -> F:\Users\AW\NTUSER.DAT
    -> F:\Users\Default\NTUSER.DAT
    -> F:\Users\Mcx1\NTUSER.DAT
    -> F:\Users\Mcx2\NTUSER.DAT

    ¤¤¤ HOSTS File: ¤¤¤
    --> C:\Windows\system32\drivers\etc\hosts

    127.0.0.1 localhost
    ::1 localhost
    127.0.0.1 activate.adobe.com


    ¤¤¤ MBR Check: ¤¤¤

    +++++ PhysicalDrive0: Hitachi HDT725032VLA360 ATA Device +++++
    --- User ---
    [MBR] 00c7f93d1eaf97744ceab3209a93e38c
    [BSP] 440213241063d1b64c1e2b52c0453d88 : Windows Vista MBR Code
    Partition table:
    0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 5500 Mo
    1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 11266048 | Size: 1500 Mo
    2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 14338048 | Size: 298243 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    +++++ PhysicalDrive1: SAMSUNG HD161GJ ATA Device +++++
    --- User ---
    [MBR] c82d35119129fa89322ab6c1dfedfa32
    [BSP] 0e4a5108280bf95c6f180010a2fbd6e7 : Windows Vista MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 152625 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    Finished : << RKreport[3]_S_04162013_02d0003.txt >>
    RKreport[1]_S_04152013_02d2350.txt ; RKreport[2]_D_04152013_02d2351.txt ; RKreport[3]_S_04162013_02d0003.txt
     
    saggy9999, Apr 15, 2013
    #2
  3. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Welcome to the Malware Removal Forum.

    Please read ALL of this message including the notes before doing anything.

    Pleases follow the instructions in the below link:

    READ & RUN ME FIRST. Malware Removal Guide


    and attach the requested logs when you finish these instructions.
    • **** If something does not run, write down the info to explain to us later but keep on going. ****
    • Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

    • After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
    Helpful Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
    3. If you cannot seem to login to an infected user account, try using a different user account (if you have one) in either normal or safe boot mode and running only SUPERAntiSpyware and Malwarebytes while logged into this other user account. Then reboot and see if you can log into the problem user account. If you can then run SUPERAntiSpyware, Malwarebytes, ComboFix and MGtools on the infected account as requested in the instructions.
    4. To avoid additional delay in getting a response, it is strongly advised that after completing the READ & RUN ME you also read this sticky:
    Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.
     
    Kestrel13!, Apr 16, 2013
    #3
  4. saggy9999

    saggy9999 Private E-2

    thanks for the reply
    after running umpteen more tests today and all coming up clean now
    I seem to have discovered the
    problem is graphics related.
    set my display to windows basic mode and its running fine
    looks like either graphics card or drivers

    will go post in hardware

    again thanks for the reply
     
    saggy9999, Apr 16, 2013
    #4
  5. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Glad you got it resolved. :)
     
    Kestrel13!, Apr 18, 2013
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds