Reboot shortly after Startup

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Dark_Falcon, Feb 19, 2008.

  1. Dark_Falcon

    Dark_Falcon Private E-2

    I have just started having a peculiar problem on my laptop. Within a couple minutes of bootup my system is gracefully rebooting (i.e. No BSOD or ' Hard Crash' without BSOD). It does not appear to be a hardware issue (i.e. heating up or driver conflict). I have not added any new hardware so I don't think it's necessarily hardware related.

    The actual reboot seems to be taking place at the very end of the startup process. I suspect that something has infiltrated my machine and is running as one of the final processes in the startup routine. However, I have been unable to pinpoint the issue because the machine restarts before I can do any real analysis.

    Another oddity is that it appears that the 'process' does not run in Safe Mode. In Safe Mode I am able to get the machine running without the reboot.

    I have attached my combofix log and the MGLogs. I am unable to install/run the SuperAntiSpyware software in safe mode and the system won't stay up long enough in Normal mode to install and run it. Therefore, there is no log for it.

    Any assistance would be greatly appreciated.

    Thanks.
     

    Attached Files:

    Dark_Falcon, Feb 19, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    This is not a malware problem. You should post in the Software or Hardware Forum.

    Possible because you have your system set to reboot on error. Youy can disable this and maybe a BSOD will occur and you will see an error message. See this:

    http://www.microsoft.com/windowsxp/using/helpandsupport/learnmore/russel_02may13.mspx


    Maybe you did not install new hardware but what about the new software and drivers you loaded. Some may be for a Motorola USB modem?? Below is a little of what I saw in your logs:
    Code:
    2008-02-10 15:45 . 2008-02-10 15:45 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-02-10 15:45 . 2008-02-10 15:45 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_motmodem_01005.Wdf
2008-02-10 11:00 . 2008-02-10 11:00 <DIR> d-------- C:\Program Files\Common Files\Motorola Shared
2008-02-10 11:00 . 2006-11-13 14:45 1,419,232 --a------ C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-02-10 11:00 . 2008-02-10 11:00 92,064 --a------ C:\Documents and Settings\David\mqdmmdm.sys
2008-02-10 11:00 . 2008-02-10 11:00 79,328 --a------ C:\Documents and Settings\David\mqdmserd.sys
2008-02-10 11:00 . 2008-02-10 11:00 66,656 --a------ C:\Documents and Settings\David\mqdmbus.sys
2008-02-10 11:00 . 2007-02-27 14:31 21,504 --a------ C:\WINDOWS\system32\drivers\motmodem.sys
2008-02-10 11:00 . 2008-02-10 11:00 9,232 --a------ C:\Documents and Settings\David\mqdmmdfl.sys
2008-02-10 11:00 . 2008-02-10 11:00 6,208 --a------ C:\Documents and Settings\David\mqdmcmnt.sys
2008-02-10 11:00 . 2008-02-10 11:00 5,936 --a------ C:\Documents and Settings\David\mqdmwhnt.sys
2008-02-10 11:00 . 2008-02-10 11:00 4,048 --a------ C:\Documents and Settings\David\mqdmcr.sys
 
 
"C:\Documents and Settings\All Users\Desktop\"
gpsinfo.lnk   Feb 22 2006         481  "Gpsinfo.lnk"
 
"C:\WINDOWS\"
modeml~1.txt  Feb 11 2008       93606  "ModemLog_Motorola USB Modem.txt"
modeml~2.txt  Sep 13 2007       26628  "ModemLog_Motorola USB Modem #2.txt"
 
"C:\WINDOWS\system32\drivers\"
msftwd~1.wdf  Feb 10 2008           0  "MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf"
msft_k~1.wdf  Feb 10 2008           0  "Msft_Kernel_motmodem_01005.Wdf"
    Perhaps the below software items were just installed:[QUOTE]
    GPS Information
    Motorola Driver Installation
    Motorola Phone Tools[/QUOTE]

    SInce it does not happen in safe boot mode, you can use MSconfig and diagnostic startup mode and then slowly add little bits into MSconfig to load at startup and see what happens. You maybe be able to locate the problem driver. Or you could work in reverse and enable everything (i.e., normal startup) and then deselect all the drivers and things you see for your USB modem to see if that changes anything). Either way this is not a problem for the Malware Forum.
     
    chaslang, Feb 22, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds