Blue Screening, Cause Unknown, Several Issues

Discussion in 'Malware Help (A Specialist Will Reply)' started by Rightfulstone, Feb 1, 2015.

  1. Rightfulstone

    Rightfulstone Private E-2

    A few weeks ago I started to experience video card freezes that would be so severe it required restart of the computer. I bring this up in case it's relevant to anything. The main problem I would say started about 2 weeks ago when I had my first blue screen crash, taking note of this issue I ran all scans that I had on my computer and came up with nothing so continued to use computer normally chalking it up to a hiccup. This problem has now happened nearly every time the computer is in use (when it goes into sleep mode I guess??) I'm usually not at my computer when this happens but come back to see that it's happened. Recently (last 4 days) when restarting computer I have find odd ways to get into windows due to monitor, like, shutting off? It's odd to explain whats happening during boot, I start up the computer get the nifty boot options etc windows logo and loading pops and then mouse, keyboard and monitors all shut off as if they're not connected to anything. When going to recovery options to restore the windows to earlier version this worked once, and then the same day it crashed again, but while trying to select my backup keyboard gets disconnected. I'm honestly not sure where this problem actually fits in. I'm 90% sure that my video card was freezing due to power overheating, but who knows these days with bugs. I know this is rather vague, but I've never quite had this problem before, or heard of it, so not sure how to explain it properly so that it's 100% understood. Also I'm in SafeMode with networking as it seems to be stable enough for me to stay on here so far and I don't have to find creative ways to get back into windows.
     

    Attached Files:

    Rightfulstone, Feb 1, 2015
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your issues are not caused by malware. ( You can rerun Hitman and have it remove what it found )> I suggest you post in the software forum for further assistance.

    Since you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. If you are running Win 8, Win 7, Vista, Windows XP or Windows ME, do the below to flush restore points:
      • Refer to the instructions for your WIndows version in this link: Disable And Enable System Restore
      • What we want you to do is to first disable System Restore to flush restore points some of which could be infected.
      • Then we want you to Enable System Restore to create a new clean Restore Point.

    8. After doing the above, you should work thru the below link:

     
    TimW, Feb 1, 2015
    #2
  3. Rightfulstone

    Rightfulstone Private E-2

    Does it matter that I msconfig and turned all programs off before doing a clean boot into safemode with networking for detecting any problems? Nothing has been changed with components etc. yet when I try to do a system restore that i have saved it worked the first time but then was corrupt the second time. Just want to make sure I mention the msconfig boot since I think I forgot it in the initial post. Thank you for your time.
     
    Rightfulstone, Feb 1, 2015
    #3
  4. Rightfulstone

    Rightfulstone Private E-2

    I can't delete any programs using Hitmanpro due to me having to use this forum last year about a pretty nasty trojan. What should I do to get rid of this stuff?
     
    Rightfulstone, Feb 1, 2015
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    MSCONFIG is only for troubleshooting. You should use it just for that and run in normal mode if possible.
     
    TimW, Feb 1, 2015
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Download OTM by Old Timer and save it to your Desktop.




    Code:
    :Processes
explorer.exe

:files
C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Web Data

:reg
[-HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FileParade bundle uninstaller]
[-HKU\S-1-5-21-440274644-2067919533-1635811132-1001\Software\Conduit]
[-HKU\S-1-5-21-440274644-2067919533-1635811132-1001\Software\Condut]
[-HKU\S-1-5-21-440274644-2067919533-1635811132-1001\Software\IM]

:Commands
[purity]
[ResetHosts]
[emptytemp]
[start explorer]
[Reboot]

    • Return to OTM, right click in the Paste List of Files/Folders to Move window (under the yellow bar) and choose Paste.
    • Push the large http://farm3.static.flickr.com/2782/4174320048_f01c448b32_o.png button.
    • OTM may ask to reboot the machine. Please do so if asked.
    • Copy everything in the Results window (under the green bar), and paste it in your next reply.


    Now navigate to the C:\_OTM\MovedFiles folder ( assuming your Windows drive is C). This is where your log will be saved in the form of Date and Time mmddyyyy_hhmmss.log. Just look for the most recent .log file. Attach this log file to your next message.

    Reboot and rerun HItman and attach that new log as well.
     
    TimW, Feb 1, 2015
    #6
  7. Rightfulstone

    Rightfulstone Private E-2

    So would you like me to run all new logs while in normal mode?
     
    Rightfulstone, Feb 1, 2015
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Just rerun RogueKiller and attach it along with the OTM and Hitman logs.
     
    TimW, Feb 1, 2015
    #8
  9. Rightfulstone

    Rightfulstone Private E-2

    Here are the new scans.
     

    Attached Files:

    Rightfulstone, Feb 1, 2015
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Let's try doing this: (This will take some time to run )

    Download Windows Repair by Tweaking.com and unzip the contents into a newly created folder on your desktop.

    • Now run Repair_Windows.exe by double clicking on it ( if you are running Vista or Win 7, use right click and select Run As Administrator)
    • Now select the Start Repairs tab.
    • The click the Start button.
    • Create a System Restore point if prompted.
    • On the next screen, click the Unselect All button to first deselect all repairs.
    • Now select the following repair options:
      • Reset Registry Permissions
      • Reset File Permissions
      • Register System Files
      • Repair WMI
      • Repair Windows Firewall
      • Remove Policies Set By Infections
      • Repair Winsock & DNS Cache
      • Repair Proxy Settings
      • Repair Windows Updates
      • Set Windows Services To Default Startup

    • Now on the lower right side check the box to Restart/Shutdown System When Finished
    • Then make sure the Restart System radio button is enabled.
    • Shutdown any other programs that you are running now before continuing.
    • Now click the Start button.
    • Be patient while the tool repairs the selected items.
    • It should reboot automatically when finished.
     
    TimW, Feb 1, 2015
    #10
  11. Rightfulstone

    Rightfulstone Private E-2

    I've completed the repair tool and restarted. I'm not sure if there's a log somewhere?
     

    Attached Files:

    Rightfulstone, Feb 1, 2015
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Glad that you could complete it. How are things running now?
     
    TimW, Feb 1, 2015
    #12
  13. Rightfulstone

    Rightfulstone Private E-2

    It's hard to say since the problem was ocurring when the system would sleep and would randomly (at least what seemed random) would cause a blue screen. I don't think I've ever been at the computer when it happened. When it did start bluescreening it would also start blocking me to even start windows normally (that seems to be fixed) as my keyboard and mouse + monitor are not becoming unresponsive on boot-up. Is there any stress I could put on this system to force a problem out? Sounds kind of stupid, I guess we could just wait. Do you think I need to still talk to the software forum about the issue of prevention from loading windows?
     
    Rightfulstone, Feb 1, 2015
    #13
  14. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Sit tight and wait for the issue to re-occur. Then post in the software forum if it does.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Renable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. If you are running Win 8, Win 7, Vista, Windows XP or Windows ME, do the below to flush restore points:
      • Refer to the instructions for your WIndows version in this link: Disable And Enable System Restore
      • What we want you to do is to first disable System Restore to flush restore points some of which could be infected.
      • Then we want you to Enable System Restore to create a new clean Restore Point.

    8. After doing the above, you should work thru the below link:

     
    TimW, Feb 1, 2015
    #14
  15. Rightfulstone

    Rightfulstone Private E-2

    Alright will do, thanks for your time and help with fixing what we could find. I appreciate it.
     
    Rightfulstone, Feb 1, 2015
    #15
  16. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You're welcome. ;)
     
    TimW, Feb 1, 2015
    #16

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds