Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't tell if Malware or hardware related issues?


  • This topic is locked This topic is locked
12 replies to this topic

#1 DanonGorf

DanonGorf

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 04 April 2015 - 03:43 PM

I keep getting a BSOD and computer will restart by itself.

I don't know if this is the cause of hardware problems or malware. 

Will post whatever logs that are needed.



BC AdBot (Login to Remove)

 


#2 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 04 April 2015 - 06:48 PM

Hello and welcome to Bleeping Computer.

Please run the following:

Please download the appropriate version of Farbar Recovery Scan Tool (FRST.exe) from here:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ (for 32bit systems)
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ (for 64bit systems)
save it to your desktop.
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#3 DanonGorf

DanonGorf
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 05 April 2015 - 02:26 AM

Salutations CatBytes. 

Thank you for assisting me.

Here are the logs.

Attached Files



#4 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 05 April 2015 - 10:25 AM

no obvious signs of the cause in those logs, when did this behaviour start?

Was anything done to the PC prior to this occurring?

Have you tried restoring to a restore point prior to this occurring?

Try this:

Please download Windows Repair (all in one) from http://www.tweaking.com/files/setups/tweaking.com_windows_repair_aio_setup.exe

Install the program then run the following steps:

Go to step 3 and allow it to run the Disk check (this will check for any bad sectors)

Once that is done then go to step 4 and allow it to run the SFC (system file checker)

NEXT, on the "REPAIRS" tab => Click the "Open Repairs" Button

Click the "select all" check box and then click on "Start Repairs".

Please DON'T use the computer while each scan is in progress.

A restart may be needed to finish the repair procedure.

 

Let me know how it behaves after the repair.


Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#5 DanonGorf

DanonGorf
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 06 April 2015 - 10:13 AM

It has not Blue screened yet seems to be running ok but will that log tell you if I have any Viruses/Malware/RAT etc from that log alone?



#6 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 06 April 2015 - 11:05 AM

the log covers most things, yes

 

Were you able to run the Windows Repair tool?

 

Please run the following

 

 

Please run a free online scan with the ESET Online Scanner

 

US Link: http://www.eset.com/us/online-scanner/

EU Link: http://www.eset.eu/online-scanner/

 

Windows Vista/Windows 7/Windows 8 users will need to right click on their Internet Explorer shortcut, and select Run as Administrator

  • Note: For browsers other than Internet Explorer, you will be prompted to download and install esetsmartinstaller_enu.exe. Click on the link and save the file to a convenient location. Double click on it to install and a new window will open. Follow the prompts.
  • Turn off the real time scanner of any existing antivirus program while performing the online scan.
  • Click the blue Run ESET Online Scanner button
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the program to install the "OnlineScanner.cab" activex control by clicking the Install button
  • Once the activex control is installed, on the next screen click on Enable detection of potentially unwanted applications
  • Click on Advanced Settings
  • Make sure that the option Remove found threats is unticked.
  • Ensure these options are ticked
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start
  • Wait for the scan to finish
  • When the scan is done, if it shows a screen that says "Threats found!", then click "List of found threats", and then click "Export to text file..."
  • Save that text file on your desktop. Attach the log as a reply to your next reply..
  • Close the ESET online scan, and let me know how things are now.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#7 DanonGorf

DanonGorf
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 06 April 2015 - 02:56 PM

I have already done the Eset scan before I came to the forums but I ticked the remove found threats checked.

The Eset scanner found 1 threat in the scan called "Win32/Somoto.Q"

Do you know what that could be?


Edited by DanonGorf, 06 April 2015 - 02:56 PM.


#8 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 06 April 2015 - 08:18 PM

Somoto is adware, it's known for bundling 3rd party adwares into legitimate installers.

 

How is the PC running now, are there any outstanding issues?


Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#9 DanonGorf

DanonGorf
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 07 April 2015 - 12:11 PM

Seems to be running fine now. 

There is no more blue screen or crashing or restarting by itself anymore which is a good sign.

Thanks for helping me and I guess were all clean and done?



#10 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 07 April 2015 - 12:24 PM

that's good to hear.

 

You can right click the FRSt logs and program and uninstall the ESET definitions and Windows Repair tool then you should be good to go.

 

All the best

 

~CB


Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#11 DanonGorf

DanonGorf
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:02 PM

Posted 07 April 2015 - 02:42 PM

Thanks again CatByte.



#12 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 07 April 2015 - 04:28 PM

you are welcome

 

stay safe :hello:

 

~CB


Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#13 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:02 PM

Posted 07 April 2015 - 04:28 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users