Blue Screen when connecting to internet

Hi.

I dont remember windows 2000 very much since been using XP for a while now. But if you right click on My Computer and select Properties.Under the Advanced tab, you should see Startup and Recovery and if you cick on settings, one of the tick boxes in this screen should allow you to stop your computer from automatically rebooting on a system failure.

Once you have done the above, try connecting the DSL cable and record and post the error you get when it does a BSOD.

I would also suggest downloading and running superantispyware from www.superantispyware.com. This will clean alot of your malware/spyware

I disabled the rebooting, and got the following on the blue screen:
STOP: 0x0000001E, (0xC000005, 0x00000000, 0x00000000, 0x00000000)
KMODE_EXCEPTION_NOT_HANDLED

Hi,

At this point, I could presume that your OS may be corrupted either because of the virus/worm infections or a previous installed application.  I would like to suggest that you try to use Tune-Up to ensure that your system is free from usual application problems/errors.  It is free for 30 days so I guess a one-time use wouldn't hurt.  This is just to isolate the problem. Maybe you can use another PC with Internet to download it from http://www.tune-up.com/download

I am using another PC to communicate, and will try downloading & using Tune-Up.

I ran SuperAntiSpyware, and it found and quarantined the following:

1. Rootkit.Unclassified/SysDamp-Traces (2 items in Registry)
2. Trojan.Unclassified/CRU629

I also ran Tune-Up's Disk Doctor, and it found nothing. Are there other Tune-Up tests I should run?

Mitch

sbafna74,
Here are the details of my setup:
1. Using laptop with D-Link "wired" adapoer plugged into the PCMCIA slot
2. I don't have a modem...I'm using a hard-wired network run by the apartments I live in. I run a cat-5 cable from the wall into the D-Link adaptor.
3. I'm wondering if either of the viruses I listed above is a factorof
4. For awhile, before the BSODs started, I was getting a series "You are leaving a secure...etc" messages, sometimes 6 in a row. I got these even before I visited any websites.

For Tune-Up, please use One Click Maintentance.  If you cant find it from the Tune-Up menu, it is in Program Files - Tune-Up Utilities 2008 - Utilities

You may need to rerun One Click Maintenance two or three time to remove most registry and application errors.  If it doesn't fix your problem, at least we were able to isolate further.

Just to note also, if Tune-Up's One Click Maintenance doesn't your problems, it should at least speed up a little your PC.  Also, it is now more likely of the viruses found.

You may have to use a different Anti-Virus software that can check your PC when booted to DOS or via CD ROM.  Or cascade your hard disk in another PC and have the anti-virus software of the PC check your hard disk.  This way, the virus is not running and can be removed.

If it's a rootkit problem, you have to download anti-rootkit software to clean up your PC.  Sophos, Symantec have free anti-rootkit software I think.  Or I can email it to you --- send me an email philippe7v7 at y a h o o DOT c o m.

You can also use Spybot's Search and Destroy software (one of the best antispyware without spyware) - http://www.safer-networking.org

Hi

Your computer is definetly infected. SuperAntispyware is quite good at removing malware/spyware. I recommend coupling it with AVG which is free from free.grisoft.com Make sure you update it. The virus/malware might have infected some system files and more importantly your tcpstack and your network drivers and this must be causing the BSOD because as soon as you get onto the internet, your computer starts using them and hey presto!!

Good Morning, Experts,

I'm back on it again, and will be trying your solutions. I'm afraid staying up until 5:00 am did me in, and I am getting a late start today.


Mitch

Well, I've finished running the tests, and here are the results:

1. Ran Sophos AntiR%ootkit. It found an unknown hidden file (Rifu48.sys), but recommended NOT to clean it.
2. Ran SuperAntiSpyware again, and it found nothing
3. Ran Tune-Up, and it found things that didn't appear to be related to the problem The Registry was clean.
4. Re-ran AVG 8.0 and found nothing (after 4 hours)

I'm thinking it might be the wired adaptor causing the porblem (as sbafna74 suggested). I'm going to get a replacement, and see if it helps.

FOLLOW-UP INFO:

To test whether the problem is with my wired adaptor, I set up a wireless network, and connected to the internet w/o using the adaptor. It produced the BSOD just like it did with the adaptor.

I believe I've removed all viruses & malware, but it still is not working.

NIVLESH: You said that the tcpstack & network drivers might be infected. How would you suggest I proceed?

Dear ms3930 AS I HAVE RECOMMENDED EARLIER ALSO TAKE THE BACKUP OF C DRIVE IF YOU HAVE ANY DATA ON THAT AND FORMAT THE DRIVE AND REINSTALL THE OS AGAIN AS THAT IS THE EASIEST AND FASTEST WAY TO GET BACK ON TO WORK AS IT WILL TAKE HARDLY 1 HOUR TO GET YOUR PC READY

Hi there

Here is an article from MS as to how to reset your tcp stack http://support.microsoft.com/default.aspx?scid=kb;en-us;q299357

Hi

You did not post the error you get when your system does a BSOD. Can you please post that

I'm just going to jump in here and comment that you might want to consider either adding a Router to your Apartments Network or anyone in the net work can sniff your traffic, possibly infect you with viruses they have. Or at the very least use a software firewall that prevents Incoming traffic from others on your network.  Once you get this sorted out,  of course.

Hi Experts,
Regarding the error messages I'v been getting, I've consolidated them below:
1. As soon as I connect the Internet cable to my machine, I get the BSOD. I don't even have to open IE or open a web page.
2. The message on the BSOD is:
STOP: 0x0000001e: (0xC000005,0x00000000,0x00000000,0x00000000)
KMODE_EXCEPTION_NOT HANDLED
3. The Event Log shows: Event ID = 1000. Source = PerfDisk
I have run Anti-virus tests several times, and eliminated the viruses that were there.
I also ran One-Click Tune-Up & Sophos Rootkit remover.
I eliminated my wired adaptor as the cause when I connected wirelessly & still got BSOD.
The only thing I haven't tried yet is to reinstall the OS. If y'all can't solve this any other way, I will do the reinstall.
Thanks for all your efforts,

Hi

when you get the bsod, in the line that is shown, you should see a file name as well beside KMODE_EXCEPTION_NOT HANDLED .. Can you please post this as well

There is no file name on the KMODE_EXCEPTION line. The only thing after this line is "Beginning dump of physical memory". "Dump completed".
Is there a utility I can use to track the drivers or processes being used in real time?

I tried reinstalling the OS, but no improvement. I guess I'll have to reformat and then reinstall the OS.