Solved BSOD-web browsing, downloading Adobe reader+Javascript update

[funnytoast]

Hey there,

First time user of this forum, but I am glad this place exists and people like you volunteer.

The first legitimate blue screen happened. I downloaded some updates and did some casual web browsing when something that may very well be a virus took over Firefox. Instead of telling you a story i'll leave some bullet points of information.

• Clicking links on google results redirects to random fake tube sites with Emma Watson and weird shopping sites.
• Employed a system restore to a previous date
• System restore removed a Microsoft Essentials Update which rendered mouse and keyboard useless
• Able to restore to current date and retain keyboard function
• Computer fine in Safe Mode
• In regular mode, BSOD within 2-5 minutes.

The BSOD have various numbers that are different each time it happens, but this is an earlier notification.

0x0000008e (0x0000005, 0x83798487, 0x89FEB754, 0x00000000)

ataport.sys address 83798487 base at 83792000 datastamp 4ce788e8

a couple times after...

0x0000008E (0x00000005, 0x837c1487, 0xAEBDB754, 0x00000000)

ataport.sys address 837c1487 base at 837BB000 same datastamp



I have run the sevenforum.exe and posted it. I want to try running virus scans soon and get a hijackthis log for someone to read.

This is all happening on another computer because internet use on the affected laptop is possible but the amount of time on it is limited until a BSOD occurs.

I am sure I have left information out, so please ask and I can attempt to provide it.

THANK YOU.

I was about to start looking for another laptop, hopefully I don't have to spend money.

I APPRECIATE the help.

 

[funnytoast]

Physical Problem

I was reading about how BDOS problems are mostly related to ram and memory and recommend to actually clean the computer. Do any of you recommend this action at the moment?

Thanks

 

[Everlong]

Could you post a minidump file as well please?

 

[funnytoast]

minidump

Is there another way to provide a minidump file besides the diagnostics tool.

I tried running the tool on the affected laptop in safe mode but it came up empty, so it did not create a file.

I'm not that technical and don't really know what a dump is. Is it affected by the timing of the BSOD? I also shifted some settings in system controls. I played with the complete and partial dump and kernal dumps. Which is something I don't think I should have done, in retrospect.

 

[Everlong]

In C:\Windows you should have a Minidump folder from the BSOD.

If minidumps aren't being created, then they'll need to be enabled:

-Right click on Computer
-Advanced System Settings
-Startup and Recovery Settings
-Write debugging information
-Set it to Small Memory Dump
-Click OK

Sit tight and wait for another BSOD and a dump file should be in C:/Windows/Minidump. If this folder doesn't exist, then you need to make a Minidump folder in C:/Windows

 

[funnytoast]

Ok, working on it as we speak.

Is it possible for the BOSD to be activated by an online virus. I want to run virus scans, but I can't update libraries or they are never complete before I run into a failure. It feels like i'm trapped.

You'll get the minidump soon. hopefully.

 

[Everlong]

You'd need the virus on your computer for it to be the cause. You can get in to safe mode and do virus scans, malwarebytes and hijackthis from in there.

Though I don't think it's a virus. From looking at your EventLog, you're getting a hell of a lot of errors during paging operations.

 

[Layback Bear]

I don't recommend using hijacthis. It does sound like a infection. A virus can do many thing and sometime more than one thing at a time. Remove your anti virus program and install MSE and update it if the virus will let that happen. (If you can't download use Windows Defender Off Line.)) Run a full scan. Report back what it found and removed. Install MAM up date it and do a complete scan, Report what was found and removed. If you are still having problems use Windows Defender Offline.

Microsoft Security Essentials - Free Antivirus for Windows

Malwarebytes

http://www.sevenforums.com/tutorials/166445-windows-defender-offline.html
------------------------------------------
Fill in completely ((My System Specs)) That will help us help you.
This will help you there.
http://www.piriform.com/speccy

 

[funnytoast]

Everlong- I just might be inept, but I cannot find the minidump file. I've made the required change to "small dump" in the advanced system settings to create a log in the C:\Windows\Minidump folder. In the settings the file destination read something like %system roots%, which is apparently the same, but I changed it to C:\Windows. Still no luck. Just and empty folder. I tried again using the diagnostics. It copied something, but I guess it was just my empty folder that I created.

Layback Bear- I will try to use the Offline Defender. I can use my computer and get online, but the time is so short the laptop is pretty much useless for anything besides disappointment. So, after I finish typing this message up (im on another computer), I will download the program on an external and use it on the other laptop in safe mode and report back.

Thank you both for offering your continued assistance. Not only do I have great appreciation for what you are doing, I greatly appreciate computers and all the shtuff that goes into them.

 

[Everlong]

Sorry I should have said, reboot your computer for it to take effect then one should be dumped at the next BSOD. Though if you had a BSOD then your PC would have restarted technically, so just wait for another one, lol.

 

[Layback Bear]

Defender off line is a good choice. My way of thinking; you can't fix much of anything on a computer if is infected.

 

[funnytoast]

TIME runs so slow

Everlong- My computer has failed more times than I can recall since I've tried to collect minidump data. It should be a simple process, correct? BSOD and then restart, then the files should be in the folder. They aren't unfortunately. It's always empty. I wish I could retrieve them. It seems like really relevant and helpful information to solve my problem.

Layback Bear- I will run Windows Defender Offline right now. If you are interested in a short story. I had no USB drive, so I had to drive around and pick up a San Disk and come back home to a working computer that runs Linux. So I had to wait hours for a computer with windows so I could finally do this thing. So, heres to a virus scan wait and hopefully some more information to help us.

 

[funnytoast]

If you're still interested. I finally got around to running Windows Defender. After threats hours it detected 4 threats. My terrible memory betrays me, but the 3 I remember were a Trojan of some kind in addition to 2 forms of a java virus. So that thing I downloaded that I thought was legitimate may have in fact been malicious.

I am now rebooting and hoping to get a stable enough connection to DL Malwarebytes, run it and upload a log. Thanks

 

[Layback Bear]

We are always interested in helping others when we can. You have sure went the extra mile and I thank you for that. I would remove all Java. That will take a while because it is stuck in all kinds of places. Many don't even have or use Java any more. I have no Java on my computers and the programs I use don't need it. It varies from user to user. Some infected websites will have popup's that state, you need to update Java or Flash. Close them out using Task Manager, DO NOT click any place on them.
Next I would do is run a complete updated scan with MSE and MAM and let us know how it goes.
When we get you all cleaned up I will give you a list of security programs that work for me. Simple to use and don't use up a lot of resources. Lets get you back to happy computing.

 

[funnytoast]

After my last post, I rebooted in normal mode hoping for regular function, but unfortunately BSOD still occur. If its worth mentioning I have uninstalled and reinstalled MAM in what seems to be a race, since I only have a few minutes of Internet connection and computer usage before I am blocked out. MAM is downloaded in regular mode and updated, but when it is run, it encounters problems and cannot scan.

I figure that I am done with Windows Defender Offline at the moment, but the only usable scans at my disposal is MSE with definitions 4 days too old. One interesting fact though, BSOD comes up relatively quickly when updating definitions of MSE. It appears to me that the virus or whatever I have recognizes what I am attempting to do.

Right now, I am looking at my Programs and Features trying to uninstall Java. It won't let me uninstall it because it states Windows installer is not correctly installed. I was able to test and uninstall another program, I tried another random program and it would not uninstall. It appears random, but there is something to this. Is there anything you can recommend right now to remove Java?

So as it stands, scans with MSE or MAM appear not to be possible without Internet to update. I want to know my options for eliminating Java.

Frustrating, but I have no other choice.

Thanks again.

 

[Layback Bear]

Many viruses will stop you from download security programs for help. Try it in safe mode. Safe mode also uses fewer drivers that also might help. No one program finds everything. Thinking back I think I use REVO to remove Java (Sun Mirco Systems). I don't remember if I found Java in Add and Remove. If you have Ccleaner you can also use it from the Tool section. First lets see if MAM and MSE will run in Safe Mode.
Just a little cheer you up. Quiet a while back I click on one of those popups.
You need to update Flash to view this. It dropped 3 Trojans on my ass in a heart beat and it took me a weekend to clean things up.

 

[funnytoast]

Ha. I guess we all get had in some way. If it isn't an email asking for money, it is an innocent looking computer update.

Malwarebytes doesn't want to run in safe mode, after I freshly installed it and updated definitions. It encounters problems in safe mode. I ran it in regular mode for kicks, it encounters the same problem. I can give you the exact message if you want, next time I run it. Before bed, I ran MSE in safe mode. It found nothing, but the last update was 4 days ago.

Right now I am scanning again with Windows Defender Offline. It takes about 2-3 hours for me, so that is where I am at.

I don't know if you want me to update you every time I plan on doing something and take it step by step, but after the scan I plan on rebooting in safe mode and run CCleaner. I will download REVO on my external or thumb drive and execute that. Hopefully I don't need internet to implement REVO.

thanks again for your patience.

 

[Everlong]

If you boot in to safe mode with networking, you can download the latest MSE definitions here Install the latest Microsoft Security Essentials definition updates - Get the latest definitions - Microsoft Malware Protection Center and then scan with MSE.

 

[funnytoast]

GREAT. I will try running safe mode with networking. If I remember, I get a BSOD in that setting, but if I do get it to work with networking would it be alright to try updating straight from MSE. I'm running Defender Offline at the moment, but I am reading and preparing myself for downloading and installing the update manually. Step 3 is slightly confusing. If I understand I download and run the MPAM execution and then the NIS execution?

Hopefully SafeMode w/network works.

Thank you for the info, Everlong.

 

[Layback Bear]

Sorry funnytoast that's my fault for not mentioning with networking. Any information you can gives us might help. If you can in some way inform us of what Trojans or what ever are found that will give us guidance. Example; some things like rootkits are so nasty that a wipe and clean install would be my recommendation. No fear we have Tutorials and experts here that can guide you through that if need be.