| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 95943 | 2008-12-22 06:26:00 | Browser lock up problem | Paul Camford (10007) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 731781 | 2008-12-23 08:07:00 | OK, so my previous post posted ! When I hit the send button my whole system locked up including my cursor Gary, IT is AVG Anti Spyware, not virus, only virus checker is Avast,updated every day When I checked Event Viewer a error message showed up multiple times including the last crash Each message mentions the same driver Relevant ? Log Name: System Source: Microsoft-Windows-Windows Defender Date: 23/12/2008 8:49:09 p.m. Event ID: 3004 Task Category: None Level: Warning Keywords: Classic User: N/A Computer: Paul-PC Description: Windows Defender Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. Windows Defender can't undo changes that you allow. For more information please see the following: Not Applicable Scan ID: {8B71D666-2422-4AD8-A004-DD8099B84233} User: Paul-PC\Paul Name: Unknown ID: Severity ID: Category ID: Path Found: driver:mchInjDrv Alert Type: Unclassified software Detection Type: Event Xml: <Event xmlns="schemas.microsoft.com <System> <Provider Name="Microsoft-Windows-Windows Defender" Guid="{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}" EventSourceName="WinDefend" /> <EventID Qualifiers="0">3004</EventID> <Version>0</Version> <Level>3</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2008-12-23T07:49:09.000Z" /> <EventRecordID>91190</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>System</Channel> <Computer>Paul-PC</Computer> <Security /> </System> <EventData> <Data Name="Product Name">%%827 </Data> <Data Name="Product Version">1.1.1600.0 </Data> <Data Name="Scan ID">{8B71D666-2422-4AD8-A004-DD8099B84233} </Data> <Data Name="Unused"> </Data> <Data Name="Unused"> </Data> <Data Name="Unused"> </Data> <Data Name="Unused"> </Data> <Data Name="Domain">Paul-PC </Data> <Data Name="User">Paul </Data> <Data Name="SID">S-1-5-21-2920718839-1708312423-4026617577-1000 </Data> <Data Name="Threat Name">Unknown </Data> <Data Name="Threat Id"> </Data> <Data Name="Threat Severity"> </Data> <Data Name="Threat Category"> </Data> <Data Name="FWLink">%%832 </Data> <Data Name="Path Found">driver:mchInjDrv </Data> <Data Name="Threat Classification Index">0 </Data> <Data Name="Threat Classification">%%807 </Data> <Data Name="Unused"> </Data> <Data Name="Unused"> </Data> <Data Name="Detection Type Index"> </Data> <Data Name="Detection Type"> </Data> </EventData> </Event> |
Paul Camford (10007) | ||
| 731782 | 2008-12-23 08:42:00 | looks like Windows Defender is spitting the dummy - it doesn't like something, disable it, its hopeless anyway - the other antispyware programs work 100% better and will detect items Defender misses completely. Disable Windows Defender: Click Start, In the search box type in msconfig, In the search results click it when it appears, under the startup tab, untick Windows Defender - apply, and reboot - this will stop Windows Defender starting on boot up - see if the PC locks up.Slightly different (www.simplehelp.net) version as to what I wrote above - same result though. OR you can try this article (lifehacker.com) - cant confirm it currently as I'm not in front of Vista. EDITED: regarding Sols suggestion of malware - could be BUT this is an older thread but read posts 58 & 67 Here (www.wilderssecurity.com) |
wainuitech (129) | ||
| 731783 | 2008-12-23 08:44:00 | I think you are over doing the anti viral \ malware protection a tad Paul. You are either very paranoid or browsing to some infamous sites buddy..... Your error message could be related to thisl (www.file.net) which suggests malware?....you bad boy!...LOL. Try a boot to safe mode, run a thorough scan of malware bytes until you are sure the program doesnt reappear.... While I would suggest a more conservative approach to anti viral protection, it doesnt work for everybody, but perhaps regular, thorough scans as a preemptive measure as apposed to multiple on-line shields! |
SolMiester (139) | ||
| 731784 | 2008-12-23 09:06:00 | Add to above mchInjDrv is used by PC tools and ( from the PC tools web site forum) mchInjDrv.sys is a 3rd-party driver that ThreatFire uses to inject DLLs into host processes to monitor their actions. Thats the file that Windows defender is spitting the dummy over. You have the applications as mentioned earlier. User: Paul-PC\Paul Name: Unknown ID: Severity ID: Category ID: Path Found: driver:mchInjDrv Alert Type: Unclassified software Detection Type: Event Xml: X2 to sol's comment about the antispyware - you really dont need AVG Ant Spyware,Treatfire,WinPatrol - the ones mentioned before those are enough usually - you can have to much of a good thing :) |
wainuitech (129) | ||
| 731785 | 2008-12-27 06:00:00 | Now that I have time to play on the computer again, latest update I have disabled all security's programs except for Avast,Zone Alarm and WinPatrol Unstalled Flash again and replaced with a earlier version I have found that last night and today that I can maintain stable browser use by sticking with Chrome instead of swapping between Firefox 3 and Chrome Still don't know what was causing the problem but now that I have it stable I will start slowly start turning things back on again and see at what stage it becomes unstable |
Paul Camford (10007) | ||
| 731786 | 2009-01-11 13:27:00 | This problem is not unique to you. i have been trying to find some info on it for ages & would love some expert help. It's happened to me and two others i know of. All have Vista. all have firefox. happens only in vista NOT XP. have switched to chrome after firefox problems and now happens with that...and, the lockup has extended to some other online programs as well. EG anonymyser and reget. however the only common element with all users is Vista (and browsers) and you can't even kill the process in process explorer or Task manager hense the need to reboot. Any experts got idea's. |
jtester (9712) | ||
| 731787 | 2009-01-11 19:09:00 | Sound a bit like my problem described here (forums.pcworld.co.nz). I also have Firefox as my default browser, but have Chrome installed also - but don't use it a lot. Just downloaded the latest build of Chrome, so will see what happens over the next few days.... |
johcar (6283) | ||
| 731788 | 2009-01-12 07:00:00 | I had the same problem with FF3, using Avast & Zone Alarm. Removed them both and installed Commodo Security. No problems since. | mzee (3324) | ||
| 1 2 | |||||