republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » False Positive with AVG Free?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Users open holes in company networks »
« Antivirus from usb drive?  
AuthorAll Replies


caffeinator
Coming soon to a cup near you..
Premium
join:2005-01-16
Spokane, WA
·WebBand

2 edits		reply to sammysnake
Re: False Positive with AVG Free?

It's "MadCodeHook" tool from a legit company, and can/may be used by malware...but is also used by legit programs.

Found this:

»www.softwaretipsandtricks.com/da···sys.html

quote:
MchInjDrv.sys is a driver for injecting code to other processes.
Publisher is legitimate:
»madshi.net
But it is often used by malicious software.
Kill the file mchInjDrv.sys and remove mchInjDrv.sys from Windows startup.
Another thread at Kaspersky: »forum.kaspersky.com/lofiversion/···351.html

I guess it depends on what you have installed, or may have installed recently.

You could try uploading to Jotti or Virustotal for more checks.

-CaFF
--
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former." - A. Einstein

Need an Avatar? Check out Wafen's Avatar Pages
to forum · permalink · · 2007-07-16 22:44:30 · Reply to this


sammysnake
Never Forget 911
Premium
join:2002-01-19
Salt Lake City, UT
·Qwest.net
·Comcast Formerly ..
said by caffeinator See Profile :

It's "MadCodeHook" tool from a legit company, and can/may be used by malware...but is also used by legit programs.

Found this:

»www.softwaretipsandtricks.com/da···sys.html

quote:
MchInjDrv.sys is a driver for injecting code to other processes.
Publisher is legitimate:
»madshi.net
But it is often used by malicious software.
Kill the file mchInjDrv.sys and remove mchInjDrv.sys from Windows startup.
Another thread at Kaspersky: »forum.kaspersky.com/lofiversion/···351.html

I guess it depends on what you have installed, or may have installed recently.

You could try uploading to Jotti or Virustotal for more checks.

-CaFF
I would attempt to uplaod to Jotti or Virustotal but I do not have a file called "mchInjDrv.sys" anywhere on my system.
to forum · permalink · · 2007-07-17 02:22:24 · Reply to this
Forums » Up and Running » Security » SecurityUsers open holes in company networks »
« Antivirus from usb drive?  

Friday, 27-Nov 14:58:07 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [119] Time Warner Cable Fires Broadside At Broadcasters
· [109] New AT&T Ad Campaign Hits Back At Verizon
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [70] TiVo Sees Record Customer Losses
· [68] In-Flight Internet Headed For Bumpy Landing?
· [60] Thanksgiving Open Thread
· [38] EFF Wages War On Fine Print
· [38] ICANN Slams DNS Redirection
· [36] Senators Want ACTA Made Public
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· Newegg Black Friday Sale started [Users Find Hot Deals]
· Bell Response to PIPEDA Request [TekSavvy]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Leveling to 85 [World of Warcraft]
· Only firefox accesses Internet? [Security]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· So we need a legitimate reason to use a lot of bandwidth? [TekSavvy]
· SSD [Computer Hardware Discussion/Reviews]