Analyse system crashes

Windows is creating a minidump whenever it's crashing. This minidump contains data that was stored in part of the memory. The interesting aspect of this procedure is that it's relatively easy to analyse the minidump using the Debugging Tools for Windows [link]. The tool has a size of roughly 18 Megabytes and is compatible to Windows XP, Vista and Windows Server 2003 and 2008.
After installing and starting the Microsoft Debugging Tools for Windows you should add a Symbol File Path to the software by clicking on File > Symbol File Path. Enter the following information in the text field: SRV*e:\symbols*http://msdl.microsoft.com/download/symbols with e:\symbols being an empty directory on your hard drive which can be changed to any other directory. Data will then be automatically downloaded from the Microsoft server. Symbols enhances debugging by automatically retrieving debugging files for various Microsoft products during a debugging session.
The next step would be to load the last minidump which is accessible in the Windows directory. A click on File > Load Crash Dump will load the minidump which takes about 20-30 seconds.
If everything went fine until this point you will see information like the one above which gives a first indication on the type of problem and file and / or hardware involved. The parameter DEFAULT_BUCKET_ID displays the type of error, for instance driver fault and process name lists the process that was involved.
Clicking on the !analyze -v link will display in depth information about the crash. The next steps depend on the type of information that you get. I usually start by doing a search on the files and error messages mentioned in the debugger which usually provide enough information to fix the issue.
Software errors for instance could be fixed by updating the software or uninstalling it if it's not necessary. Hardware errors are more often than not driver related which means a driver or bios update could fix the error.
Advertisement
Does it come back after every “moment” update?
Yeah right.. Like this is going to stop defender from running =) This is comedy gold right here.
no ‘about the author’ paragraph?
For permanent disable defender is if removed complete from system no just change permission folder.
Just this is joke.
simpler, load Autoruns (SysInternals)
– filter “Defender”
– untag all entries
– reboot
nothing has changed since my 1st modification years ago
I wouldn’t disable Defender imho, it has too many hidden roots inside Windows itself. One time I tried to uninstall it using brute force scripts and then the Onedrive feature stopped working definitely. A reinstallation was needed and since those times I prefer to maintain Defender untouched. It’s a better method to install another antivirus and it will disable Defender in a safer and easier mode (e.g., Avast is the best in this way, and also Panda Cloud Free is good too).
You can not stop defender from running in background or remove it without some penalty. All you can do is to limit telemetry.
@borts,
It’s probably Smartscreen which is preventing WD from being disabled. Get rid of that and the problem should be solved: https://thegeekpage.com/disable-windows-defender-smartscreen/#How_to_disable_the_Windows_Defender_SmartScreen_via_Local_Group_Policy_Editor
Remove Windows and go for Linux.
Linux sucks dude. Besides it’s not comparable to Windows, these OSes are in different classes entirely.
I use Linux as my daily driver. It’s far more stable than Windows. When’s the last time you used Linux, 2010?
@basingstoke
You’re right, dude. Bro, linux is just a bunch of code that starts before the OS, dude. Brobrodude, that shit ain’t even got emojis, dudebrodudeman! Dudebro, it’s no way near as cool as Windows with its hardcoded abilities to make money off the user, bro. Yo brodude man, you’re the coolest dude ever man, bro. Dude.
Lol what? Windows 7 doesn’t come with any Emojis
Download Autoruns and remove the checkmark from Windows Defender. It doesn’t remove it, but it will never run. https://learn.microsoft.com/en-us/sysinternals/downloads/autoruns
Just use “Defender Control”:
https://www.sordum.org/9480/defender-control-v2-1/comment-page-1/#comments
Per this video,
https://www.youtube.com/watch?v=CLIjr7FyxZ8
it also works on Windows 11 too…
Win Defender, is completly the most succesful free-built in antivirus of Microsoft. Really nice product. Saved my ass a lot of times. Has updated malware database, completly strong defence
from whatever smart screen disables. Or if you want better and more upgrated (paid) program,
you can go further. But defender is always on your side.
Why would one disable Windows (or Microsoft) Defender in the first place?. I consider this to be playing with fire big time. Everybody knows that if one is using another A-V, Defender will be disabled on its own and won’t be in one’s way.
Why would I want to disable Windows Defender in the first place? It’s a great anti virus in my opinion. Been using it since Windows 8 and and never had a problem or a virus. Why mess with a good thing, if it ain’t broke don’t fix it.
How a ridiculous article!
I am thoroughly stunned.
Why Should You Disable First-Party Windows Defender?
I can only think that it is “malice or perversely intention (want you to buy a third-party AV where you can expect a back margin)” to guide invalidation without showing the premise.
No sane company will use third-party closed source programs (such as AV).
As I thought, “Ghacks Technology News” seems to be coming to downfall.