Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Windows Security Center can't be started because of virus/malware

29 Jan 2013   #51
shawn77

32 bit
 
 

I would request user to check for SALITY infection too as you have download infected COMBOFIX

Information about ComboFix being infected and what you should do


My System SpecsSystem Spec
.
29 Jan 2013   #52
cottonball

Windows 7 Home Premium
 
 

shawn77,

See post #49

Crumble has the option to use any of these tools.

Sality has been around for quite a while, as I am sure you know, and any of these tools should be able to detect and remove Sality from the computer.
My System SpecsSystem Spec
30 Jan 2013   #53
Crumble

Windows 7 Ultimate, 32bit
 
 

The ESET Online Scanner found and deleted 16 treaths:

C:\Users\siri1802\AppData\LocalLow\Sun\Java\JRERunOnce.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\AppData\Roaming\Mozilla\Firefox\Profiles\sqlite3.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\adwcleaner.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\chromeinstall-7u11.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\ConvertHelperSetup.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\Firefox Setup 15.0.1.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\FSS.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\mbam-setup-1.70.0.1100.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\mseinstall (1).exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\mssstool32.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\SecurityCheck.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\setup_Min_CeWe_Fotoverden.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\Silverlight.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\SoftonicDownloader_for_vlc-media-player.exe Win32/Sality.NBA virus cleaned - quarantined
C:\Users\siri1802\Downloads\SpotifySetup.exe Win32/Sality.NBA virus cleaned - quarantined
C:\subinacl.exe Win32/Sality.NBA virus cleaned - quarantined



I think I will be able to find a clean computer. I have a USB flash drive, but that's where all my important files are saved so I'm afraid of using it for this purpose. Is this really the only way of getting rid of the malware/virus? If it is I will try to provide a new USB flash drive
My System SpecsSystem Spec
.

30 Jan 2013   #54
UsernameIssues

W7 Pro SP1 64bit
 
 

Quote   Quote: Originally Posted by Crumble View Post
... Is this really the only way of getting rid of the malware/virus?...
You could use a blank CD.
My System SpecsSystem Spec
30 Jan 2013   #55
Crumble

Windows 7 Ultimate, 32bit
 
 

Great! I'll try to get it done tonight
My System SpecsSystem Spec
30 Jan 2013   #56
cottonball

Windows 7 Home Premium
 
 

Thought we could not, but, I think we can...

Will need to modify the instructions to accomodate the CD.

Will do so as soon as I can.
My System SpecsSystem Spec
30 Jan 2013   #57
UsernameIssues

W7 Pro SP1 64bit
 
 

I was referring to WDO - that can use a CD.
My System SpecsSystem Spec
30 Jan 2013   #58
cottonball

Windows 7 Home Premium
 
 

That's OK, UsernameIssues.

Even if he runs WDO, we may need to do a final confirmation that there are no Rootkits, etc.

You know how it goes, when it comes to malware, no one program covers all.
My System SpecsSystem Spec
30 Jan 2013   #59
cottonball

Windows 7 Home Premium
 
 

Testing FRST out on my own computer. So far it worked, with modification to the former instructions.

Can't find the report it makes, though.

Will get it sorted out, and post as soon as possible.
My System SpecsSystem Spec
30 Jan 2013   #60
cottonball

Windows 7 Home Premium
 
 

Crumble,

No need for another computer, or for a USB flash drive!
Since the computer boots, let's run this program from the hard drive that contains your Operating System (normally C:\). Do not follow the previous instructions requiring a USB flash drive.

This was tested on my own computer, and it worked.

Please print these instructions, and read them once, so you have an idea of what you are doing.
Do follow them step by step.

Here we go...

Please download Farbar Recovery Scan Tool:
Farbar Recovery Scan Tool Download
Select the version that applies to your computer (32-bit or 64-bit)

Save FRST.exe to the Desktop

Right-click Start, and select: Open Windows Explorer
Look for drive C:\, or the drive that contains your Operating System (OS).

Now, go to the Desktop, right-click FRST.exe, and move it right into C:\

>>> Restart the computer.

As soon as the BIOS is loaded begin tapping the F8 key until the Advanced Boot Options menu appears.
Use the arrow keys to select the Repair your Computer menu item.
Select your language settings, and click: Next
Select your User account and click: OK/Next (If you did not set a password, leave blank.)

On the System Recovery Options menu you get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Scan your computer's memory for errors.
Command Prompt

Select: Command Prompt

In the Command Prompt window, at the bliking cursor type: notepad
(See note #1)
Press: Enter

In Notepad, under the File menu select: Open
Double-click: Computer (on the left side), find the drive letter that has the Operating System, and remember what letter it has.
(See note #2)

Click on the OS drive
In Files of Type, select: All files
Press: Open
Confirm that FRST.exe is there!

Now, click the Command Prompt window.

Type the following: ?:\frst.exe, and press: Enter
Note: Replace the ? with the drive letter that contains the OS.

The tool starts and prepares to run. Follow the prompts.
Click Yes to the disclaimer.

When the FRST console appears, press the Scan button.
Let it run.

Once the scan finishes, a prompt appears stating "...the log has been saved in the same location as FRST.exe"
Close this prompt, close FRST, and close everything else, except...
Go back to the Command Prompt.

Once again in the Command Prompt window, at the blinking cursor type: notepad
Press: Enter

In Notepad, under the File menu select: Open
Double-click Computer (on the left side), find the drive letter that has the Operating System, and remember what letter it is.
(See note #3)

Click on the OS drive.
In Files of Type, select: All files
Press: Open
Confirm that FRST.exe is there!

Click the Command Prompt window again

Type the following: ?:\frst.exe, and press: Enter
Note: Replace the ? with the drive letter that contains the OS!

The tool starts and prepares to run. Follow the prompts.
Click Yes to the disclaimer.

When the FRST console appears, press the Scan button.

Once the scan finishes, a prompt appears stating the log has been saved in the same location as FRST.exe
Close this prompt, close FRST, and close anything else that is open.

Back at System Recovery Options, press: ShutDown, or, Restart.

After the computer restarts, and you are back in Windows, right-click Start, and select:
Open Windows Explorer

Look for drive C:\, which is normally the drive that contains your Operating System (or whatever drive applies), and open it.

Look for a folder named: FRST
Inside the FRST folder, there are three other folders. One of them is named: Logs

Open the Logs folder to find the text document resulting from the scan.
It should look like: FRST_30-01-2013_16-50-52 (reflects date and time.)
(See note #4)

Please provide the FRST.txt in your reply.

Notes:
1. Make sure the NumLk key is not active. If it is, you are not able to type correctly at the Command Prompt. If NumLk is active, press the Fn key and then the NumLk to deactivate it.

2. Once in this special mode you booted into, the drive containing the Operating System (OS) may not be C:\ (or the particular drive that has your OS)
You need to examine the drives carefully, and determine which one is the correct drive.

3. When you run FRST a second time, the drive containing the Operating System (OS) may have changed again!!!
Once again you need to examine the drives carefully, and determine which one is the correct drive.

4. In the first run, the tool places a FRST folder in the OS drive.
In the second run, it places the log in the folder.
My System SpecsSystem Spec
Reply

 Windows Security Center can't be started because of virus/malware




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
The Windows Security Center Can't be Started. Help!
Hi, I've recently had a virus on my laptop, AVG detected a few called trojan horse generic29.ajge I think i've managed to remove them through various types of malware programs and such but it has left me unable to activate the Windows Security Center and also my Windows Firewall isn't using...
System Security
The windows 7 security center can't be started
Hey,Im a Rookie to when it comes to using programs to Get rid of certain viruses and programs, But recently i found out my Firewall and security center could not be started, I have used malware bytes, and a few other programs but this has only made it so that the firewall is accesiable now, I Was...
System Security
Windows Security Center service can't be started.
Hello, This is my first post and, as you can see from the title, I'm getting the message that my Windows Security Center service can't be started. In addition, when browsing the web, I will sometimes click on a link and be sent to a page other than the one I clicked on. I've read, here on...
General Discussion
Windows Security Center service cannot be started
background:I took your advice and ran it. Nothing detected. I decided to also do a full scan with MS Security Essentials and there were some items detected. Thnx! Issue : Oh btw, as I was navigating the Control Panel after all this I happened across the 'Action Center' and noticed that...
General Discussion
windows security center service can't be started
the windows security center service was disabled and couldn't be started, i tried to turn it to automatic in services.msc a million times but it turns back to disabled. obviously its a virus/malware(which redirects the browser too). i have MSE, but it is also not starting in normal mode. this is...
System Security
The Windows Security Center service can't be started.
I click on the flag to turn it on but get that message... 'The Windows Security Center service can't be started.' Seems to have coincided with Firefox crashing REALLY FREQUENTLY too. I downloaded Malwarebytes' Anti-Malware and did a full scan. Here's the result: Malwarebytes'...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 02:08.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App