Over 1 million tech questions and answers.

Security Center and Program Permissions

Q: Security Center and Program Permissions

I'm trying to help out my sister on her laptop (Compaq Vista 32bit). Here are the problems:

Can not access Windows Security Center.. It comes up on the tool bar red with the X. When you try to open it either off the tool bar or even through the Control Center you get: A "open with" window to select the program to open "rundll32.exe". I have tried the tutuorial on this site to change security center from disabled to automatic, this did not work, it defaults back to disabled.Will not start up the Microsoft Security Essentials antivirus program automatically on startup. You must manaul start and either run as adminstrator to start or go through the "open with window" process.All program starts require to go through the "open with window" approach and some that does not work and you need to right click on the program and "run as administrator" to start the program (i.e. intenet exployer).I have manually run Microsoft Security Essentials and removed numerous virus and trojans.

I am familar with XP and Windows 7, not Vista...

Any assistance will be appreciated

Preferred Solution: Security Center and Program Permissions

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

A: Security Center and Program Permissions

Hallo Brack, It sounds like you could have corrupted system files from malware & more than likely still have active malware.
First off try these and see if the make any difference with things such as the Security Center not starting;

Check Disk - chkdsk

After this run System files command this will check for and attempt to repair any corrupted System files, please note that this can only fix one problem at a time so you may have to run it several times;

System Files - SFC Command

Next a good place to start is to download Malwarebytes free standalone scanner, update it & run a Scan;

Malwarebytes' Anti-Malware: Malwarebytes

IF malwarebytes will not install, update or run then look at these other options see if your computer will allow you to run this free online scan;

Free ESET Online Antivirus Scanner

If not you may have to go to a friends computer Super anti spyware has a portable scanner you can run from a USB stick Caution:( any of your USB sticks may be infected so it would pay to borrow or purchase a new one, please do not infect your friends computer)
This portable scanner has a file name that malware is not supposed to recognize so it may give you enough leeway to get things running again;

SUPERAntiSpyware.com - SUPERAntiSpyware Portable Scanner

The next option is a rescue disk which you can download and burn to a CD on another computer then insert the disk in your computer & Restart so the disk can scan before Windows loads.
There area number of links for these disks in this blog;

Removing Viruses from a PC That Won?t Boot — Krebs on Security

I hope this is enough to get things running again

Read other 5 answers

I have a computer where security permissions on Program Files folder (but not Program Files (x86)) have been modified.  For example, it's displaying with a lock symbol even when local admin is logged on, and SYSTEM account is not listed with Special
Permissions as expected when viewing permissions.  How to reset?
Thank you!
Bob H.

Bob Herman IT Tropolis

Read other answers

I am running Windows XP Home, SP3
My Security program is Trend Micro Internet Security 2009. This is normally detected by the Security Center but recently this has changed to "Firewall ..... OFF" and "Virus Protection..... NOT FOUND". How can this be corrected?

A:Security program not detected by Security Center


Sometimes Windows doesn't recognize security programs, so its not necessarily somethingg to worry about. A recent update might have caused this for instance.

But, it is strange, since it has been detected so far. Are you confident that Trend is running and the protection is turned on? Is it up-to-date? Have you tried restarting your PC? Reinstalling might resolve the issue.

Read other 3 answers


I need help in registering my Antivirus program in windows action center. I am currently using an API call to register with the  Windows Management Instrumentation (WMI) service.  After
I call my function, Action center starts showing my Antivirus program along with my Norton AV, but as soon as I restart security center service (services.msc) my AV entry gets removed from Action center and I have to re create, but Norton AV entry
stays, is there a way so my AV entry stays in Action center like other installed antivirus?

Read other answers

I just installed Microsoft Security Essentials on a laptop with Vista Premium 32 bit. It does not show in the left pane of Windows Security Center. Instead, Windows Defender is shown as off, which is correct.
I ran;
C:\> winmgmt /verifyrepository
It reported VMI Repository as consistant.
How do I get Security Essentials in Security Center's left pane as the default spyware protection program?
Frank C

A:Security Center default spyware protection program

Did you try going to search by the start button and typing default. Then select, set your default programs.?

Read other 6 answers

Several times tonight I've gotten the following message from Windows Security Center:
Virus Protectiion Out Of Date

Trend Micro PC-cillin Internet Security reports that it might be out of date. Click Recommendations for suggested actions you can take.

Yet when I click on my PC-cillin Internet Security icon I get a message informing me that my antivirus settings meet recommended levels, so I figure I should be protected. However, whenever I click on PC-cillin's Update Components, I get this message:

Trend Micro PC-cillin Internet Security

An error occurred while connecting to the Internet. Please make sure your Internet connection is properly functioning and try again.

It doesn't make sense to me that I should be getting these error messages. I have more than a year left on my PC-cillin subscription, so it definitely should not be out-of-date. Also, I am already online and able to check e-mail and surf when I get the message telling me that an error occurred while connecting to the Internet and that I should make sure my Internet connection is properly functioning.

I would greatly appreciate hearing from anyone who is able to tell my why I am suddenly getting these inappropriate error messages. Thank you very much.

A:Why Does Windows Security Center Report That My Antivirus Program Is Out-Of-Date?

Read other 15 answers


I have two AV programs on my laptop and I would like to fully remove the Norton Security Center. I already went to add/remove programs in my control panel, but I know there is more that has to be done to fully remove the program, however, that is all I know, I do not know what should be done to accomplish that, can you help me??? please!!!

thank you .,

A:fully remove norton security center program from my laptop

Hi,Try using the Norton Removal Tool. Here is a link for it.....http://www.symantec.com/norton/support/kb/...0080828154508ENThat one requires you to have your product code for it, if you do not have it, try one of the links from the following link, I do not know if it is required for these....http://majorgeeks.com/Norton_Removal_Tool_SymNRT_d4749.htmlI do not know what version of Norton you have but if you have an older version and those links do not work for the version you have, this one might....http://www.softpedia.com/get/Tweak/Uninsta...oval-Tool.shtml

Read other 13 answers

hello all.Let me know if theres something else you needi have a hijack this log for youSystem is WinXP version 2002 SP32 Ghz drive this morning the old favorite called the Windows Security Center 2010showed up on my office mates computerright away i knew what it wasstarted the malwarebytes and RKILL tools to stop it and remove the bugger.THen restarted the machine after all was donebut its still here.Symantec Antivirus is isntalled on the machinefirst it didnt find the trojanthen it didthen it says it CANT remove it so it left it in quarentine ( but im still getting a debugging window showing up)"Microsoft Development Environment"keeps coming up and want to show me a DEBUGGING screenIf i am not mistaken im also getting browser hijacked because a google link was going elsewhereThe computer WAS using IE but i changed it to use firefox with no scripthere is the hijack this log---------------------------------------------------------------------------------Logfile of Trend Micro HijackThis v2.0.4Scan saved at 3:55:23 PM, on 8/2/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.17055)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files... Read more

A:Cant remove trojans. Stated with fake Windows Security center program

Hello, antifmradio.My name is aommaster and I will be helping you with your log.I apologize for the delay in response we get overwhelmed at times but we are trying our best to keep up.If you have since resolved the original problem you were having, I would appreciate you letting us know. If not please perform the following below so I can have a look at the current condition of your machine.ThanksShould you still require assistance, please take note of the points below:Please track this topic by either adding it to your favourites or clicking the Options button at the top of this thread and then Track this topic.Please disable word-wrap before posting logs. This can be done by clicking Format and un-ticking the word-wrap feature in notepad. The logs that you post should be copied and pasted directly into the reply. Only attach them if requested or if they do not fit into the post.If you do not reply within 5 days, I will have to close your topic. Should you not be able to meet this, please notify me so that I will leave the topic open.Please do not install, update, or run any programs for the duration of the fix.If you do not understand the instructions I provide, please don't hesitate to ask. That's what I'm here for Please continue to reply to this topic until I give you the all clean. Just because there are no symptoms of infection doesn't mean that the computer is clean.If you are running Vista, please run all the fixes as an administrator. This is done by... Read more

Read other 3 answers

I am unable to open and run gmer. when the zipped folder which was dled and saved to my desktop is double clicked a dialog box is opened up the title of which is spyware alert and the text reads "application infected! The file winrar.exe is infected. Do you want to ALLOW this application now?" and options for yes, no, and more info. This seems to occur for many other programs including word.

also on the bottom right of my screen another antivirus alert pops up. this alert will occacionally pop up. All of this antivirus stuff is not the antivirus i personally installed.

Also after successfully running dds once i was only able to open attach.txt so that is the one i have attached. I cannot open the notepad document for the dds script.

I probably have access to a boot cd not sure about a windows install disk though.

A:fake windows security center, trouble with internet connection, program errors

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.


Are you able to run MBAM in Safe Mode with Networking?

Please reboot your computer in Safe Mode with Networking by doing the following: Restart your computer.
After hearing your computer beep once during startup, but before the Windows icon appears, start pressing the F8 key.
In some systems, this may be the F5 key.
Instead of Windows loading as normal, a menu should appear.
Use the up arrow key to highlight Safe Mode with Networking and press 'Enter'.
Login on your usual account.
------------------------------------------------------Launch Malwarebytes' Anti-Malware
Under the Update tab, click Check for Updates
If an update is found, it will download and install the latest version.
Once the program has loaded, select Perform quick scan, then click Scan.
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected.
When completed, a log will open in Notepad and you may be prompted to Restart your computer.(See Extra Note)
The log is automatical... Read more

Read other 2 answers

I Windows 7 Home Premium. My windows is getting the updates but when it says configuring windows it doesn't do it and says it failure to config and is reverting back.

I also cannot turn on Windows Security Center.

I appears something happened 8/15. I tried microsoft's fixes and system restore which hasn't fixed the problems.

Help please!

Thanks! Karen - odat92388
Tech Support Guy System Info Utility version
OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz, Intel64 Family 6 Model 42 Stepping 7
Processor Count: 8
RAM: 8173 Mb
Graphics Card: NVIDIA GeForce GT 540M, 1024 Mb
Hard Drives: C: Total - 702685 MB, Free - 583295 MB;
Motherboard: Sony Corporation, VAIO
Antivirus: PC Cleaners, Updated: Yes, On-Demand Scanner: Disabled

A:Solved: security center disabled and cannot start and windows security center cannot

Read other 15 answers

For the second time I have gotten the fake anti-virus that names itself "Vista Security Center", last time was months ago, and I followed online, manual removal instructions.

Since then I have bought McAfee and when it came up this time, I just had McAfee scan and remove it.

However the I have NO working file/program associations, every time I click on the mozilla firefox shortcut I have to tell my computer to associate it with firefox.exe (the same thing happens even if I click directly on firefox.exe).

This literally is for everything, except computer navigation icons, like "My Computer" or "Control Panel"

I ran the DDS and will attach the two file, but even with the gmer.exe I had to tell my computer to associate it with gmer.exe, the exact icon I clicked on

Mostly this is just a pain in the ***, but some stuff just simply wont run, help would be GREATLY appreciated.

DDS (Ver_10-03-17.01) - NTFSX64
Run by Ian at 14:38:20.59 on Sun 04/11/2010
Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 1.6.0_15
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.4094.2230 [GMT -5:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\Sy... Read more

A:All File/Program Associations lost - "Vista Security Center"

It only let me attach two files, here is my Ark.txt also

Read other 2 answers

I'm trying to instal Skype on my PC and I keep getting this error message: 'An error occured while attempting to create the directory: c:\ProgramData\Microsoft\Windows\StartMenu.

This is what I've done to try and remedy it:

1. Right clicked the installer file and tried to run as Administrator. Didn't work.
2. Changed security permissions on the folder ProgramData and give full control to me. Didn't work.

The folder is 50% transparent and something's not right with it but I can't figure out why.

A:Can't install program - Program Data folder permissions?

Hi kentabu,Welcome to the forums , Have you tried this little trick ? Take Ownership Shortcut

Read other 4 answers

Everytime I start up my desktop, a fake windows security center message comes up trying to get me to install a fake protection system software. When this windows security center message comes up, it also adds three shortcuts to my desktop to porn sites. This virus is hindering me from using various software such as Malwarebytes, Spybot, and it wont let me install Hijack this. Also, this virus is making Internet Explorer practically unusable (using Safari right now). Please help me, it would be greatly appreciated.

A:infected with fake protection system/ fake windows security center/ fake security center alerts

I forgot to put this, but I am using Windows XP
One of the sample messages from Security Center Alter asks if I want to block a suspicious software called Trojan.Win32.Agent.dcc. This "Alert" has popped up many time, but warning me about different trojans.
Also, in the lower-right tray, messages are continuously coming up saying stuff like keyloggers, exploits, and etc have infected your computer.

Read other 4 answers

Help me please!I've had this virus for around a week or so.I'm not really sure if this is a virus or a malware.The symptoms of this virus are:-Two strange icons appear, one blue shield and one green shield, having the names of "Online Security Center" and "Live Safety Center" that "refresh" and reinstall themselves even though I have deleted them.-Irregular Pop-Ups that say I have a virus infection on my computer that come and go at least every ten minutes when I really don't.-A flashing caution sign on the toolbar.-Slowing internet.I have the programs, "Spyware Terminator", "SmitfraudFix" and "AVG Anti-Spyware" but I don't know how to use them respectively in this situation.This all started after I deleted Internet Explorer, yet all these InterNet Explorer Pop-Ups kept on coming, all saying that my "computer had a virus, download this program."I can't even DOWNLOAD anything!Please help, and put step-by-step instruction on how to delete them!

A:Malware? Online Security Center And Live Safety Center?

Sorry for the delay. If you are still having problems please post a brand new HijackThis log as a reply to this topic. Before posting the log, please make sure you follow all the steps found in this topic:Preparation Guide For Use Before Posting A HijackThis LogThanks,Charles

Read other 2 answers

i have these crazy notications on my computer, i already scanned out alot of viruses, and spyware with AVG,AntiVir, Spybot,Ad-Aware, AVG antispyware, Xoftspy and delected all my cookies..
ive also used the popular method with smitfraud and these popups arent going away! these adds still popup in safe mode!

well here is my hijack this report.. please help me! thanks in advance!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:17:35 PM, on 11/9/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\G... Read more

Read other answers

I have tried everything so now elevate my problem to you guys.

On my Vista ultimate platform I have two users, a real admin and a user with admin rights, I have a program from Canon that will only run in the user with admin rights setup not the full admin mode!

I have looked at the permissions for this file and there are two major differences that I can see, in the user mode it has Trustedinstaller and my user with 'Special Permissions" set these are not present in the Admin user mode.

The program was installed in the full admin environment.

In user mode I am asked to confirm the program start up, in admin mode I'm not asked but get an instant message "ZB module has stopped working" and the program looks for a solution but never finds one.

The program is Zoombrowser and is the latest version and Vista compatible, clearly it does work.... just not always!

Any thoughts would be appreciated

A:Program permissions

Not that anybody cared! but I'll post a result here in case any other poor sole has a simular issue.

I managed to set the file ownership to Trustedinstaller, that seemed to solve the problem, on the other hand it could have been a bunch of new updates MS pushed.

Bottom line it now works.

Read other 2 answers

Hello,DDS logs attached and pasted below. Did I get it all? Thanks in advance :-)My dad called me at work to tell me that his XP Security Center was going off, warning him that his AV product wasn't running and/or up to date. The thing was, MS Security Essentials was as happy as it could be: definitions were up to date, realtime protection was on. A reboot didn't help either.That was weird. So I got to his house. By then, XP's Security Center had calmed down and reported no issues. However, opening and closing Firefox with Google as his homepage would create a detection in MS Security Essentials. MSSE called it a Blacole or Blachole exploit kit. It would show up in his Firefox cache.MSSE would quarantine it. I would delete it, and it be gone until I opened and closed Firefox again. Then it would appear again and MSSE would quarantine it again.So, I unplugged his computer from the net, and I ran a full Scan with MSSE. It found a Java exploit in some Java cache files with the common vulnerability name thingy CVR-2010-0840. It may have found some other stuff, but its not in the history any more.Than I ran a MBAM scan. It found a few more things:Files Detected: 6C:\Documents and Settings\Ernie\Desktop\Brian\Sony PC and nLIte and TinyXP files\(ACCUXP)\kv.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.C:\Documents and Settings\Ernie\Local Settings\Temp\ICReinstall_PDFReaderSetup.exe (Adware.... Read more

A:It started with WinXP security center reporting that MS Security Essentials wasn't running

Hello and welcome to the forums!My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. I'll be addressing you by your username, if you'd like me to address you by something else, please let me know!I am very sorry for the delay in responding, but as you can see we are at the moment being flooded with logs which, when paired with the never-ending shortage of helpers, resulted in the delayed responding to your thread.I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and a... Read more

Read other 2 answers

Hi and thanks in advance for any assistance reply,I'm running Windows 7 Home basic SP 1 64bit os. Just a while ago I open www.mahagenco.in and a zip file containing total_run_mahagenco.exe 612kb and click_me_installer_mahagenco.exe 616kb automatically downloaded When I run it, nothing happened and it suddenly disappeared from my desktop. After assuming it was a virus, I run Windows Security Essentials and began a quick scan. Just in the middle of the scan, Windows security essentials shuted down, and the flag of messages in my task bar appeared, saying that Windows Security Center was turned off. I tried to turn it on, but a message saying "The Windows Security Center service can't be started" appeared. I restarted my computer but everything was the same, no MSE and no Windows Defender.I also open service.msc and restarted security centre but it was disabled after sometime.Also in internet explorer9 and google chrome i was automatically redirected to another sites.Then i run combofix whose log report is as follows - ComboFix 13-01-05.01 - PRANALI t 05-01-13 23:44:24.3.4 - x64Microsoft Windows 7 Home Basic SP1 [GMT 5.5:30]Running from: c:\users\PRANALI\Downloads\Programs\ComboFix.exeAV: Microsoft Security Essentials *Enabled/Outdated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}SP: Microsoft Security Essentials *Enabled/Outdated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132... Read more

A:Virus/malware disabled Windows Security Center and microsoft security essential

Greetings and Welcome to The Forums!!My name is Gringo and I'll be glad to help you with your malware problems.I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of usPlease do not run any tools unless instructed to do so.
We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.
Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.
Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.
A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.NOTE: At the top o... Read more

Read other 20 answers

I cannot get rid of this trojan Security Center|UPDATESDISABLENOTIFY (PUM.Disabled.SecurityCenter). Since January, my Avira AV fails to run scheduled scans and now it will not launch at all. Windows System Restore won't create restore points. "System Restore not able to create a restore point. Please restart your computer, and then run system Restore again," and Windows XP Security Center notifications are constantly disabled by a PUM virus/trojan. And GMER hangs and does not comoplete or crashes my system with blue screen. Malwarebytes AntiMalware does however repeatedly find and quarantines the PUM.

Google Chrome v21.0.118079 fails to auto install Adobe Flash player and Google Chrome Settings always resets Background Apps from Disabled to Enabled on system restart. I researched and just found a command line command to keep Background apps from launching.

Adobe Flash Player fails to update to current version.

12 Windows Security Updates download and then report as Installed, but continue to show as needing to install.

Malwarebytes Pro (Trial) reports blocking malicious IP outgoing web attempts.

Please see DDS report attached. No GMER report cause it hangs and doesn't finish. Thanks!

-Windows XP v2002 SP3
MS Home Edition
Dell Inspiron I6400
2.0 GHz, 2.00 GB RAM
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.4.1
Run by mio at 2:23:28 on 2012-08-17
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1... Read more

A:PUM Disables Avira AV security, Windows System Restore, MS Security Center notifications

Anyone available to analyze this log?

Read other 42 answers

DDS (Ver_11-03-05.01) - NTFSx86
Run by kanne at 20:38:50,58 on ti 26.04.2011
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_24
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.358.1035.18.1015.301 [GMT 3:00]
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
============== Running Processes ===============
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\Windows\system32\svcho... Read more

A:can't turn on windows security center, Redirected web pages and MS Security Essentials Will Not Open

Hi,Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

Please reply to this post so I know you are there.The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.Once I receive a reply then I will return with your first instructions.Thanks

Read other 2 answers

this is bad ,very bad , hope they will fix this !

Top Threat: Windows Security Center Spoof

Read other answers

I am running windows 7 home and using security essential. but yesterday i found my security essentials not working and showing red alarm. When i take the pointer to show it ............ the program close and the security
center service disabled........ and i went to see the security center service to run it and make it automatically run this message appear to me " Windows could not start the security center service on local computer.
Error 1058: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it"
And i removed security Essentials and tried to run the security center service ......but the problem still exists the service runs only 2 minutes and disabled again.
Please help QUICKLY ................ because i am working without

A:Security Center service for Windows 7 cannot start & Security Essentials not working

The Security Center service cannot be started due to virus destruction.
Have you tried the repair for Windows? If not, you can go to following SkyDrive to load the registry and import it to check the result.
Before importing it, please back up the following registry key first. Just find the key and right click it, choose export and save to desktop.
After importing the correct registry, please go to services Windows to check if Security Center starts properly.
Best Regards,
NikiPlease remember to click "Mark as Answer" on the post that helps you, and to click "Unmark as Answer" if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Read other 44 answers

Problems:While googling it redirects me to sites - "http://directagain.net/in.php?source=7777&q=&suid=1101&rnd=3xz%2B1mgzFz9AZ7RtJ0%2Bx2w%3D%3D"and"http://www.ihavenet.com/?search=&n=1355828587"(there are some more redirections, but at the moment these are the most frequent)After copying "http://www.ihavenet.com/" from address bar or search bar it pastes "google.com" (I'm using Firefox atm).Bigger problems:Microsoft Security Essentials starts only for the moment on the boot-up and after that is gone.I can't turn on Windows Security Center Service.I tried:Starting WSCS from services.msc and setting it to "Automatic (Delayed)" and after restarting PC..same.Reinstalling MSE didn't work.I used CCleaner. And please tell me is cleanpcguide.com valid site?Did the scan with AdwCleaner and deleted all the threats.Did the scan with Malwarebytes Anti-Malware and deleted all the threats.Did the scan with TDSSKiller and deleted all the threats.I've made "Windows Defender Offline" Bootable USB and did the scan. It only found keygen that I've never used. Deleted it.I did a little "house cleaning" (nice, yeah) but the problem is still there!If someone have an idea what's the problem, please help. Thanks in advance.Sorry for this big post, and I appreciate for you time.

A:Can't turn on Windows Security Center Service, Microsoft Security Essentials is also off

[delete this post]

Read other 21 answers

Hello, today my good friend called me asking for help on her computer. I obliged and came over to see what I could do. She told me she had a pop-up about something called Antivirus Plus that was scanning her computer and found 32 objects. She didn't know whether it was legit or not (obviously not) and before she knew it the program was installed. Well by the time I came over there I noticed numerous problems and wasted 3 hours trying to install a simple program (Malwarebytes Anti-Malware) but it wouldn't allow me to access the internet, the desktop icons show at first and then disappear, after being on for awhile a notification came up saying how the computer is going to shutdown - which it did. I tried going into Safe Mode but it wouldn't even allow me to do that. So then I went to her mom's laptop and downloaded the program from there and put it on a USB flash (128 mb) and tried finally putting it on her computer. I got it installed but then it came to an error which failed to launch. So I tried renaming it after I uninstalled it and now nothing. Basically I am unable to make any progress what so ever. Things are popping up from left to right such as Antivirus Pro, Security Tool and Security Center and I'm unsure what programs and procedures to do. Another thing is a black CMD box continuously pops up with something like mcafee.com/agent/mcagent.exe or something like that that says "Program too big to fit in memory." I hope all this informatio... Read more

A:Unable to produce logs or connect to Internet - Antivirus Pro, Security Tool, Security Center and more

Hello,welcome,let's try it this way.1. Uninstall Malwarebytes' Anti-Malware using Add/Remove programs in the control panel.2. Restart your computer (very important).Now run RKill....Please download Rkill by Grinler and save it to your desktop.Link 2Link 3Link 4Double-click on the Rkill desktop icon to run the tool.If using Vista, right-click on it and Run As Administrator.A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.If not, delete the file, then download and use the one provided in Link 2.If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.If the tool does not run from any of the links provided, please let me know.3. Download and run this utility. Mbam clean4. It will ask to restart your computer (please allow it to).Rerun RKill5. After the computer restarts, install the latest version from here. http://www.malwarebytes.org/mbam-download.phpNote: You will need to reactivate the program using the license you were sent.Note: If using Free version, ignore the part about putting in your license key and activating.Launch the program and set the Protection and Registration. Then go to the UPDATE tab if not done during installation and check for updates.Restart the computer again and verify that MBAM is in the task tray and run a Quick Scan and post that log.

Read other 11 answers

I've tried both AVG Antivirus and Ad-Aware with no luck. Windows Security Center is turned off and when I go to turn it on I get "The Windows Security Center service can't be started". Windows update runs like every time I start up the computer so I don't know if it's having an issue installing whatever it is. Occasionally while online the screen will flash and the taskbar will get messed up (looks like old Windows 95 style).

This has been going on for weeks, the original problem left me with all of my file associations messed including .exe (I think from running CCleaner and scanning/fixing the registry). I downloaded the .exe file association from Microsoft, put it on a jump drive and got it on my computer, fixing that problem, but I think the overall lingering issue remained. If I go to look at my Programs and Features there's only a fraction of the programs I know that I have installed that are shown. Earlier in the week I was trying to fix it, I went to install Microsoft Security Essentials and the computer went to a bluescreen and restarted. I fought with this all night with no luck, the next morning it wouldn't start at all and windows startup repair got it back to status quo (with the viruses like the day before but no blue screen and restart).

I can see the OpenCloud Security icon on my desktop, so I know that is one of the main issues. Whenever I search on google, it redirects to some norton antivirus page.

Please help, I... Read more

A:OpenCloud Security, google redirects to Norton Antivirus, Windows Security Center unavailable

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.Do not run any other tool untill instructed to do so!Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.Run Combofix:You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<Combofix may need to reboot your computer more than once to do its job this is normal.You can download Combofix from one of these links.Link 1Link 2Link 3 1. Close any open browsers or any other programs that are open.2. Close/disable all anti virus and anti malware programs so they do not interfere with the r... Read more

Read other 21 answers

Hi,I am using Windows Vista Ultimate 6.0.6002 Service Pack 2 Build 6002 and have recently been infected by the Live Security Platinum virus (PUM.Disabled.SecurityCenter) and have cleaned it using the method from here.Everything's been going ok actually, except for the fact that now the whole of my Windows Security Center is unusable. I suspect it is due to the system files that were removed or modified during the removal process.Now Windows Update is not even present in the Services list and Windows Defender gives a "failed to initialize" error.It would be great if you could shed some light to me for this problem.Thank you.

A:Windows Vista Security Center problem after successful removal of Live Security Platinum virus

DownloadFSS Checkmark all the boxesClick on "Scan".Please copy and paste the log to your reply.

Read other 31 answers

Fake security scanner. Starts scanning on log in - finds fake malware. Double clicking any other software starts this fake program instead. Windows task manager shows a bip.exe program running. Am using alternate pc and thumbdrive to run gmer and dds programs.

Can't attach the attach.txt file due to size resrictions. Still want it?

thx, jim
DDS (Ver_11-03-05.01) - NTFSx86
Run by Jim at 15:08:44.65 on Sat 04/09/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_16
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.855 [GMT -4:00]
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\WTouch\WTouchService.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files... Read more

A:Bogus Windows XP Security Center and XP Security 2011 Scanner

Hello and welcome to the forums!My secret agent name on the forums is SweetTech (you can call me ST for short), it's a pleasure to meet you. I would be glad to take a look at your log and help you with solving any malware problems.If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed. If you have not, please adhere to the guidelines below and then follow instructions as outlined further below:Logs from malware removal programs (OTL is one of them) can take some time to analyze. I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forums.
Please make sure to carefully read any instruction that I give you. Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.
If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
In Windows Vista and Windows 7, all tools need to be started by right clicking and selecting Run as Administrator!
Do not do things I do not ask for, such as running a spyware scan on your computer. The one thing that you should always do, is to make sure sure that your anti-virus definitions are up-to-date!
Please do not use the Attachme... Read more

Read other 11 answers

I recently bought my new laptop for college a couple weeks ago. It is a Toshiba, runs Windows Vista Home Premium, 64-bit OS, dual core processor.
My problem appears in the Program Files x86 folder. If I attempt to rename a folder in that folder, it does not allow it. I CAN create and delete folders, but when I try to rename it, it objects. Looking into the Program Files x86 folder permissions, apparently I am restricted from this ability, and restricted from giving myself these permissions.

Any help is appreciated thanks!

Read other answers

We installed an application on a Vista Enterprise machine. When the person that installed it is logged on, he can run the program by clicking the .exe, but a service that calls the program fails, and displays a message that says Run-time Error 429 ActiveX component cannot create object. If anyone else is logged on and runs the program by clicking the .exe, they get this same error. I think that the object in question is NTSVC.ocx, but can't be sure.

I have not come up with anything in regards to this. UAC is turned off on this machine. If you right click, select properties, the privilege level checkbox is unavailable - even when the original installer is logged in.

I don't know what else to do - can anyone assist? Thanks!

A:Vista Program Permissions

After spending a few days researching this, I uninstalled the program and re-installed, running the setup as administrator. This had the same result. The program runs perfectly for the person who installed it - an admin on the box. When another person tries - also an admin, it results in the same error as explained above. Running the progrsam as admin, or in compatibility mode does not make a difference. The installer simply clicks on the .exe and it runs perfectly.

Everything I have read regarding Vista progrsam errors focuses on the UAC, or the VB runtime not being installed, ar the program needing to run with elevated privleges. None of these are the case here - the program runs, but only for the installer. hopefully one of you gurus out there has heard of this and can provide some assistance. Thanks in advance.

Read other 6 answers

Star wars empire at war keeps unhiding my user's c:\users\username\appdata folders. The only way i can stop it happening is to deny the user write permission on the appdata folder which causes problems with other programs. Is there a way to just block empire at war from modifying this folder?

A:set folder permissions for just 1 program

Never mind, i created a new user account to fiddle around with the permissions. Found out you can just block said user accounts from changing the attributes.

Now ive ound out about how to use it, could become very useful.

Read other 2 answers

Hey TS, I just upgraded to a top-of-the-line gaming rig running Vista Home Premium x86. I'm trying to install an add-on for one of my games, but apparently the only administrator account on the computer doesn't have permission to do that. Is there a way to bypass this? Thanks much.

A:Program Files permissions

Hi. . .

Download the add-on and save it to your desktop. Right-click on the desktop icon and select "Run as Administrator".

Regards. . .



Read other 7 answers

IT APPEARS SOMETHING CALLED "VIRUT" WAS installed along with the other bullcrap my daughters did. After reading several posts it would also appear that I must fdisk and reinstall my system. I am loathe to do this as i only have the original recovery dvd and it will install all this bloat ware that will not even work anymore anyway. so, please just answer these questions:1. what are the chances of the things in my documents being infected. I can create a rescue disk if I can burn these files to a dvd. I have files or programs worth maybe ten thousand dollars or more. 2. If the chances that these files are not infected, can I operate my cd and dvd burner from safe mode?someone please answer I was in the hospital getting chemo and my kids used my computer as theirs is f'ed up and I wont clean it. when I come back there are these icons to different porn sites on my desktop. 4 different security center and security system 2009 and 2010on my computer. nothing would work. no mbab , no ca security suite no task manager. I disable system restore and had to boot into safe mode with networking. very hard to get onto the net using any browser, this crap is trying to stop me from typing here as I do it. ran mbam from safemode, ran ca security suite from safe mode, ran highjackthis from safe mode and removed the obvious forced restart, this bugger employed dep and I could not log into windows desktop. I have run hjt again and now there are a kazillion lsp probl... Read more

A:security center and security system 2009 variants

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 2 answers

I have the fake XP Security Center malware. I'm constantly prompted that I have a security risk/threat/virus that needs immediate fixing and/or registration for a free scan in order to save my computer. I've run Malwarebytes about 4 times. Each time it finds some things and removes them, my computer seems clean after restart, but by the next day or so the alerts and pop-ups are back. Here is my Hijack This log and thank you very much for taking the time to help me.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:18:56 AM, on 4/13/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\ehome\ehtray.exeC:\WINDOWS\system32\Rundll32.exeC:\Program Files\CyberLink\PowerDVD\DVDLauncher.exeC:\Program Files\Real\RealPlayer\RealPlay.exeC:\WINDOWS\system32\dla\tfswctrl.exeC:\Program Files\Common Files\InstallShield\UpdateService\issch.exe... Read more

A:Fake XP Security Center/XP Smart Security Malware

Hello Kyle26 Welcome to the BC HijackThis Log and Analysis forum. I will be assisting you in cleaning up your system.I ask that you refrain from running tools other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. By doing this and then choosing Immediate E-Mail notification and then clicking on Proceed you will be advised when we respond the your topic and facilitate the cleaning of your machine.Please keep in mind that we have a large backlog of users just like yourself waiting to be helped so try to be as timely as possible in your replies. Since we do this on a part-time voluntary basis we are limited on how many logs we can respond to and keep open due to time restraints. If you have to be away or can't answer for some other reason just let me know. Thank you for your understanding.After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.In order to better assist you I will need the following:Download DDS and save it to your desktop from here or here.Disable any script blocker, and then double click dds.scr to run the tool. When done, DDS will open two (2) logs: DDS.txt Attach.txtSave both reports to your de... Read more

Read other 14 answers

When I'm logged on as an Administrator (which I only log onto to install applications), my Windows Security Center recognizes my AT&T security suite. Everything is fine.

However, when I logon as a User (which I do a majority of the time for internetting and music), Windows Security Center informs me that AT&T's security suite isn't active, even though the icon is shown in the systray, and all of it's services are active (I can see the firewall blocking info in real time for example).

Why does Security Center detect the same suite on my Administrator account but not my User account? This issue only happened after I uninstalled Visual Basic .net a few months ago (I can't restore to back that date at this point to undo it), and I'm wondering if there's a way to repair it.

A:Windows Security Center not recognizing Security Suite in XP Pro

IIRC, the MMC (Microsoft Management Console) relies upon .net to function properly.

Read other 3 answers

Hi there,my problem is that certain windows such as Security center/safety panel and some others keep on popping up.i found this link which shows the pop up:http://entiremedianet.com/P/s5/?a=rophawd&...ucid=z04Zu84MYqI just dont know what to do about it, so far i just installed hijackthis and made a log.Hope someone can help me thanks stephan

A:Fake Security Panel/security Center Keeps On Popping Up

Welcome to BC stephan_wonderPlease print out and follow the instructions for using SDFix in BC's self-help tutorial "How to use SDFix".-- When using this tool, you must use the Administrator's account or an account with "Administrative rights"-- Disconnect from the Internet and temporarily disable your anti-virus and any anti-malware real time protection before performing a scan.When done, the SDFix report log will open in notepad and automatically be saved in the SDFix folder as Report.txt. Please copy and paste the contents of Report.txt in your next reply. Be sure to renable you anti-virus and and other security programs before connecting to the Internet.Please download Malwarebytes Anti-Malware and save it to your desktop.alternate download link 1alternate download link 2Make sure you are connected to the Internet.Double-click on Download_mbam-setup.exe to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan.If an update is found, the program will automatically update itself.Press the OK button to close that box and continue.If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.... Read more

Read other 9 answers

http://www.bleepingcomputer.com/forums/t/271750/unable-to-produce-logs-or-connect-to-internet-antivirus-pro-security-tool-security-center-and-more/I started out in the BleepingComputer.com > Security > Am I infected? What do I do? thread firstly because I am unable to successfully run DDS, but I was able to run RootRepeal. It seems the problem has got much worse since it now blocks anything I try to launch. I recommend you take a look at my first thread to get more background information before trying to solve the problem. Thank you!

A:Infected with AntiVirus Plus, Security Center, Security Tool and more

Do you still desire help? Please outline your current problems and inform me of what you have done since your last post.
Kind regards,
~ t

Read other 12 answers

Hey Guys.

I'm new here, and this topic has properly already been answered somewhere in here, but i can't seem to find it.
So my question is:

I had the security live platinum virus on my computer and succesfully removed it, at least I think so. My computer is working fine, there is just this one problem; the whole windows security center isn't working. Essentials, the firewall, the defender, and even windows update won't work. I can't access them, and my computer just says it is some kind of an unkown error thats the cause.

How do you deal with the problem?

Thanks on advance.

A:Security center not working after security live platinum

Lets make sure system is clean before fixing themDownloadTDSSkillerLaunch it.Click on change parameters-Select TDLFS file systemClick on "Scan".Please post the LOG report(log file should be in your C drive) Do not change the default options on scan resultsDownloadaswMBRLaunch it, allow it to download latest Avast! virus definitionsClick the "Scan" button to start scan.After scan finishes,click on Save logPost the log results hereDownloadESET online scannerInstall itClick on START,it should download the virus definitionsWhen scan gets completed,click on LIST of found threatsExport the list to desktop,copy the contents of the text file in your reply

Read other 1 answers

Hi lads.

is there anyway to turn off the way vista asks you permission to do the slightest little things like moving shortcuts, running programms etc?

it just annoys me so much that i want rid of it, and to hell with the security. vista to me looks more like a virus than most things it proclaims to protect against.

any way to shut this thing off?


A:Solved: Vista program permissions?

Read other 11 answers

You are about to read some bad English and I am really sorry about it. I am not a native English speaker.
Good evening guys,

So my question is as the title says Is there is any program that let me change my folder/program or anything else to multiple permissions instead of just giving the user control of only of one permission i.e. grant administrator permission

What I want is give the user 2 to 3 choices what they want to do with the folder/program means they want to become a trusted installer of the current folder or they want to become a administrator or they want to become a simple user with all permission.

Is there is any program that can do this or any script that can do this!!

Read other answers

I am so annoyed about the fact that this shield red, green yellow and blue shield is tagged on some programs. It looks like this:


Every time I need my dad's password just to start the game. How do I take this Admin Shield off my icons? How do I make a program not need an admin password?

A:How do I make a program not need to have admin permissions?


If you read this you can change the settings. You make sure that you let your Dad know what you are doing. If you make these changes and Dad finds out he will make you wish that you did not change it. Good Luck.
User Account Control (UAC) - Elevate Privilege Level

Read other 2 answers

Hi all this is an interesting one I havent seen one quite like this before.
A customer brought in a laptop with malware and trojans on it, Namely - Antivirus 2010 and rootkit TDSS (Alueron) in the CD driver, plus others.
These were removed by taking out the hard drive and running:
Spybot S&D
Microsoft Security Essentials
Kasperky virus removal
Trend Micro Housecall Scanner

Attempted to Run all of these when re-installed hard drive plus attempted to run rootkit revealer and autoruns as well.

But here is the rub the programs will install & some will start to run but then will either be killed/Stopped by some process I cant capture.

I cant get Hijack this to run or any other program I would normally use to do this either Access is denied or you do not have administrator permission.

Have even created new admin account and same occurs have tried to regain by taking ownership of files but no good.

Any ideas would be great. Just trying to not have to re-install but think I will have to.


Will not be back in shop till later today so think about it.

A:Account permissions & program access

Hello and welcome. let's see if this gets us in. Reboot into safe mode with Networking.Please download DeFogger to your desktop.Double click DeFogger to run the tool. The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will appear Click OK DeFogger will now ask to reboot the machine - click OKIMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.Do not re-enable these drivers until otherwise instructed.>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.Now RKill....Download and Run RKillPlease download RKill by Grinler from one of the 4 links below and save it to your desktop.

Link 1
Link 2
Link 3
Link 4

Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
If nothing happens or if the tool does not run, please let me know in your next replyDo no... Read more

Read other 11 answers

I wish to be able to make files inside a particular folder, and that once a file is created it can't be deleted.

So I right clicked to that folder, Properties, Security tab, Advanced, Change Permissions, Add (my user name - "boris"), and then I edited permissions, where I denied DELETE and DELETE SUBFOLDERS AND FILES.

But it didn't come as I wanted since I can only create new fiels inside that folder, but I can't named them. So if I make new text document I can't name it as I wanted also I can't renamed it after it was created. However deleting is denied as I wanted.

I need this because I have some excel macro that creates pdf document inside that folder and I don't want that documents to be deleted or changed by mistake.

Please advice..

A:security permissions

Quote: Originally Posted by mihael

I need this because I have some excel macro that creates pdf document inside that folder and I don't want that documents to be deleted or changed by mistake.

It is called Readonly...

Read other 2 answers

I couldn't figure out if this post fit better in this area or the area that seemed to deal more with firewalls and AV software, my luck, neither, so I will trust to the discretion of the moderators...

I synched some directories between two computers. Now I have a directory on this computer and all the files in that directory say I don't have permission to view them. When I open up their "properties:Security:Group or User Name" I have to add my identity to each one individually, and there are many...

Is there an automated way to bail me out of this mess? (Probably like I must have gotten myself into it?)

Thank-you VERY much!

A:Security permissions

Not really understanding what exactly that you want to fix. Is it folder permissions, or something with third party software that is the cause? Permissions you change in the Properties for that folder.

Read other 0 answers

I "thought" my security permissions were doing OK, but.... I just did a "disk image" to my second drive. It made a folder "WindowsImageBackup". I could not open the folder to see what was inside, so I added me in the security permissions; now I'm down one level and won't let me see the next folder. I don't really like messing with permissions, but what's the deal? Do I need to log in as "administrator" to see it all? I do have administrator permissions set on my user log-in...

A:Security Permissions

Quote: Originally Posted by tcat7

I "thought" my security permissions were doing OK, but.... I just did a "disk image" to my second drive. It made a folder "WindowsImageBackup". I could not open the folder to see what was inside, so I added me in the security permissions; now I'm down one level and won't let me see the next folder. I don't really like messing with permissions, but what's the deal? Do I need to log in as "administrator" to see it all? I do have administrator permissions set on my user log-in...

You really dont want to go changing permissions on the fly. First why do you need to "see what is inside"? the only true test of a backup is to restore it to see if it works.

Second the Backup may be owned by a group called trusted installers. they have permissions to install and change applications.

If you really must change permission to look you are going to need to include the switch to change the sub folders/directories as well.

Be careful changing permissions can make the backup un -useable.


Read other 3 answers

My computer has been redirecting and going slower recently. Also, my windows media player was giving me an error saying "I do not have permissions" do play anything with windows media player. I uninstalled and tried to reinstall, however when doing so, now windows media player won't even complete installation. Something is very strange..DDS (Ver_2011-06-23.01) - NTFSx86 Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_19Run by Owner at 19:40:51 on 2011-08-18Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.894.321 [GMT -4:00].AV: Avira AntiVir PersonalEdition *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}FW: *Disabled* .============== Running Processes ===============.C:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exe -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exesvchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Google\Update\\GoogleCrashHandler.exeC:\Program Files\Common Files\AOL\ACS\AOLAcsd.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.... Read more

A:Infected, Browser Redirects/Program Permissions

It's saying my gmer log is too big to attach so i'm posting it here.GMER - http://www.gmer.netRootkit scan 2011-08-19 00:00:31Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-16 ST3160212A rev.3.AAERunning: gmer.exe; Driver: C:\DOCUME~1\Owner.FMO\LOCALS~1\Temp\pxtdypob.sys---- System - GMER 1.0.15 ----SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwAlertResumeThread [0xF726283D]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwAllocateUserPhysicalPages [0xF7262847]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwAllocateVirtualMemory [0xF7262851]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwClose [0xF726285B]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwCompactKeys [0xF7262865]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ZwCompressKey [0xF726286F]SSDT pxfsf.sys (PREVX Security Agent for Windows/Prevx Limited, http://www.prevx1.com/) ... Read more

Read other 19 answers

Hi folks.
Just a little question about McAfee Personal Firewall 8.2 under McAfee Security Centre 7.2.

I had previously noticed 3 IE program permission entries under the firewall and this week there are 5 identical listings.

I'm running Windows XP Home SP2 on a Dell Dimension. There are only 2 users on the computer.

I'm wondering if this is a problem or maybe different browser helpers / add-ons have created the entries.

I have Stumble Upon on the tool bar, and have WinPatrol, Adaware, Windows Defender active on the computer.

Read other answers