Very slow and "couldn't connect to system notification center" after malware removal

#1
My father accidentally fell for the "your media player needs to be updated" and downloaded a ton of malware.

I used this guide: http://malwaretips.com/blogs/malware-removal-guide-for-windows/

And now it is running EXTREMELY slow and it can't load any Windows services on the computer. Any time I try to open a program it just stops responding.

Also while I was doing the malware removal "Safe mode with networking" was working fine. Now in the same "Safe mode with networking" the network isn't working. No internet available.

I am getting an error message "Failed to connect to system event notification center"

All the malware still isn't gone from Chrome but I need to fix this problem first.
 


MikeHawthorne

Essential Member
Microsoft Community Contributor
#2
Hi

I just had to deal with this yesterday.
A friend visiting had so many fake helpful programs on her computer is was unusable.
And they actively tried to stop their removal.

First install Malwarebytes on a USB drive using another computer...
http://www.malwarebytes.org/mwb-download/

Also SuperAntiSpyware...
http://www.superantispyware.com/download.html

Next, Open Msconfig, Type msconfig.exe into the run Window.
Set the boot to Diagnostic Startup and reboot.

When you are back into Windows run both programs from the USB drive, and reboot.
Then run them again, booted into normal mode.

Keep running them until they both come up with no problems.

Next download AVG Antivirus Software...
http://free.avg.com/us-en/free-antivirus-download

Install it on the computer and when it's done run it as well.

Leave it installed and install CCleaner on the computer too.
http://www.piriform.com/ccleaner/download

Run CCleaner.

It took me several hours and running these programs multiple times before every thing came up clean after several reboots.

When your done install Defraggler and defrag the hard drive.
http://www.piriform.com/defraggler

The computer should run like new when you get done.

Mike
 


Last edited:
#3
Hey Mike, I made the USB.

It takes the computer 10 minutes to sign into the account all of a sudden.

I can't defrag also as the computer uses an SSD. A no no for solid state.

It's struggling to even open msconfig everything is moving so slow

Just set Diagnostic Startup and clicked Apply and the program went "Not responding" like everything else is doing.
 


Last edited:

MikeHawthorne

Essential Member
Microsoft Community Contributor
#4
Hi

Is this a laptop with a recovery partition?

If it is I'd recommend creating a bootable Ubuntu disk, boot into the computer using it, and backup all of his important data to an external hard drive and then use the recovery partition to restore the computer back to factory state.

If he doesn't have a lot of stuff you could use the USB Stick to transfer the data to another computer temporarily, you can't use the disk drive because the computer is running from it.

The Ubuntu disk will give you a file manager, browser etc, everything you need to save the information from the Windows install and will not be affected by the malware.

http://www.ubuntu.com/download/alternative-downloads

I use version 12.04 which seems to be able to boot anything.

Use ImgBurn to create a bootable DVD from the ISO file.

It sounds like this has gone beyond the remove the malware point.
You do have to have some access to the computer to do that.

It may be possible to create a bootable repair disk, but it's not something that I have experience with.

Maybe someone else here can suggest something.

I haven't had any luck using Windows repair functions in cases like this, like restoring from the built in restore partition Windows will remove all your data, if you want to get rid of the malware.

Mike
 


Last edited:
#5
Thanks Mike that's not a bad idea to just do a system refresh.

I have an external 2.5" enclosure so I think I could just take the SSD out and connect it up to a different computer and back up the files using that.

A majority of files are on a raw storage HDD that's also in the computer but that drive is probably okay.
 


#6
I have backed up the files and trying to restore Windows to factory settings.

On 8.1 I went to Settings > Change PC Settings > Update and Recovery > Recovery

The "recovery" tab never loads. It should look like this:




However mine is just a black screen where the white is. No buttons loading.

Is there another way to perform the system reset?


I have a feeling this is related to the system service message that couldn't load.
 


#7
Found an alternate way to do a "Remove everything" action.

New problem now, it says Preparing.... and then says "Files are missing. Your installation disk will have these files"

Only problem is I can't find the installation disk.

Very frustrating
 


MikeHawthorne

Essential Member
Microsoft Community Contributor
#8
Does the computer have a factory installed recovery partition, and a utility for accessing it, by hitting F11 at start up or something like that?

What kind of computer is it?

Here's some general information with options for a variety of computer brands.

http://www.pcadvisor.co.uk/how-to/laptop/3462995/factory-reset-laptop/

Mike
 


#9
Does the computer have a factory installed recovery partition, and a utility for accessing it, by hitting F11 at start up or something like that?

What kind of computer is it?

Here's some general information with options for a variety of computer brands.

http://www.pcadvisor.co.uk/how-to/laptop/3462995/factory-reset-laptop/

Mike
It is a desktop computer that I built a year or so ago. Windows 8 was bought from the store and installed by me.

I've never had to use a recovery partition so I don't know much about it.
 


MikeHawthorne

Essential Member
Microsoft Community Contributor
#11
Hi again.

Ah, so you should have a Windows disk around someplace?
Well if you can find it you can just reinstall, but getting an ISO for Windows 8 isn't easy, as it was for Windows 7.

I don't know what to tell you, without install files I'm not sure what you can do.
Do you know anyone else who has a Windows 8 disk?

I do suggest that when you get it running you make a System Image file so it can easily be repaired in the future.

There are several good free programs.

Mike
 


#12
Thanks for the help everyone. Getting the ISO in fact was very easy, a Microsoft technician directed me to their page to download it. From there I ran it and was able to make a USB drive.

From there it was easy. Got my W8 key, entered it in the installer and I was able to re install Windows.

The issue turns out to be this: (this all beside the Malware issue, purely speaking on why I wasn't able to reinstall Windows using the "Reset PC" function built into W8. )

I bought Windows 8 DVD at a retailer, and later upgraded to 8.1 via the online MS store. This upgrade breaks the "Reset PC" function and gives the error "files are missing".

This is because the 8.1 upgrade doesn't replace a new .esd file, which is used to do the reset via PC Settings.

More info can be read here for future reference:

http://answers.microsoft.com/en-us/...ough-the/dbc0a4ee-dada-486e-87a6-6ae4963efe8f
 


MikeHawthorne

Essential Member
Microsoft Community Contributor
#13
Hi

Where were you able to download a Windows 8 ISO file?

A zillion people have been here looking for one, many people never had a disk, and after a hard drive failure of something fatal to the recovery process were unable to reinstall Windows.

The only way that I've heard of to get one was to do some tricky things involving doing a failed install to get it to save the install files to your computer.

Mike
 


#14
Hi

Where were you able to download a Windows 8 ISO file?

A zillion people have been here looking for one, many people never had a disk, and after a hard drive failure of something fatal to the recovery process were unable to reinstall Windows.

The only way that I've heard of to get one was to do some tricky things involving doing a failed install to get it to save the install files to your computer.

Mike
I used this link: http://windows.microsoft.com/en-CA/windows-8/upgrade-product-key-only

That it's self is not the ISO but rather the downloader to get it.

You download that, and next enter your product code, hit next. It does something for a while and then gives you a few options, one says ISO. Then you can use a separate program to make an ISO usb. Or bypass using that program altogether and use the USB option. Wish I could grab a screenshot to explain better, doing the options off memory.

I'd go back through it and get screenshots but I'm on my Mac right now.
 


MikeHawthorne

Essential Member
Microsoft Community Contributor
#15
Thanks I'll save that for future posts.
I'd like to see the process with screen shots if you will do it.

Mike
 


ussnorway

Windows Forum Team
Staff member
Premium Supporter
#16
Hi Mike this website has been around for a while and is helpful for people with retail keys but can't be used with an OME key i.e. if your laptop came with windows pre-installed then this page won't help you.

Still worth a run through so I took some screen shots to show the steps.
step 1;
step1.png
step 2;
step2.png
step 3;
step3.png
step 4;
step4.png
step 5;
step5.png
 


ussnorway

Windows Forum Team
Staff member
Premium Supporter
#17
step 6;
step6.png
step 7;
step7.png
step 8;
step8.png
step 9;
step9.png
 


ussnorway

Windows Forum Team
Staff member
Premium Supporter
#18
You can make a usb image or an iso set for burning to a dvd... I show the iso but it's all simple to follow.
 


This website is not affiliated, owned, or endorsed by Microsoft Corporation. It is a member of the Microsoft Partner Program.