Mr Ragnor, hopefully you are correct in your observation.
Anyway, below is the earlier log. I'm guessing that the Microsoft Security Center disabled would be due to Avast, is that right? I've seen this sort of report on scans of other computers too.
Malwarebytes' Anti-Malware 1.42 Database version: 3414 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702
No, the malware probably turned off the security centre. Avast does not do that. You should turn it back on. I take it that after this scan when you were prompted to reboot that you did so promptly?
A way to test the security centre is to (briefly) pause the standard shield in Avast, a red shield from the MS security centre should immediately pop up in the system tray.
You should maybe test the other things that typically get disabled by malware, also, including task manager, and system restore. (No need to use system restore, just see if it can be accessed) and the "start>run" command.
Yes, I rebooted as soon as prompted by Malwarebytes.
Because I've seen so many Security Centers turned off on computers using other antivirus and firewalls, I left it as it was. However I notice now that it is on - seems that it resumed by itself! It also doesn't show up as being off when I do a scan. However the red sheild doesn't pop up when I pause Avast.
I have checked those other functions - they all seem to be okay.
The "red shield" should pop up. Try (briefly) stopping on access protection, (right click the Avast system tray icon, select the bottom entry, don't be surfing the web at the time) and if it doesn't pop up, something is wrong. Do you know how to use regedit? Have you checked via the control panel that it is on? Was any other AV used on this system, and how was it removed? (You can only have one resident AV installed at a time. Some leave remnants even after they are uninstalled.)
No, the red shield doesn't show up when pausing Avast (about 20 - 30 secs), even though in the Control Panel it shows that Security Center is on.
This computer was ex-lease, bought from NZ Laptops, so the hard disc was reformatted and supplied with Avast already installed. No other AV program has been used by us on this computer.
I haven't used regedit, though I have used something with a similar name on Macs years ago. I know that doesn't count
No problem. The security centre is not a foolproof warning device, it sometimes gets confused, and (as you see) it can be over-ridden by the right (=wrong) application.
If, however, you are anything like me, you would want it functioning correctly.
Click "Start>run" and in the box type in regedit.Click enter or OK. Navigation is similar to that of Windows Explorer. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\ and there should be 6 entries. One of them (the top one) is AntivirusDisableNotify and the data in the right column should read 0x0000000 (0). (All the entries should have the same data.) If it isn't, right-click the name field, secect Modify and change the "Hexadecimal" (default) value to (0). Check that the other values are also set to zero, as above. Reboot. Test again. If that fails to yield results, there is another thing can be done, to do with re-setting the security centre.
Quick question: Have you noticed, say, within the past two weeks, the yellow shield to do with Windows Updates active?
The Hexadecimal value for AntivirusDisableNotify and FirstRunDisabled were both 1. I set them to 0, rebooted and the setting didn't change. Now the red shield now shows up immediately Avast is paused.
Also, my wife (since it is her computer) hasn't noticed that there has been any yellow update shields.
Does this mean those modified settings have reverted to 1? That's a worry. But if they haven't reverted, and everything works now, looks like you might be set. I suggest you visit Windows Update just to be sure everything is patched, and check in the security centre that it is set to "automatic" or at least "notify".
Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly
to your computer or smartphone by using a feed reader.
