It looks like I've picked up a virus while browsing the internet (Drive-by infection). The computer was operating OK except last night I heard it playing a video talking about meryl streep (through the speakers) but there was no window open (a bit sus). Then when I checked this morning, I saw that System Centre essentials, Windows update, Firewall and whatever Windows Defender is now called have all been disabled (computer still functioning OK though...).
I then tried to reinstall System Centre Essentials and now get a message every time I boot the computer saying "Windows has encountered a critical problem and will restart automatically in one minute. Please save your work Now". This happens in Normal and Safe Mode.
I'm not running a CD Drive emulator, and I'd love some suggestions on how to tackle this given my 1 minute window of opportunity when the computer boots.
[Edit] Just tried rebooting my PC this morning, it looks like I have picked up the sirefef virus (or a variant) - the latest definitions from MSE picked it up. It's still doing the reboot every minute trick though, and the files keep reappearing after i "Clean" them.
[Edit #2] I have used Kaspersky Rescue Disk 10 (http://support.kaspersky.com/viruses/rescuedisk/) to locate the original version of Services.exe in the winsxs folder and copy it back to the c:\windows\system32\ folder (after renaming the one sirefef put there) could have done the same using BartPE or something too, I suppose. This has stopped the "Reboot after a minute" issue.
I've then run SCE and removed the virus, rebooted and removed the virus again (so still infected at this point, but at least I can interact with and run apps in my computer).
I then used Panda Security's Yorkyt.exe tool to remove the virus (or at least the variants it could detect), and no longer have heaps of instances of consrv.dll appearing in my event log.
Windows updates does not work, Windows defender is not working, so there is still some work to do.
At this stage, I have a somewhat operational system that seems to be free of an active instance of Sirefef, however I still have problems with my PC and would still like to go through the detection and removal process to see if there are any other malware / virus apps it has dropped on, or if there are still pieces of it on the system.
I do not intend to make any other changes until told to do so via advice through this forum. Appreciate anyone's assistance with this
Edited by specul8, 10 July 2012 - 07:25 PM.