Hi all,
I'm attempting to get my girlfriends Windows 7 laptop healthy again, apparently it's had web redirect / scareware issues for a while now. Since it's not just recently I'm hesitant to try a system restore. I used Malwarebytes and Registry Recycler to make the computer operable, yet run into problems getting windows Firewall to work, or installing an antivirus (AVG, AVAST, etc all fail).
One problem I'm sure of is that the Base Filtering Engine won't work. In the services menu it says it's stopped... when I tell it to start it says "Windows could not start the Base Filtering System on Local Computer. Error 87: the parameter is incorrect." I'm not sure what value I should try to put in as a start parameter (that line is blank), but hitting the start button gives that message.
As for the BFE registry entries, HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE appears to have my administration at full access. 3 entries had data values set as a string of Chinese letters (those were "DependOnService" "ImagePath" and "RequiredPrivileges"). I erased the Chinese characters data value because it annoyed me. I also went in BFE\Parameters\Policy permissions and added an "Everyone" group with full access, just in case - didn't make a difference.
As far as Windows Firewall goes, it says it's not using the recommended settings. When I tell it to do so it pops up an error saying "Windows Firewall can't change some of your settings. Error code 0x80070424".
Whatever infected (or maybe is still infecting)this computer did a number on the security settings. My current goal is getting the BFE started and having an antivirus working again. I've tried reading up on this a bit, I've tried plugging in BFE registry repairs, no luck so far. Anyone have experience dealing with this problem?
I'm attempting to get my girlfriends Windows 7 laptop healthy again, apparently it's had web redirect / scareware issues for a while now. Since it's not just recently I'm hesitant to try a system restore. I used Malwarebytes and Registry Recycler to make the computer operable, yet run into problems getting windows Firewall to work, or installing an antivirus (AVG, AVAST, etc all fail).
One problem I'm sure of is that the Base Filtering Engine won't work. In the services menu it says it's stopped... when I tell it to start it says "Windows could not start the Base Filtering System on Local Computer. Error 87: the parameter is incorrect." I'm not sure what value I should try to put in as a start parameter (that line is blank), but hitting the start button gives that message.
As for the BFE registry entries, HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE appears to have my administration at full access. 3 entries had data values set as a string of Chinese letters (those were "DependOnService" "ImagePath" and "RequiredPrivileges"). I erased the Chinese characters data value because it annoyed me. I also went in BFE\Parameters\Policy permissions and added an "Everyone" group with full access, just in case - didn't make a difference.
As far as Windows Firewall goes, it says it's not using the recommended settings. When I tell it to do so it pops up an error saying "Windows Firewall can't change some of your settings. Error code 0x80070424".
Whatever infected (or maybe is still infecting)this computer did a number on the security settings. My current goal is getting the BFE started and having an antivirus working again. I've tried reading up on this a bit, I've tried plugging in BFE registry repairs, no luck so far. Anyone have experience dealing with this problem?
It didn't have the exact rootkit virus the link mentioned (this PC is 32bit not 64) but following the link fixed it none-the-less! I believe it was downloading the MpsSvc.reg file that I needed. Now I've got my Firewall back (wasn't even listed in the services menu before), BFE is started and I've downloaded an antivirus. Thank you very much for the help!
Facebook
Twitter
Instagram