Remove Safety Center Virus

Safety Center is a virus that pretends to be a valid security program. You must remove Safety Center before it can further endanger the computer.

Safety Center is a fake multi-security program for Windows that is part of the operation of Windows Security Suite. To deceive computer users, the interface is adapting the looks of Windows own safety center to make it look like a part of operating system. It will have tools like Spyware Scanner, Surfing Protection, Cookies Remover, Registry Doctor, Firewall, Memory Manager and so on. Safety Center was being spreads and dropped on computers with the help of Trojan. This malware also modifies the registry to simultaneously load self in Windows start-up.

Once the virus got a hold on the system, warning messages will greet computer users after logon. An alert will contain the following message:

We are sorry but your query looks similar to requests from a computer infected by viruses or spyware applications. To protect our users, we can’t proceed with your request at the moment. We will restore your access as quickly as possible, so try again later. Meanwhile, if you suspect that your computer or network has been infected, you might want to run a virus checker or spyware remover to make sure that your system is free of viruses and other malicious software.

Rogue program such as Safety Center is less harmful than other on the same kind. Removing this threat from a computer is achievable with the help of a removal tool or authentic anti-malware application. There is no guarantee that manually removing Safety Center virus can get rid of hidden files and registry entries. So stick with automatic method.

Screenshot Image of Safety Center Virus:

Safety Center Virus

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7

How to Remove Safety Center

Systematic procedures to get rid of the threat are presented on this section. Make sure to scan the computer with suggested tools and scanners.

NOTE: It is recommended to PRINT or BOOKMARK this instruction because we need to restart Windows during the virus removal process.

Step 1 : Remove Safety Center with this recommended tool

This guide requires a tool called Malwarebytes' Anti-Malware. It is a free tool designed to eradicate various computer infections including Safety Center. MBAM scanner and malware removal tool is distributed for free.

1. In order to completely remove Safety Center, it is best to download and run the recommended tool. Please click the button below to begin download.

Download Tool

2. After downloading, double-click on the file to install the application. If you are using Windows Vista or higher version, right-click on the file and select 'Run as administrator' from the list.

3. When User Account Control prompts, please click Yes to proceed with the installation.

4. Follow the prompts and install as 'default' only. There are no changes needed during the installation process.

5. Before the installation procedure ends, MalwareBytes Anti-Malware will prompt if you want to launch the application. Please leave the check mark on Launch Malwarebytes Anti-Malware.

Launch MBAM

6. Lastly, click the Finish button.

7. Malwarebytes Anti-Malware will launch for the first time. It is necessary to proceed with database update.

8. Remove all media such as Memory Card, CD, DVD, and USB devices. Then, restart the computer.

Boot in Safe Mode on Windows XP, Windows Vista, and Windows 7 system
a) Before Windows begins to load, press F8 on your keyboard.
b) It will display the Advanced Boot Options menu. Select Safe Mode.

Start computer in Safe Mode using Windows 8 and Windows 10
a) Close any running programs on your computer.
b) Get ready to Start Windows. On your keyboard, Press and Hold Shift key and then, click on Restart button.
c) It will prompt you with options, please click on Troubleshoot icon.
d) Under Troubleshoot window, select Advanced Options.
e) On next window, click on Startup Settings icon.
f) Lastly, click on Restart button on subsequent window.
g) When Windows restarts, present startup options with numbers 1 - 9. Select "Enable Safe Mode with Networking" or number 5.

Startup Options

h) Windows will now boot on Safe Mode with Networking. Proceed with virus scan as the next step.

9. Once Windows is running on Safe Mode, find the icon of MalwareBytes Anti-Malware. Double-click to launch the program.

10. Choose Threat Scan on scanner's console to ensure that it thoroughly check the PC for any presence of Safety Center and other forms of threats. Click the Start Scan button to begin.

MBAM Scan

11. Once the scan has completed, Malwarebytes Anti-Malware will issue a list of identified threats. Mark all threats and click on Remove Selected.

MBAM Scan Finish

12. If it prompts to restart the computer, please reboot Windows normally.

Step 2 : Double-check if Safety Center Still Exists

1. Click on the button below to download Norton Power Eraser from official web site. Save it to your desktop or any location of your choice.

NPE Download

2. After downloading, navigate its location and double-click on the NPE.exe file to launch the program.

3. Norton Power Eraser will run. If it prompts for End User License Agreement, please click on Accept to proceed.

4. On NPE main window, click on Advanced Options. We will attempt to remove "Safety Center" by thoroughly scanning your current operating system.

Advance Scan

5. On next window, select System Scan and click on Scan now to perform standard scan on your computer.

Scan the System

6. NPE will proceed with the scan. It will search for Trojans, viruses, and malware like Safety Center. This may take some time, depending on the number of files currently stored on the computer.

Step 3 : Run Additional Scanner to Ensure that Safety Center is Totally Deleted

Online Virus Scanner:
Another way to remove a virus without the need to install additional anti-virus software is to perform a thorough scan with free Online Virus Scanner. Browse this page to see a list of free services from specific anti-virus and security company.

Alternative Removal Procedures for Safety Center

Use Windows System Restore to return Windows to previous state

During an infection, Safety Center drops various files and registry entries. The threat intentionally hides system files by setting options in the registry. With these rigid changes, the best solution is to return Windows to previous working state is through System Restore.

To verify if System Restore is active on your computer, please follow the instructions below to access this feature.

Access System Restore on Windows XP, Windows Vista, and Windows 7

a) Go to Start Menu, then under 'Run' or 'Search Program and Files field, type rstrui.
b) Then, press Enter on the keyboard to open System Restore Settings.

rstrui-win7

c) Windows will display list of saved restore points. Select the most recent one to restore Windows to previous working and clean state.
d) It may take some time to fully restore back-up files. Restart Windows when done.

Open System Restore on Windows 8 and Windows 10

a) For Windows 8 user, go to Start Search, while on Windows 10, use the Start Menu Search and type rstrui.
b) Click on the located program to open System Restore window.

rstrui-win8

c) Windows will display list of saved restore points if it is active. Select the most recent one to restore Windows to previous working and clean state.
d) It may take a while to fully restore back-up files. Restart Windows when done.

If previous restore point is saved, you may proceed with Windows System Restore.

Optional : Safety Center manual uninstall guide

IMPORTANT! Manual removal of Safety Center requires technical skills. Deleting system files and registry entries by mistake may result to total disability of Windows system. We advise you to perform a backup of registry before proceeding with this guide.

1. Kill any running process that belongs to Safety Center.
- Press Ctrl+Alt+Del on your keyboard.
- When Windows Task Manager appears, look for Safety Center files (refer to Technical Reference) and click End Process.

End Task

2. Delete all registry entries that belong to this malware.
- Press [Windows Key]+R on your keyboard.
- In the 'Open' dialog box, type regedit and press Enter. This will open registry editor.
- Find and delete registry entries as mentioned in Technical Reference section.
- Close registry editor. Changes made will be saved automatically.

Run Regedit

3. Scan the computer with antivirus program.
- Connect to Internet and open your antivirus software. Please update to obtain the latest database and necessary files.
- Restart the computer in Safe Mode.
- Just before Windows logo begins to load press F8 on your keyboard.
- On Windows Advanced Boot Options, select Safe Mode and press Enter.
- Thoroughly scan the computer with your updated antivirus software.

4. Delete all files dropped by Safety Center.
- While still in Safe Mode, search and delete malicious files. Please refer to 'Technical Reference'. Make sure that you execute 'End Task' first before deleting the file. Otherwise, the system will not let you perform this action.

Associated Files and Folders:Added Registry Entries:

Ways to Prevent Safety Center Infection

Take the following steps to protect the computer from threats. Suggested tools and security setup within installed software helps prevent the same attack on your PC.

Install an effective anti-malware program

Your first line of defense would be an effective security program that provides real-time protection. We have a list of anti-malware program that are tried and tested. It does not only scan files but also monitors your Internet traffic and is extremely active on blocking malicious communication. Click on the button below to download our recommended anti-malware program.

Get Protection Software

Always update your installed software

Software vendors constantly releases updates for programs whenever a flaw is discovered. Getting the updates makes the computer more secured and help prevents Trojan, virus, malware, and Safety Center similar attacks. If in case your program is not set for instant update, it usually offered from vendor's web site, which you can download anytime.

Maximize the security potential of your Internet browser

Each browser has their own feature where in you can adjust the security settings that fit your browsing habit. We highly encourage you to maximize the setup to tighten the security of your browser.

Apply full caution when using the Internet

Internet is full of fraud, malware, and many forms of computer threats including Safety Center. Implement full caution with links that you may receive from emails, social networking sites, and instant messaging programs. It might lead you to malicious sites that can cause harm to your computer. Avoid strange web sites that offers free services and software downloads.

9 Responses

  1. jeff forslund says:

    We can’t go on line to download a repair. Is there an other way to repair?

  2. DoUbLe HeLiX says:

    Google the “.exefix registry fix.”

    Run in safe mode with networking

    Then install MBAM

    Make sure to update MBAM

    Do full scan

    Then run COMBOFIX

    All will be better

  3. seankraynak says:

    Okay,…. i’m now trying to download malware removal and reg fix but when i try to download i get that error message thats keeping me from everything. How can i bypass it without reformatting?

  4. Rod says:

    REALLY? cuz it’s not working! has anyone actually had any success getting rid of this stupid thing? Cuz you know what? Malwarebytes and combo fix isn’t doing anything… Admin rights have been compromised… is there anything that can be done from DOS?

  5. Brian says:

    Since “Safety Center” would not let me online to access MBAM or any other anti-virus site, including AumHa, ESET, and Kaspersky, I went on another computer and downloaded MBAM to my external hard drive and ran it on the infected computer. “Safety Center” stopped the scanning of MBAM twice after about 25 minutes of scan time and prior to its finishing the scans, shutting down the computer each time. The third time I ran MBAM, I managed to manually, prematurely shut down MBAM and get a report, deleting the infected objects that it had found at that point in time. That seemed to have “broken the back” so to speak of SC. Another scan with MBAM that ran successfully reported over 400 (!!!!) infected objects — all of which I removed and sent to quarantine to join the ones found in the previous partial scan. A final scan with MBAM turned up nothing.

    The computer ran fine for 3 days, then suddenly, SURPRISE parts of SC were back and active — Windows would not load in NOrmal mode. Scans run in Safe Mode turned up nothing!

    MBAM is a partial, not the total answer, and at the moment I do not know what is.

  6. ken says:

    Use Prevx malware/spyware software to remove “Safety Center”. The software is recommended by 2009 PC Mag Editor’s Coice Award. It uses Prevx’s database to detect malicious software on your computer for all for free, then a purchase (subscription) is required to remove all bogus viruses/spyware/malware completely. hxxp://www.pcmag.com/article2/0,2817,2346862,00.asp Then use the right click delete feature on your mouse to remove the remaining bogus icons on your desktop. It is the fastest least “cumbersome” malware/spyware program you can use. Norton Internet Security could not detect or remove it.

  7. bosstan says:

    SafetyCenter did not allow me to run mbam (saying it is a dangerous application). So I restarted in Safe Mode with networking, started mbam, updated it and ran a complete scan. It found the SafetyCenter, removed it and asked for a restart. I restarted in normal mode and the safety center was gone.

  8. Marsha says:

    I have malwayre on my PC and have now ran it 5 times and rebooted- it says it has found a virus then as soon as I log on again the virus comes back up- pls help!!!

  9. Bruno says:

    This thing is a nightmare, it blocks access to .exe files, so it wont let you run antispyware/malware from the desktop or from windows programs. as it was said earlier, you can look for it under program files. when you find the program, (mine was listed as Internet security 2010) the files are hidden within the directory, so you have to show hidden files. you can either try and delete the directory or rename the .exe file so the program wont start when your computer is restarted. Restart your computer and run your anti spyware. I have malwarebytes , the spyware would not let me open an .exe from either the desktop or windows programs, but I was able to scan the directory within windows explorer with malwarewbytes by right clicking the directory and clicking scan with malwarebytes.

Leave a Reply

Your email address will not be published. Required fields are marked *