Malicious software will often attempt to replace core
system files with modified versions in an effort to take control of the system.
The System File Checker can be used to verify the integrity of the Windows
system files. If any of the files are found to be missing or corrupt, they will
be replaced by running the System File Checker from the command prompt using this command: sfc /scannow , with /SCANNOW the system file checker will scan the
integrity of all protected system files and repairs files with problems when
possible.
See the Administrator: C:\windows\system32\cmd.exe on title.
Figure C.
Next, type sfc /scannow and wait for it to finish.
What is System File Checker? It is a utility in Microsoft Windows that
allows users to scan for and restore corruptions in Windows system files. This
utility is available on Windows
98, Windows
2000, Windows
XP, and Windows Server 2003. Windows
Vista, although in the
Windows NT family of operating systems, scans files using Windows Resource Protection.
In Windows
Vista and Windows
7, System File Checker is
integrated with Windows Resource Protection, which protects registry keys
and folders as well as critical system files. Under Windows Vista, sfc.exe can be used to check specific folder paths, including
the Windows folder and the boot folder.
Source
from http://en.wikipedia.org/wiki/System_File_Checker
Now here's what you must do;
First Run Command prompt as an
Administrator.
Click the Start button and type CMD
in the Instant Search field and press the Enter key
(See Figure A). But in order to elevate your rights as an administrator, click the Start button and type CMD in the Instant Search field then press CTRL + SHIFT + ENTER instead of just ENTER.(See Figure B.)
(See Figure A). But in order to elevate your rights as an administrator, click the Start button and type CMD in the Instant Search field then press CTRL + SHIFT + ENTER instead of just ENTER.(See Figure B.)
Figure A.
See the Administrator: C:\windows\system32\cmd.exe on title.
Figure B.
Here's the comparison
when you hit just the ENTER Key. There is
no Administrator on the title.
Figure C.
Next, type sfc /scannow and wait for it to finish.
After a complete scan you will see the message;
Windows Resource Protection found corrupt files and successfully repaired them.
Details are included in the CBS.Log windir\Logs\CBS\CBS.Log.
For example C:\Windows\Logs\CBS\CBS.Log (See Figure D.)
Details are included in the CBS.Log windir\Logs\CBS\CBS.Log.
For example C:\Windows\Logs\CBS\CBS.Log (See Figure D.)
Figure D.
Here is where the logs are located, and you can view it and analyse in notepad. (See Figure E.)
Figure E.
