Vista Internet Security

March 10th, 2010
Home » Rogue Antispyware » Vista Internet Security

Vista Internet Security description

Vista Internet Security is a fictitious anti-spyware program seeking to trick user and infect system. This  bogus program often comes along with the download and installs itself automatically. The parasite is accompanied by a malicious trojan which enters the system and then creates a backdoor for Vista Internet Security to sneak.

Malware will show you fake scan results and a large amount of various warnings about your system’s  fraudulent infections. It also will offer you to purchase a supposedly legal version of Vista Internet Security program. This is a fraud and none of the information should be trusted. Do not spend your money for this scam. Just ignore all alerts and kill the parasite instead.

Manual Vista Internet Security Removal


Vista Internet Security processes:

av.exe
Help: A Guideline of Killing Malicious Processes


Vista Internet Security registry values:

HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "av.exe" /START "%1? %*"
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command "(Default)" = "av.exe" /START "%1? %*"
HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "av.exe" /START "%1? %*"
HKEY_CLASSES_ROOT\secfile\shell\open\command "(Default)" = "av.exe" /START "%1? %*"
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command "(Default)" = "av.exe" /START "firefox.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = "av.exe" /START "firefox.exe" -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = "av.exe" /START "iexplore.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "AntiVirusOverride" = "1"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "FirewallOverride" = "1"
Help: How to edit windows registry entries


Other malicious Vista Internet Security files:

%Documents and Settings%\[UserName]\Application Data\av.exe
%Documents and Settings%\[UserName]\Application Data\WRblt8464P

The manual removal of files and registries should be performed by experienced users. A system can be badly affected if any error is done during the manual removal. We recommend using automatic removal tools to delete Vista Internet Security, if you are not familiar with deleting malware manually.

Tags:

Trackbacks /
Pingbacks

  1. Remove Antispyware Vista, Antispyware Vista removal help

Leave a Reply