Fake Antispyware XP 2010 program | How to remove it from computer

The Best Way to remove it is to use System Restore to restore your computer to a time when there was no fake antispyware in your computer.

For Below Solution your to work System Restored should be enabled previously in you computer.

To do this Follow this instructions:

1> restart you computer computer in safe mode to do this while bios screen comes up keep tapping F8 function key, In latest motherboards F8 Function key takes you to Boot from order if some blue screen comes up with your hard disk and cd drom just press ESC (Escape) key and keep taping F8 function key it will take to the OS menu where you would be having lot of otion from that select only SAFE MODE.

2> Immediately When you reach in safe mode you will get a window where it asks you yes or now, If you select yes it will open system restore for you & if you select no then follow Ponint 3.

3> Go to start --> Program Files --> Accessories --> System Tools --> Select System Restore.
If followed pint 2 properly skip this point or continue.

4> A window will come up name System Restore with two options 1)Restore my computer to an earlier time & 2) Create restore point. Select 1st option & click next.

5) Next screen would show you the calender and inside calendar there would be few dates highlighted. Highlighted dates are the dates on which restore point was created.

6> Select one highlighted date when you didnt had this problem and click next and it will ask you to confirm to confirm click next you system will restart and start restoring to selected date settings.

A number of the above methods should work - if still unresolved you could try manual removal by following these instructions - there are some useful user comments if you scroll - deleting the user account was a bit severe but it appears to have worked:

"Remove PC AntiSpyware 2010 (Removal Instructions)":
http://www.xp-vista.com/spyware-removal/pcantispyware-pc-antispyware-removal-instructions

I have loads of customer falling for this 1. I would recommend Malwarebytes as mentioned above. Every computer I have scanned with this has been fixed.

If you find you can't install the program when double clicking, right click the install file and choose start from the options.

The suggested tools are all good tools for this, attach the log specially if using ComboFix.
And if the nasties are blocking .exes to run then run exeHelper first to undo the blocks. This tool also removes the common rogues.
Please download exeHelper to your desktop.
http://www.raktor.net/exeHelper/exeHelper.com 
Double-click on exeHelper.com to run the fix.
A black window should pop up, press any key to close once the fix is completed.

In addition to the other great suggestions posted; if they all fail, try creating a bootable antivirus CD. If that doesn't fix it, then you've got some serious problems. It's always good to keep on hand at anytime:
https://www.experts-exchange.com/questions/25347695/anti-infection-CD-solution.html 
https://www.experts-exchange.com/articles/Storage/Misc/Creating-a-bootable-CD-USB.html

I'm going through all your suggestions, solutions, options... See what I can do to remove this XP 2010 Antivirus program, etc!

xtreminator,

I did as you told me to do so.  I made a screenshot and saved in safe mode.   Do you see the 2010 XP Antivirus files?
WindowsSAFEMODE.gif

xtreminator,

This is in normal mode - same thing...  I don't see the 2010 XP files...

Perhaps SUPERAntivirus took care of 2010 XP files because I quaranteed a lot of malware and spyware using that program.

Your thoughts xtreminator?
WindowsNORMAL.gif

OK. First you need to be in normal mode and do the following.

Download Rkill.com and Combofix (as suggested) - will need to download from another PC and use flash drive to copy over files to infected PC.

Use Rkill to stop malware processes and then run Combofix.
This will permanently remove this.

I think SUPERantivirus took care of it?

Is there another way to find out if I still have this Antispyware XP 2010 program?  Or if it has been quaranteed?

Ok you got it byron, will do that now...  Will download Malwarebytes and then go from there and then report on it here...

Here are the results of Malwarebytes Anti-Malware Quick Scan:

Malwarebytes-QuickScanResults.gif

Let me know what your thoughts are - is my computer OK?   Should I quarantine all those files listed in the quick scan?  Or could it DISABLE my computer by taking bits and pieces of the registry with it like what happened with SUPERantiSpyware?   I got my computer fixed when one Experts Exchange expert provided xp-exe-fix.reg to fix the registry.  That fixed the computer upon startup so programs could be activated - and plus I could click on any program instead of having to use the 'OPEN WITH' dialog box to open up any program within the computer - thats what happened when I quaranteed all viruses and malware using SUPERantiSpyware.

Let me know what your thoughts are?  

Plus should I run an Malwarebytes full scan - or is it not necessary because my computers OK?

Everything listed there needs to be removed. Click on the remove selected button. It will probably ask you to reboot. Report any other problems you may discover when you log back in.

Okay, I'll do just that....

yeah you dont have to worry about malwarebytes stopping something that your computer actually needs... once you're clean, run malwarebytes every few weeks and remove anything it finds

Trustwise - I ran Combofix and here's the log file in notepad.txt.

Experts, check it out.  Any additional steps needed?

Here it is, can't see the attachment in the most recent post.  Hopefully this post shows the log file from Combofix.
COMBOFIX-log.txt

Combofix picked up a few the others missed, looks good now.

One last question, I ran the Combo quick scan.  Should I run the full scan another time?  Or am I all good and to just stick with running Malwarebytes once every few weeks, etc?

malwarebytes will be ok going forward, unless you get a particularly bad infection... then do combofix in that case

Great, thanks everyone!  Thanks Byron!

PERFECT THANKS!!!

Any time

You're welcome Rob.

sorry for late reply......RobWellsMc
I've check screen shots, there is no sigh of xp 2010 in folder but could be in sub directory.
another thing...
you can easily find this program location by
go to start > programs > xp 2010 antivirus (or what is the name of program) > right click on the icon of xp 2010 program go to property > find target > this will bring you to the cave of evil xp 2010 program.remove all file include folder. 
as i mentioned in earlier post...

typically this infection is installed as a rootkit, you likely wouldn't see it on the start menu or as a file... and if you did, it would respawn itself as soon as it was deleted (assuming you could even end-process on it long enough to delete it)