Solved

xp total security 2011 removal ?

Posted on 2011-03-08
4
929 Views
Last Modified: 2012-05-11
wow, this program is tough.
i am not sure what to do.
i cant reach the malware tools online (spydoctor, i've read)
because this virus keeps taking control of IE.  
how can i disable it long enough to install spydoctor (or some other, better program)?
0
Comment
Question by:droldham
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 7

Expert Comment

by:jrwarren
ID: 35077988
1) Download malwarebytes executeable to USB drive.
2) Boot the machine in safe mode w/networking.
3) Logon as local admin
4) install malwarebytes

--- If you receive the error that the installer is not running, you may need to create a new local admin account in safe mode.  reboot into normal mode and log onto the new account.  Install malware, log off.  Reboot to safe mode w/networking.  Log on as the original local admin - remove the new account.

5) Execute malwarebytes and update it.
6) log off an on every account, in safe mode, on the machine and execute malwarebytes.
7) load normal mode
8) log into each account and execute malwarebytes.

After this is done there is more work to be completed to ensure a fully clean machine is achieved, but this will get you so the virus is not fully active and is functional enough to allow you to browse the web without recontaminating yourself.

0
 

Expert Comment

by:sithunml
ID: 35078054
There is huge list of program from microsoft "Sysinternals tools", you can reach them at "http://live.sysinternals.com/" or "http://technet.microsoft.com/en-us/sysinternals/bb545027" find the running process with Porcess Explorer "http://technet.microsoft.com/en-us/sysinternals/bb896653" and kill the process that you suspect.
And try to install your favorite anti virus program.
0
 
LVL 35

Accepted Solution

by:
torimar earned 500 total points
ID: 35078278
Please check this detailed removal guide, and follow it by the letter:
http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011

Note: This malware comes along under many different names; do not worry if the page name linked to above seems to be for another software: your problem is covered.
0
 

Author Closing Comment

by:droldham
ID: 35095541
so far, so good - having another computer was key to this process so that i could dowload programs to CD and transfer to the patient - i fear that i would'nt have been able to fix without it...this is a nasty virus!  thank you for your help!
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question