• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 643
  • Last Modified:

XP Security 2012 Virus

My windows XP computer has been infected with a virus call XP SECURITY 2012 UNREGISTERED VERSION.  How do I remove it?
0
deklinm
Asked:
deklinm
1 Solution
 
PaulD77Commented:
download this and lket it run a full scan...best free malware remover out there.

http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html

0
 
JohnBannonIT ManagerCommented:
Restart your computer while repeatedly pressing F8, when the menu comes up, Select Safe Mode.
After your machine has started in safe Mode, go to start, programs, accessories, system tools, System restore. Select Restore my pc to an earlier date, Select a date prior to infection. Allow system to reboot and restore to previous state.

Johnb
0
 
younghvCommented:
Malwarebytes won't work properly until you fix some registry entries and run a rogue process stopper.
The steps you need to follow are in this EE Article:
2012-Malware-Variants

Be sure to follow up with the rootkit checks - and there may even be more steps you have to take.
Post back the logs that are generated by the scanners.
0
 
rpggamergirlCommented:
That link younghv is a good tutorial.

If the problem persists, and can't run any programs due to malicious processes or file association borked run TheKiller first.
Download TheKiller to your Desktop
http://maliprog.geekstogo.com/explorer.exe

Note that "TheKiller" is renamed as explorer.exe
Double click on it (If running Vista or Windows 7, right click on it and select "Run as an Administrator")
Press OK button after program finish
Do not restart your system after this step. You then run other tools like MalwareBytes, TDSSKiller or ComboFix.

NOTE: If malware blocks TheKiller from running please try to run it several more times.


If the rogue infection is gone but things aren't going well which means the rogue must've deleted the service BFE (Base Filtering Engine) and other services which means you need to import those reg keys from somewhere else.
Check this thread for the solution to fix the damage done.
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/Windows_Vista/Q_27513892.html
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now