Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 488
  • Last Modified:

XP Home Security 2013 and Registry issue

Say, I think Ive found a bogus removal link:

http://www.bleepingcomputer.com/virus-removal/remove-xp-security-2013

Associated XP Security 2013 Windows Registry Information:

HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = ''
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\
HKEY_CURRENT_USER\Software\Classes\ "(Default)" = 'Application'
HKEY_CURRENT_USER\Software\Classes\\DefaultIcon "(Default)" = '%1'

How can I recover from this!

Any program I try run has nothing ascociated with it. Can't even run regedit or do  System restore

OS is XP
0
shaunwingin
Asked:
shaunwingin
  • 5
  • 3
  • 2
4 Solutions
 
John HurstBusiness Consultant (Owner)Commented:
Run online Malwarebytes to see if you can correct this. Try that and let us know.

If you have the XP install DVD, you can back up your system and try the repair function in XP install to see if that helps.

... Thinkpads_User
0
 
shaunwinginAuthor Commented:
It sais choose a program you want to open this file....
Can one edit the registry from a remote PC? or put drive in another PC and edit registry this way?
0
 
shaunwinginAuthor Commented:
Then I can restore the settings...
See above instrucitons. They call for removal of important keys!

OOPS, Ignore above link: This is it and these are the keys!!! They are in hindsite important keys!
http://www.2-viruses.com/remove-xp-home-security-2013

HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = ''
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\
HKEY_CURRENT_USER\Software\Classes\ "(Default)" = 'Application'
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
John HurstBusiness Consultant (Owner)Commented:
Can one edit the registry from a remote PC? or put drive in another PC and edit registry this way?

I haven't seen that. The registry is a very live file.

What you might be able to do is boot from a bootable CD and scan the problem drive.

... Thinkpads_User
0
 
shaunwinginAuthor Commented:
Please reveiw my quesiotn. There must be a simpler solution!
0
 
John HurstBusiness Consultant (Owner)Commented:
I did review your question. On line advertising links ("Let me fix your PC") usually completely screw up the user's computer.

If scanning the drive offline cannot repair it, then the operating system may be completely corrupted.

... Thinkpads_User
0
 
Darr247Commented:
Follow the instructions in this Experts Exchange Article by younghv.

Note that a lot more has happened than what you can currently see, so after you get rid of that malware, backup all your data, then do a full format and reinstall windows (or use the recovery partition or disks that came with your computer).
0
 
shaunwinginAuthor Commented:
pls send link to: Run online Malwarebytes
0
 
Darr247Commented:
Did you try following the steps in that article?
0
 
shaunwinginAuthor Commented:
Solved by Getting into CMD shell and launching programes from there and download malwarebytes
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 5
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now