Solved

XP Home Security 2013 and Registry issue

Posted on 2013-01-17
10
470 Views
Last Modified: 2013-01-22
Say, I think Ive found a bogus removal link:

http://www.bleepingcomputer.com/virus-removal/remove-xp-security-2013

Associated XP Security 2013 Windows Registry Information:

HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = ''
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\
HKEY_CURRENT_USER\Software\Classes\ "(Default)" = 'Application'
HKEY_CURRENT_USER\Software\Classes\\DefaultIcon "(Default)" = '%1'

How can I recover from this!

Any program I try run has nothing ascociated with it. Can't even run regedit or do  System restore

OS is XP
0
Comment
Question by:shaunwingin
  • 5
  • 3
  • 2
10 Comments
 
LVL 90

Accepted Solution

by:
John Hurst earned 100 total points
ID: 38787017
Run online Malwarebytes to see if you can correct this. Try that and let us know.

If you have the XP install DVD, you can back up your system and try the repair function in XP install to see if that helps.

... Thinkpads_User
0
 

Assisted Solution

by:shaunwingin
shaunwingin earned 0 total points
ID: 38787127
It sais choose a program you want to open this file....
Can one edit the registry from a remote PC? or put drive in another PC and edit registry this way?
0
 

Assisted Solution

by:shaunwingin
shaunwingin earned 0 total points
ID: 38787145
Then I can restore the settings...
See above instrucitons. They call for removal of important keys!

OOPS, Ignore above link: This is it and these are the keys!!! They are in hindsite important keys!
http://www.2-viruses.com/remove-xp-home-security-2013

HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = ''
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%LocalAppData%\.exe" -a "%1" %*
HKEY_CLASSES_ROOT\
HKEY_CURRENT_USER\Software\Classes\ "(Default)" = 'Application'
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 38787157
Can one edit the registry from a remote PC? or put drive in another PC and edit registry this way?

I haven't seen that. The registry is a very live file.

What you might be able to do is boot from a bootable CD and scan the problem drive.

... Thinkpads_User
0
 

Author Comment

by:shaunwingin
ID: 38787190
Please reveiw my quesiotn. There must be a simpler solution!
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 90

Expert Comment

by:John Hurst
ID: 38787218
I did review your question. On line advertising links ("Let me fix your PC") usually completely screw up the user's computer.

If scanning the drive offline cannot repair it, then the operating system may be completely corrupted.

... Thinkpads_User
0
 
LVL 44

Assisted Solution

by:Darr247
Darr247 earned 400 total points
ID: 38788061
Follow the instructions in this Experts Exchange Article by younghv.

Note that a lot more has happened than what you can currently see, so after you get rid of that malware, backup all your data, then do a full format and reinstall windows (or use the recovery partition or disks that came with your computer).
0
 

Author Comment

by:shaunwingin
ID: 38791854
pls send link to: Run online Malwarebytes
0
 
LVL 44

Expert Comment

by:Darr247
ID: 38791868
Did you try following the steps in that article?
0
 

Author Closing Comment

by:shaunwingin
ID: 38804852
Solved by Getting into CMD shell and launching programes from there and download malwarebytes
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Just about everyone has an old PC laying around.  Ask anyone in the IT industry, whether they are a professional or play in it as a hobby.  From outdated Desktops to cheap "throwaway" laptops, they are all around and not as hard to "fix up" as you m…
Sometimes a user will call me frantically, explaining that something has gone wrong and they have tried everything (read - they have messed it up more and now need someone to clean up) and it still does no good, can I help them?!  Usually the standa…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now