Vista Total Security 2011
Vista Total Security 2011 is a rogue anti-spyware scanner that fakes being a useful anti-malware product while shutting down significant portions of your computer and barraging you with fake infection identifications. Vista Total Security 2011 can block websites, redirect your browser, prevent programs from functioning correctly, and create desktop alert messages with false information. This rogue security program is known for being difficult to remove if not fought off quickly, so keep your security settings high and be on the lookout for Vista Total Security 2011 so that you can remove it if it does slip past your defenses.
An Infection with Stealth and Disguises
Instead of being the independent and the individual product it tries to depict itself to be, Vista Total Security 2011 is one slight tweak to a broader rogue security product template. Here are a few of the other names this rogue security product can use to infect your computer: Live Security Platinum, Vista Anti-Spyware 2011, Vista Security 2011, Vista Internet Security 2011 and Vista Anti-Virus 2011. Vista Total Security 2011 may be found with the '2011' appellation or without it, and will cleverly alter the operating system portion of its name to match the operating system you're actually running.
Vista Total Security 2011 has been documented to be uploaded to otherwise innocent file-sharing sites, but its relatives also have their own malicious home websites. Even if you don't visit the 'wrong' website, you may acquire the Vista Total Security 2011 infection anyway, since it also uses trojan-based delivery methods.
How Vista Total Security 2011 Impairs Your Machine
Once you get past the many guises used by Vista Total Security 2011 for infiltration, its activities are fairly usual as far as rogue security products go. The primary symptom is simply an endless march of pop-up alert messages on your desktop and browser. Examples include the following:
Internet Explorer alert. Visiting this site may pose a security threat to your system!
Possible reasons include:
- Dangerous code found in this site's pages which installed unwanted software into your system.
- Suspicious and potentially unsafe network activity detected.
- Spyware infections in your system.
- Complaints from other users about this site.
- Port and system scans performed by the site being visited.
Things you can do:
- Get a copy of Vista Total Security 2011 to safeguard your PC while surfing the web (RECOMMENDED)
- Run a spyware, virus and malware scan
- Continue surfing without any security measures (DANGEROUS)
Security breach!
Beware! Spyware infection was found. Your system security is at risk. Private information may get stolen, and your PC activity may get monitored. Click for an anti-spyware scan.
System danger!
Your system security is in danger. Privacy threats detected. Spyware, keyloggers or trojans may be working the background right now. Perform an in-depth scan and removal now, click here.
Privacy threat!
Spyware intrusion detected. Your system is infected. System integrity is at risk. Private data can be stolen by third parties, including credit card details and passwords. Click here to perform a security repair.
All of these errors and any others Vista Total Security 2011 provide are complete fabrications and can actually lead you to distrust totally innocent files or websites. Vista Total Security 2011 may use these to hijack your web browser through proxy server-based vulnerabilities, pushing you towards its own website. Even more dangerous is Vista Total Security 2011's ability to close programs that could successfully delete it and other malware, upgrading it from a simple nuisance into a serious security risk!
Buying Vista Total Security 2011 is the worst possible course of action, since you'll be giving your credit card information away to criminals. Instead, try using this key: '1147-175591-6550'. This free registration may cause the rogue security product to lower its defenses long enough for you to delete Vista Total Security 2011 and get things back to normal.
File System Modifications
- The following files were created in the system:
# File Name 1 %AllUsersProfile%\t3e0ilfioi3684m2nt3ps2b6lru 2 %AppData%\Local\[3 RANDOM LETTERS].exe 3 %AppData%\Local\t3e0ilfioi3684m2nt3ps2b6lru 4 %AppData%\Roaming\Microsoft\Windows\Templates\t3e0ilfioi3684m2nt3ps2b6lru 5 %AppData%\t3e0ilfioi3684m2nt3ps2b6lru 6 %Temp%\t3e0ilfioi3684m2nt3ps2b6lru 7 %UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe 8 %UserProfile%\Templates\t3e0ilfioi3684m2nt3ps2b6lru
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Classes\.exe "(Default)" = 'exefile'HKEY_CURRENT_USER\Software\Classes\.exe "Content Type" = 'application/x-msdownload'HKEY_CURRENT_USER\Software\Classes\.exe\DefaultIcon "(Default)" = '%1' = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "%1" %*'HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "IsolatedCommand" = '"%1" %*'HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas\command "(Default)" = '"%1" %*'HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas\command "IsolatedCommand" = '"%1" %*'HKEY_CURRENT_USER\Software\Classes\exefile "(Default)" = 'Application'HKEY_CURRENT_USER\Software\Classes\exefile "Content Type" = 'application/x-msdownload'HKEY_CURRENT_USER\Software\Classes\exefile\DefaultIcon "(Default)" = '%1'HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "%1" %*'HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command "IsolatedCommand" = '"%1" %*'HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command "(Default)" = '"%1" %*'HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command "IsolatedCommand" - '"%1" %*'HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe"'HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode'HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "C:\Program Files\Internet Explorer\iexplore.exe"'HKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOT\.exe\DefaultIcon "(Default)" = '%1'HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "%1" %*'HKEY_CLASSES_ROOT\.exe\shell\open\command "IsolatedCommand" = '"%1" %*'HKEY_CLASSES_ROOT\.exe\shell\runas\command "(Default)" = '"%1" %*'HKEY_CLASSES_ROOT\.exe\shell\runas\command "IsolatedCommand" = '"%1" %*'HKEY_CLASSES_ROOT\exefile "Content Type" = 'application/x-msdownload'HKEY_CLASSES_ROOT\exefile\shell\open\command "(Default)" = '"%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe" /START "%1" %*'HKEY_CLASSES_ROOT\exefile\shell\open\command "IsolatedCommand" = '"%1" %*'HKEY_CLASSES_ROOT\exefile\shell\runas\command "IsolatedCommand" = '"%1" %*'
Additional Information on Vista Total Security 2011
- The following messages's were detected:
# Message 1 Attention: DANGER!
ALERT! System scan for spyware, adware, trojans and viruses is complete.
Vista Total Security 2011 detected 35 critical system objects.2 System danger!
Your system is in danger. Privacy threats detected.
Spyware, keyloggers or Trojans may be working in the
background right now. Perform an in-depth scan and removal
now, click here.3 Vista Total Security 2011 ALERT
Internet Explorer alert. Visiting this site may pose a security threat to your system
Great help, life saver... Thanks
Can Microsoft secruity essentails full scan find and get rid of vista total protection?
You can tell this is fake because once the program opens it say at the top \\\"Vista Total Security Unregstered version\\\" whick mean that the second last word of that is spelled wrong until you buy it!
Don\\\'t Buy it... Waste of Money
@maxx
VTS2011 disables MSE. It's useless...
It doesn't show up on my "process" on task manager? which ones should I end??!
%UserProfile%\Local Settings\Application Data\[3 RANDOM LETTERS].exe
%AppData%\Local\[3 RANDOM LETTERS].exe
-What is this? what am I suppose to end on my process bar?
Help get rid of Vista Total Security 2011!!!!!!!!!!!!!!!!!!! PLEASE
The process to look for is one that has "Games for Windows Backsplash" in the description with about 14000K memory being used. When I ended this process, Vista Total Security exited; and I didn't even have any sort of game finder running.
If you are just starting up your computer, make sure to use your Task Manager right away, and end a process with "COM Surrogate" in the description. This is the process that disables your network connections. It also seemed that when I ended it, Vista Total Security did not start up at all.
Upon startup, end the process with description "COM Surrogate"
This will keep your network connections intact and will keep Vista Total Security from running on its own.
I am presently on my husbands computer at; heaven2111@aol.com. I just had McAFEE down loaded on my desk top computer and my lap top. Just 2 days after downloading Vista Total Security took over my lap top, and I have everything you listed that happens, I cannot access IE, with continous pop-ups, of course they tell me the only way that I can rid all the infections and use my computer is buy buying their package, which I have refused and demanded them to give my service back to me. They have totally blocked me from using my lap top which I really need.Who can I turn this into and WHY hasn't this company been stopped??? Please......... help me.
Thank You
Sylvia Vaughan
Vista Total Security has taken completely over my computer (lap top) which I need really bad. I am presently on my husbands computer at heaven21112AOL.COM. How can this company still be operating??? They have blocked all my websites mainly my IE which I need to even use my laptop, who can I turn this company into? Please........... Help.
Thank You
Sylvia Vaughan
system restore ... a whole lot easier .Works every time
You just saved my life 🙂
It requires a little patience and attention but I managed to delete all the registry
Thank you very much!
Our virus name is 35cp0q5vo08ctd.
Got it after an hour and half of doing all your instructions!
Great help mate!