Help with getting rid of malware/trojan (Vista Security 2011)?

Question

I'll start off with the story, go to the virus problem, and then my question is at the bottom. Just skip ahead if you want.


Story:
So last Thursday I tried downloading the first Chiodos album from Fenopy. It was verified as virus free but obviously it was lying. Now whenever I tried opening up any program or turned on the computer, "Vista Internet Security 2011" popped up saying I had viruses. Since I'm not exactly "technology-impaired" and actually want to go into a field involving computers, I knew immediately that this thing wasn't something I should trust. So I stopped the process for it in the Task Manager and deleted the file and folders I downloaded. I did a full scan with Avast! AntiVirus (which I was angry at for not catching the virus earlier when I contracted it. And FireFox too, for that matter) and some viruses pulled up. Deleted those files and thought all was good. So I restarted the computer. And it repeated. Pop ups of "viruses" continued, couldn't use the internet because everything was "dangerous".
So it was overdrive time. Using my iPod, I looked up how to get rid of this virus. I learned that this virus is most likely a Trojan.FakeVirus. So following the instructions I was given, I tried getting rid of it. Safe Mode, normal start up, all that stuff. Only thing is there was not as many processes, files, or registry files that the instructions (I looked at many, many websites on how to get rid of this) had specified. This concerned me a bit. Then, Vista said I had an update. Using the knowledge I do have, I knew this was a legitimate update and not this virus trying to scam me. So I updated and restarted the laptop.



The current problem: 
I tried opening up Mozilla FireFox and an "Open With" screen popped up. This was strange to me, but I eventually hit "Browse" and found where the program file was and started it up. Then the "Save File" pop up appeared and said I needed to save firefox.exe or whatever the file was. This was still strange to me, since I exited that out and I could still use FireFox perfectly. Everything was fine. Java, Flash, QuickTime, all my add-ons, and everything was working fine. I tried other files and it is the exact same. I have to find the program file with the "Open With" window and open it that way. And only certain files open up completely. I downloaded MalwareBytes and my laptop shut off about 51,000 files in. I think it was at MicrosoftWorks or something like that.



Question: 
Anyone know how I can fix this without having to restart the hard drive? There's a lot of stuff on here I want to keep and lots of these instructables aren't helping very much. I can't even tell if this is a virus problem or just a messed up setting anymore. So, help?

Mike S · Accepted Answer

http://www.bleepingcomputer.com/virus-removal/remove-antivirus-vista-2010

Removal instructions.......................

Anonymous · Answer

Sorry man, the only solution this late in the game is to reformat.

Before you do, just back up your files. You use a device known as an IDE/SATA to USB Adapter (google "BT-300 topmicrousa"). This device allows you to access the files without going through the operating system (the thing that the virus is on). Just copy and paste the important files you need and back them up. This device can transfer files at speeds around 480mbps which is insanely fast. Its fast, efficient, and durable and I would highly recommend it.

After you back up your files, reformat the hard drive and recopy the files. I guarantee you this solution works, I've done it before multiple times.

Best of luck.

Wide Glide · Answer

No, MIke read the Question and gave you the correct removal guide. No easy one step fix in this. Multiple steps to remove, BUT can be done.
==========BASE LINE============
IT"S FAKE, Remember THAT!!!!!!!!!!!!
==============================
XP Anti-Spyware 2011, Vista Security 2011, Win 7 Internet Security 2011 Removal Guide
http://www.bleepingcomputer.com/virus-removal/remove-win-7-internet-security-2011
Removal instructions for XP Total Security 2011 (and its clones)
http://forums.malwarebytes.org/index.php?showtopic=82696

Scroll down to "Automated Removal Instructions for XP Anti-Virus 2011, Vista Total Security 2011, and Win 7 Home Security using Malwarebytes' Anti-Malware:" and Begin and DO NOT SKIP STEPS or this won't work.

âºâºâºMalwarebytes’ Tutorialâââ
http://vmsar.wordpress.com/2010/02/12/malwarebytes-tutorial/
âºâºâºMalwarebytes’ Video Tutorialsâââ
http://www.youtube.com/user/Malwarebytes?feature=mhum#p/u/1/xSHw-LItYmE
âºâºâºFor those having trouble running Malwarebytes Anti-Malwareâââ
http://www.bleepingcomputer.com/forums/topic267354.html
âºâºâºHow to Rename Malwarebytesâââ
http://www.youtube.com/watch?v=Zr_Tbv1NuCE&feature=player_embedded

NOTE: You can change the exe file of any Security Program in-order to get it to run. But remember the "Malware" is going to try to block. I have changed them to "FixMeNow" at times and works

Now, go kick some malware butt, !!!!!!!

Anonymous · Answer

Try downloading Malware Bytes and scanning your computer. Here is the link:

http://www.malwarebytes.org/mbam-download.php

Sometimes the infection on your computer tries to block removers from running. If you have problems running MBAM, you will first need to download and run this file:

http://download.bleepingcomputer.com/grinler/rkill.exe

To fix the 'open with' problem, merge this file into your registry:

http://filext.com/WinXP_EXE_Fix.reg

After you run rkill, you should be able to run MBAM. Good luck.

Anonymous · Answer

Also, please follow the removal recommendations outlined here: http://answers.yahoo.com/question/index;_ylt=AnorM4tB4Wuvn3stS8eboO3sy6IX;_ylv=3?qid=20110501111039AAgn5fJ

Trending News

Help with getting rid of malware/trojan (Vista Security 2011)?

5 Answers