Vista Security 2012 scam. How to delete

Vista Security 2012

Vista Security 2012

Do not ever trust Vista Security 2012 if you happen to see it in front of your PC. It is worth saying that this is the latest malware threat which you should not keep or let it remain inside of your workstation. Therefore, please do not have any more doubts whether to keep it or not. Needless to say, you should not ever purchase it. Well, if you carefully pay attention to this newsletter it will become quite obvious to you that you should not even think of paying money for Vista Security 2012 virus. If you really care for the security of your machine, if you are not the personality who wastes funds for totally useless applications then you should not ever buy Vista Security 2012, since this is the scam developed in order to damage your PC.

In addition to the above-stated facts, Vista Security 2012 has the goal to steal as much money from you as it is able to. This goal is reached sometimes by means of tricking, fooling and deceiving PC users. Don’t forget about the circumstance that this rogue is elaborated and brought inside of your PC via Trojan horses and all possible gaps and leaks in the security of your computer. As soon as their purpose is accomplished users would see the main program interface window of this fake anti-virus in front of their PCs. The very fact that the malware somehow got inside of your system means that the security protection settings of your computer need great enhancement. Moreover, you should be on the alert with what web pages you visit, what links over the Internet you tend to click and what stuff you have the intention to upload. We used the word “stuff”, since there is indeed a lot of trash over the Internet which you should stay away from. At the same time, many of such tools (by the way, Vista Security 2012 is one of them) are simply good for nothing.

Vista Security 2012 runs fake scan of your PC after it is successfully installed and after your system is rebooted (according to its instructions). Upon termination of all such fake scans the hoax arranges bogus report of all types of problems, errors and bugs with your system. Keep in mind that all of them are not true (fake). Be not ever scared with these scary reports of this hoax and be not tricked with its promises to fix them if you buy its registered version (which is as useless as the trial one). The only aim of it is to convince you to pay money for it. This malware sample cannot repair actual problems when they indeed occur. This scareware will not make your system work better. The final conclusion for this newsletter is as follows: do not ever purchase Vista Security 2012 rogue. Delete it if you do not want to have further errors and difficulties with your PC. We strongly recommend automatic elimination of this pest as described here – http://www.2-viruses.com/remove-vista-security-2012 .



Vista Security 2012 system amendments:

Vista Security 2012 files added:

  • %UserProfile%\Local Settings\Application Data\opRSK
  • %UserProfile%\Local Settings\Application Data\pw.exe
  • %UserProfile%\Local Settings\Application Data\vz.exe
  • %UserProfile%\Local Settings\Application Data\MSASCui.exe
  • %UserProfile%\AppData\Local\opRSK
  • %UserProfile%\AppData\Local\pw.exe
  • %UserProfile%\AppData\Local\vz.exe
  • %UserProfile%\AppData\Local\MSASCui.exe

Vista Security 2012 registry entries added:

  • HKCU\Software\Classes\pezfile
  • HKCR\pezfile
  • HKCU\Software\Classes\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1” %*
  • HKCU\Software\Classes\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1” %*
  • HKCU\Software\Classes\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “%1” %*
  • HKCU\Software\Classes\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “%1” %*
  • HKCR\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1” %*
  • HKCR\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1” %*
  • HKCR\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “%1” %*
  • HKCR\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “%1” %*
  • HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “C:\Program Files\Mozilla Firefox\firefox.exe”
  • HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “C:\Program Files\Mozilla Firefox\firefox.exe” -safe-mode
  • HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “C:\Program Files\Internet Explorer\iexplore.exe”
  • HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “C:\Program Files\Mozilla Firefox\firefox.exe”
  • HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “C:\Program Files\Mozilla Firefox\firefox.exe” -safe-mode
  • HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\vz.exe” /START “C:\Program Files\Internet Explorer\iexplore.exe”
  • HKLM\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = “1”
  • HKLM\SOFTWARE\Microsoft\Security Center “FirewallOverride” = “1”

Leave a Reply

Your email address will not be published. Required fields are marked *