Vista Internet Security 2011 (sometimes Vista Internet Security) is a fake antivirus from the family of name-changing rogues. These rogues install through faked OS security update that originates from infected websites or system vulnerabilties and download random design depending on your operating system. For Windows 7 you might get Vista Antispyware, Antimalware, Security, Guard or their “2011” versions.
After the installation, Vista Internet Security 2011 will disable firewall, task manager and other functions of PC. It will allow launching browsers, but will monitor what do you browse and prohibit visiting many of the websites. You will get warning like this:
Internet Explorer alert. Visiting this site may pose a security threat to your system!
Possible reasons include:
– Dangerous code found in this site’s pages which installed unwanted software into your system.
– Suspicious and potentially unsafe network activity detected.
– Spyware infections in your system
– Complaints from other users about this site.
– Port and system scans performed by the site being visited.
Things you can do:
– Get a copy of Vista Internet Security 2011 to safeguard your PC while surfing the web (RECOMMENDED)
– Run a spyware, virus and malware scan
– Continue surfing without any security measures (DANGEROUS)
Almost all other files are blocked from execution as they will be called “infected”. This is not true, and removing files that Vista Internet Security 2011 detects as infected might lead to permanently bricking your PC. All programs that are blocked or detected during scan of the system are false positives and harmless. The real infected files are pw.exe and MSASCui.exe, located in application data folder on your PC.
It will also show various alerts, like this one :
Vista Internet Security 2011 Firewall Alert
Vista Internet Security 2011 has blocked a program from accessing the internet
Internet Explorer is infected with Trojan-BNK.Win32.Keylogger.gen
Private data can be stolen by third parties, including credit card details and passwords.
Infection detected in the background. Your computer is now attacked by spyware and rogue software. Eliminate the infection safely, perform a security scan and deletion now.
These can be ignored as well, they are only there to scare you into purchasing full version of this rogue parasite.
How to remove Vista Internet Security 2011
It seems like this malware and a new group of viruses changing their names according to OS has renewed its activity. To disable warnings from this parasite and get possibility to scan and remove virus, try this registration code: 1147-175591-6550 or 2233-298080-3424. Do not forget to scan with spyhunter, Malwarebytes Anti-Malware and Hitman pro after that: This key will not disable trojan downloaders or rootkits coming with original infection. If it does not work, continue with removal instuctions for Vista Internet Security bellow:
To remove Vista Internet Security you will need another PC, as removing it from safe mode with networking will not work in most of the cases.
a) Burn these programs to CD or write them to USB disk. You can use your MP3 player, or smartphone if it has storage functions. This parasite does not spread through USB at the moment:
- Spyware Doctor ( https://www.2-viruses.com/spdoc.exe )
- Registry fix : https://www.2-viruses.com/wp-content/uploads/exeregfix.reg
- You might want to include Hitman Pro or Malwarebytes as alternate scanners. Though you are likely to be able to download them later on.
b). Boot normally. wait for Vista Internet Security 2011 to launch, and run exeregfix.reg . This should allow launching legitimate programs
c) Delete or remove the files that are mentioned in our files box. You can use spyhunter to identify the infected files and additional infections. Do not forget update it before scanning. Remove what it finds.
d) Scan with spyhunter and secondary tools and reboot your PC. This should fully remove Vista Internet Security 2011.
In some cases virus mutates and you can not perform some part of these instructions. In such cases we recommend trying scans from within safe mode, or doing Alternate OS scans by tools from one of antivirus program makers, for example this : http://pctools.com/aoss
I strongly recommend installing legitimate internet security suites and/or purchasing full versions of spyhunter or malwarebytes anti-malware or other good antimalware tools to warn and prevent such infections in the future.
Automatic Malware removal tools