Win 7 Total Security 2011

This page contains description and complete removal guide for Win 7 Total Security 2011. Tools and visitor’s comment about this malware is included in this post.

Win 7 Total Security is a fake computer anti-virus application. Win 7 Total Security 2011 virus offers a variety of computer protection features such as virus scan, Internet security, personal security, proactive defense and firewall. However, all of these are non-performing and was just an odd display on its graphical user interface. After deep analysis, it was found that Win 7 Total Security 2011 does not have the essential parts to act as fully functional security software. In fact, this rogue program is a piece of malware from a large group of fake AV products. Members of this family are able to detect victim’s operating system and install necessary version of the malware. In this case, the targeted PC is operated under Windows 7.  Windows XP systems will have XP Total Security 2011 while Windows Vista will cover Vista Total Security 2011. These rogue programs are able to propagate through unfair promotional method like fake online virus scanner and spam email messages. Presence of Win 7 Total Security 2011 on one’s system will provide severe damages that will result to browser redirection, block execution of any software and modified desktop wallpaper.

It is important to remove Win 7 Total Security 2011 virus immediately and prevent any more harm on the computer. You may never notice it, but as long as Win 7 Total Security 2011  is residing on the system, it will attempt to connect to a remove server and download more threats. It may carry out several system settings that may fully disable the current security setup of your PC. At this point, it is necessary to thoroughly scan the computer with anti-malware program and delete any detected threats. Repeat the process while in SafeMode to find all files that are still hiding on the system.

Screenshot Image:

Fake Scanner

Technical Details and Additional Information:

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7

Malware Behavior
The only obvious symptoms from this virus are a barrage of fake security warnings and recurring virus scanning. Aside from this, Win 7 Total Security 2011 may perform other malicious activities like the following:

  • Contact a remote server to download more threats.
  • Update its configuration file to strengthen its presence.
  • Open a backdoor port to allow unauthorized remote control.
  • Find and end processes that belong to security software.
  • Disable Internet connection particularly wireless network transmission on the infected computer.

20 Responses

  1. Colby says:

    This advice is completely worthless.
    The virus does not allow you to run any software, starts whenever you run any .exe file and even appears in safe mode.
    Terminating the process in task manager is pointless since it relaunches everytime you try to do something.

  2. ralph kraft says:

    how can i get my refund of 59 dollars back from these thives?

  3. Anthony Denkins says:

    almost always its as simple as this : do a full scan on your hopefully up-to-date anti-spyware (this is to destroy any weak trojans or viruses), if it opens or if it is already opened start task manager, right-click the application and select go to process, (the process is highlighted) right-click the process and choose open file location this shows you where the original file was put, then go back to task manager and on the same process click end process tree (theres a little pop up but click ok) delete the original file usually its a bunch of random letters, then go to your recycle bin and delete the file forever, after that run a full scan. This might seem difficult but its really not that hard… and buddy if you paid with a credit card the best thing you can do is call the credit card company and tell them it was a scam if not your screwed.

    P.S. terminating the process allows for manual removal some application dont allow removal unless the process is not running, also it keeps the application from getting in your way while your trying to delete it.

  4. Torben Michaelsen says:

    Thanks. Worked like a charm.
    But you have to find the exe in your system, kill the process and then delete the file. After that you have to run the regedit manually. win+e does still open the explorer, the icon isnt.

  5. Erin says:

    I got rid of this virus fairly easily using Norton Power Erasor, although it took about 2 hours of research online to discover this program. You can download Norton Power Erasor for free, just go to the Norton website. At first, I couldn’t run the Norton Power Erasor becasue the virus stopped it. But there is a simple way to get around this. Just right click on the Power erasor from your desktop, and press “run as administrator.” Hope this helps!

  6. Rod says:

    Thanks Erin. You’re a champion – I ran NPE as Administrator and all seems good. Appears to be a very easy fix.

  7. Rick says:

    I am communicating with my daughter who is in China experiencing this issue. She says she is unable to access the internet with the exception of her gmail. Is there a way for her to download the NPE given her situation?

  8. Bryan says:

    You have to run a program called “rkill” before you do anything, it works like a champ, sometimes you have to be quick and get malwarebytes running as soon as rkill is done. The virus will bypass the rkill sometimes. Just google it and you will find it. I usually download it on an uninfected computer and transfer it with a thumb drive. I have been a victim of this virus three times on separate computers. Of course it has had a different name each time I have been infected with the virus.

  9. Kylie says:

    I got this virus and scanned my computer with a recent updates version, seemed to work but when I went to access the Internet I was unable. It said I needed to pick a programto run it?? Please help

  10. doug says:

    Tried Erin’s solution.. but the virus stops me from doing anything at all. How did you get the “Power Eraser” to appear on your desktop? I have Kaperskey- does that negate your solution?

  11. anonymous says:

    I used the restore feature it fixed the problem completely, the virus is completely gone along with this other one called MS security or something. If you’re wondering where you can find this feature go to: “Start menu”/ “Control Panel” and make sure you’re in all Control Panel Items then look for “Recovery” double click on it and look for “Open System Restore” click on it and click next then look for a time you wish to restore your files to, this will restart your computer and bring it back to the previous time you selected. Hope this works.

  12. mgf says:

    Response #12 – solved the issue for me. Nasty virus, System resore worked perfectly. Thanks.

  13. Mike says:

    The restore method was a nice elegant solution, thanks for the info.

  14. nonebetter says:

    Norton Power Erasor is now available for free from the Symantec website and its the best solution.. You can remove Win 7 Security 2011 in 10 minutes.

  15. Julia says:

    Erin’s advice worked absolutely perfectly. After hours of trying different methods, I downloaded NPE. Only problem was that since I couldn’t access the internet from my infected computer I had to download the program on another computer and then use a jump drive to transfer the program to my infected-computer. But once I did that, it worked like a charm and was incredibly easy to follow!

  16. Metalhaid says:

    Used #12 to restore my boss’ personal laptop computer – et voila! Poof, virus is gone & I look like Super IT Person. Thanks for the info!

  17. Metalhaid says:

    I have one suggestion to add to #12: For those not familiar with Windows 7, from the Control Panel, do a Search for Recovery. It pops up immediately. Thanks again!

  18. Brian says:

    Used the restore function per #12. After rebooting, my computer is now asking me what program I want to use to open most of my executables. Oh and the when I try to return to the restore function I get “helpctr.exe Application not found” All signs of the total security 2011 bug are gone. Anybody know what’s going on with my computer?

  19. Brian says:

    Figured it out. Programs couldn’t find rundll32.exe. Someone over on provided this quick fix if anyone runs into the same problem while eliminating the Total Security 2011 virus:

    Click Start, Run. Type command and press Enter. Type notepad and press Enter.
    Notepad opens. Copy all the text below into Notepad.

    Windows Registry Editor Version 5.00
    @=”\”%1\” %*”

    Save this as fix.reg to your Desktop (remember to select Save As file type: All Files while in Notepad)
    Double Click fix.reg and click YES for confirm.
    Reboot your computer.

  20. suhani says:

    that system restore things work amazingly. Thanks a lot!

Leave a Reply

Your email address will not be published. Required fields are marked *