Windows Protection

Malware Analysis:

Win 7 Security 2011 is a mendacious and tremendously annoying program representing the family of rogue antivirus software. The malware distributing this scam application can have different names – this is a relatively new trick that was first attempted by computer criminals in early spring this year. You see, if the corresponding malicious code finds itself in a computer system running Windows 7, the malware will exhibit itself as Win 7 Security 2011. If it’s an XP one, you will see a similar application under the name of XP Security 2011. This tactic enables hackers to be universal and persuasive. However, neither Win 7 Security 2011 nor the rest of its counterparts are meant for performing the routine virus protection job. This software can only mimic some PC defense activity, without actually doing any of that. It deliberately reports dangerous malware inside the targeted computer so that the user gets perplexed and confused. Win 7 Security 2011 has some powerful yet corrupt brainwashing instruments at its disposal – false positives, fake scanners and browser navigation block (purportedly due to the so-called Trojan-BNK.Win32.Keylogger.gen malware’s interference). It’s not reasonable to taking Win 7 Security 2011 alerts for granted. Just remember that this software has been designed especially to deceive people and have them buy its license for removing the stuff that isn’t there at all. Please do not surrender to Win 7 Security 2011 scam. There aren’t many options if you have it on your PC – anyway, you definitely need to remove it from your system.

Determine if your PC is infected with Win 7 Security 2011:

Download Win 7 Security 2011 Malware Free Scanner with Remover

Win 7 Security 2011 GUI Screenshot:

How to remove Win 7 Security 2011 manually:

To perform manual removal of Win 7 Security 2011, you should do the following:

Delete Win 7 Security 2011 corrupt files:

• %UserProfile%\Local Settings\Application Data\pw.exe
• %UserProfile%\Local Settings\Application Data\MSASCui.exe

Remove the following associated registry entries:

• HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1″ %*
• HKEY_CURRENT_USER\Software\Classes\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1″ %*
• HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1″ %*
• HKEY_CLASSES_ROOT\pezfile\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%1″ %*
• HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%Program Files%\Mozilla Firefox\firefox.exe”
• HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%Program Files%\Mozilla Firefox\firefox.exe” -safe-mode
• HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “%UserProfile%\Local Settings\Application Data\pw.exe” /START “%Program Files%\Internet Explorer\iexplore.exe”
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = “1″
• HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallOverride” = “1″

Please note that manual removal of Win 7 Security 2011 is a procedure of high complexity and should be performed with extreme caution. Lack of the required skills and even the slightest deviation from the instructions may lead to irreparable system damage. To ensure trouble-free deletion, it is recommended to use the automatic removal tool below:

Download Win 7 Security 2011 Removal Tool