Total Vista Security
Total Vista Security Description
Total Vista Security is a bogus anti-spyware application that is secretly installed onto users’ machines by Trojans. Total Vista Security displays misleading pop-up ads, security alerts and system scanners in order to trick victims into purchasing its full version. Should a victim click on any of the fake security notifications displayed by the rogueware, he/she will be redirected to malicious websites that promote the rogueware. Total Vista Security is unable to detect or remove any type of computer threat and it must be removed from an infected machine as soon as possible.
Type: Rogue AntiSpyware Programs
How Can You Detect Total Vista Security?
Total Vista Security has typically the following processes in memory:
- %UserProfile%\AppData\Local\av.exe
Total Vista Security creates the following registry entries:
- HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
- HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = “av.exe” /START “firefox.exe” -safe-mode
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “FirewallOverride” = “1″
- HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
- HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = “av.exe” /START “firefox.exe”
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center “AntiVirusOverride” = “1″
- HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
- HKEY_CLASSES_ROOT\secfile\shell\open\command “(Default)” = “av.exe” /START “%1″ %*
- HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = “av.exe” /START “iexplore.exe”
Important Article Disclaimer

Total Vista Security 











April 25th, 2010 at 10:22 am
Help. I can’t run the download. I get a message every time I go to open it up.
Suggestions?
[Reply]
April 27th, 2010 at 11:53 am
Hello dik bahlz,
The reason that you are getting a message and may not be able to run the download is because you probably have an infection that is blocking security software from being downloaded. We have provided a way around this. You can download SpyHunter .bat file through the following link: http://www.enigmasoftware.com/download_scanner/SpyHunter-Installer.bat
Also, you can try using Internet Explorer (if the infection let’s you open the IE browser) and download SpyHunter using this activeX installer for IE: http://www.enigmasoftware.com/download_scanner/activex
This should resolve your issue.
[Reply]