Hi Paul,

Antivirus XP 2010 is indeed a rogue antivirus software; please do the following:

Download the free version of Malwarebytes from this link:
http://www.malwarebytes.org/mbam.php

If the malware tries to prevent you from downloading the program from the site above, please go to this download location:
http://www.filehippo.com/download_malwarebytes_anti_malware/

Install Malwarebytes, launch the program and go to "Update"; click on "Check for Updates" and let it download the definition files. Then go to "Scanner" and have it run a full scan. When Malwarebytes has finished the scan, it will automatically generate a log in a Notepad file, which will pop up on your screen after the scan. On this window of the Notepad file, please go to "File", then to "Save as"; type in a name, save the file to, for instance, your desktop, then post it over here by using the "Attachments" feature when you write your next post.

To delete what Malwarebytes has found, click on “Show Results” after scanning has finished. Ensure that the threats picked up by Malwarebytes are marked with a tick, then click on "Remove Selected".

When you say you can't start Firefox, is it other programs also Not just Firefox that won't run??, which makes sense for some of the new "Antivirus 2010" variations.

Quads

I figured out I can use ff by opening a link in outlook. IE will not let me surf. There are no other programs affected to my knowledge.

Also. I've downloaded mbam-setup.exe but after I click run, nothing happens. Can you help?

Thanks -Paul

Try renaming the mbam setup exe file to something random and then try to run it again.

"random.exe" same. after double click, I hit run, get the egg timer for a second and then nothing

Thanks -Paul

Try running MBAM in Safe mode, which is one of the suggestions offered in a thread that is currently running at DSL Reports (at least you're not alone).

http://www.dslreports.com/forum/r23727318-New-type-of-AntiVirus-2010

I tried mbam in safe mode. No joy.  The virus hits me there too. eeeeeeek

Hey, i tried to make something in autoit v3!

A small script which will remove the files of Antivirus xp 2010.

I cannot say that this will work or not! I think it won't work if its some different version of Antivirus Xp 2010.

But you can try it!

Instructions:

Download AVXP2010Rem.zip

Extract the .zip file on your desktop.

Open the folder AVXP2010Rem

1. Close all Applications including browsers!
2. Rightclick on unhookexec.inf ---> Install
3. Doubleclick on add.reg ---> Press Yes

______________________________________________
For Vista/Win7
4. Rightclick on AV2010RemTool.exe ---> Run as Adminstrator
For Xp
4. Doubleclick on AV2010RemTool.exe

Note:
This will only Delete files of AV xp 2010, registry entries will still be there!
Scan your computer with Malwarebytes after you run Av2010remtool.exe!

This RemovalTool will also do this:

Enable Regedit
Enable CMD
Enable Taskmanager
Enable Run
Enable Folderoptions

Download: mediafire.comm?zvfgwmzznuf

[edit: Please do not direct link to downloads per the Participation Guidelines and Terms of Service.]

---

paulbunker wrote:

I figured out I can use ff by opening a link in outlook. IE will not let me surf. There are no other programs affected to my knowledge.

 

Also. I've downloaded mbam-setup.exe but after I click run, nothing happens. Can you help?

 

Thanks -Paul

---

As I figured, that's why I asked, it's got nothing to do with renaming an .exe because it a known file for a security program but it's a new variant that is to do with changing the registry,  

BleepingPC's removal instructions are for old variants.

You have other peoples ideas to go one with. But you have to use "unhookexec.inf" from 

http://www.symantec.com/security_response/writeup.jsp?docid=2004-050614-0532-99

Download it and right click "unhookexec.inf" and select "install"

Then Malwarebytes should work to repair the rest.

Quads