How to remove Security Guard

March 18th, 2010
Home » Rogue Anti-Spyware » Security Guard Repair and protect your computer easily. Download Security Guard removal tool

Security Guard description

Security Guard is a fabricated protection tool which is installed through the use of trojan and fake online anti-malware scanners. Once the trojan is released the parasite is configured to start fake scans on your computer. Security Guard is nothing but a fake program designed to show you fake security alerts after its supposedly real scans.

security_guard

While inside the PC, bogus system will create exaggerated security reports and will show you numerous pop-ups claiming your computer might be at risk. Pay an attention that these kind of warnings are rogue and you should ignore it. Malware is trying to trick you into purchasing “full” version of Security Antivirus. This is all scam. The thing you have to do is to remove the parasite from your computer as soon as possible.

How to get rid of Security Guard

This infection can be removed using Spyware Doctor.

Download does not start? Try a mirror download here

Spyware Doctor is widely valued as one of the best AntiSpyware programs available to protect you from Security Guard and the latest internet security threats. If your computer is infected with Security Guard we strongly recommend automatic spyware scanner.

How to manually remove Security Guard

To get rid of spyware such as Security Guard you need to remove processes, search and delete registry keys, DLL and other Security Guard related files from your computer.

Take Note: The manual process of removing spyware from your computer is difficult and puts you at risk of damaging your computer. We advise using our automatic Security Guard remover.

  1. Uninstall Security Guard from Control Panel
    Start > Settings > Control Panel > Add/Remove Programs. Double click to uninstall.
  2. End these Security Guard processes:
    cb.exe
    energy.exe
    exec.exe
    grid.exe
    kernel32.exe
    SICKBOY.exe
    SG345d.exe
    To stop processes press Ctrl + Alt + Del or click Start > Run > type "taskmgr". Select malicious process in the list and click "End Process" button.
  3. Delete Security Guard registry entries: HKEY_CURRENT_USER\Software\64
    HKEY_CLASSES_ROOT\SG345d.DocHostUIHandler
    HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
    HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PRS” = “http://127.0.0.1:27777/?inj=%ORIGINAL%”
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “layout/2.01002″
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Security Guard”
    HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
    To open registry editor click Start > Run > type "regedit".
    Warning! Manual registry entries editing may cause damage to your system.
    Download Uniblue RegistryBooster 2010 to scan for registry errors.
  4. Search and delete these Security Guard related files:
    %UserProfile%\Recent\ANTIGEN.sys
    %UserProfile%\Recent\ANTIGEN.tmp
    %UserProfile%\Recent\cb.exe
    %UserProfile%\Recent\cid.dll
    %UserProfile%\Recent\ddv.sys
    %UserProfile%\Recent\eb.dll
    %UserProfile%\Recent\eb.drv
    %UserProfile%\Recent\energy.exe
    %UserProfile%\Recent\exec.exe
    %UserProfile%\Recent\exec.tmp
    %UserProfile%\Recent\fan.drv
    %UserProfile%\Recent\fix.tmp
    %UserProfile%\Recent\grid.exe
    %UserProfile%\Recent\kernel32.exe
    %UserProfile%\Recent\runddlkey.drv
    %UserProfile%\Recent\SICKBOY.exe
    %UserProfile%\Recent\tempdoc.tmp
    c:\Documents and Settings\All Users\Application Data\123f678
    c:\Documents and Settings\All Users\Application Data\123f678\24.mof
    c:\Documents and Settings\All Users\Application Data\123f678\mozcrt19.dll
    c:\Documents and Settings\All Users\Application Data\123f678\SG345d.exe
    c:\Documents and Settings\All Users\Application Data\123f678\SGD.ico
    c:\Documents and Settings\All Users\Application Data\123f678\sqlite3.dll
    c:\Documents and Settings\All Users\Application Data\123f678\BackUp\
    c:\Documents and Settings\All Users\Application Data\123f678\Quarantine Items\
    c:\Documents and Settings\All Users\Application Data\123f678\SGDSys\
    c:\Documents and Settings\All Users\Application Data\123f678\SGDSys\vd952342.bd
    c:\Documents and Settings\All Users\Application Data\SGZIQYEXRD
    c:\Documents and Settings\All Users\Application Data\SGZIQYEXRD\SGWNLED.cfg

Tags

,

Similar Threats

Leave a Reply

«
»

  • Search