How to remove Security Guard
Thursday, March 18th, 2010 at 3:20 amHome » Rogue Antispyware » Security Guard
Security Guard description
Security Guard is another rogue security program that may get into computers by downloading a fake multimedia coder/decoder from an unsecured websites. The parasite declares you need it for cleaning your computer which is infected. Security Guard stays unnoticed and user have no idea about its existence.
Malware has an ability begin its fake scans as the computer is started. Once the trojan is released bogus system masquerades and tries to trick user into thinking they need to purchase supposedly legitimate security tool. It shows numerous fraudulent pop-ups at your desktop. It is fully safe to ignore all the warnings. What is needed to do is to use reputable security tool and delete the parasite as soon as possible.
Get rid of Security Guard
Security Guard is a Rogue Antispyware software
How to manually remove Security Guard
To remove Security Guard spyware you must block Security Guard sites, stop and remove processes, unregister DLL files, search and delete all other Security Guard files and registry utility. Follow the Security Guard detection and removal instructions below.
The most typical software removal method is to remove Security Guard by using "Add or Remove Programs" service. However there may be hidden Security Guard files, running processes and registries in your computer, so Security Guard may recreate all other files after reboot.
Security Guard manual removal instructions
Stop and remove Security Guard processes:
cb.exe
energy.exe
exec.exe
grid.exe
kernel32.exe
SICKBOY.exe
SG345d.exe
Read more how to kill Security Guard processes
Locate and delete Security Guard registry entries:
HKEY_CURRENT_USER\Software\64
HKEY_CLASSES_ROOT\SG345d.DocHostUIHandler
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PRS” = “http://127.0.0.1:27777/?inj=%ORIGINAL%”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “layout/2.01002″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Security Guard”
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “ht tp://findgala.com/?&uid=1002&q={searchTerms}”
Read more how to delete Security Guard registry entries
Download RegistryBooster 2010 to scan errors caused by Security Guard
Search and unregister Security Guard DLL libraries:
cid.dll
eb.dll
mozcrt19.dll
sqlite3.dll
Read more how to unregister Security Guard DLL files
Detect and delete other Security Guard files:
%UserProfile%\Recent\ANTIGEN.sys
%UserProfile%\Recent\ANTIGEN.tmp
%UserProfile%\Recent\cb.exe
%UserProfile%\Recent\cid.dll
%UserProfile%\Recent\ddv.sys
%UserProfile%\Recent\eb.dll
%UserProfile%\Recent\eb.drv
%UserProfile%\Recent\energy.exe
%UserProfile%\Recent\exec.exe
%UserProfile%\Recent\exec.tmp
%UserProfile%\Recent\fan.drv
%UserProfile%\Recent\fix.tmp
%UserProfile%\Recent\grid.exe
%UserProfile%\Recent\kernel32.exe
%UserProfile%\Recent\runddlkey.drv
%UserProfile%\Recent\SICKBOY.exe
%UserProfile%\Recent\tempdoc.tmp
c:\Documents and Settings\All Users\Application Data\123f678
c:\Documents and Settings\All Users\Application Data\123f678\24.mof
c:\Documents and Settings\All Users\Application Data\123f678\mozcrt19.dll
c:\Documents and Settings\All Users\Application Data\123f678\SG345d.exe
c:\Documents and Settings\All Users\Application Data\123f678\SGD.ico
c:\Documents and Settings\All Users\Application Data\123f678\sqlite3.dll
c:\Documents and Settings\All Users\Application Data\123f678\BackUp\
c:\Documents and Settings\All Users\Application Data\123f678\Quarantine Items\
c:\Documents and Settings\All Users\Application Data\123f678\SGDSys\
c:\Documents and Settings\All Users\Application Data\123f678\SGDSys\vd952342.bd
c:\Documents and Settings\All Users\Application Data\SGZIQYEXRD
c:\Documents and Settings\All Users\Application Data\SGZIQYEXRD\SGWNLED.cfg
We strongly recommend you to use spyware remover to track Security Guard and automaticaly remove Security Guard processes, registries and files as well as other spyware threats.
Trackbacks
Leave a Reply
Subscribe
Search
Categories
- Adware
- Backdoor
- Browser Helper Object
- Browser Hijacker
- Fake warning messages
- Keylogger
- Malicious domains
- Remote Administration Tool (RAT)
- Rogue Antispyware
- Tracking Cookie
- Trojan
- Worm
Latest spyware threats
- Decrypt Protect Virus
- Win 8 Protection 2013
- Vista Protection 2013
- Safe PC Cleaner
- SpeedMaxPc
- Securebit
- Error Repair
- System Care Antivirus
- PC Fix Speed
- Win 7 Security Cleaner Pro
- Vista Security Cleaner Pro
- Antivirus Security 2013
- AVASoft Professional Antivirus
- XP Security Cleaner Pro
- Homeland Security Virus
Recently commented
- Google Redirect Virus
- Fake Microsoft Security Essentials Alert
- Win 7 Security Cleaner Pro
- Win 7 Anti-Virus 2011
- Smart PC Cleaner
- XP Antivirus 2012
- Windows Microsoft Guardian
- RegFix Pro
- XP Antispyware 2013
- Myfreeze.com
- Privacy Components
Malicious domains
- 7search.com
- iCityFind
- Antivirsword.com
- Webantispy.com
- Antivirmore.com
- Antivirglass.com
- Oksave9.co.cc
- Smartsecadv.com
- AV-look.com
- Profantivir.com
Fake warning messages
- Firefox need to update immediately
- Kaspersky Internet Security 2011 Enhanced Protection Mode
- Comodo Enhanced Protection Mode
- Microsoft Security Essentials Enhanced Protection Mode
- McAfee Enhanced Protection Mode
- Norton Antivirus Enhanced Protection Mode
- ESET Smart Security Enhanced Protection Mode
- Microsoft Defender Enhanced Protection Mode
- Avast Enhanced Protection Mode
- Fake “Windows – No Disk” alert
Tutorials
- Contact Us
- How to block malicious websites using HOSTS file?
- How to delete registry entries?
- How to download and install Spyware Doctor
- How to kill malicious processes?
- How to recognize a rogue security program?
- How to recognize a rogue website?
- How to unregister DLL files?
- Signs of browser hijacker infection
Archive
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
Tags
Security News- Beware of Decrypt Protect Virus ransomware
- What is Win 8 Protection 2013 and why it is dangerous
- Delete Vista Protection 2013 rogue tool
- Do not trust Safe PC Cleaner optimizer
- Remove SpeedMaxPc fake system optimizer
- What is Securebit and why you need to remove it
- Do not trust Error Repair rogue system tool
Security Guard