Information about Additional Guard
Additional Guard is a program, which masquerades as a legitimate and more than capable infection removal tool, but is actually a fake program, and a parasite, which is known for the illicit means it uses to spread and sell it's software. Additional Guard typically gains entrance to the system by using various trojans, and drive-by downloads, and relies on deception to trick users into purchasing it's "licensed version".
After infecting the system, Additional Guard spams the user with popups, claiming his system is infected. Though the apparent immediacy of the alert might urge the user to download Additional Guard, he should not do that, because these claims of infection have no basis whatsoever. Much like any other rogue, this one performs fake system scans, marking false positives, and asking for money in order to remove "detected" threats.
Additional Guard is a threat and should be removed immediatelly.
Parasite images
Additional Guard Facts
- Additional Guard pretends to increase security of your PC
- Additional Guard free version will show popups, alerts and fake results to convince you to pay
- Additional Guard creators will not deliver license keys upon paying or the full version will not be functional
- Additional Guard might be used to download and advertise other malicious software
- Additional Guard might disable some of your PCs or its programs functions
Manual Additional Guard removal instructions
Note: Manual removal of parasite Additional Guard is tedious and dangerous task if done incorectly.
Stoping and deleting incorrect executables and DLLs, deleting registry entries might harm your PC.
Thus we recommend using Spyware Doctor of PCTools for automatical scan and removal of computer
parasites, or another reputable spyware remover.
Kill malicious Processes:
AG345d.exe
cb.exe
exec.exe
ppal.exe
cb.exe
exec.exe
ppal.exe
Unregister malicious Dlls:
mozcrt19.dll
sqlite3.dll
ddv.dll
energy.dll
FS.dll
sqlite3.dll
ddv.dll
energy.dll
FS.dll
Remove malicious Registery entries:
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\xp_7a9be.DocHostUIHandler
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL†= “http://search-gala.com/?&uid=220&q={searchTerms}â€
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures†= “1?
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL†= “http://search-gala.com/?&uid=220&q={searchTerms}â€
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Additional Guardâ€
HKEY_CLASSES_ROOT\xp_7a9be.DocHostUIHandler
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL†= “http://search-gala.com/?&uid=220&q={searchTerms}â€
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures†= “1?
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL†= “http://search-gala.com/?&uid=220&q={searchTerms}â€
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Additional Guardâ€
Remove harmful Files:
%UserProfile%\Application Data\2565da61\AG345d.exe
%UserProfile%\Application Data\2565da61\278.mof
%UserProfile%\Application Data\2565da61\mozcrt19.dll
%UserProfile%\Application Data\2565da61\sqlite3.dll
%UserProfile%\Application Data\2565da61\AG.ico
%UserProfile%\Application Data\2565da61\AGSys
%UserProfile%\Application Data\2565da61\AGSys\vd952342.bd
%UserProfile%\Application Data\2565da61\ag.cfg
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Additional Guard.lnk
%UserProfile%\Application Data\Additional Guard\cookies.sqlite
%UserProfile%\Desktop\Additional Guard.lnk
%UserProfile%\Recent\cb.exe
%UserProfile%\Recent\CLSV.tmp
%UserProfile%\Recent\ddv.dll
%UserProfile%\Recent\dudl.drv
%UserProfile%\Recent\energy.dll
%UserProfile%\Recent\energy.sys
%UserProfile%\Recent\exec.exe
%UserProfile%\Recent\fan.drv
%UserProfile%\Recent\FS.dll
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\ppal.exe
%UserProfile%\Recent\SICKBOY.tmp
%UserProfile%\Recent\tjd.sys
%UserProfile%\Start Menu\Additional Guard.lnk
%UserProfile%\Start Menu\Programs\Additional Guard.lnk
%Program Files%\Mozilla Firefox\searchplugins\search.xml
%UserProfile%\Application Data\2565da61\278.mof
%UserProfile%\Application Data\2565da61\mozcrt19.dll
%UserProfile%\Application Data\2565da61\sqlite3.dll
%UserProfile%\Application Data\2565da61\AG.ico
%UserProfile%\Application Data\2565da61\AGSys
%UserProfile%\Application Data\2565da61\AGSys\vd952342.bd
%UserProfile%\Application Data\2565da61\ag.cfg
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Additional Guard.lnk
%UserProfile%\Application Data\Additional Guard\cookies.sqlite
%UserProfile%\Desktop\Additional Guard.lnk
%UserProfile%\Recent\cb.exe
%UserProfile%\Recent\CLSV.tmp
%UserProfile%\Recent\ddv.dll
%UserProfile%\Recent\dudl.drv
%UserProfile%\Recent\energy.dll
%UserProfile%\Recent\energy.sys
%UserProfile%\Recent\exec.exe
%UserProfile%\Recent\fan.drv
%UserProfile%\Recent\FS.dll
%UserProfile%\Recent\PE.drv
%UserProfile%\Recent\ppal.exe
%UserProfile%\Recent\SICKBOY.tmp
%UserProfile%\Recent\tjd.sys
%UserProfile%\Start Menu\Additional Guard.lnk
%UserProfile%\Start Menu\Programs\Additional Guard.lnk
%Program Files%\Mozilla Firefox\searchplugins\search.xml
Scan your System:
Scan your System with free scanners for remaining computer parasites
Additional Guard removal instructions comments
Related information
Windows Additional Guard is a rogue anti-spyware, a total scam which is created just to steal the money from unaware PC users. Windows Additional Guard is easily downloaded into the computer’s system without any notice and Trojans are the most common way when it is done. It must be added that malicious websites which are published by scammers are also used to spread this rogue program so you should be extremely careful when browsing the Internet. If it happens for you to get Windows...
Posted in: Rogue Anti-Spyware
 No comments yet |
 |
Spyware XP Guard is a fake software classified as a rouge anti-spyware application. This scareware uses misleading methods to trick the user of the infected computer into purchasing it. Most of the time, SpywareXP Guard displays false scan results and security alerts stating that your computer is infected with spyware, adware and Trojan viruses. Of course, you shouldn't trust this program and uninstall Spyware XP Guard from the system as soon as possible. You may guess that its name Spyware...
Posted in: Rogue Anti-Spyware
|
No comments yet |
|
Security Guard is known as one of the most dangerous and wildly spreading rogue anti-spyware at the moment. The program is based on Trojans which are the main mean of infiltrating Security Guard into the system. When the Trojan installs Security Guard it also creates a bunch of files which are later detected as infections when the program runs its scanner. Here is a list what files can be created:
%UserProfile%\Recent\ANTIGEN.sys %UserProfile%\Recent\ANTIGEN.tmp...
Posted in: Rogue Anti-Spyware
|
No comments yet |
|
Login
Spyware news
Compare Removers
