June 29, 2011

Windows Microsoft Guardian.

Windows Microsoft Guardian is a dangerous scamware that has its primary intention to rip people off out of their money.
Windows Microsoft Guardian GUI looks like that of other malwares hailing from the same dangerous family. Other its members are Windows Steady Work, Windows Stable Work, Windows Antidanger Center and many others, so if you have been hit by one of them, you will know how Windows Microsoft Guardian acts. It ‘scans’ computers for viruses and then returns invented results about numerous viruses found with the intention to get the money for its removal services.

However, in reality Windows Microsoft Guardian is useless and should be removed immediately after detection. Malware just imitates PC defense activity without actually being able to perform any of the claimed options.

Windows Microsoft Guardian is rogue anti-spyware, so just like it is normal for the threats hailing from this category it uses Trojans for infiltration. Trojans enter the system unnoticeably for the user what means that there will be no permission asked. Additionally, as this program usually ignores the regular authentication requirements, it additionally is made to launch as soon as PC is rebooted. Once the Registry gets modified, Windows Microsoft Guardian will start scanning the system once PC is rebooted. Please, ignore alerts displayed by Windows Microsoft Guardian.

Additionally, Windows Microsoft Guardian will offer to purchase its licensed software for removal of these ‘detection’. However, you should never remove viruses reported by Windows Microsoft Guardian because some of them may be legitimate your system files that are needed for a normal computer’s functionality. You should simply remove Windows Microsoft Guardian once you notice it on your computer.

Kill malicious Processes from Task Manager: 
  • <random>.exe
 Location of the infection:
  1. %UserProfile%\Application Data\Microsoft\[random].exe
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = ’1?
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PhishingFilter “Enabled” = ’0?
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “CheckExeSignatures” = ‘no’
Although it is possible to manually remove Windows Microsoft Guardian, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend  malware and spyware removal applications.

After removing all these files, restart your computer and the issue will be fixed. And don’t forget to do update your Security Software, check the Firewall Settings and the Operating System and finally do a full system scan with the Security Software.


Post a Comment

Related Posts Plugin for WordPress, Blogger...

Search This Blog



There was an error in this gadget
Twitter Delicious Facebook Digg Stumbleupon Favorites More