Website Widget

By George Norman

Added on 09 Feb 2010(424 Views)

classification: Rogue Anti-Virus Program
CoreGuard Antivirus 2009, a rogue antivirus program, is usually distributed by malware – like Trojans. The Trojan compromises the user’s computer, then installs the CoreGuard Antivirus 2009 rogue without the user’s consent. CoreGuard Antivirus 2009 puts a twist on things. In an attempt to protect itself from genuine security software applications, CoreGuard Antivirus 2009 will analyze the Windows Registry and look for programs that can be uninstalled – programs like Malwarebytes’ Anti-Malware, F-Secure, NOD32, Avast, AntiVir, AVG and Norton Internet Security. If it finds any of these genuine antivirus applications, it presents the user with the following prompt:
“There is unauthorized antivirus software detected on your computer. It is recommended you to remove it, otherwise it could conflict with CoreGusard Antivirus 2009.”

It is all nothing but a clever ploy to get rid of genuine antivirus programs so that CoreGuard Antivirus 2009 can go about its business undisturbed. What business might that be? Why to scam you out of some money, of course. All rogue security software applications try to go after the same goal – your hard earned money. To scam you, CoreGuard Antivirus 2009 will scare you into thinking your system is infected. In this regard it will perform fake system scans and bombard you with popups and fake security alerts. Like the ones below:

CoreGuard security alert.
Your computer is being attacked from a remote PC.
Attack from 47.23.251.224:29650. Block your computer Internet access to prevent system infection?
Windows Firewall has blocked this program from accepting connection from the Internet or a network. If you recognize the program or trust the publisher, you can unblock it. When should I unblock the program?”

User's activity loggers detected!
It's strongly recommended to remove detected threats right now!

Most of the viruses and worms on your PC because of visiting pornosites or warez/torrent sites.

ANTIVIRUS IS RUN IN DEMO MODE. ACTIVATE YOUR ANTIVIRUS OTHERWISE ALL THE DATA WILL BE LOST OR DAMAGED!

DANGEROUS! ANTIVIRUS DETECTED SOME HARMFUL PROGRAMS ON YOUR PC! THEY MAY CORRUPT YOUR INFORMATION OR SEND IT TO HACKERS.

PLEASE, OPTIMIZE YOUR PC. IT RUN ONLY 10%.

After scaring you, CoreGuard Antivirus 2009 offers to make everything all better – but only if you pay for a CoreGuard Antivirus 2009 license first. Do not pay! You would only be lining the pockets of the people with malicious intent that came up with this rogue. What you should do is remove the rogue from your system immediately.

Automatic removal guide
Step 1. If you have a printer, make sure to print out this tutorial. If you do not have a printer, save this tutorial, go out to a copy center and print it out there. If you do not have a printer and do not want to go out, then use the pen and paper method: grab a pen and a piece of paper and write down the instruction presented in the steps below. In the process of eliminating CoreGuard Antivirus 2009 from your machine you will need to shut down the browser. And since this will also shut down the tutorial, you need to know what you should do next.

Step 2. You will have to install Malwarebytes’ Anti-Malware. In this regard you need to download the software’s setup executable. Just click this link and save the .exe file on your computer (preferably on your desktop).

Step 3. Double click the Malwarebytes’ Anti-Malware setup executable. It should be on the desktop under the name mbam-setup. This will launch the installation process. If you already know how to install a piece of software, proceed to step 4. If you do not know how to do this, we’ll walk you though it all:



- The Select Setup Language window should have popped up. By default, the language in which the software will be installed is set to English, but you can change this. The software provides support for 30+ languages. After selecting the language of your choice, click OK. It would be best to just leave it set to English though.



- The Malwarebytes’ Anti-Malware Setup Wizard will now popup. Just click Next.



- You will be presented with the License Agreement. Click I accept the agreement and then click Next. If you do not accept the agreement you will not be able to continue.



- Keep clicking Next until you get to the Ready to install window. Now click Install. After the installation process completes click Finish. Do not uncheck the boxes next to Update Malwarebytes’ Anti-Malware or Launch Malwarebytes’ Anti-Malware.















Step 4. The Malwarebytes’ Anti-Malware application will launch automatically. The Perform quick scan option should be checked by default – if it isn’t then check it and then click Scan. You are well advised to close all running apps before clicking scan. This will ensure the scan for CoreGuard Antivirus 2009 will complete swiftly.



Malwarebytes’ Anti-Malware will start scanning your files for signs of CoreGuard Antivirus 2009. This may take a while, so be patient. It all depends on how powerful your computer is and how many files Malwarebytes’ Anti-Malware has to scan.



When the scan for CoreGuard Antivirus 2009 is complete you will be presented with a notification box. Click OK to close the notification box and go to the main Scanner screen. Click Show Results and you will be presented with a list of all the infected files Malwarebytes’ Anti-Malware has detected.





Step 5. Click Remove Selected and Malwarebytes’ Anti-Malware will remove all the infected files it has detected. It may be necessary to restart your computer in order to remove some of these files. After Malwarebytes’ Anti-Malware is done removing all the infected files, it will open Notepad and present the scan log to you. You can review the log at your leisure – save it If you want.



Step 6. Close Malwarebytes’ Anti-Malware and you’re done. No traces of CoreGuard Antivirus 2009 should be left on your computer.

Manual removal guide

Stop and remove the processes:



Access the Windows Registry Editor and delete the following registry keys:



Locate and delete the following files:



Unregister the following DLL libraries:





Don't forget to:

Tags:

Link to this article:

Add comment:

Top Downloads

Copyright © FindMySoft.com 2005-2011
1.076 s