• Home
• About

Removal of “Internet Security Guard” as a second major counterfeited antivirus in 2012

Internet Security Guard consists of the same popups related to security of computer system hosting the software as its only predecessor, Home Security Solutions. The former software product was reported at the eve of 2012, while the latter became a black-listed software of common knowledge at the mid of January 2012.
Both program scare users into thinking their computers are badly, even deadly, infected. True, there is at least one severe parasite for the computer system undergoing a procedure posed as scan by the applications, which is one of these tricky tools.
Remove Internet Security Guard as it keeps computer system and its users oppressed. The impact on computer system is not limited to producing the annoying popups that slows PC down and interferes with useful applications as the rogue is known to deliberately lock CPU and other resources to severely restrict computer features. In order to start free scan and get rid of Internet Security Guard so that it would no longer burden you and oppress your PC, click here.

Automatic removal of Internet Security Guard:

Malware is likely to be accomponied by a group of numerous relatives and assisting programs. That is why we recomend to scan computer for malware and viruses if Internet Security Guard is your computer resident. The scan is 100% free. After the scan, you can remove Internet Security Guard in a safe mode as fast as your PC perfomance permits. Click here to scan your computer for free and get rid of Internet Security Guard.

If Internet Security Guard blocks remover download:

Where Internet Security Guard attempts to evade its removal and terminates or disallows true antispyware downloading, the problem is usually resolved when you run your OS in safe mode. To start Safe Mode session, please restart your computer and before Windows starts loading press F8 and hold it until you enter Windows Advanced Options Menu; by using your keyboard choose the following option: Safe Mode with Networking, and let Windows start in Safe Mode. Try to download the antispyware of your choice again. If Internet Security Guard still blocks remover download – act as follows:

• Step 1: click Start at the left bottom corner of your monitor

• Step 2: choose Run in its menu

• Step 3: type “command” in the line and click OK or press Enter

• Step 4: in the window that is to appear type “notepad”

• Step 5: once notepad is open, insert the following text into Notepad by copy and paste:

Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command]

[-HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command]

[-HKEY_CLASSES_ROOT\.exe\shell\open\command]

[HKEY_CLASSES_ROOT\.exe]

@=”exefile”

“Content Type”=”application/x-msdownload”

[-HKEY_CLASSES_ROOT\secfile]

• Step 6: save the resulted file as “exefix.reg” (no quotes) at the Desktop. When saving, please choose All Files at the “Save As” drop-down list. Open “exefix.reg” file (on your Desktop) and press “Yes”. After that you can download Spyware Doctor and other legitimate anti-spyware applications or remove Internet Security Guard files and registry entries manually.

• Step 7: To fix .exe files running download and run this for Windows XP, Windows Vista, Windows 7

Download Spyware Doctor to remove Internet Security Guard malware

Download PC Tools Spyware Doctor + Antivirus to uninstall Internet Security Guard and protect your PC from malware threats

Manual removal of Internet Security Guard:

Internet Security Guard manual removal means that you have relevant skills for managing .dll files and PC registry. After you remove Internet Security Guard manually, we still highly recommend you due to the reasons explained above to perform free scan for malware. Follow the relevant link above to start free scan (click on “Download Spyware Doctor to remove Internet Security Guard malware”).

Delete Internet Security Guard related files and folders:

%AppData%\Internet Security Guard\
%AppData%\Internet Security Guard\cookies.sqlite
%AppData%\Internet Security Guard\Instructions.ini
%AppData%\Microsoft\Internet Explorer\Quick Launch\Internet Security Guard.lnk
%CommonAppData%\79b35\
%CommonAppData%\79b35\ISa76.exe
%CommonAppData%\79b35\ISG.ico
%CommonAppData%\ISEUG\
%CommonAppData%\ISEUG\ISKIYFOAG.cfg
%UserProfile%\Desktop\Internet Security Guard.lnk
%UserProfile%\Recent\ANTIGEN.exe
%UserProfile%\Recent\cb.drv
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\eb.dll
%UserProfile%\Recent\energy.exe
%UserProfile%\Recent\energy.tmp
%UserProfile%\Recent\fan.sys
%UserProfile%\Recent\fix.sys
%UserProfile%\Recent\FW.drv
%UserProfile%\Recent\gid.dll
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\ppal.sys
%UserProfile%\Recent\SICKBOY.tmp
%UserProfile%\Recent\sld.sys
%UserProfile%\Recent\SM.dll
%UserProfile%\Recent\SM.exe
%UserProfile%\Recent\snl2w.drv
%UserProfile%\Recent\tjd.tmp
%UserProfile%\Start Menu\Internet Security Guard.lnk
%UserProfile%\Start Menu\Programs\Internet Security Guard.lnk

Delete Internet Security Guard registry entries:

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes
HKEY_CURRENT_USER\Software\3
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\IS9c5_8027.DocHostUIHandler
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\_avp32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ackwin32.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\adaware.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\av360.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\McSACore.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zapsetup3001.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zatutor.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zonalm2601.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zonealarm.exe
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://findgala.com/?&uid=8027&q={searchTerms}”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PRS” = “http://127.0.0.1:27777/?inj=%ORIGINAL%”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “879905773703″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform “feed/7.1.08027″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer “DisallowRun” = “1″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “0″ = “msseces.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “1″ = “MSASCui.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “10″ = “avgscanx.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “11″ = “avgcfgex.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “12″ = “avgemc.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “13″ = “avgchsvx.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “14″ = “avgcmgr.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “15″ = “avgwdsvc.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “3″ = “egui.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “4″ = “avgnt.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “5″ = “avcenter.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “6″ = “avscan.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “7″ = “avgfrw.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “8″ = “avgui.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun “9″ = “avgtray.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Internet Security Guard”
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://findgala.com/?&uid=8027&q={searchTerms}”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “CheckExeSignatures” = “no”

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically to your feed reader.