Thursday, May 5, 2011

Remove PC Security Guardian virus

PC Security Guardian is a fake security program from the same family of rogues as Best Malware Protection, Internet Antivirus 2011, etc. The program pretends to be a legitimate antivirus software but, in reality, it can not remove viruses, trojans, etc., nor will be protect your computer from legitimate future infections. PC Security Guardian is created with one purpose to trick you into purchasing the full version of the software.

HijackThis shows PC Security Guardian infection

O4 – HKCU\..\Run: [ PC Security Guardian] “C:\Documents and Settings\All Users\Application Data\0ab12\AB123.exe” /s /d

What PC Security Guardian does

PC Security Guardian is promoted and installed with the help of trojans. When the trojan is started, it will download and install the rogue onto your computer.

During installation, PC Security Guardian will be configured to run automatically every time when your computer starts. After that, it will create several files on your computer, which later, during the scan, will detect as infections. These fake infections can only be removed with a full version of the program.

Obviously, such results are a fraud, the program want to scare you into thinking that your computer is infected with malicious software.

While PC Security Guardian is running, it will flood your computer with fake security alerts and notifications from Windows task bar. Some of the fake alerts are:

Warning! Identity theft attempt detected
Hidden connection IP:
Target: Microsoft Corporation keys

Warning! Virus detected

However, all the alerts are totally fabricated and must by no means be trusted! You can safety ignore them.

Last, but not least, the rogue will disable Task Manager, block antivirus and antispyware tools from running.

As you can see, PC Security Guardian is absolutely useless and what is more, even dangerous software. Most importantly, do not purchase it. Instead, please use the PC Security Guardian removal instructions or the steps below to remove this malware from your computer for free.

PC Security Guardian removal steps

1. Reboot your computer in Safe mode with networking.

2. Run Internet Explorer, Click Tools and select Internet Options. Select Connections Tab and click to Lan Settings button.

3. Uncheck “Use a proxy server” box. Click OK and click OK again.

4. Download Malwarebytes Anti-malware. Double click mbam-setup.exe to install the application. When installation is complete, make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version.

5. Once the program has loaded you will see a screen like below.

Malwarebytes' Anti-Malware

6. Select "Perform Quick Scan", then click Scan. When the scan is done, click OK, then Show Results to view the results. You will see a list of malware that  Malwarebytes' Anti-Malware found on your computer. Note: list of malware may be different than what is shown in the screen below.

Malwarebytes' Anti-Malware - lists of malicious software

7. Make sure that everything is checked, and click Remove Selected. Once disinfection is finished, a log will open in Notepad and you may be prompted to Restart.

8. Download OTM by OldTimer from here and save it to your desktop.

9. Run OTM, then paste the following text in “Paste Instructions for Items to be Moved” window (under the yellow bar):
10. Click the red Moveit! button. Close OTM.

If the instructions does not help you, then ask for help in the Spyware removal forum.


  1. Thanks for the post. It was a huge help.

    I believe you left out the "colon" in front of the "Commands" for step nine. That did the trick in OTM.


  3. Thanks for the advice, worked perfectly!

  4. Thank you so much. You have no idea how much of a relief this is to get that program off my computer. Thank you so much again