Title: Additional Guard
Also known as: AdditionalGuard

Remove Additional Guard
Removal instructions

 
Severity scale:Additional Guard severity is 70  (70 / 100)
 
Additional Guard is a misleading anti-spyware application, fake spyware removal tool. Basically, it is just a rename of the rogue anti-spyware application called Windows Additional Guard. As its predecessor, AdditionalGuard uses false scan results and fake security alerts/notifications to scare you into thinking that your computer is infected and that you should purchase the program to remove supposed infections/security threats. Obviously, this is nothing more but a scam. Do not buy this bogus software and uninstall Additional Guard from your computer upon detection.

Additional Guard graphical user interface
[Figure 1. Additional Guard graphical user interface]

Additional Guard infection may cause serious problems to the system. The rogue application is promoted via fake online scanners and misleading websites. It enters a computer with the help of Trojans that usually come from those fake online scanners. Trojans then download and install rogue application. Once installed, Additional Guard imitates several computer scans and states that your computer is baldy infected with spyware, adware, worms, Trojans and other malware. This parasite then claims that you must purchase AdditionalGuard in order to remove those infections, but the problems is that those infections do not actually exist. The real infections is Additional Guard itself.

Additionalguard.net - the home page of Additional Guard
[Figure 2. Additionalguard.net - the home page of Additional Guard]

The home page of this malicious software is additionalguard.net (can be other similar domains too). The website is potentially harmful because there are many false statements and fake reviews as well as the pay page of this bogus application. Do not visit this website. If you are constantly redirected to this website, your computer is likely infected. As wee have already said, do not purchase it! First of all, please use the removal guide below and remove Additional Guard files from your PC. Then scan your computer with a legitimate anti-spyware application to remove the remains or additionally downloaded malware.

Related files: FS.exe, energy.dll, cookies.sqlite, sqlite3.dll, mozcrt19.dll

Additional Guard properties:
• Changes browser settings
• Shows commercial adverts
• Stays resident in background

Automatic Additional Guard removal:

It might be that we are affiliated with any of our recommended products. Full disclosure can be found in our Agreement of Use.
By downloading any of provided Anti-spyware software to remove Additional Guard you agree with our Privacy Policy and Agreement of Use.
SpyHunter is recommended remover to uninstall Additional Guard. You should confirm using free trial that it detects current version of parasite.

Note: Tested and Confirmed means that we have tested spyware remover with multiple versions of Additional Guard and got the best results. There might be updated or modified version of particular parasite that require manual killing of parasite process or an update. In such case try other removers in the line.

Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

If you failed to remove Additional Guard using SpyHunter, submit question to our support team and provide as much details as possible.
dot
STOPzilla
download
manual required
Tested and Confirmed! STOPzilla removes Additional Guard (2009-11-24 04:34:11)
dot
Malwarebytes Anti Malware
download
manual required
Tested and Confirmed! Malwarebytes Anti Malware removes Additional Guard (2009-11-24 04:34:11)
dot
XoftSpySE Anti Spyware
download
manual required
We are testing XoftSpySE Anti Spyware's efficiency at removing Additional Guard (2012-04-30 22:33:24)
dot
Defender Pro Ultimate
download
manual required
We are testing Defender Pro Ultimate's efficiency at removing Additional Guard (2012-04-30 22:33:24)

what to do if you failed to remove the infection?
Virus Removal
Phone Support
Help Line to remove Additional Guard
Additional Guard snapshot:
Additional Guard snapshot

Additional Guard manual removal:

Kill processes:
WI339.exe
exec.exe
FS.exe
ppal.exe
Delete registry values:
HKEY_CURRENT_USER\Software\3
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\xp_e0ebf.DocHostUIHandler
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://search-gala.com/?&uid=7&q={searchTerms}"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform "[xSP_2:117fc3395e69e29f71abba93a68c4181_7]"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform "99660903"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Additional Guard"
Unregister DLLs:
mozcrt19.dll
sqlite3.dll
cid.dll
ddv.dll
energy.dll

Delete files:
WI339.exe
WINAG.ico
2414.mof
mozcrt19.dll
sqlite3.dll
vd952342.bd
winag.cfg
cookies.sqlite
Instructions.ini
Additional Guard.lnk
search.xml
ANTIGEN.drv
ANTIGEN.tmp
cid.dll
CLSV.tmp
ddv.dll
eb.drv
eb.exe
energy.dll
energy.sys
exec.exe
exec.tmp
fan.drv
FS.drv
FS.exe
kernel32.drv
PE.sys
ppal.exe
Delete directories:
c:\Documents and Settings\All Users\Application Data\117fc
c:\Documents and Settings\All Users\Application Data\117fc\Quarantine Items
c:\Documents and Settings\All Users\Application Data\117fc\WINAGSys
c:\Documents and Settings\All Users\Application Data\WINAGSys
%UserProfile%\Application Data\Additional Guard

Geolocation of Additional Guard:

This map reveals the prevalence of Additional Guard. Countries and regions that have been affected the most are: United States.

QR code for Additional Guard removal instructions:

Additional Guard qrcode
QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.

The reason we add QR code to the website is that parasites like Additional Guard are really hard to remove on infected computer. you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall Additional Guard right in your pocket.

Simply use the QR scanner and read removal instructions from mobile device.
Information added: 2009-11-24 04:34:11
Information updated: 2012-04-30 19:56:09

Additional resources:

Attention: If you know know a reputable website reated to security threats, please add a link here: add url

0
0
<Guest>
pls. remove the additional guard from my pc thx.
0
0
<Guest>
You must remove all related software from my computer immediately.
0
0
<Guest>
Correction. Remove all Additional Guard from my computer immediately
0
0
<Guest>manik
remove additional guard.

Post Comment:

Attention: Use this form only if you have additional information about Additional Guard parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter please unsubscribe here
48597 Subscribers
Ask us
I failed to remove Additional Guard using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight against computer parasites on the Internet alone. If you have a website, we would be more than happy if you would like to cooperate and help us spread the information about latest threats. Remember, knowledge is the most powerful weapon. Help your visitors protect their computers!
add text box
rss feed
help other