NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  
Title: Vista Guardian
Type: Rogue Antispyware

Remove Vista Guardian. Removal instructions


 
Also known as: VistaGuardian
Severity scale:Vista Guardian severity is 72  (72 / 100)
 
Vista Guardian is a rogue anti-spyware program that deliberately displays exaggerated scan results to make you think your computer has many infections and security/privacy risks. This program is usually promoted through the use of fake online scanners, that state that your computer is badly infected and that you should download and install Vista Guardian in order to remove infections and to protect yourself. When Vista Guardian is installed and active it will automatically perform a fake system scan when you login to Windows. After the scan it will display numerous infections of exaggerated security threats on your computer and then state that you should purchase the program in order to remove the infections or threats which don't even exist. Don't pay for this bogus software and uninstall it as soon as possible. If you are infected with this virus, then please use the removal guide stated below to remove Vista Guardian from your computer manually for free or with an automatic removal tool.

While VistaGuardian is running you will also find your computer flooded with various alerts stating that your computer is infected with malware. This program will hijack both Internet Explorer and Firefox to randomly display messages about insecure Internet activity when browsing the web and state that you should purchase Vista Guardian to protect your computer from possible attacks. These alerts, like web browser hijacks are just another attempt to trick you into believing that you are infected with Trojans, worms and other viruses. However, the worst thing is that this parasite blocks anti-virus and anti-spyware software as well as useful Windows functions (Task Manager and Regedit). In order to remove this virus you will have to either use another PC or re-enable default Windows registry settings. To do this, please use the guide below.

Vista Guardian removal instructions:

1. Click Start->Run (or WinKey+R). Input: "command". Press Enter or click OK.
2. Type "notepad" as shown in the image below and press Enter. Notepad will open.
3. Copy and past the following text into Notepad:


Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command]
[-HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command]
[-HKEY_CLASSES_ROOT\.exe\shell\open\command]

[HKEY_CLASSES_ROOT\.exe]
@="exefile"
"Content Type"="application/x-msdownload"

[-HKEY_CLASSES_ROOT\secfile]

4. Save file as "exefix.reg" (without quotation-marks) to your Desktop.
NOTE: choose Save as type: All files
5. Double-click to open exefix.reg. Click "Yes" for Registry Editor prompt window.
6. Download Spyware Doctor or an automatic removal tool below. Update Spyware Doctor and run a full system scan.

If you can't complete the above steps then please use another PC to download an automatic removal tool and exefix.reg (Right Click (Save Target As)) to download file. Copy these files to USB flash drive or any other external media and transfer them to infected computer. Launch exefix.reg file first and then install Spyware Doctor.

Related files: WRblt8464P, av.exe

Vista Guardian properties:
• Changes browser settings
• Shows commercial adverts
• Connects itself to the internet
• Stays resident in background

Automatic Vista Guardian removal:

remover for Vista Guardian
SpyHunter is recommended remover to uninstall Vista Guardian. You should confirm using free trial that it detects current version of parasite.

Note: Tested and Confirmed means that we have tested spyware remover with multiple versions of Vista Guardian and got the best results. There might be updated or modified version of particular parasite that require manual killing of parasite process or an update. In such case try other removers in the line.

Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove Vista Guardian using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
STOPzilla
download | review
Tested and Confirmed! STOPzilla removes Vista Guardian (2010-01-29 05:15:33)
Malwarebytes Anti Malware
download | review
Tested and Confirmed! Malwarebytes Anti Malware removes Vista Guardian (2010-01-29 05:15:33)
Spyware Doctor
download | review | tutorial
We are testing Spyware Doctor's efficiency at removing Vista Guardian (2010-03-09 05:41:03)
XoftSpySE Anti Spyware
download | review

Vista Guardian manual removal:

Kill processes:
av.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CLASSES_ROOT\secfile\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "AntiVirusOverride" = "1"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "FirewallOverride" = "1"
HELP:
how to remove registry entries

Delete files:
%UserProfile%\\AppData\\Local\\av.exe %UserProfile%\\AppData\\Local\\WRblt8464P
HELP:
how to remove harmful files
Information added: 2010-01-29 05:15:33
Information updated: 2010-03-09 03:03:48

Additional resources related to Vista Guardian:

Attention: If you know or you have a website or page about Vista Guardian removal, feel free to add a link to this list: add url
more resources
0
0
<Guest>
any one use
2010 01 30
0
0
Javier
It says to me that I dont have access to the device, route of access or file specify. It is possible that it does not have permissions adapted to have access to the element. HELP PLEASE!
2010 02 03
0
0
<Guest>
its really worked! thanks alot! awsome work done! thumbs up
2010 02 05
0
0
<Guest>
Thanks a lot dude. Its really effective. You are better than these antivirus companies dude.....keep up the good work.... :)
2010 02 05
0
0
<Guest>
u have to pay for the spyware
2010 02 05
0
0
handy
when deleting manually, do not delete everything, let "%1" %* stand, else you wont be able to open .exe files. (except with right click and start as an admin)
2010 02 07
0
0
a thanker
Thanks a lot, it worked like a charme!
2010 02 10
0
0
<Guest>
THANKS! i put it off for 3 days it was dumb... it was fu-kin easy to do. took 20 seconds!
2010 02 13
0
0
<Concerned User>
You still cannot remove it for free.. you must pay for a key after using spyware doctor......
2010 02 14
0
0
<Guest>
I did the first command: Kill the process: av.exe
Regedit cannot be found.
Internet explorer is broken and won't work.
what next?
any help, please
2010 02 21
0
0
<Guest>
I can't find the last file at the end... help?
2010 03 01
0
0
<Guest>
Thank you!!!
2010 03 02
0
0
<Guest>
just wanted to see if these posts were legit
2010 03 06
0
0
<Guest>
are they?
2010 03 08
0
0
<Guest>
where do these thing come from? dont want to get it again!
2010 03 09

Post Comment:

Attention: Use this form only if you have additional information about Vista Guardian parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Latest spyware news:
Subscribe to news

Similar parasites:
Related discussions:
Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2 HijackThis Log Analyzer Beta 2

I failed to remove Vista Guardian using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Latest Spyware Threats: Internet Security 2012 | Win 7 Total security 2012 | System Check | Win 7 Internet Security 2012 | Win 7 Home Security 2012 | Win 7 Antivirus 2012 | Win 7 Antispyware 2012 | Vista Security 2012 | Vista Antivirus 2012 | Vista Antispyware 2012 | XP Antispyware 2012 | XP Antivirus 2012 | XP Security 2012 | XP Home Security 2012 | Security Shield
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2011 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.