Internet Security Guard
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 100 % (High) |
Infected Computers: | 9 |
First Seen: | January 14, 2012 |
Last Seen: | January 24, 2023 |
OS(es) Affected: | Windows |
According to ESG security researchers, Internet Security Guard is a fake antispyware application that belongs to a large family of rogue security programs, the FakeScanti family. If your computer system has become infected with Internet Security Guard, it is essential that you remove Internet Security Guard with the use of a legitimate anti-malware application. Failure to remove Internet Security Guard puts you at risk for additional malware infections and increases the risk that your credit card number or online accounts may be compromised.
Some fake anti-virus programs that are known clones of Internet Security Guard include Security Guard, Sysinternals Antivirus, Wireshark Antivirus, Milestone Antivirus, BlueFlare Antivirus, WolfRam AntiVirus, OpenCloud Antivirus, OpenCloud Security, Data Restore, OpenCloud AV, Security Guard 2012, AV Guard Online, Guard Online, Cloud Protection, AV Protection Online, System Protection 2012, AV Security 2012, Sphere Security 2012, AV Protection 2011, Super AV 2013.
Table of Contents
Dealing With an Internet Security Guard Infection
The main tactic that Internet Security Guard uses in order to attack its victims is displaying constant fake security alerts and error messages. These are meant to cause panic and to urge the victim to register Internet Security Guard by purchasing a registration code in order to 'unlock' Internet Security Guard's full features. However, ESG security researchers advise against paying for Internet Security Guard in any way. Internet Security Guard has absolutely no anti-virus capabilities. In fact, this dangerous application is made up of little more than its showy interface (designed to mimic Windows Security Center) and a handful of malicious scripts and Trojans designed to wreak havoc on the victim's computer system. ESG security researchers recommend following these guidelines in order to deal with an Internet Security Guard infection more effectively:
- Internet Security Guard will often be accompanied with a Trojan infection designed to detect and overwrite any security software on the victim's computer, effectively disabling the victim's security software. Therefore, it may be a prerequisite to download or reinstall your anti-virus application or run it from an external drive.
- Internet Security Guard is designed to display error messages whenever the victim attempts to access files or connect to the Internet. Entering a registration code can help ameliorate these symptoms. Anyhow, it should be mentioned that the registration code will not stop an Internet Security Guard infection but simply relieve some of its most annoying symptoms. ESG security analysts have provided the following registration codes: K7LY-H4KA-SI9D-U2FD, U2FD-S2LA-H4KA-UEPB and K7LY-R5GU-SI9D-EVFB.
- Because Internet Security Guard can start up automatically when you start up Windows, it may be necessary to start up in Safe Mode before removal can be carried out.
Internet Security Guard Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe | |
2. | %UserProfile%\Recent\gid.dll | |
3. | %UserProfile%\Recent\ANTIGEN.exe | |
4. | %UserProfile%\Recent\fan.sys | |
5. | %UserProfile%\Recent\ppal.sys | |
6. | %AppData%\Internet Security Guard\ScanDisk_.exe | |
7. | %UserProfile%\Recent\CLSV.dll | |
8. | %UserProfile%\Recent\SM.dll | |
9. | %UserProfile%\Recent\fix.sys | |
10. | %UserProfile%\Recent\sld.sys | |
11. | scandsk107d_8027.exe | |
12. | %CommonAppData%\79b35\ISa76.exe | |
13. | %UserProfile%\Recent\eb.dll | |
14. | %UserProfile%\Recent\energy.exe | |
15. | %UserProfile%\Recent\PE.exe | |
16. | %UserProfile%\Recent\SM.exe | |
17. | %Programs%\Internet Security Guard.lnk | |
18. | %CommonAppData%\[RANDOM CHARACTERS]\ISG.ico | |
19. | %AppData%\Internet Security Guard\cookies.sqlite | |
20. | %CommonAppData%\ISEUG\ | |
21. | %UserProfile%\Recent\energy.tmp | |
22. | %UserProfile%\Recent\tjd.tmp | |
23. | %UserProfile%\Start Menu\Internet Security Guard.lnk | |
24. | %StartMenu%\Internet Security Guard.lnk | |
25. | %Desktop%\Internet Security Guard.lnk | |
26. | %AppData%\Internet Security Guard\ | |
27. | %CommonAppData%\79b35\ISG.ico | |
28. | %UserProfile%\Recent\cb.drv | |
29. | %UserProfile%\Recent\snl2w.drv | |
30. | %UserProfile%\Desktop\Internet Security Guard.lnk | |
31. | %AppData%\Internet Security Guard\Instructions.ini | |
32. | %AppData%\Microsoft\Internet Explorer\Quick Launch\Internet Security Guard.lnk | |
33. | %CommonAppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].cfg | |
34. | %CommonAppData%\79b35\ | |
35. | %CommonAppData%\ISEUG\ISKIYFOAG.cfg | |
36. | %UserProfile%\Recent\FW.drv | |
37. | %UserProfile%\Recent\SICKBOY.tmp | |
38. | %UserProfile%\Start Menu\Programs\Internet Security Guard.lnk |
Registry Details
URLs
Internet Security Guard may call the following URLs:
save-secure.com |
securityearth.net |
www5.internet-security-guard.com |