« Dcads Toolbar
1 of Friends Awaiting Your Response Email »

WiniGuard

No Comments
By ESGI Advisor in Rogue Anti-Spyware Program | 0 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00 out of 5)
Loading ... Loading ...

WiniGuard Description

WiniGuard is a fake anti-spyware program that is related to the same family of rogues such as Softsafeness. WiniGuard uses many misleading methods to cohort computer users into purchasing a full version of the WiniGuard application. WiniGuard is unable to detect or remove spyware. WiniGuard can be difficult to manually detect and remove in some cases.

Type: Rogue AntiSpyware Programs

Automatic Detection of WiniGuard

 
 

Download SpyHunter’s Detection Scanner
to Detect WiniGuard.

 
 

WiniGuard Technical Report

As new WiniGuard details are reported by our customers and findings from our Threat Research Center, we will update this section.

The following WiniGuard files with its MD5s were created in the system:

File Name File Size MD5
logaes.dll 30720 85bb5ff18b6d809c876e561438e646da
winiguard_installer[1].exe 3467396 1963a655091d18a2358b9ccfcbcdea6a
WiniGuard.exe 9551872 b4dbfcf797b9cbd6f0fd1fd4e6ec7ab7
cfrog.exe 13312 6f2e7ae0d178b933f20942ca70ee69e1
baloon.exe 147968 908a6585378e3739cb2729ec56880d36
LinkSave.dll 45056 31632e99e78d2d77969b83f8c6e0caa9

WiniGuard has typically the following processes in memory:

  • %PROGRAM_FILES%\Innovagest 2000 SL\WiniGuard\WiniGuard.exe
  • c:\Program Files\WiniGuard\msvcp71.dll
  • logaes.dll
  • baloon.exe
  • %PROGRAM_FILES%\Innovagest 2000 SL\WiniGuard\logaes.dll
  • c:\Program Files\WiniGuard\uninst.exe
  • %UserProfile%\My Documents\WiniGuard\SDBHO.dll
  • cfrog.exe
  • %SYSTEMROOT%\system32\baloon.exe
  • winiguard_installer[1].exe
  • c:\Program Files\WiniGuard\WiniGuard.exe
  • c:\Program Files\WiniGuard\msvcr71.dll
  • WiniGuard.exe
  • %SYSTEMROOT%\system32\cfrog.exe

WiniGuard created the following directories, files, paths:

  • %ProgramFiles%\Innovagest 2000 SL\WiniGuard
  • %AllUsersProfile%\Start Menu\Programs\WiniGuard

WiniGuard creates the following registry entries:

  • WiniGuard
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “WiniGuard”

Important Article Disclaimer

article disclaimer
ESG Support Center

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Technorati
  • YahooMyWeb
This entry was posted on 10/21/08 and is filed under Rogue Anti-Spyware Program. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Top Malware

Recommended Products

Featured Videos

Poll

How much money have you spent trying to rid your PC of spyware?
View Results

Recent Articles

Top FAQs


Archives

Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2009. Enigma Software Group USA, LLC. All Rights Reserved.