Security Shield

By Domesticus in Rogue Anti-Spyware Program

Translate To:

Threat Scorecard

Threat Level:	100 % (High)
Infected Computers:	1,298

First Seen:	December 8, 2010
Last Seen:	April 18, 2018
OS(es) Affected:	Windows

Security Shield Image

Security Shield is a rogue security application with several clones (for example, Security Tool). Computers infected with the fake anti-virus program Security Shield become riddled with a host of problems that can turn them practically impossible to use. Security Shield is often associated with other malware infections, and the presence of Security Shield on a computer is, practically, a guarantee that the computer is infected with one of a variety of Trojans. This is due to the fact that rogue security programs like Security Shield are often installed by Trojans or are simply Trojans themselves. ESG malware analysts recommend removing a Security Shield infection from your computer system as soon as possible. Despite its claims and likeness to real security programs, Security Shield is nothing but a scam designed to steal your money.

Security Shield: One More Version of the Rogue Security Program Scam

Security Shield is one of many variants of rogue security programs, a con that has become especially prevalent since the middle of the 2000s decade. Most variants of this common scam work in the same way and Security Shield is one classic example of how a typical rogue anti-spyware program works. Usually, the rogue security program scam has the same steps:

A Trojan will infect a computer system through any number of deceptive methods. Common methods that Trojans use to infect computer systems include pretending to be video codecs, being bundled along with popular downloads or being downloaded onto a computer system through the use of JavaScript and Flash exploits in corrupted advertisements and pop-up Windows. Whatever way the Trojan uses to infect a computer system, it will often run in the background without the user's knowledge. Common Trojans associated with roguewares like Security Shield include Vundo, Zlob, and the Fake Microsoft Security Essentials Alert Trojan.
The Trojan will display a message claiming that the computer system is infected with a variety of worms, viruses or other malware problems. Then, it will offer the computer user the option to download a free anti-virus program to remove these problems. Some Trojans, like the Fake Microsoft Security Essentials Alert Trojan, actually mimic legitimate security alerts or error messages that a computer system would normally display. If the victim accepts, the rogue anti-virus program (Security Shield in this case) will be downloaded and installed. As part of its installation process, Security Shield makes harmful changes to the computer's settings and alters the Windows Registry to ensure that Security Shield can run in the background and launch automatically when Windows is started up.
Security Shield, or the particular rogue anti-spyware program, will continue to claim that the computer is infected, but will demand that the user pay for a "full version", in order to fix these non-existent problems.

SpyHunter Detects & Remove Security Shield

Security Shield Video

Tip: Turn your sound ON and watch the video in Full Screen mode.

File System Details

Security Shield may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	595230097.exe	d3a901302b63a05d4cdbaac9488d0201	217
Name: 595230097.exe MD5: d3a901302b63a05d4cdbaac9488d0201 Size: 1.14 MB (1146368 bytes) Detections: 217 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
2.	6323257655.exe	5b015e44b7dc0b36c6c98d93e0d0108b	155
Name: 6323257655.exe MD5: 5b015e44b7dc0b36c6c98d93e0d0108b Size: 875 KB (875008 bytes) Detections: 155 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
3.	246950008.exe	330719fc514f618192665d70985ace2d	155
Name: 246950008.exe MD5: 330719fc514f618192665d70985ace2d Size: 875 KB (875008 bytes) Detections: 155 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
4.	663846548.exe	2fa507da93111f0f620cbfebde1223ed	155
Name: 663846548.exe MD5: 2fa507da93111f0f620cbfebde1223ed Size: 865.28 KB (865280 bytes) Detections: 155 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
5.	4789509644.exe	ffc9258f16e6ff91a9c14637a425c2d3	155
Name: 4789509644.exe MD5: ffc9258f16e6ff91a9c14637a425c2d3 Size: 875 KB (875008 bytes) Detections: 155 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
6.	947190886.exe	85aec914a249dbd877627cc6fa60a48e	155
Name: 947190886.exe MD5: 85aec914a249dbd877627cc6fa60a48e Size: 875 KB (875008 bytes) Detections: 155 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
7.	4158304675.exe	b6afc9a9d7cdc8a597c42003649b63b0	152
Name: 4158304675.exe MD5: b6afc9a9d7cdc8a597c42003649b63b0 Size: 898.04 KB (898048 bytes) Detections: 152 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
8.	932735408.exe	a26fbb8a4f0f03396b220e2e932f80bf	152
Name: 932735408.exe MD5: a26fbb8a4f0f03396b220e2e932f80bf Size: 888.83 KB (888832 bytes) Detections: 152 Type: Executable File Path: %LOCALAPPDATA%\ Group: Malware file Last Updated: May 6, 2011
9.	487839044.exe	b5faeb27a51c90d8e28da3cb3c7189ab	0
Name: 487839044.exe MD5: b5faeb27a51c90d8e28da3cb3c7189ab Size: 391.16 KB (391168 bytes) Detections: 0 Type: Executable File Path: %UserProfile%\Local Settings\Application Data\ Group: Malware file Last Updated: December 8, 2010

Messages

The following messages associated with Security Shield were found:

Security Shield
"cmd.exe" is infected with "Worm.Win32.Autorun.bnb". Do you want to register your copy and remove all threats now?

Security Shield
Security Shield Firewall Alert
Security Shield has prevented a program from accessing the internet.
"iexplore.exe" is infected "Trojan-Dropper.Win32.Agent". This worm has to tried to use "iexplore.exe" to connect to remove host and send your credit card information

Security Shield Warning
Intercepting malicious software that may violate your privacy and harm your computer has been detected. Click here to remove now with Security Shield.

Security Shield Warning
Some of the important system files on your PC were modified by malicious software. It may cause system crashes and data losses.
Click here to prevent non-authorized changes and remove threats (Recommended)

Security Shield Warning
Spyware.IEMonster activity detected. This form of spyware attempts to steal passwords from Internet Explorer, Mozilla Firefox, Outlook and other commonly used programs. Click here to immediately remove it with Security Shield.

6 Comments

brian siulinski 11 years ago Reply

My computer got infected today by a malware virus called "Security Shield". Will SpyHunter remove this virus? If so, I will purchase the program immediately.

GoldSparrow 11 years ago Reply

Brian Siulinsky,

Security Shield is one of the many rogue anti-spyware programs that SpyHunter detects. Please keep in mind that new variations and files associated with recent rogue anti-spyware programs appear regularly for the purpose of avoiding detection from security software. However, in the rare case that SpyHunter does not detect a specific rogue anti-spyware program, you may use SpyHunter's Spyware HelpDesk ( http://www.enigmasoftware.com/products/spyware-helpdesk/), a personalized one-on-one technical support service that allows our technicians to generate a custom fix for your unique infection and you can execute your custom fix through your SpyHunter.

Hope this helps.

Billy Plane 11 years ago Reply

help my PC has Security shield.what do I do?

L A 11 years ago Reply

security shield does not allow me to download anything or open internet. so i cannot download your scanner. what do i do?

AirB 11 years ago Reply

I was very pleased to find http://www.enigmasoftware.com. I wanted to thanks for your time for this wonderful read!! I definitely enjoying every little bit of it and I have you bookmarked to check out new stuff you blog post.

jessika 11 years ago Reply

Good afternoon, many thanks for a genuinely unique article, I will not as a general rule attach remarks but really liked your weblog so thought say thanks for your time -
Jasmine