My Security Shield

My Security Shield Description


ScreenshotMy Security Shield tries to look like a real anti-malware program, but My Security Shield’s functions are strictly devoted to creating junk files and making hoax displays of fake infection results. This rogue anti-malware program shares many traits in common with other malware, since My Security Shield is based off of preexisting rogue anti-malware threats – My Security Shield will corrupt the Windows registry, force imitation scans that always return poor results and pester you into ‘registering’ My Security Shield. My Security Shield has no purpose being on anyone’s PC, let alone purchased, since My Security Shield’s functions are only irritants at best and security risks at worst!

My Security Shield’s Malware that Makes Its Own Infections


My Security Shield is closely related to such previous rogue anti-malware threats as Virus Doctor, Security Master AV and My Security engine; all these applications share behavior and coding even if their names and appearances differ. Most rogue anti-malware applications add entries to the registry to run during system startup, and My Security Shield follows in this path worn by My Security Shield’s predecessors. Any computer that has a My Security Shield infection will probably be forced into letting the rogue anti-malware product go through a show of a system scan after each reboot.

My Security Shield also uses error messages like the following to supplement My Security Shield’s scans:

Warning! Virus detected
Threat Detected: Trojan -PSW.VBS.Half
Description: This is a VBScript-virus.
DOWNLOAD NOW

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter.

It steals user’s passwords
.

Warning! Access conflict detected!
An unidentified program is trying to access system process address space.
Process Name: AllowedForm
Location: C:\Windows\…\notepad.exe


Warning! Identity theft attempt detected
Memory access problem
WindowsErrorForm has encountered a problem at address 0x1FC408.
We are sorry for the inconvenience.
If you see this error again, operational information can be irrevocably lost.


There are no unidentified programs, viruses or other threats on your system, however… at least, none that My Security Shield can detect! In fact, My Security Shield will actually create useless files in your %UserProfile%\Recent\ folder just so it has something to declare to be an infection. After all that, it should be obvious that deleting My Security Shield, not purchasing it, is what you need to do if it’s invaded your hard drive.

Punishing My Security Shield for Its Intrusion


Any machine running Windows 2000, 9x, Vista or Windows 7 is at risk of infection by My Security Shield. Removing My Security Shield should be done only after My Security Shield and any other malware are all shut down, since active malware can bypass standard quarantine and deletion procedures.

The majority of rogue anti-malware applications are delivered by Trojans, so keep one eye peeled for other malware while you get rid of My Security Shield. Kicking one problem out while missing the other may only require you to go through the entire process again when the Trojan drops a second rogue anti-malware threat.

My Security Shield belongs to the FakeVimes family, which includes members such as Windows Pro Web Helper, Windows Ultimate Security Patch, Windows Internet Watchdog, Windows Safety Module, Windows Antibreach Tool, Windows Premium Console, Windows Advanced Security Center, Windows Secure Workstation, Windows Malware Sleuth, Smart Internet Protection 2011, Windows Pro Defence Kit, Windows Sleek Performance, Keep Center Keeper, Windows Safety Manager, CleanUp Antivirus, Windows Antivirus Patch, Windows Control Series, Windows Instant Scanner, Windows Active Defender, Strong Malware Defender, Windows Safety Maintenance, Windows Privacy Counsel, Windows Care Taker, Windows Expert Console, Windows Guard Solutions, Windows Security Suite, Windows Efficiency Console, Windows Defence Counsel, Windows Safety Checkpoint, Windows Secure Web Patch, PrivacyGuard PRO, Windows Expert Series, Windows Guard Tools, Windows Advanced Toolkit, Windows Secure Surfer, Windows Private Shield, Windows Managing System, Windows Daily Adviser, Windows Software Saver, Windows First-Class Protector, Windows Trouble Taker, Windows Security Master, Windows Virtual Firewall, Windows Smart Warden, Windows No-Risk Agent, Windows Premium Shield, Personal Security Sentinel and Windows Security Renewal.

My Security Shield Automatic Detection Tool (Recommended)


Is your PC infected with My Security Shield? To safely & quickly detect My Security Shield we highly recommend you run the malware scanner listed below.




Technical Details

Visual & GUI Characteristics

ScreenshotScreenshotScreenshotScreenshotScreenshotScreenshot

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
  • The following files were created in the system:
    # File Name Detection Count
    1 %AllUsersProfile%\[7 RANDOM CHARACTERS]\SM[RANDOM CHARACTERS]_[NUMBERS].exe 194
    2 %AllUsersProfile%\[6 RANDOM CHARACTERS]\SM[RANDOM CHARACTERS]_[NUMBERS].exe 191
    3 %AllUsersProfile%\Application Data\[5 RANDOM CHARACTERS]\MS[RANDOM CHARACTERS].exe 159
    4 %AllUsersProfile%\Application Data\[7 RANDOM CHARACTERS]\SM[RANDOM CHARACTERS]_[NUMBERS].exe 156
    5 My Security Shield.lnk 141

Registry Modifications

Tutorial: To edit and delete registry entries manually, read the tutorial on how to remove malicious registry entries.

Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
  • The following newly produced Registry Values are:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\..{RunKeys}My Security Shield

Additional Information

  • The following messages's were detected:
    # Message
    1Warning! Virus detected
    Threat Detected: Trojan-PSW.VBS.Half
    Description: This is a VBScript-virus. It steals user's passwords.

    Memory access problem
    WindowsErrorForm has encountered a problem at address 0x1FC408.
    We are sorry for the inconvenience.
    If you see this error again, operational information can be irrevocably lost.
Posted: August 5, 2010 | By
Share:
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Threat Metric
Threat Level: 10/10
Detection Count: 239

7 Comments

  • Luc says:

    Once viruses wouldn’t let me go anywhere I decided to purchase My Security Shield, though never heard of it before. Unlike the persons who posted a comment above My Security Shield had cleaned up my system from all the crap and I’m quite satisfied with it so far.
    Also why didn’t you used the support service? I did it and it helped me a lot.

  • Brooke says:

    i finally found it in my HKY_USERS – I HAD TO DO A SEARCH FOR IT, BU T I GOT IT AND BELIEVE IT IS GONE YEAH!

  • erick vergara says:

    GRACIAS POR LA AYUDA.

  • R eleanora says:

    Please delete this viruis from my computer you. Thank you

  • joseph says:

    When I type in the instructions for opening the Task Manager nothing happens. What am I doing wrong?

  • ls85 says:

    Just in case anyone else cant find the Registry keys in the location described above, I found it in “HKEY_CURRENT_USER\Software\My Security Shield.”

    Thanks for helping me get rid of this!

  • Sam says:

    When i do Alt+CTRL+Delete it doesent come up with procssess? :S

Leave a Reply

What is 6 + 3 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)