My Security Engine

April 23rd, 2010
Home » Rogue Antispyware » My Security Engine
Repair and protect your computer easily. Download My Security Engine removal tool  

My Security Engine description

My Security Engine is the latest rogue anti-spyware program pretending to be a legitimate security tool. Malware is also a clone of Security Guard and Cleanup Antivirus malicious applications. My Security Engine distributed usually through trojan horse and fraudulent online malware scanners. This parasite downloads and installed itself automatically without user’s knowledge and consent.

Once active, malware start fake computer scans and displays its fabricated results. It usually state that your PC has various infections and has to be cleaned immediately. My Security Engine will show numerous warnings, fake security alert. Few of the alerts:

Warning
Warning! Virus detected

System alert
Click here to remove all potentially harmful programs found
immediately using My Security Engine.

It will offer you to buy a registered version of the program. This is a fraud. Do not fall for this blatant scam. Purchasing the program may cause you serious troubles and more parasites onto your computer. Choose reputable anti-spyware tool and terminate My Security Engine application upon detection.

Manual My Security Engine Removal


My Security Engine processes:

MS345d.exe
PE.exe
Help: A Guideline of Killing Malicious Processes


My Security Engine registry values:

HKEY_CURRENT_USER\Software\3
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\MS345d.DocHostUIHandler
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes "URL" ="http://findgala.com/?&uid=195&q={searchTerms}"
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://findgala.com/?&uid=195&q={searchTerms}"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "PRS" = "http://127.0.0.1:27777/?inj=%ORIGINAL%"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download "RunInvalidSignatures" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "My Security Engine"
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes "URL" = "http://findgala.com/?&uid=195&q={searchTerms}"
Help: How to edit windows registry entries


My Security Engine DLLs:

mozcrt19.dll
sqlite3.dll
ANTIGEN.dll
energy.dll
exec.dll
gid.dll
pal.dll


Other malicious My Security Engine files:

c:\Documents and Settings\All Users\Application Data\345d567
c:\Documents and Settings\All Users\Application Data\345d567\2322.mof
c:\Documents and Settings\All Users\Application Data\345d567\mozcrt19.dll
c:\Documents and Settings\All Users\Application Data\345d567\MS345d.exe
c:\Documents and Settings\All Users\Application Data\345d567\MSE.ico
c:\Documents and Settings\All Users\Application Data\345d567\sqlite3.dll
c:\Documents and Settings\All Users\Application Data\345d567\BackUp\
c:\Documents and Settings\All Users\Application Data\345d567\MSESys\
c:\Documents and Settings\All Users\Application Data\345d567\MSESys\vd952342.bd
c:\Documents and Settings\All Users\Application Data\345d567\Quarantine Items
c:\Documents and Settings\All Users\Application Data\MSHOLE\
c:\Documents and Settings\All Users\Application Data\MSHOLE\MSJKEJCCE.cfg
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\My Security Engine.lnk
%UserProfile%\Application Data\My Security Engine\
%UserProfile%\Application Data\My Security Engine\cookies.sqlite
%UserProfile%\Application Data\My Security Engine\Instructions.ini
%UserProfile%\Desktop\My Security Engine.lnk
%UserProfile%\Recent\ANTIGEN.dll
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\eb.sys
%UserProfile%\Recent\energy.dll
%UserProfile%\Recent\exec.dll
%UserProfile%\Recent\exec.drv
%UserProfile%\Recent\exec.tmp
%UserProfile%\Recent\gid.dll
%UserProfile%\Recent\kernel32.sys
%UserProfile%\Recent\kernel32.tmp
%UserProfile%\Recent\pal.dll
%UserProfile%\Recent\PE.dll
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\ppal.drv
%UserProfile%\Recent\runddlkey.drv
%UserProfile%\Recent\SICKBOY.sys
%UserProfile%\Recent\tjd.sys
%UserProfile%\Start Menu\My Security Engine.lnk
%UserProfile%\Start Menu\Programs\My Security Engine.lnk
c:\Program Files\Mozilla Firefox\searchplugins\search.xml

The manual removal of files and registries should be performed by experienced users. A system can be badly affected if any error is done during the manual removal. We recommend using automatic removal tools to delete My Security Engine, if you are not familiar with deleting malware manually.

Tags:

Trackbacks /
Pingbacks

  1. Remove Security Master AV, Security Master AV removal help
  2. Remove Personal Internet Security 2011, Personal Internet Security 2011 removal guide

Leave a Reply