How to Uninstall XP Guardian 2010
This rogue has many different names, here is a list of the ones base on different versions of Windows.
|
Windows XP Rogue Name
|
Windows Vista Rogue Name
|
Windows 7 Rogue Name
|
| AntiSpyware XP | AntiSpyware Vista | AntiSpyware Win 7 |
| AntiSpyware XP 2010 | AntiSpyware Vista 2010 | AntiSpyware Win 7 2010 |
| Antivirus XP | Antivirus Vista | Antivirus Win 7 |
| Antivirus XP 2010 | Antivirus Vista 2010 | Antivirus Win 7 2010 |
| Total XP Security | Total Vista Security | Total Win 7 Security |
| XP AntiSpyware 2010 | Vista Guardian | Win 7 Antispyware 2010 |
| XP Antivirus Pro | Vista Security Tool | Win 7 Antivirus Pro |
| XP Guardian | Vista Security Tool 2010 | Win 7 Guardian |
| XP Security Tool | Vista Smart Security | Win 7 Security Tool |
| XP Security Tool 2010 | Vista Smart Security 2010 | Win 7 Security Tool 2010 |
| XP Smart Security | Vista AntiMalware | Win 7 Smart Security |
| XP Smart Security 2010 | Vista AntiMalware 2010 | Win 7 Smart Security 2010 |
| XP AntiMalware | Vista AntiSpyware | Win 7 AntiMalware |
| XP AntiMalware 2010 | Vista AntiSpyware 2010 | Win 7 AntiMalware 2010 |
| XP Antivirus Pro | Vista Antivirus Pro | Win 7 Antivirus Pro |
| XP Defender | Vista Defender | Win 7 Defender |
| XP Defender Pro | Vista Defender Pro | Win 7 Defender Pro |
| XP Security | Vista Security | Win 7 Security |
| XP Security 2010 | Vista Security 2010 | Win 7 Security 2010 |
| XP Internet Security | Vista Internet Security | Win 7 Internet Security |
| XP Internet Security 2010 | Vista Internet Security 2010 | Win 7 Internet Security 2010 |
When installed, this rogue pretends to be an update for Windows installed via Automatic Updates. It then installs itself as a single executable called AV.exe that uses very aggressive techniques to make it so that you cannot remove it. It will also modify certain programs and keys so that when you launch FireFox or Internet Explorer it will launch the rogue instead and display a fake firewall warning. Finally, also when you try to browse to a web site it will hijack your browser and display that the site is a security risk and not allow you to visit it.
Once install the rogue will infect your computer and display fake warnings and will ask you to purchase software to remove the infections. Do not purchase this software, if you have contact your credit/debit card company and open a dispute. Also check your financial details for any payments that may not have been made by you (The program contains Keyloggers)
Removal Instructions for XP Security Tool 2010, XP Defender Pro, Vista Security Tool 2010, and Vista Defender Pro using Malwarebytes Anti-Malware:
Step 1: You will need to download the software from another computer and then copy it onto a USB or any other devices availible to you.
Download their software from http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe it is 100% free.
Also get http://download.bleepingcomputer.com/reg/antivirus-vista-2010/FixExe.reg
Step 2: #
On the infected computer make sure XP Internet Security 2010, Antivirus Vista 2010, or Win 7 Antispyware 2010 is running. If it isn't you can launch it by running any program on your computer as that will enable the rogue program to run. Once running, do not close it during the entire guide.
Step 3: Once you have put your USB (or other device) into the infected machine double click FixExe.reg
Soon after Windows should prompt whether or not you want to allow the data to be added to your computer, click on the Yes button.
Step 4: After FixExe.reg run mbam-setup.exe and install Malwarebytes, do not change the default settings. Leave the Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware checked.
Step 5: MBAM will startup and may need to update before running scans.
Step 6: On the Scanner tab, make sure the the Perform full scan option is selected and then click on the Scan button to start scanning your computer for XP Security Tool 2010, XP Defender Pro, Vista Security Tool 2010, and Vista Defender Pro related files.
Step 7: MBAM will now start scanning your computer for malware. This may take a while. It should look something like this.
Step 8: After the scan is complete a message will popup.
Click the OK message to continue with the XP Security Tool 2010, XP Defender Pro, Vista Security Tool 2010, and Vista Defender Pro removal process.
Step 9: You will now be taken back to the main scanner screen. You should see the "Show results button", click on it.
Step 10: The software should now show Malware the program has found on your machine. Don't be alarmed if you have more or less infections.
Now click on the Remove Selected button MBAM will delete all of the files and registry keys and add them to the programs quarantine. It may need to reboot your computer, if it asks let it reboot.
Step 11: The process is now complete 
Notepad should open with a log off the scan. Review the log if desired or just close it. Close the MBAM program.
Your computer should now be free of the XP Security Tool 2010, XP Defender Pro, Vista Security Tool 2010, and Vista Defender Pro programs.