My Security Engine

May 19, 2010

What is My Security Engine?

My Security Engine is dangerous rogue spyware or “scareware”.  It is designed to overwhelm you with simulated scans and fake warnings that your computer is infected with various malware.  In addition, My Security Engine will block you from running most programs leaving your computer almost unusable. This is all done in an attempt to “trick” you into paying for the full version of My Security Engine, when My Security Engine itself is the actual infection.

Recommended Removal Method:

Automatic Detection and Removal Using Spyware Doctor:

Screenshots:

Additional Information:

Methods of Infection:

My Security Engine is installed via a Trojan typically from questionable websites (i.e. pornography or gambling), but it has also been found on hijacked fake news websites and in torrent downloads.

Previous Versions:

My Security Engine comes from the family of rogues that is responsible for Security Guard among others.

What it Does:

My Security Engine will bombard your computer with numerous fake spyware alerts and scans in an attempt to lure you into purchasing the full version, which is nothing more than a hoax. My Security Engine  is not legitimate software and is actually a spyware infection. My Security Engine  also has the ability to hijack your web browser and redirect your search results to pages of its choosing and that will attempt to install the malware on your computer.

The larger threat that My Security Engine poses however, is that it can download and install keyloggers and other more severe malware that can log your keystrokes, websites visited, etc. and can send that information over the internet to a remote server where the hacker that created My Security Engine will then use that information in an attempt to gain access to your credit cards, bank accounts, and numerous other sensitive personal information – and may ultimately end up stealing your identity.

Optional My Security Engine  Removal Method – Manual Deletion (Not Recommended)

***Please note we highly recommend not attempting manual removal of My Security Engine unless you are a trained computer professional.  My Security Engine is a highly complex and dynamic rogue spyware infection that can hide several random files throughout your computer’s registry and file system and makes manual removal almost impossible. In addition, deleting and modifying system files and your computer’s registry without proper knowledge and training can cause further issues and may even cause your computer to become inoperable. As such, proceeding with manual removal is done at your own risk and spyware-experts.com cannot be held responsible for any problems that may occur in doing so.***

If you need help performing any of these steps, please see our tutorials listed on the upper right hand side of this page.

1. Delete the Following Processes:

avsuite.exe

avs.exe

2. Delete Following Files and Directories:

c:\Documents and Settings\All Users\Application Data\345d567
c:\Documents and Settings\All Users\Application Data\345d567\2322.mof
c:\Documents and Settings\All Users\Application Data\345d567\mozcrt19.dll
c:\Documents and Settings\All Users\Application Data\345d567\MS345d.exe
c:\Documents and Settings\All Users\Application Data\345d567\MSE.ico
c:\Documents and Settings\All Users\Application Data\345d567\sqlite3.dll
c:\Documents and Settings\All Users\Application Data\345d567\BackUp\
c:\Documents and Settings\All Users\Application Data\345d567\MSESys\
c:\Documents and Settings\All Users\Application Data\345d567\MSESys\vd952342.bd
c:\Documents and Settings\All Users\Application Data\345d567\Quarantine Items
c:\Documents and Settings\All Users\Application Data\MSHOLE\
c:\Documents and Settings\All Users\Application Data\MSHOLE\MSJKEJCCE.cfg
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\My Security Engine.lnk
%UserProfile%\Application Data\My Security Engine\
%UserProfile%\Application Data\My Security Engine\cookies.sqlite
%UserProfile%\Application Data\My Security Engine\Instructions.ini
%UserProfile%\Desktop\My Security Engine.lnk
%UserProfile%\Recent\ANTIGEN.dll
%UserProfile%\Recent\CLSV.dll
%UserProfile%\Recent\eb.sys
%UserProfile%\Recent\energy.dll
%UserProfile%\Recent\exec.dll
%UserProfile%\Recent\exec.drv
%UserProfile%\Recent\exec.tmp
%UserProfile%\Recent\gid.dll
%UserProfile%\Recent\kernel32.sys
%UserProfile%\Recent\kernel32.tmp
%UserProfile%\Recent\pal.dll
%UserProfile%\Recent\PE.dll
%UserProfile%\Recent\PE.exe
%UserProfile%\Recent\ppal.drv
%UserProfile%\Recent\runddlkey.drv
%UserProfile%\Recent\SICKBOY.sys
%UserProfile%\Recent\tjd.sys
%UserProfile%\Start Menu\My Security Engine.lnk
%UserProfile%\Start Menu\Programs\My Security Engine.lnk
c:\Program Files\Mozilla Firefox\searchplugins\search.xml

3. Delete the Following Registry Keys:

HKEY_CURRENT_USER\Software\3
HKEY_CLASSES_ROOT\CLSID\{3F2BBC05-40DF-11D2-9455-00104BC936FF}
HKEY_CLASSES_ROOT\MS345d.DocHostUIHandler
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes “URL” =”http://findgala.com/?&uid=195&q={searchTerms}”
HKEY_CURRENT_USER\Software\Classes\Software\Microsoft\Internet Explorer\SearchScopes “URL” = “http://findgala.com/?&uid=195&q={searchTerms}”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer “PRS” = “http://127.0.0.1:27777/?inj=%ORIGINAL%”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “My Security Engine”
HKEY_CLASSES_ROOT\Software\Microsoft\Internet Explorer\SearchScopes “URL” = http://findgala.com/?&uid=195&q={searchTerms}

Note that even if you have followed all the above steps and performed the tasks correctly, it is highly probable that My Security Engine will remain on your computer and continue to cause problems. The reason for this is that the program is dynamic and can change the filenames, locations, etc. and can even add additional infected files while it is on your computer.

This is why we highly recommend an automatic detection and removal tool such as Spyware Doctor that can find these additional hidden files and ensure that My Security Engine is completely removed from your computer.

• 

• Editor’s Choice Winner

  

  "Spyware Doctor also set a new record in the malware blocking test, scoring 9.7 out of 10 possible points"
  -www.pcmag.com, October 15, 2009

• Top 5 Threats

  • System Fix
  • AV Security 2012
  • Privacy Protection
  • Advanced PC Shield 2012
  • Open Cloud Security

• Tutorials

  • How to Add the "Run" Command to the Start Menu in Vista and Windows 7
  • How To Change Proxy Settings
  • How to Delete Infected Files (Guide with Screenshots)
  • How to Delete Infected Files (Video)
  • How to Display Hidden Files and Folders
  • How to Enter "Safe Mode"
  • How to Kill Spyware Processes (Guide with Screenshots)
  • How to Kill Spyware Processes (Video)
  • How to Modify Your Registry (Guide with Screenshots)
  • How to Modify Your Registry (Video)
  • How to Unregister DLLs (Guide with Screenshots)
  • How to Unregister DLLs (Video)

• Past Rogue Threats

  • January 2012 (2)
  • November 2011 (5)
  • October 2011 (3)
  • September 2011 (3)
  • August 2011 (2)
  • July 2011 (1)
  • June 2011 (4)
  • March 2011 (2)
  • January 2011 (2)
  • December 2010 (2)
  • November 2010 (3)
  • October 2010 (3)
  • September 2010 (4)
  • August 2010 (5)
  • July 2010 (3)
  • June 2010 (5)
  • May 2010 (1)
  • April 2010 (3)
  • March 2010 (3)
  • February 2010 (4)
  • January 2010 (1)

• Tags

  Advanced Security Tool 2010 Antisypyware Soft Antivir Antivira AV Antivir Solution Pro Antivirus Antivirus .NET Antivirus 7 Antivirus 8 Antivirus Action Antivirus GT Antivirus IS Antivirus Studio 2010 Antivirus Suite AV Defender 2011 AV Security Suite Check Disk Defense Center Dr. Guard HDD Defragmenter Internet Security 2010 Malware Destructor 2011 Milestone Antivirus MS Removal Tool My Security Engine PC Defender Antivirus Personal Security Personal Shield Pro Protection Center Scan Disk Security Cenral Security Essentials 2011 Security Master AV Security Shield Security Suite Security Tool Smart Defragmenter Smart Security SP Control Sysinternals Antivirus Ulra Defragger Win7 AV Wireshark Antivirus XP Defender Your PC Protector