Zentom System Guard is a malicious program that pretends to be an antivirus software. It is from the same family of malware as Antimalware Doctor. The rogue displays false information and detects fake infections in order to trick you into thinking your computer is infected with all sorts of malware. It will say that all you have to do in order to remove viruses, malware and trojans is purchase so-called full version of the software. Remember, the program is unable to detect and remove any malware and viruses, so do not pay for the bogus software! Simply ignore all that it will display you and remove Zentom System Guard from your computer as quickly as possible!
The malicious software is promoted through the use of advertisement which pretends to be an online malware scanner. This advertisement will state that you computer is infected and all you have to do in order to cure your computer is install the software. Important to note, this online scanner is a fake and cannot detect any viruses or infections on your PC! So, ignore all that it will say you.
As soon as Zentom System Guard is installed, it modifies the Windows registry so, that the rogue runs when the infected computer starts. Once the fake antivirus started, it will perform a scan and report that your machine is infected with a lot of viruses and you should purchase the full version of the software to clean your PC. Of course, all of these infections are a fake and do not actually exist on your computer. So, you can safety ignore the false scan results.
Zentom System Guard will also display various fake security messages and warnings that inform that your computer in danger. Some of the messages are:
– Trojan.Spy threat has been detected.
– Warning! Removed attack detected!
– Hacker attack detected.
It is just an attempt to make you think your computer is infected with all sorts of malicious software. However, like false scan results above, all of these security messages are just a fake and has been displayed to trick you into purchasing so-called full version of Zentom System Guard. Thus, you can safely ignore all of these fake alerts!
From the above, obviously, this application is a scam, that created with one purpose to scare your into purchasing so-called “full” version of the program. Most importantly, do not purchase it! Instead, use the removal instructions below to remove Zentom System Guard and any associated malware from your computer for free.
Automated Removal Instructions for Zentom System Guard
It is possible that the rogue will not allow you to run a malware removal tools, then you will need to reboot your computer in Safe mode with networking.
Restart your computer. After hearing your computer beep once during startup, start pressing the F8 key on your keyboard. On a computer that is configured for booting to multiple operating systems, you can press the F8 key when the Boot Menu appears.
Instead of Windows loading as normal, Windows Advanced Options menu appears similar to the one below.
Windows Advanced Options menu
When the Windows Advanced Options menu appears, select Safe mode with networking and then press ENTER.
Now you should download Malwarebytes Anti-malware and remove all Zentom System Guard associated malware.
Download MalwareBytes Anti-malware (MBAM). Once downloaded, close all programs and windows on your computer.
Double-click on the icon on your desktop named mbam-setup.exe. This will start the installation of MalwareBytes Anti-malware onto your computer. When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure a checkmark is placed next to “Update Malwarebytes’ Anti-Malware” and Launch “Malwarebytes’ Anti-Malware”. Then click Finish.
MalwareBytes Anti-malware will now automatically start and you will see a message stating that you should update the program before performing a scan. If an update is found, it will download and install the latest version.
As MalwareBytes Anti-malware will automatically update itself after the install, you can press the OK button to close that box and you will now be at the main menu. You will see window similar to the one below.
Malwarebytes Anti-Malware Window>
Make sure the “Perform quick scan” option is selected and then click on the Scan button to start scanning your computer for Zentom System Guard associated malware. This procedure can take some time, so please be patient.
When the scan is finished a message box will appear that it has completed scanning successfully. Click OK. Now click “Show Results”. You will see a list of infected items similar as shown below.
Note: list of infected items may be different than what is shown in the image below.
Malwarebytes Anti-malware, list of infected items
Make sure all entries have a checkmark at their far left and click “Remove Selected” button to remove Zentom System Guard. MalwareBytes Anti-malware will now remove all of associated Zentom System Guard files and registry keys and add them to the programs’ quarantine. When MalwareBytes Anti-malware has finished removing the infection, a log will open in Notepad and you may be prompted to Restart.
Your system should now be free of the Zentom System Guard virus. If you need help with the instructions, then post your questions in our Spyware Removal forum.
Zentom System Guard removal notes
Note 1: if you can not download, install, run or update Malwarebytes Anti-malware, then follow the steps: Malwarebytes won`t install, run or update – How to fix it.
Note 2: your current antispyware and antivirus software let the infection through ? Then you may want to consider purchasing the FULL version of MalwareBytes Anti-malware to protect your computer in the future.
Zentom System Guard creates the following files and folders
%AppData%\[RANDOM]\
%AppData%\[RANDOM]\enemies-names.txt
%AppData%\[RANDOM]\hookdll.dll
%AppData%\[RANDOM]\local.ini
%AppData%\[RANDOM]\lsrslt.ini
%AppData%\[RANDOM]\[RANDOM].exe
%AppData%\Microsoft\Internet Explorer\Quick Launch\Zentom System Guard.lnk
%UserProfile%\Desktop\Zentom System Guard.lnk
Zentom System Guard creates the following registry keys and values
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zentom System Guard
HKEY_CURRENT_USER\Software\ZentomSystemGuard
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run | [RANDOM].exe
Took me a while but it finally worked! thank you so muchhhh !