How to remove Guardmon

47 threats found

Keylogger Guardmon

47 threats removed

Recommended solution

Download OSHI Defender and scan your PC for free

Download and scan now

Name

Guardmon

Description

A Guardmon is a form of malware that records and logs a user's key strokes while using a computer keyboard. The logged key strokes can be accessed by a hacker and used to collect sensitive, personal information, including bank account numbers, user IDs, and passwords.

Type

Keylogger

Manual

How to manually remove Guardmon guide. Only for ADVANCED users.

  • Step 1: Basic check for Guardmon activity

    Check running processes on your system. Usually you can find Guardmon process running. Use the Ctrl+Shift+Esc buttons combination to open system information window and click Processes tab. Scroll down the whole list and try to find the process named like Guardmon. If you find Guardmon process running, right click on it and choose “End Process”. It will disable Guardmon for the current Windows session, but remember that if you do not completely remove Guardmon using next steps, then your PC will stay vulnerable to malware attack. Next steps are much more important in removing Guardmon.

  • Step 2: Disconnect your PC from the Internet

    Prevent the malware from leaking or spreading your personal data. Keylogger usually uses the Internet to transfer all possible and important information you have. Some Keyloggers are not so “Active” and they can simply disable some Windows features and options. To disconnect your PC from the Internet you need to plug-off LAN cable (if you use LAN connection) or to turn of the Wi-Fi module (if you use Wi-Fi Internet connection). Most of (not 100%) Keyloggers can not access Wi-Fi module preferences. Turning off the Internet will disable Guardmon from transferring any data from your PC.

  • Step 3: Enter the safe mode.

    The next step is very important in removing Guardmon. After turning off the Internet and disabling Guardmon process you will need to reboot your PC in so-called Safe Mode. Safe Mode is a Windows mode which allows you to start the System using only important applications and services. Safe Mode does not usually allow Guardmon to load when the system boots (!!!but exceptions can appear!!!). Choose Restart in Windows Start menu and wait until the screen turns off.

    After that you have to follow the next instructions according to the versions of Microsoft Windows you use:

      Windows XP:
    1. Press the F8 key repeatedly when the first screen appears.

    2. Select Safe Mode from Windows Advanced Options Menu and press ENTER.

      Windows Vista, 7:
    1. Press the F8 key repeatedly when the first screen appears.

    2. Use the arrow keys from Windows Advanced Options Menu in order to select Safe Mode and press ENTER.

      Windows 8, 8.1, 10:
    1. Press and hold the Shift button when left-clicking the Restart button on Windows log-on screen.

    2. Select Safe Mode from Windows Troubleshooting boot screen and press ENTER.

  • Step 4: Removing virus files

    Having booted your PC in Safe mode you have to start cleaning your PC manually by deleting every file associated with Guardmon one by one. Here is the list of all files associated with Guardmon. Delete all files listed below using the Shift+Delete buttons combination. Always double check the file name as sometimes Keyloggers use very similar filenames as very important system files do and you can mistakenly remove important system file what will harm your system and you will not be able to boot your PC at all.

    • ***.***

    • *******.***

    • ********.***

    • AccountID.dat

    • Activation.html

    • activation.ico

    • Auto.dat

    • button_bg.gif

    • button_bottom.gif

    • button_bottomleft.gif

    • button_bottomright.gif

    • button_left.gif

    • button_right.gif

    • button_top.gif

    • button_topleft.gif

    • button_topright.gif

    • c4dll.dll

    • Categories.dat

    • Categories.html

    • categories.ico

    • chart_border.gif

    • chart_topbg.gif

    • close.jpg

    • close1.jpg

    • close2.jpg

    • close3.jpg

    • cname.txt

    • Contact.html

    • contact.ico

    • ContactBottom.html

    • ContactTop.html

    • delete.jpg

    • delete1.jpg

    • dn.jpg

    • dn1.jpg

    • ExCalendar.dll

    • eztoolslib.dll

    • GDHelp.chm

    • GDMgr.exe

    • gl.CDX

    • gl.dbf

    • History.dat

    • History.html

    • history.ico

    • HTMLHost.exe

    • logo.jpeg

    • Menu.dat

    • Message.html

    • message.ico

    • MessageBottom.html

    • messageicon_small.gif

    • messageiconopen_small.gif

    • MessageTop.html

    • mx50.ocx

    • myinfo.jpg

    • myinfo1.jpg

    • Operators.dat

    • pixel.gif

    • Registration.html

    • registration.ico

    • RegistrationSuccess.html

    • RegistrationUpdate.html

    • reply.jpg

    • reply1.jpg

    • Representatives.dat

    • rrinstall.exe

    • saveclose.jpg

    • saveclose1.jpg

    • send.jpg

    • send1.jpg

    • smtp50.ocx

    • transp.gif

    • type.ini

    • UNWISE.EXE

    • up.jpg

    • up1.jpg

    • URL.ico

    • userax.dll

    • vbalFlBr6.dll

    • zlib-1.dll

    Please, remember that viruses are always progressing and sometimes new files can appear. If you are using our offline PDF guide on How to remove Guardmon, please check if you have it’s latest version.

    We do not guarantee that Guardmon has the same file structure at the moment of deleting.

    After removing all files associated with Guardmon that were listed above, reboot your system in normal mode and check if your PC works fine or you still have any troubles.

    It it is OK – congratulations! You have made a great job!

    If it is still NOT ok – use OSHI Defender to check your PC.

Symptoms

The main symptoms of the infection of your computer

Fix all problems

Frequently Asked Questions

We have an answer

  • How did my computer get Guardmon?

  • I detected Guardmon on my computer. What do I do?

  • What damage can Guardmon do to my computer?

  • What are the main symptoms of Guardmon?

  • Can Guardmon spread to other computers?

  • Countries with the highest Guardmon infection rates.

  • The first recorded appearance of Guardmon

I have a question

Comments

You have a question?

0 comments

How did my computer get Guardmon?

Guardmon is a Keylogger-type malware. This malware is installed on your computer by a script placed on a website you visited. Also, Guardmon can spread from a public folder on another user’s computer.

Was the answer helpful?
Was the answer helpful?
0%
0%

I detected Guardmon on my computer. What do I do?

Disable your Internet connection and remove Guardmon by using your antivirus software.

Was the answer helpful?
Was the answer helpful?
0%
0%

What damage can Guardmon do to my computer?

Guardmon saves all information entered via your keyboard and can send it to hackers or third parties.

Was the answer helpful?
Was the answer helpful?
0%
0%

What are the main symptoms of Guardmon?

Extra HD activity
High network activity
PC slowdown
Unusual programs

Was the answer helpful?
Was the answer helpful?
0%
0%

Can Guardmon spread to other computers?

Guardmon is not a virus, so it can’t infect other computers on your local network. However, if you open a Guardmon-infected file stored on your computer using another computer in your network, that computer will also be affected by Guardmon.

Was the answer helpful?
Was the answer helpful?
0%
0%

Countries with the highest Guardmon infection rates.

US

Was the answer helpful?
Was the answer helpful?
0%
0%

The first recorded appearance of Guardmon

2016-02-22

Was the answer helpful?
Was the answer helpful?
0%
0%

Feedback

Use the form below to send us your comments and questions

OSHI LIMITED
Address: Rm.709, Wellborne Commercial Centre, 8 Java Road, North Point, Hong Kong.
Email: i...@oshidefender.com

Report a problem

Please provide us with as much information and data as possible (Application name, application version, OSHI Defender version, OS version e.t.c.)

Affiliate program registration

Fill out following form and receive 80% commission per OSHI Defender sale