How to Remove BlockDefense | Block Defense Removal
Blockdefense is yet another of these wolves in sheep clothing that make some computer users lives so miserable these days. It is from the same group of malware that includes Trustninja, save soldier, and savedefense. These are part of a group of rogue antivirus programs that are part of the WinGuard group of related malware.
Like so many of these it encourages users to buy based on trumped up fears about files that it claims are threats. (Which it created on the disk.) So, here is how you go about removal of blockdefense…
First off you will want to visit the virus removal toolkit and download malwarebytes antimalware. If possible you may be able to install and update this program without needing to visit safe mode or disable blockdefense outright. However, you may need to disable the blockdefense running processes first.
The processes that run as block defense are:
BlockDefense.exe and
BlockDefenseSvc.exe
If you want to go for a manual removal, you may want to boot into safe mode first and or disable the running processes listed above. The files you need to delete in order to remove blockdefense are:
C:\Documents and Settings\All Users\Start Menu\Programs\BlockDefense
%ProgramFiles%\BlockDefense Software
%ProgramFiles%\BlockDefense Software\BlockDefense
%ProgramFiles%\BlockDefense Software\BlockDefense\BlockDefense.exe
%ProgramFiles%\BlockDefense Software\BlockDefense\BlockDefenseSvc.exe
%ProgramFiles%\BlockDefense Software\BlockDefense\license.txt
%ProgramFiles%\BlockDefense Software\BlockDefense\uninstall.exe
%Documentsroot%\All Users\Start Menu\Programs\BlockDefense\1 BlockDefense.lnk
%Documentsroot%\All Users\Start Menu\Programs\BlockDefense\2 Homepage.lnk
%Documentsroot%\All Users\Start Menu\Programs\BlockDefense\3 Uninstall.lnk
%Documentsroot%\All Users\Desktop\BlockDefense.LNK
After this I still recommend running a good malware removal tool like malwarebytes antimalware (Mbam). It can help clean out blockdefense and any other traces it may leave on your system.
Update — additional running processes may include:
9zgr7zsq.exe
v4rb9isc.exe
and uninstall.exe
and additional files to remove may include the following:
%user%\Local Settings\Temp\9zgr7zsq.exe
%user%\Local Settings\Temp\v4rb9isc.exe
%WINDIR%\10365not-a9virus53z.dll
%WINDIR%\1051zwor94a1.ocx
%WINDIR%\11101vi9us57z.ocx