Contents
SAntivirus Realtime Protection Lite (previously known as SEGURAZO) is a fake antivirus that acts as a persistent threat. The program often enters the system alongside other downloads and then “scans” the system only to deliver a variety of false positive results. The only aim of the program is to convince the user to purchase its license key.
The program causes extreme annoyance for computer users as it cannot be uninstalled like any regular program due to its trickeries to stay on the infected host. Besides, since it spreads alongside low-reputation programs such as miners or fake browsers, it slows down the computer system significantly.
This guide explains how to uninstall SAntivirus manually, step-by-step. We can firmly state that this is unique and the most detailed guide for home users.
Previously known as Segurazo Antivirus, the operators behind this unwanted software began its distribution campaign in 2019. However, in 2020 it has changed its name to SAntivirus Realtime Protection Lite. It is believed this was done due to a rising users’ dissatisfaction as well as low reputation of the software (there are hundreds of user-created topics questioning how to remove this fake antivirus from their computers on forums like Reddit).
As mentioned earlier, users find it impossible to uninstall the program via Control Panel or Apps and Features. Moreover, some victims claim that it makes the whole SAntivirus removal process even harder. It is clear that the software tends to root deeply into the system to prevent its elimination. This definitely signals that the program should be trusted and must be removed from the system as soon as possible.
Name | SAntivirus Realtime Protection Lite |
Also known as | Segurazo Antivirus |
Type | Potentially Unwanted Program (PUP) |
Associated files | SAntivirusService.exe, SAntivirusIC.exe, SAntivirusKD.sys, santivirusclient.exe, SetupS.exe, SAntivirusUninstaller.exe and many others |
Detection names | PUA:Win32/Vigua.A (Microsoft) |
Activity | Displays fake scan results full of false positives, suggests purchasing its license key to fix non-existent computer issues |
Problems | The software is hard to remove – manual uninstall requires deleting its components from Windows Registry and restoring modified values back to default. |
Distribution | The software is mainly distributed in software bundles. |
Removal | Remove SAntivirus using free instructions provided below, or use RESTORO to remove damage to Windows OS. |
Useful details | To ensure safe removal of the unwanted software, we HIGHLY recommend disabling Network Connection and booting your PC in Safe Mode. |
The most suspicious fact about SAntivirus (Segurazo) mainly spreads in software bundles and not via its official website. We have investigated users’ feedback online and have discovered that this program mainly spread via general software download websites, outdated and no longer supported software and old game downloads or ROMs. Some of the programs that users claim to be spreading Segurazo via their installers are:
It is also worth mentioning that users who have installed this fake antivirus often report founding versions of Chromium virus installed on their systems. Therefore, we strongly recommend you to check for it as well.
Please share how you downloaded this program in the comments below. This will help others from getting caught in the same trap again.
This guide explains how to remove SAntivirus Realtime Protection Lite yourself (without using any tools or software). Please understand that deleting this fake antivirus from your computer requires some time and patience, so if you rather delete it automatically, consider downloading RESTORO.
Compatibility: Microsoft Windows 10/8.1/8/7
Remove SAntivirus Realtime Protection Lite damage on Windows OS using RESTORO software. It uses Avira engine to detect dangerous spyware/malware components. This program can also replace corrupt or faulty Windows OS files, fix Windows errors, cure damaged DLLs and much more.
Now, there are two essential things you need to know in order to complete the program’s removal successfully. First, you need to boot your PC in Safe Mode.
If you do not want to boot your PC in Safe Mode, you must disable network connection first. We will explain how to do everything in this detailed tutorial.
Please disable network connection before you begin removing SAntivirus Realtime Protection Lite. Ideally, keep this tutorial opened in a separate window during the unwanted program removal procedure.
We suggest disabling in via Windows Network and Sharing Center as explained below. An alternative way to disable Network Connection is to boot in Safe Mode.
If you find that you still can’t delete some unwanted folders and files after disabling network connection, then try booting in SAFE MODE as explained here (includes guide to booting in normal mode as well) and then delete the residue of the unwanted program.
Users have reported that temporarily disabling User Account Control via Windows Registry helped them to remove stubborn Segurazo folders that couldn’t been removed in a simple way. Please note that disabling UAC is a temporary measure and after performing SAntivirus removal, you should repeat these steps, reverting the EnableLUA value back to 1 (true) value.
Now that Network Connection is disabled, you can run SAntivirus Realtime Protection Lite Uninstaller. It will help to get rid of PART of files. However, we will explain how to perform a manual computer cleanup of Segurazo remains in Windows later. Here’s what you need to do:
If any files will be left, we will delete them later via CMD.
In this part, we will clean Windows Registry from keys and values associated with SAntivirus Realtime Protection Lite (widely known as Segurazo).
In order to remove SAntivirus Realtime Protection Lite remains from your computer’s registry, we will need to navigate through the registry by expanding folders in given order. Please be extremely careful and double-check what you’re deleting before doing so. Incorrect removal of keys can mess up your computer. In addition, consider backing up registry first.
TIP #1. We strongly suggest dragging the required columns in the Registry (such as name) to expand them so that you can see the key/value names clearly.
TIP #2. You can easily copy and paste given navigation route to the navigation bar in the Windows registry and press Enter to access specific folder faster. Or, you can expand each folder by hand.
TIP #3. If you find that you cannot delete certain values in the registry, simply right-click the key and choose Permissions. Then tap on Administrator, and put a check on Read&Write. Then click Apply and OK. You can see an example below.
Now that you have read all three tips, you can start deleting unwanted values from Windows Registry to completely get rid of SAntivirus Realtime Protection Lite.
7784BE7F-A15C-4A41-ACF5-4CC020154952
Then press Enter.
The SAntivirus Realtime Protection Lite removal from Windows registry should now be complete. Next, we are going to delete any remaining values from the computer using Command Prompt.
By now, you should have removed all remains of Santivirus (Segurazo). However, if you’d rather opt for automatic removal of it, or if you’d like to double-check your system and perform PC repair, we suggest downloading RESTORO for this matter.
OUR GEEKS RECOMMEND
Our team recommends a two-step rescue plan to remove ransomware and other remaining malware from your computer, plus repair caused virus damage to the system:
GeeksAdvice.com editors select recommended products based on their effectiveness. We may earn a commission from affiliate links, at no additional cost to you. Learn more.
Norbert Webb is the head of Geek’s Advice team. He is the chief editor of the website who controls the quality of content published. The man also loves reading cybersecurity news, testing new software and sharing his insights on them. Norbert says that following his passion for information technology was one of the best decisions he has ever made. “I don’t feel like working while I’m doing something I love.” However, the geek has other interests, such as snowboarding and traveling.
Private Internet Access (PIA) VPN maintains its long-term role as a leader Private Internet Access…
XCBG ransomware aims to lock your files and demand a ransom XCBG ransomware is a…
BPQD ransomware encrypts all computer files, demands a ransom from the user BPQD ransomware is…
KQGS ransomware is a hostile computer virus designed to encrypt all of your files KQGS…
VTYM ransomware description: a virtual menace to your files stored on the computer VTYM ransomware…
FOPA ransomware is a new threatening computer virus that encrypts your files FOPA ransomware virus…
This website uses cookies.
View Comments
What do I do the uninstaller deleting SAntivirus shell extension is stuck at 49%
Hi, when trying to open the uninstaller it opens for about a second then closes, this makes it so I can’t uninstall the program. Do you have any ways around this so I can continue?
Hello,
I have a problem with the step with cmd. When I tried to delete file TASAntivirusKD.sys it said that system cannot find the file.
Its the last file.
Thank you for help
It can mean that the file has already been removed, or uses a different name. Please double check if you entered the file name to cmd correctly.