NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  
Title: Dr. Guard
Type: Rogue Antispyware

Remove Dr. Guard. Removal instructions


 
Also known as: Dr.Guard, Dr Guard, DrGuard
Severity scale:Dr. Guard severity is 71  (71 / 100)
 
Dr. Guard is a rogue anti-spyware program that pretends to be a legitimate malware removal tool. Basically, it's just a rename of Paladin Antivirus. The rogue program is promoted and installed through the use of fake online scanners, bogus video sites or it may come bundled with other malware. Once installed, Dr. Guard will supposedly scan your computer and report numerous false infections to make you think that your computer is badly infected. Then it will prompt you to pay for a full version of the program in order to remove the infections. However, it should be already obvious that Dr Guard is a scam. Don't purchase it! Please follow the removal instructions below and get rid of this virus as soon as possible.

Dr. Guard graphical user interface
[Figure 1. Dr. Guard graphical user interface]

While running, Dr. Guard will display fake security warnings claiming that your computer is infected with trojan viruses such as Virus Chin09.Win or that you are under attack by an Internet virus. Of course, that's not truth. The only real threat is DrGuard itself. What is more, this fake program, will impersonate Windows Security Center and state that you should activate (buy) Dr.Guard to protect yourself from possible threats. It can be rather difficult to tell if such alerts are false or not. This one promotes the rogue program so it's obviously fake. But note that other malicious software use the same tactics as well to trick users into thinking that their computer are infected. Some of the fake Dr. Guard alerts that you will likely see if you PC is infected:

Dr. Guard - fake alert
[Figure 2. Dr. Guard - fake alert]


Defenseless OS: Windows 2000/XP/Vista
Description: Spyware. Blocks access to computer. Attacks porn sites visitors.
Protection: Click the balloon to install antivirus software.


There are some serious security threats detected on your computer: viruses, trojans, keyloggers, exploits etc.
Your computer and all your personal data are in serious danger.
Protection: Click the balloon to install antivirus software.

Once active, the rogue program will attempt yo uninstall legitimate anti-virus and anti-malware programs from your computer. It will try to uninstall NOD32 Antivirus, AVG, Avira Antivir, Avast! and other well known products. It will state that your antivirus program is infected and should be uninstalled. Don't be fooled. That's a part of Dr Guard scam. Also note that this scareware can come bundled with TDSS rootkit. If so, then it will probably block executable files and security related websites. That's why we strongly recommend you to use an automatic removal tool in order to remove this virus because manual removal guide was written for Dr. Guard infection only. And finally, if you inadvertently purchased this bogus program then you should contact your credit card company and dispute the charges.

Related files: drgext.dll, drghook.dll, drguard.exe, settings.ico, splash.mp3, Uninstall.exe, Dr. Guard Support.lnk, Dr. Guard.lnk, About.lnk, Activate.lnk, Buy.lnk, Scan.lnk, Settings.lnk, about.ico, activate.ico, drg.db, update.ico, virus.mp3

Dr. Guard properties:
• Changes browser settings
• Shows commercial adverts
• Connects itself to the internet
• Stays resident in background

Automatic Dr. Guard removal:

remover for Dr. Guard
SpyHunter is recommended remover to uninstall Dr. Guard. You should confirm using free trial that it detects current version of parasite.

Note: Tested and Confirmed means that we have tested spyware remover with multiple versions of Dr. Guard and got the best results. There might be updated or modified version of particular parasite that require manual killing of parasite process or an update. In such case try other removers in the line.

Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove Dr. Guard using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
STOPzilla
download | review
Tested and Confirmed! STOPzilla removes Dr. Guard (2010-03-01 04:52:13)
Malwarebytes Anti Malware
download | review
Tested and Confirmed! Malwarebytes Anti Malware removes Dr. Guard (2010-03-01 04:52:13)
Spyware Doctor
download | review | tutorial
We are testing Spyware Doctor's efficiency at removing Dr. Guard (2010-03-01 08:00:11)
XoftSpySE Anti Spyware
download | review

Dr. Guard manual removal:

Kill processes:
drguard.exe asr64_ldm.exe
HELP:
how to kill malicious processes

Delete registry values:
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\SimpleShlExt
HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}
HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\SimpleShlExt
HKEY_LOCAL_MACHINE\SOFTWARE\Dr. Guard
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr. Guard
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Dr. Guard"
HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{5E2121EE-0300-11D4-8D3B-444553540000}"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = "1"
HELP:
how to remove registry entries

Unregister DLLs:
drgext.dll drghook.dll
HELP:
how to unregister malicious DLLs

Delete files:
drgext.dll drghook.dll drguard.exe settings.ico splash.mp3 uninstall.exe Dr. Guard Support.lnk Dr. Guard.lnk About.lnk Activate.lnk Buy.lnk Dr. Guard Support.lnk Scan.lnk Settings.lnk Quick Launch\\Dr. Guard.lnk about.ico activate.ico drg.db update.ico virus.mp3
HELP:
how to remove harmful files

Delete directories:
C:\Program Files\Dr. Guard
C:\Documents and Settings\[UserName]\Start Menu\Programs\Dr. Guard
%Temp%\asr64_ldm.exe
Information added: 2010-03-01 04:52:13
Information updated: 2010-03-01 05:22:56

Additional resources related to Dr. Guard:

Attention: If you know or you have a website or page about Dr. Guard removal, feel free to add a link to this list: add url
more resources

Post Comment:

Attention: Use this form only if you have additional information about Dr. Guard parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Latest spyware news:
Subscribe to news

Similar parasites:
Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2 HijackThis Log Analyzer Beta 2

I failed to remove Dr. Guard using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Latest Spyware Threats: Internet Security 2012 | Win 7 Total security 2012 | System Check | Win 7 Internet Security 2012 | Win 7 Home Security 2012 | Win 7 Antivirus 2012 | Win 7 Antispyware 2012 | Vista Security 2012 | Vista Antivirus 2012 | Vista Antispyware 2012 | XP Antispyware 2012 | XP Antivirus 2012 | XP Security 2012 | XP Home Security 2012 | Security Shield
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2011 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.