Dr. Guard. How to remove? (Uninstall guide)

removal by Ugnius Kiguolis - -   Also known as Dr.Guard, Dr Guard, DrGuard | Type: Rogue Antispyware
12

Dr. Guard is a rogue anti-spyware program that pretends to be a legitimate malware removal tool. Basically, it’s just a rename of Paladin Antivirus. The rogue program is promoted and installed through the use of fake online scanners, bogus video sites or it may come bundled with other malware. Once installed, Dr. Guard will supposedly scan your computer and report numerous false infections to make you think that your computer is badly infected. Then it will prompt you to pay for a full version of the program in order to remove the infections. However, it should be already obvious that Dr Guard is a scam. Don’t purchase it! Please follow the removal instructions below and get rid of this virus as soon as possible.

Dr. Guard graphical user interface
[Figure 1. Dr. Guard graphical user interface]

While running, Dr. Guard will display fake security warnings claiming that your computer is infected with trojan viruses such as Virus Chin09.Win or that you are under attack by an Internet virus. Of course, that’s not truth. The only real threat is DrGuard itself. What is more, this fake program, will impersonate Windows Security Center and state that you should activate (buy) Dr.Guard to protect yourself from possible threats. It can be rather difficult to tell if such alerts are false or not. This one promotes the rogue program so it’s obviously fake. But note that other malicious software use the same tactics as well to trick users into thinking that their computer are infected. Some of the fake Dr. Guard alerts that you will likely see if you PC is infected:

 Dr. Guard - fake alert
[Figure 2. Dr. Guard – fake alert]

Defenseless OS: Windows 2000/XP/Vista
Description: Spyware. Blocks access to computer. Attacks porn sites visitors.
Protection: Click the balloon to install antivirus software.

There are some serious security threats detected on your computer: viruses, trojans, keyloggers, exploits etc.
Your computer and all your personal data are in serious danger.
Protection: Click the balloon to install antivirus software.

Once active, the rogue program will attempt yo uninstall legitimate anti-virus and anti-malware programs from your computer. It will try to uninstall NOD32 Antivirus, AVG, Avira Antivir, Avast! and other well known products. It will state that your antivirus program is infected and should be uninstalled. Don’t be fooled. That’s a part of Dr Guard scam. Also note that this scareware can come bundled with TDSS rootkit. If so, then it will probably block executable files and security related websites. That’s why we strongly recommend you to use an automatic removal tool in order to remove this virus because manual removal guide was written for Dr. Guard infection only. And finally, if you inadvertently purchased this bogus program then you should contact your credit card company and dispute the charges.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use. By Downloading any provided Anti-spyware software to remove Dr. Guard you agree to our privacy policy and agreement of use.
do it now!
Download
Reimage (remover) Happiness
Guarantee
Download
Reimage (remover) Happiness
Guarantee
Compatible with Microsoft Windows Compatible with OS X
What to do if failed?
If you failed to remove infection using Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to uninstall Dr. Guard. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

More information about this program can be found in Reimage review.

More information about this program can be found in Reimage review.

Dr. Guard manual removal:

Kill processes:
drguard.exe

asr64_ldm.exe

Delete registry values:
HKEY_CLASSES_ROOT*shellexContextMenuHandlersSimpleShlExt

HKEY_CLASSES_ROOTCLSID{5E2121EE-0300-11D4-8D3B-444553540000}

HKEY_CLASSES_ROOTFoldershellexContextMenuHandlersSimpleShlExt

HKEY_LOCAL_MACHINESOFTWAREDr. Guard

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstallDr. Guard

HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem "DisableTaskMgr"

HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun "Dr. Guard"

HKEY_CLASSES_ROOTCLSID{5E2121EE-0300-11D4-8D3B-444553540000}

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShell ExtensionsApproved "{5E2121EE-0300-11D4-8D3B-444553540000}"

HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem "DisableTaskMgr" = "1"

Unregister DLLs:
drgext.dll

drghook.dll

Delete files:
drgext.dll

drghook.dll

drguard.exe

settings.ico

splash.mp3

uninstall.exe

Dr. Guard Support.lnk

Dr. Guard.lnk

About.lnk

Activate.lnk

Buy.lnk

Dr. Guard Support.lnk

Scan.lnk

Settings.lnk

Quick Launch\Dr. Guard.lnk

about.ico

activate.ico

drg.db

update.ico

virus.mp3

Delete directories:
C:Program FilesDr. Guard

C:Documents and Settings[UserName]Start MenuProgramsDr. Guard

%Temp%asr64_ldm.exe



About the author

Ugnius Kiguolis
Ugnius Kiguolis - The mastermind

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

More information about the author