Free malware removal tool to remove Dr. Guard

Écrit par Administrator | Lundi, 01 Mars 2010 16:18

There are no translations available.

Dr. Guard is a rogue Antispyware from the Paladin Antivirus Family, it's a malware that pretends to be an Antivirus. It is a wolf in sheep's clothing. It conducts a fake scan of your system; you are warned by a fake alarm that there are more malwares on your system. It’s true indeed, there is really a malware in your system but I think the only malware on your system is Dr. Guard. It invites you to purchase a license to remove malware, do not, it's a scam, you need a license for a malware? This so-called Antivirus tries to scam you. Uninstall Dr. Guard immediately from your system.

Dr. Guard

To remove Dr. Guard (Uninstall Dr. Guard)

Download this free removal tool for Dr. Guard
Extract it
Launch
Click on the delete button

Dr. Guard will be removed from your system in 10s. Restart your computer when it’s finished.

Processes :

asr64_ldm.exe
drguard.exe

Files :

%\AppData%\Microsoft\Internet Explorer\Quick Launch\Dr. Guard.lnk
%Desktop%\Dr. Guard Support.lnk
%Desktop%\Dr. Guard.lnk
%Programs%\Dr. Guard
%Programs%\Dr. Guard\About.lnk
%Programs%\Dr. Guard\Activate.lnk
%Programs%\Dr. Guard\Buy.lnk
%Programs%\Dr. Guard\Dr. Guard Support.lnk
%Programs%\Dr. Guard\Dr. Guard.lnk
%Programs%\Dr. Guard\Scan.lnk
%Programs%\Dr. Guard\Settings.lnk
%Programs%\Dr. Guard\Update.lnk
%ProgramFiles%\Dr. Guard
%ProgramFiles%\Dr. Guard\about.ico
%ProgramFiles%\Dr. Guard\activate.ico
%ProgramFiles%\Dr. Guard\buy.ico
%ProgramFiles%\Dr. Guard\drg.db
%ProgramFiles%\Dr. Guard\drgext.dll
%ProgramFiles%\Dr. Guard\drghook.dll
%ProgramFiles%\Dr. Guard\drguard.exe
%ProgramFiles%\Dr. Guard\help.ico
%ProgramFiles%\Dr. Guard\scan.ico
%ProgramFiles%\Dr. Guard\settings.ico
%ProgramFiles%\Dr. Guard\splash.mp3
%ProgramFiles%\Dr. Guard\uninstall.exe
%ProgramFiles%\Dr. Guard\update.ico
%ProgramFiles%\Dr. Guard\virus.mp3
%System%\wbem\Performance\WmiApRpl_new.ini
%Temp%\asr64_ldm.exe
%Temp%\[random]

Registry

Registry keys created

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\SimpleShlExt
HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}
HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\SimpleShlExt
HKEY_LOCAL_MACHINE\SOFTWARE\Dr. Guard
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr. Guard

Registry values created

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system
- DisableTaskMgr = 0x00000001
- HKEY_CURRENT_USER\Software
- 7bde84a2-f58f-46ec-9eac-f1f90fead080 = ""
HKEY_CURRENT_USER\Software\Microsoft\Windows
- itime = B0 D1 E8 05 30 B6 CA 01
- ver = "3.0"
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
- DisableTaskMgr = 0x00000001
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
- asr64_ldm.exe = "%Temp%\asr64_ldm.exe"
- Dr. Guard = "%ProgramFiles%\Dr. Guard\drguard.exe" -noscan

Registry keys modified

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
- AntiVirusDisableNotify =

Ajouter un Commentaire