News
Contributed by: Jovita Baltrusaityte
Date: March 4, 2010
This week has been dedicated to one of the biggest roguewares, Dr. Guard. We have already explained you what effect Dr. Guard can do to your computer. This time I want to focus the entire attention on the installation file of Dr. Guard.
Although the malicious software does not have its own website, I was able to install it from the site called b i l l p a y m e n t s 4 o n l i n e . c o m. I would highly recommend you not to visit this website because of its bad reputation. Keep in mind that you might get not only Dr. Guard on your computer but many other roguewares as well. So be careful. On my test machine, I saved the installation file of Dr. Guard which was installerDG.exe. The file size is 180224 bytes and it comes with the MD5 signature ab58975594c0df941f755851dffd8a4d. After having saved the installation file on my test computer, I tried to find out which antivirus vendors are able to detect it as an infection. Here I received help from VirusTotal.com, an online service providing free malware scanning for individual files.
Image 1. Dr. Guard Fake Scan According to VirusTotal, twenty antivirus vendors out of forty-two detected installerDG.exe as a malicious and harmful file, i.e. 47.62%. Have a look at the following table that provides all the alias names of the analyzed threat:
Table 1. Dr. Guard file alias names Hopefully, all of this information is going to help you keeping away from this fake software. Keep in mind that Dr. Guard is neither able to detect, nor to remove any infections from your machine. Don‘t ever download it, and use trustful antivirus software. |
|||||||||||||||||||||||||||||||||||||||||||||||
User Comments