Home Malware Programs Rogue Optimizer Programs System Doctor 2014

System Doctor 2014

Posted: May 30, 2013

Threat Metric

Threat Level: 10/10
Infected PCs: 77
First Seen: May 30, 2013
Last Seen: February 5, 2023
OS(es) Affected: Windows

Seemingly unrelated to older scamware like SystemDoctor 2006, System Doctor 2014 is a new rogue anti-malware product that claims to protect your computer while displaying pop-up alerts with deliberately inaccurate contents, in addition to imitative system scans that actually don't scan your computer. System Doctor 2014 has a high chance of interfering with your accessibility to any applications related to your PC's security and also will block any file downloads managed through your browser, and, as a result, should be treated as a threat to your PC and removed promptly. SpywareRemove.com malware researchers can recommend several means of removing System Doctor 2014, most of which use anti-malware software to make certain of removing all of System Doctor 2014's system changes and files with a minimum of difficulty.

The Bad Results After a Checkup with System Doctor 2014

System Doctor 2014 isn't a new form of scamware unto itself. In spite of this, System Doctor 2014 does bear many structural similarities to members of the WinWeb Security family, which often indulge in similar forms of web browser-based attacks to System Doctor 2014's own function set. Attacks that SpywareRemove.com malware experts have traced to System Doctor 2014 and PC threats often linked to System Doctor 2014 include:

  • System Doctor 2014 launching automatically with the start of Windows, without options for disabling this behavior (accomplished through a very typical Windows Registry exploit).
  • The occurrence of pop-up warnings that are designed to make your computer look as if it's infected by multiple high-level threats that supposedly are detected by System Doctor 2014.
  • Problems with accessing other applications, especially well-known utilities for maintaining your PC's security. Both major brands of anti-virus scanners and basic Windows tools like Task Manager may be blocked or terminated without your consent.
  • Perhaps most interestingly, System Doctor 2014 also blocks your browser from downloading various files (as opposed to blocking websites, which is behavior that's well-known in other forms of fake anti-malware products).

Escaping System Doctor 2014's Cyber-Plague Clinic

As malware, System Doctor 2014 doesn't need to be purchased, and removing System Doctor 2014 in haste always should be treated as the best way to deal with System Doctor 2014's sudden appearance on your computer. System Doctor 2014 does have many similarities to past scamware applications from the WinWeb Security family like Antivirus Security, System Security, AntiSpyware Pro 2009, Total Security, Total Security 2009, Security Tool, Trojan.RogueAV.a.gen, System Adware Scanner 2010, FakeAlert-KW.e, Advanced Security Tool 2010, System Tool 2011, MS Removal Tool, Antivirus Center, Security Shield, Personal Shield Pro, Advanced PC Shield 2012, Security Sphere 2012 and Futurro Antivirus. System Doctor 2014 also should be considered a new PC threat that may require updated threat databases for your anti-malware software to identify System Doctor 2014 properly.

In addition to the usual methods of disabling fake anti-malware products (such as booting in Safe Mode or booting from a flash drive), you also may want to create a new admin-privilege Windows account to block System Doctor 2014 and its related attacks. As a result of its randomized file names, Registry changes and obscure component locations, SpywareRemove.com malware researchers don't encourage removing System Doctor 2014 without the assistance of a good anti-malware utility.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:

%APPDATA%\4fd4Vf9\4fd4Vf9.ini File name: 4fd4Vf9.ini
Size: 271B (271 bytes)
MD5: 95fc863fb2d1370e3a2bc8b9d2ed307e
Detection count: 90
Mime Type: unknown/ini
Path: %APPDATA%\4fd4Vf9
Group: Malware file
Last Updated: May 31, 2013
%APPDATA%\4fd4Vf9\4fd4Vf9.lst File name: 4fd4Vf9.lst
Size: 1.07 KB (1074 bytes)
MD5: cf207ae7614bc79066b0c19a7d3b4b5a
Detection count: 73
Mime Type: unknown/lst
Path: %APPDATA%\4fd4Vf9
Group: Malware file
Last Updated: May 31, 2013
%APPDATA%\4fd4Vf9\4fd4Vf9.exe File name: 4fd4Vf9.exe
Size: 1.07 MB (1072640 bytes)
MD5: 08b363bd2db588b50586d909584ff74c
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\4fd4Vf9
Group: Malware file
Last Updated: May 31, 2013

Registry Modifications

The following newly produced Registry Values are:

File name without pathSystem Doctor 2014 support.urlSystem Doctor 2014.lnk

Additional Information

The following directories were created:
%APPDATA%\4fd4Vf9%Appdata%\Microsoft\Windows\Start Menu\Programs\System Doctor 2014