Skip to main content

[How to] Remove Anti Malware Doctor

By
Recently I have had a laptop to clear up that had been infected with “Anti-malware Doctor“.  Normally I would just recommend rebuilding the machine i.e formatting the drive and reinstalling windows, the problem with this approach was the user had several photos/documents & files that they had not backed up and would not like to lose them.
 

The Problem

This software completely takes over the machine, there was nothing that could be done under the user account, the CPU was constantly pegging at 100% usage and it would not allow any executables to run.
Below are the steps that I took to clean the machine.
At first I logged into another user account, and on a CD I had this little utility, rkill.com which identifies and kills running processes.  After a good while where it could run it managed to kill the following:
C:\windows\system32
egedit.exe
C:\windows\system32
undll32.exe
C:\windows\Temp\_ex_08.exe
C:\Program Files\Internet Explorer\IEXPLORE.exe
After these had been killed it allowed the PC to run as normal.

Cleanup

I then quickly installed  Malware Bytes – Anti Malware software, and I updated the software with all the latest files and then immediately ran a Quick Scan.
Once this has completed it had found well over 80 items installed that should not of been there.  It cleaned these off then recommended a reboot, after the reboot had completed I then ran a full scan of the system, this again found around a dozen other items that were removed.
After the software had cleaned all the malware off the system, I decided to clean out the temp directory, before you do this ensure that you have the setting enabled to Show Hidden Files and Folders.
To do this open My Computer, click on the Tools menu then select Folder options (Windows XP) Click on the view tab then in the advanced settings you will see the option.  Once you have clicked the radio button to show hidden files and folders click ok to leave the options window.
Then delete everything (shift-delete, don’t put it in the recycle bin) from C:\Documents and Settings\Username\Local Settings\TEMP, I say this as there were a lot of dubious looking files in there, for example a lot of files relating to _ex_08.exe mentioned above.
They had purchased and wanted  Kaspersky Anti Virus software installed.  I installed this for them and as soon as it started, it found a ROOT Kit, which it removed, then rebooted and started another full scan, it then found a few more small items, it cleared all of these last items out.
After this as a precaution I rebooted the PC and then completed a full malware and antivirus scan once more, just to ensure that there is nothing left around.  I ensured that the automatic updates were running so when the machine started they will always get the latest updates so they can be protected, I am always a bit shocked when users disable the automatic updates of anti virus software.
The final task was to install the latest windows updates, but I found that I could not connect to any web pages, it was somehow setup to use a proxy server once I un-ticked that box all was well again.
To check the settings goto Tools -> Internet Options -> Connections Tab -> LAN Settings and un-tick the box for Use a proxy server.  This had to do be done for all the users.
After all the Windows updates were installed, everything was well, and the laptop was delivered back to them, with a copy of all their pictures burned to DVD.

Recommendations

I did make some recommendations, that they leave the automatic updates on and to purchase a external drive so they can back up the PC at regular intervals if they do not want to lose any data from the machine.  One option is the Hitachi portable drive I have reviewed recently, you can read that review here
The software and utilities I used can be uploaded upon request.

Comments

Post a Comment

Popular posts from this blog

13 Solar Powered Gadgets That You Must Have

By
T he sun could be our greatest partner when we try to take technology to new heights. Imagine a world where your car could be fueled by solar power , you could walk out with your laptop not carrying a charging cord with you and using your smartphone for an unlimited period of time, letting the Sun feed it need for energy. We are not too far away from that future, to be honest. If you look around, there are already so many solar powered gadgets that you can use in your daily activity, be it for work, fun or for the comfort of your house. Presenting, in no particular order, 13 gadgets that you should check out! 1. Logitech Wireless Keyboard K750 “If you’ve got light, you’ve got power” is the motto for this wonderful gadget. Start the solar revolution by replacing one of the most used devices in our tech lives – the keyboard . It has no batteries and even no wires, making your typing experience a fun thing to do. You don’t have to go outside to recharge your
Post a Comment
Read more

Dash up Your WordPress Dashboard Interface

By
Do you have a multi-author blog ? Do you want to brand your WordPress dashboard with custom logo and unique interface? Then this post is for you only. In this article I am going to tell you how you can change the avatar of WordPress admin page with new style and add some cool features to it. Let’s start. Fluency WordPress Plugin Here is a WordPress plugin for you called Fluency with which you can customize your WordPress admin page according to your needs without any knowledge of PHP. Some top features of Fluency that I personally like are – Display your own custom logo at the top of the WP Menu once logged in : This is my favorite option, with this plugin you can also add your own logo on top of WordPress admin page. A good option if you’ve a multi author blog. Hot keys for menu/submenu access : Fluency provides you with features of hot keys with which you can easily open menu and submenu. Now, no need to take mouse to every menu, simply use the hot keys f
1 comment
Read more

10 Free Tools to Check Website Loading Time

By
E veryone knows how annoying it can be having to deal with websites that take forever to load. As per some recent researches, almost 75% of the Internet users do not return to sites that take longer than four seconds to load. A Fast loading website is the first step to a successful online presence, but you will be surprised how many scripts and widgets may be slowing your site to a crawl. 10 Free Tools to Check the Website Loading Time 1. iWebTool Speed Test – Simple tool to test your website’s loading time and compare with other websites. great tool for benchmarking. It allows you to enter up to 10 websites, and the results display the size of the website, the total loading time and the average speed per KB. 2. Pingdom Tools – Pingdom is a popular uptime performance monitoring service for websites and servers. They also host a free load time test for web pages. The Full Page Test loads a complete HTML page including all objects (images, CSS, JavaScripts, RSS
Post a Comment
Read more