The file RVAMADA4.EXE is a part of Fake Antiviral software.
You must delete the file RVAMADA4.EXE immediately!
Delete the file RVAMADA4.EXE without delay!
Kill the process RVAMADA4.EXE and remove RVAMADA4.EXE from the Windows startup.
Malware Analysis of System Doctor 2014
Full path on a computer: %Appdata%\RVAMaDA4\RVAMaDA4.exe
Detected by RegRun Warrior:
Item Name: SD2014
Author: Unknown
Related File: %APPDATA%\RVAMADA4\RVAMADA4.EXE
Type: Registry Run
Removal Results: Success
Number of reboot: 1
System Doctor 2014 is known as:
FakeAV.System_Doctor_2014, Trojan.Fakealert.38951, Rogue.SysDoct, probably a variant of Win32.Adware.FakeAV.G
System Doctor 2014 hash:
- MD5: 7d6e3479f44c6a4e3af1177ef368c812
How to quickly detect System Doctor 2014 presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\SD2014: “%Appdata%\RVAMaDA4\RVAMaDA4.exe”
Folders:- %Appdata%\RVAMaDA4
- %Programs%\System Doctor 2014
Files:- %Appdata%\RVAMaDA4\RVAMaDA4.exe
- %Appdata%\RVAMaDA4\RVAMaDA4.ini
- %Appdata%\RVAMaDA4\RVAMaDA4.log
- %Appdata%\RVAMaDA4\RVAMaDA4.lst
- %Desktop%\System Doctor 2014 support.url
- %Desktop%\System Doctor 2014.lnk
- %Programs%\System Doctor 2014\System Doctor 2014 support.url
- %Programs%\System Doctor 2014\System Doctor 2014.lnk