DoctorCom

DoctorCom Description

ScreenshotESG security researchers consider that DoctorCom is a dangerous malware threat that should be removed at once. The best way to remove DoctorCom is to use a legitimate anti-malware application while running your operating system in Safe Mode. Starting up Windows in Safe Mode prevents DoctorCom from launching automatically and engaging its self-protection mechanisms, such as blocking access to the victim's security software or blocking access to the Internet. While manual removal of DoctorCom is possible, this requires understanding the Windows Registry and making changes that, if not done correctly, could irreparably harm your computer system. Another reason to remove DoctorCom manually is that this dangerous malware threat does not attack alone, and will probably, be associated with a number of Trojans and with a rootkit infection. Failure to remove all malware infecting your computer along with DoctorCom will probably fail to remove many of the problems on your computer system and put you at risk for reinfection.

In November of 2011, PC security researchers detected a number of rogue security programs hailing from the Republic of Korea. These rogue security programs that are part of a family named Onescan are fairly typical but may alarm computer users because of their unfamiliar language and Korean characters. DoctorCom is one of these many programs; other examples include BoanKorea, SweeperLab, PCVaccine, Dr.Boan, BoanCop, CleanBoan.

How DoctorCom Attempts to Steal Its Victims' Money

Like the majority of rogue security programs, DoctorCom's main goal is to scam its victim. To do this, DoctorCom attempts to convince its victim that a severe malware infection has taken hold on their computer system. However, the most dangerous malware infection on the victim's computer is DoctorCom itself. This is because DoctorCom has no real anti-virus capabilities, but is actually, composed of harmful scripts and Trojans. The reason why DoctorCom attempts to convince its victim that a malware infection is present is so that the victim will pay for a license to remove these imaginary problems with the DoctorCom fake security application. As part of its scam, DoctorCom carries out a number of intrusive and dangerous actions on the infected computer system. Some of these include blocking legitimate security programs and access to the Internet, hiding files from view, in order to make it appear as if they have been deleted and cause the victim's computer system to crash frequently and run extremely slowly.

Technical Information

Registry Details

DoctorCom creates the following registry entry or registry entries:
RegistryKey
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DoctorCom
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\DoctorComUp.exe
HKEY_CURRENT_USER\Software\DoctorCom
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.


HTML is not allowed.