Medichi.exe, murka.dat, medichi2.exe Rootkit Removal Software for FREE- Greatis Software

Security

• Greatis

• AppDatabase

• Utilities

• Delphi/CB

• Visual Basic

• .NET

• just4fun

RegRun Security Suite
Not an antivirus. Detects and removes rootkits/malware/adware that your antivirus could not.

One-click purchase

RegRun NIVA Platinum - Rootkit Killer

NIVA+CD-ROM

More info:

Know more?

Screenshots

FAQ

On-line manual

Print PDF

Download trial

RegRun NIVA Platinum

Forums

Greatis Forum

International

Join our localization team

Medichi.exe, murka.dat, medichi2.exe Rootkit Free Removal Software

We made a special RNR file for removing Medichi rootkit.
If it doesn't work by itself you need to use the manual method.

Please follow instructions step by step:
1. Download the latest version of RegRun Security Suite, UnHackMe or RegRun Reanimator.
2. Download the "medichi.rnr" file and save it to your hard drive.
3. Install RegRun Suite, UnHackMe or unzip Reanimator.zip file.
4. Open RegRun Start Control or "Reanimator.exe".
5. Skip the "Assistant" screen and open "Reanimator" menu.
Choose "Execute RNR file" option.

6. Locate the "medichi.rnr" file on your computer.
7. Proceed to restart of the computer immediately.
Skip the Windows File Protection dialog.
8. All rootkit files will be removed after you reboot of your computer.
9. Use Windows search feature to find "*.del" files.
Delete these files. It's the safe copies of the removed viruses.

If you want to restore deleted beep.sys, use your Windows CD.
Copy "beep.sy_" and expand.exe from the Windows CD to the Windows\System32\Drivers folder.
Open cmd.exe.
Type in:
cd c:\windows\system32\drivers
expand beep.sys_ beep.sys
Otherwise you can download beep.sys from the Internet. Use Google for searching.

Manual Removal of the Medichi rootkit (or its clones)

1. Download the latest version of RegRun Security Suite, UnHackMe or RegRun Reanimator.
2. Download the "medichi.rnr" file and save it to your hard drive.
3. Install RegRun Suite, UnHackMe or unzip Reanimator.zip file.
4. Open RegRun Start Control or "Reanimator.exe".
5. Cgoose "Scan for Viruses".
6. Set option for Deep Level Scanning" option.

7. Click on the "Reboot".
8.You will see the "Virus Scan" dialog.
The scanning may take 2-5 minutes because it checks for the digital sign for Microsoft drivers.
9. Click on the "I'm not shure" button if RegRun doesn't display the full path to the "medichi.exe".
10. Click "Get it out" button to delete:

Removal

c:\windows\system32\drivers\beep.sys
c:\windows\medichi.exe
c:\windows\medichi2.exe,
c:\windows\murka.dat.

11. Choose "Reboot" option.
12. After the successful virus scan open "Reanimator.exe" or RegRun Start Control.
13. Go to the "Reanimator" menu and choose "Unlock banned Task Manager and Regedit after Virus Attack".
14. Use Windows search for finding "*.del" files.
Delete these files. It's the safe copies of the removed viruses.

Conclusion

Download RegRun Reanimator (free of charge, no ads):

http://www.greatis.com/reanimator.zip

Suggest you to use RegRun Platinum Edition to be sure that you are rootkit's clear!

Good luck!

Dmitry Sokolov

What's new?

January 23 2012

Released RegRun Security Suite 6.9.7.97
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 6.9.7.97 - freeware software for detecting and removing rootkits & malware.

August 3 2011

Remove 1see.ir/j/ infection from your osCommerce site

August 2 2011

BootRescue free software for Master BootRecord (MBR) backup/recovery

July 29 2011

Remove Exero.eu/catalog/jquery infection from your web site

Remove willysy.com/images/banners infection from your web site

All News

RegRun is able to remove TDL 4 rootkit (MBR infector) on the Windows 32 and 64 bit!

Released Shortcut Antivirus is a free of charge software for protecting against Microsoft LNK vulnerability.

Released Stuxnet Remover is a free of charge tool for Stuxnet/Tmphider rootkit removal

Added detection and removal of Stuxnet Rootkit(mrxnet.sys, mrxcls.sys).

Resolve "Google search redirect problem". Remove TDL3+ rootkit now!

How to resolve the "msls52.dll not found" problem.
New attack against UXTHEME.DLL...

How to resolve the "themed32.dll not found" problem...

Use RegRun Warrior for rootkit removal
Rootkit detection and removal takes 10 minutes with one computer reboot!

Be careful! The QVOD player installer may be a Trojan...

New! Examiner reveals hidden rootkits and infected system drivers!

New Porno banner Troan Oficla removal instructions

TDSS/Alureon removal instructions

Resolving problem with Google redirect MAX++/TDSS rootkit (win32k.sys:1, win3k.sys:2).

Video Lesson how to remove WinLocker Trojan

Malware Removal Lesson

Windows Explorer Redirection DLLS is a new dangerous Windows startup hole...

RegRun has been reviewed by 3d2f.com Software Directory: RegRun Security Suite is an excellent tool that will reliably protect your computer from a plethora of existing and emerging threats and will keep malware at bay.

Removing Medichi Rootkit

Removal of Noskrnl.exe and Noskrnl.sys Rootkit (Spooldr clone)

Removal Baidu rootkit (cnprov.sys)

Removal Spooldr(ecard.exe) rootkit

Fixing BSOD
in Winlogon Process

Removal Areses Trojan

Virus Feebs rootkit removal story

What's this? Rthdcpl.exe - Illegal System DLL Relocation...

Warning! Rootkit Unhooker

Read our article about Unreal rootkit...

Released free Rustock Rootkit(lzx32.sys) removal tool

A#######.sys is a rootkit?

Rootkit Removal instructions: ntsystem.exe

What is BDGuard.sys?

Virus or not? SPTD####.sys

What is mc21.tmp, mc22.tmp, mc23.tmp?

ICQCHK.exe, MSX.DLL free remover...

Services

Ask Computer Guys

Windows startup programs

Articles

Using Registry Tracer...

RegRun against Trojans and Viruses

Specify an order for startup programs

RunGuard prevents a launch...

Using Bootlog Analyser...

They say

"RegRun Security Suite is one of those very rare tool kits that no one who is serious about protecting their PC should ever be without. This toolkit covers all the bases when it comes to eradicating the attempted security threats from malware that we all face - daily. The near real time tech support, direct from Greatis, is nothing sort of superb, something that can be rarely said these days! I have no hesitation in recommending this suite to anyone."

Miles Pearson

Wilders.ORG. Security advisors recommend...

Testimonials

You guys are awesome!!!!
Traci www.pentagonattack911.com

Bob Schmulian:
Absolutely love it and have recommended to many people!

Ian Robinson:
It is FANTASTIC! It has saved my life on more than one occasion since I purchased it less than 6 months ago. I now would not run my system without it... it's worth many times the cost! The service and support are terrific. Helpful - friendly - and accommodating; and generally a reply is received within 12 hours. Just great.

Theodore Soucie:
Since RegRun was installed my system is more stable. I use to experience freezeup daily. I have not had a crash.

Awards

More...