Well, "Antimalware Doctor" decided to auto-install itself on my computer and now I'm stuck with this fucking virus.
I've downloaded Malware's Byte, ran a Full Scan, he found exactly 100 virus. I asked him to delete everything. He did it and confirmed it.
I reboot my CPU, and guess what, this fucking Antimalware Doctor virus is still there!
I run a Complete Scan once again, but this time, Byte finds nothing.
Help!
None.
sounds about right.
You have 2 options:
The best option is to backup, reformat, reinstall. Works every time. The reason for this is that no matter the antivirus, no matter the methods you take to undo the virus, you can never be certain that a previously compromised system is no longer compromised. Never.
The second option is to download a linux based virus scanner. Clamwin should have a linux version. I was impressed with Avira Antivir's bootdisc antivirus, though it's detection is somewhat lacking. Try out MSSE, perhaps it will have something. Finally, you can google for how to get rid of it, but they'll probably tell you what I did.
"Parliamentary inquiry, Mr. Chairman - do we have to call the Gentleman a gentleman if he's not one?"
We can't explain the universe, just describe it; and we don't know whether our theories are true, we just know they're not wrong. >Harald Lesch
combofix usually gets rid of these persistent viruses.
If you're on XP, I highly recommend ComboFix, if you're not, I recommend finding the startup entry for the virus in msconfig, it'll usually be some randomly generated jumble of letters, using RunDLL to load the DLL into a system process. Find that entry, find the file path to the DLL it's loading, then boot into something like Hiren's Boot CD or UBCD4Win, and delete that file from your computer using either one, it should be gone on startup.
None.
http://www.bleepingcomputer.com/virus-removal/remove-antimalware-doctor GO down to the bottom to find every file it is attached to. Start up in safe move and remove each of those one by one. After that restart and it should be gone.
None.
If you run through this, and don't screw it up, then you'll be malware free almost for sure. If not, you can post your logs onto the website, and they'll help you.
http://forums.majorgeeks.com/showthread.php?t=35407
None.
>then you'll be malware free almost for sure
Once your system has been compromised there is no way to tell with 100% certainty that the system is malware free.
"Parliamentary inquiry, Mr. Chairman - do we have to call the Gentleman a gentleman if he's not one?"
Relatively ancient and inactive
Hence the almost, no?
None.
Yeah, you can always reinstall your OS to be sure. Although, running through that link has worked pretty darn well, and most people don't care if they're still infected if it's not even doing any damage, or if it's even noticeable.
None.
