meenaghman said:
Whats the nature of the beast -- something like anti virus 2010 ? This seems to be a vicious little bugger and seems to get past the likes of avast and avira and avg. I've had to remove from both my daughters machines and they're pretty internet savvy. A friend of mine also fairly savvy got hit by it too. Basically its a registry hike on the default action which is to run this fake antivirus warning which looks very convincing. The hope being that one will enter ones credit card details and they'll use those in a fraudulent manner.
malware bytes gets rid of it. You may need to run in a command prompt window as administrator to get around the initial virus or in in safe mode with networking to download. There are various boards which tell you how to help disable it. good luck. I still haven't found out how it got on the machines. Interestingly it manages to disable the antivirus programs on startup and the program name makes it seem like a windows component.
exactly my experience and I'd recommend using another machine to download Malwarebytes to a USB stick. Then run it 3 times, first in safe mode, again in safe mode with networking and finally in normal mode. After each run delete everything it's quarantined, don't save them for later.
Alternately, nuke the site from orbit, it's the only way to be sure
Oh yeah I remember when it happened as well, I was a bit dopey and clicked th close bit in a pop up that appeared from a link I followed. Rather than right clicking on the control bar and closing it in that way. It was one of those moments where you realise your error as you're doing it. I spent a desperate few minutes trying to stop it in its tracks but it was too quick for me. But I was looking for it, otherwise you would think you'd just closed a pop up and be none the wiser.
