This is precisely why you have tools such as VipreRescue and Malware Bytes, although for a work machine, you should *purchase* a copy of MBAM. VipreRescue is a great tool for cleaning this sort of infestation, especially if you boot into safe mode, command-line only after installing this and run a scan that way!
-----Original Message----- From: Luke [mailto:[email protected]] Sent: Wednesday, April 28, 2010 9:55 AM To: NT System Admin Issues Subject: RE: WTF? Fake AV I will second that... You must realize that many of these viruses have the ablilty to either turn of your Virus Protection or slip under the radar so-to-speak. The AV software developers are up against a lot when you consider that a lot of these viruses are either updated or morph daily or even hourly in some cases. What usually works for me is a 3rd party utility that will allow you to track down the rouge and manually remove it at its source(s). Sometimes this works - but not always. I see a lot of Malicious programs that have executables such as these blocked. In that case you have to get a little more creative... with presistance you will prevail. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
