Those damn malware writers are getting better,. I had the unfortunate opportunity to run into the latest. You know the ones - "Your computer is infected!!!" and the infection is the warning. This one defied all tricks that I have learned and even some picked up from here!
1, It infected the "all user" profile, so no booting with a different account.
2. It polluted the registry with tons of launch points and actually replaced windows launch points so simple deletion would not work (then windows would not).
3.It also prevented access to USB devices! That one was clever (I Thought at first my memory stick was bad - nope! It just said it was).
4. It disabled System restore
It seemed to have all the bases covered! But again it forgot one. I was able to extract all data from it (even though it kept infecting any USB device I installed on it - but I do not allow autorun period.
The one thing it forgot is the same one another one forgot - the command line. I am not going to try to repair the computer (it is one of mine, but a friend's son was using it). Once I got my data off of it, reformat and re-install! So no new tips on getting rid of this one. just the details of what it was doing. Nasty bastards! I hope there is a special place in hell for these jerks.