That crap gets redone twice a year and if you come across it early it will disable your AV. I found that if I keep a process explorer handy it's easy to just kill it and flush the temp files and it's gone. No need to do all that regedit stuff.
Better yet if you use a virtual session then all you have to do is close the session that got infected and your clean. Actually you never get infected to begin with. I did that for a while but my machine got a little older so I didn't want to upgrade the hardware anymore so I just do clones of the hard drives. When my kids mess my machine I just bring it back. Takes about 10 minutes. About like popping the hood on my car to change the Air filter.
Bookmarks