I have run at least six anti-spyware/anti-virus programs including the very latest V-1.36 of MalwareBytes - couldn't do update online, but dl'd the rules separately and moved them over. Totally clean - no indication of a problem. No windows restore points worked. Ran test for Conficker and several other contemporary issues.
No antivirus/spyware program can download updates on-line - another clear indication of infection. I don't know what else to try and it's alarming that my second laptop got infected without my knowing how it occurred. The Windows Update said "software Distribution Service 3.0" - and I've seen comments about that being a problem, but as near as I can tell, this WAS a legitimate update, although at this point, I no longer know what is real any more
I'm not sure many users would even know they were infected with this thing, as about the only symptom I've seen is the inability to run batch files, get to the registry and connect to certain web pages with anti-virus/spyware updates/information.
I'm rebuilding my second laptop from scratch with TrueImage and this time will prevent any Windows Update (since it's suspicious that was the ONLY thing I did after saving the image - although the laptop was connected to the internet and maybe just got hit by virtue of that?
Anyway, I've run AVG8.5, spybot, Malawarebytes, SpyDoctor, SpyHunter - but I'm having difficulty with those programs that want to start out by updating their databases on-line as that never works (update always conveniently 'fails').
I'm just baffled by this one. And I obviously don't want to log into any significant sites (like banking, etc.) until this is purged....
Any thoughts from the gurus on this one?