So, the other day, a family member clicked a bad link and invited AV2010 onto the computer. I did a Hard Shutdown within one minute of its initial pop-up You Are Infected message. I cleaned the computer successfully (Boot Safe Mode, Last Known Good Configuration, Restart Safe Mode, cleaning tools, Restart Normal, more tools....all clean ).
My (?faulty?) logic is that a Hard Shutdown will terminate any further progression of the infection by not allowing the malicious code to "complete" during a Normal Shutdown. And that a Hard Shutdown will limit saving the changes to the Registry.
Is this thinking correct, or should one do a Normal Shutdown because "what is done, is done"?
Edited by NobleTruths, 17 March 2010 - 10:58 AM.