said by kpatz:I shut down my system as soon as I realized what was going on. This laptop has no AV but it is fully patched.
This one didn't sink its hooks in very deep... I just killed the pav.exe process, deleted the file and the shortcut, removed the run entry from the registry and it's gone. Maybe if I let it lurk for a while it would download more of the hard-to-remove crap. Or maybe this is one of the "easy-to-remove" variants.
EDIT: Had to remove a BHO that was intercepting IE as well.