If your affected by this downloaded please follow the instructions below to remove, and continue using 1.5.3. I will let you know when it will be release there will be a countdown timer to stop this kinda stuff from happening.
Long story short, I was playing around /investing in the new twistercoin and the dev posted a new client, in a later post not the OP. Few posts later, someone quotes him said "well done blah blah bla bla" i come back to that page after going outside for a smoke and clicked the mega link not realising it was the quoted post not the devs one. The url was masked with a rogue url that you would only notice if you remember say the last few characters of the url key, or if you hover over the link you will see one ending in FM not TA
See here, don't click the second link!!
https://bitcointalk.org/index.php?topic=966354.msg10711375#msg10711375 (has now been cleaned)
Contained keylogger
Some ass hat compiled another version of twistercoin with a key logger and posted it a few posts down and my AV did not pick it up. I no longer use this paid AV.... I haz better one now.
I'm an idiot and I fell for it, had to take the day off work to change passwords etc
Everyone remember to double check links posted in forums and don't do what I did.
Sorry
To see if your infected go to Appdata/roaming/ If there is a folder called dclogs you are infected with the keylogger, Then use the steps below
Step 1
http://thisisudax.org/downloads/JRT.exePlease download Junkware Removal Tool to your desktop.
Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Step 2
https://www.malwarebytes.org/mwb-download/confirmLaunch Malwarebytes' Anti-Malware
Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
Go to Scanner tab and select Perform Quick Scan, then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.
Step 3
http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleanerPlease download AdwCleaner from here and save it on your Desktop.
Right-click on adwcleaner.exe and select Run As Administrator to launch the application.
Now click on the Search tab.
Note: The log can also be located at C:\ >> AdwCleaner[XX].txt >> XX <-- Denotes the number of times the application has been ran, so in this should be something like R1.
Step 4
http://www.sur-la-toile.com/RogueKiller/Download on the desktop RogueKiller
Quit all programs
Start RogueKiller.exe
Wait until Prescan has finished ...
Click on Scan.
Delete anything found
Step 5
http://www.eset.co.uk/Home/NOD32-Antivirus?gclid=CIa-oortnsQCFQMewwodHYkASgDownload the 30 day free trial (or buy,its very good)
Click Scan Computer
Custom Scan
Scan Target > Local Drives
Scan Profile > In-depth Scan
Click setup, then under objects select them all and under extensions make sure scan all files is ticked.
Click ok
Then click Scan as admin
