I thought I had inadvertently gotten myself a spyware infection, but upon further inspection it only happens with jsonline.com (and I have completely up to date AV/Firewall/and spyware solutions).
When you attempt to browse away from jsonline.com a pop-up appears attempting to get you to use "system doctor", or intimating that you already have it installed. I know better than to click on these and just "ended" them.
I have posted several links to jsonline in the past and thought it might be prudent to post a "beware" message.
edit: I did e-mail the webmaster, and it is no longer doing this.
Just trial and error...I knew not to click on it, and then noticed that it wasn't happening anywhere else.
Logged back on to jsonline.com, browsed away...BANG! (trademark DDP) there it was again. I checked my task manager...no processes running so it wasn't installed yet.
It didn't HAVE to be coming from JSOnline...but that seemed to be the likely suspect.
Just to be on the safe side I did re-run all my anti-spyware stuff. Nothing there.
My friend had a similar piece of crapware on his system. Some movieland garbage that insisted you had actually BOUGHT something, and tried to get you to click a link to pay to remove it from your system. Nice.
I did it with Irfan View once. I extracted the images from the .gif and used their bulk resize option and resized all the frames. Then I reintegrated the frames. You might have to guess at the frame delay, or it will animate too fast or slow.