Anti-Virus System Pro - Me Too! Pls Help

Hey Guys,
I am in dire need of your help. I have this anti-virus system Pro virus and My kids have allowed it to penetrate. The good thing is that I have a laptop that I can dowbnload and save files to the infected computers shared drives. Can you please help me? What should I do first. I have installed Malware Bytes and nothing is being found. I cant access the internet on the infected computer and when I try and open programs I get "File X has been infected" Please help....

KeV

Please download ComboFix from BleepingComputer.com

Alternate link: GeeksToGo.com

Alternate link: Forospyware.com

Rename ComboFix.exe to commy.exe before you save it to your Desktop

• Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  
• Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  
• As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  
• Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console

Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

• Click on Yes, to continue scanning for malware.
  
• When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.
  

Hey DragonMaster,

It is not even letting me do that...it is saying that it cannot find the file?
Can i do this in Safe mode?

Yes, you can try in Safe Mode.

DragonMaster Jay wrote:

Yes, you can try in Safe Mode.

Its working....

Good. Post when ready.

DragonMaster Jay wrote:

Good. Post when ready.

Hey Dragon,
Do you know how people are getting this virus? it has just like blown up all at once....

It happens in bursts because that is the way attackers work. They usually work in big chunks. It is all about referrals, and hijacking. They find a way to trick the minds of normal people browsing the Internet. It is now the most common scam on the Internet, except for "ways to make money."

DragonMaster Jay wrote:

It happens in bursts because that is the way attackers work. They usually work in big chunks. It is all about referrals, and hijacking. They find a way to trick the minds of normal people browsing the Internet. It is now the most common scam on the Internet, except for "ways to make money."

Hey Dragon,
Ran Combo fix and went through the process. System re-booted and then finished the final stages of the clean. Went to create Log file and stalled. Finally crashed. Went back to normal state to see if I could turn off Anti-Virus and it's Fixed! Am i clean now?
Should I run the additional tools: OTL, SREng, RBFA, and DragonFix?

Yes, please run the additional tools. Your system appears clean now, yes.

But, it is damaged, so we must repair it.

DragonMaster Jay wrote:

Yes, please run the additional tools. Your system appears clean now, yes.

But, it is damaged, so we must repair it.

Hey Dragon,
Have run the Malwarebytes, House call with no threats found. Now with the OTL log files would you like me to post them or keep plugging along?

If you could post the ComboFix log, it would be good.

DragonMaster Jay wrote:

If you could post the ComboFix log, it would be good.

Dragonmaster...when I am running The Dragonfix do I call the system restore (Runthisfirst: Dragonfix.reg?) I dont want to screw up all this progress
I addition, I was never able to save the ComboFix Log file due to my system crashing. So I just carried on with the tools and steps as per Rainbow 24

Ok. Forget those steps, please, and let us move on with this:

Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop.
Please close all other applications running on your system.

Please double click GetSystemInfo.exe to open it.

Click the Settings button.



Set it to Maximum



IMPORTANT! Then please click Customize - choose Driver / Ports tab and uncheck Scan Ports.


Click Create Report to run it.

It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop. Please upload the folder to Kaspersky GSI Parser and click the Submit button.

Please copy and paste the url of the GSI Parser report (not the log) in your next reply.

http://www.getsysteminfo.com/read.php?file=170e4fa753c0dffe0e4ff90db34b6216