Antivirus Soft has taken over my Laptop PC

Antivirus Soft has taken over my Laptop PC.

I have Symantec AntiVirus, AdAware, Spybot, Windows Defender, Malwarebytes (If memory is correct).

The Symantec Antivirus doesn't appear to check incoming e-mails and etc. It scans the laptop at 4:99am daily.

Antivirus Soft is preventing any type of executable file from functioning and gives a message stating that the file is corrupted.

Right after I discovered that my laptop had been hijacked a new program popped up and acted as if it was scanning my PC and then offered to repair it for a payment. I call it extortion or ransom!!!

It is currently midnight here in California. I don't anticipate logging back in for approximately 18 hours or so.

Thanks for being there!

Hi RodR7679,
Welcome.

A few things before we start....
1. Please Read All Instructions Carefully.
2. If you don't understand something, stop and ask! Don't keep going on.
3. Please do not run any other tools or scans whilst I am helping you.
4. If you have to go away for an extended period of time, let me know.
5. Please continue to respond until I give you the "All Clear".
(Just because you can't see a problem doesn't mean it isn't there)

=======================

First, download RKill by Grinler.
Download Link 1
Download Link 2
Download Link 3

Download Link 1 first.
Save it to your Desktop.
Double click the RKill desktop icon.
Note for Vista users with UAC enabled: Right click and run as Admin.
A black screen will briefly flash indicating a successful run.
If this does not occur please delete that application and download Link 2.
Go on to Link 3 if it still does not run.

========================

Next run MalwareBytes Anti-Malware (MBAM) since you mention you have it installed.
* Once the program has loaded, update the definitions.
* Then select "Perform Quick Scan", then click Scan.
* The scan may take some time to finish,so please be patient.
* When the scan is complete, click OK, then Show Results to view the results.
* Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
* You'll be required to post the contents of this log later.

Please Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

=======================

Next let's have you download ComboFix.exe. Please visit this webpage for downloading and instructions for running the tool:

Go here ======> A guide and tutorial on using ComboFix <====== Go here

Please ensure you read this guide carefully and install the Recovery Console first.This applies to XP Pro and XP Home users only.If you have SP3 installed you will need to use the download meant for SP2.

The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

Once installed, you should get a prompt that says:

The Recovery Console was successfully installed.

Please continue as follows:

(1) Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
(2) Click Yes to allow ComboFix to continue scanning for malware.

When the tool is finished, it will produce a report for you.


Please include the MBAM log and C:\ComboFix.txt for further review, so that we may continue cleansing the system.


Caution: Never run and remove files with Combofix unless supervised by a qualified security analyst who is experienced in the use of Combofix. Misuse can cause serious computer problems.