Background: I had Webroot Antivirus with Spysweeper and no fatal problems with bad viruses for the last 4 years. It was time to renew my subscription and the salesperson convinced me to upgrade to Security Essentials. After installing it, things weren’t working quite right; pages weren’t loading correctly on the first try, PDFs wouldn’t open, and I kept getting notifications asking if I should allow or block things to access the internet but I had no idea what they were (a jumble of letters and numbers.exe) and there was no guidance for it so I called and asked to have my old Webroot Antivirus with SpySweeper back. I didn’t think it was a virus but just that my 4-year old computer wasn’t handling the firewall well or vice-versa. Webroot sent me a download for the Antivirus with SpySweeper but it was the new 2011 version and things completely went down hill over the next few hours. I was talking to my friend on skype shortly after installing it and all hell broke loose- my computer froze up and a small cat icon was sent to my friend through the chat even though I definitely didn’t put it there and it never appeared in my text box.
When I restarted my computer, I did it in safe mode without networking and ran an antivirus scan with Webroot but it keeps stopping at the same file about 140,000 files in- I think it’s an index.dat file related to cookies. The estimated time continues to move forward but the scan doesn’t progress to any other files, even after hours of waiting. At that point I can’t even stop the scan- when I click stop scan it just says “processing” and no matter how long I wait, it won’t stop or continue or anything. I tried restarting in safe mode again and it kept happening each time I tried. I restarted in safe mode with networking to try to use security.symantec.com because that scan has picked up on things other scans have missed in the past but my computer totally broke down (“fatal error” blue screen) before it finished (it had run fro about an hour or two and hadn’t picked up on anything yet.) I restarted in safe mode with networking again and it started up ok and I ran a quick scan (because I didn’t think my computer would last through the full scan) with Microsoft’s Malicious Software Removal Tool and it came up clean. I am now running a full scan with the Malicious Software Removal Tool and crossing my fingers that my computer makes it.
Other details: Now when I open up internet explorer for the first time after restarting it a pop up ad for a registry scanner thing shows up, which definitely makes me think this is some malicious adware type stuff. Also, I noticed a lot of suspicious processes going on but I’m not sure what to do about them. For example, There are five svchost.exe running. (I know one is normal but so many at once makes me suspicious.) I searched my computer for svchost.exe and did a scan of each file that was found but all came up clean using webroot.
Any suggestions? Something is definitely wrong but virus scans are either coming up clean or my computer is not lasting through them long enough for them to pick up a virus.
Ok, I’ve tried installing malwarebyes, avast, and avira antivir but none of them will install correctly (they won’t open and say that maybe reinstalling them will help but it doesn’t.)
Chosen Answer:
I agree with William above – malwarebytes and superantispyware should be your first line of attack
if you can’t get them to install, try the portable version of superantispyware which does not require installation
http://www.superantispyware.com/portablescanner.html
in my opinion, webroot software can be resource hungry and slow your system down – cut your losses and uninstall it and use better free alternatives such Avira Antivir
http://www.filehippo.com/download_antivir/
you could also try AVG rescue cd – download the iso, burn it to cd, boot from the cd, connect to the internet via ethernet and update definitions and run a full scan
http://www.avg.com/ie-en/avg-rescue-cd
by: zoomjet
on: 6th September 10
Posted in 
Tags:
Hi,
please do this :-
you have a really bad virus and the only thing to kill it is “Malwarebytes”, some times this virus blocks anti-virus sites so download it using another system on to a Flash drive then use the flash drive to install it onto the infected system, then reboot and then run a FULL scan of your system, if this fails try this, reboot and press F8 as it boots up, this will take you into safe mode, then run a Full scan again.
If it is still blocked & won’t install try this:-
When it asks you where you would like to save it, change the “mbam_setup.exe” file to xxxxx.exe.
Then install it, update it, and run a full scan in Safe mode.
This will clear your system of this virus.
http://malwarebytes.org/
This is also one of the best free anti-spyware programs; again always run your anti-virus software in “Safe Mode” on full scan.
http://www.superantispyware.com/
This will all help you and are completely FREE downloads.
Trust me this does work.
*********
Simple version of what to do:-
Download “Malwarebytes” onto a UBS Memory stick using a friends system
Use the Filehippo links as these are completely FREE
http://filehippo.com/
Reboot your system
As it boots up press (tap) F8
When in SAFE MODE install “Malwarebytes” using your USB Stick copy
When installed, run a full scan of your HDD
Reboot back into main windows again
Update “Malwarebytes” using the update tab page
Run another full scan of your HDD
Trust me this will not harm your system at all, only kill any bad stuff that’s on it.
This is completely FREE and easy to do and WORKS, so why not try this first??
Update :-
if your AV will not install you have other problems with your system and not a virus issue
so do this now
reboot and press (tap) F2 as it boots up (sometimes it F10 or F11)
this will take you into your recovery screens
then do a system REPAIR to your OS
this will just repair any errors in your OS and not alter any of your stuff
hope this helps you again
Hmm… In safe mode with networking, try downloading and scanning with Malwarebytes and/or SUPERAntiVirus.
The only reason I suggest this is because (even though its unrelated) my dad once payed for Norton 2010 and he knew he had a virus but it just kept coming up clean even with the latest definition. I tried Malwarebytes and it got rid of the problem fast along with some other unnoticed things (it was mainly a pseudo security program that somehow was downloaded to his PC and claimed he had viruses but was instead making viruses).
I agree with William above – malwarebytes and superantispyware should be your first line of attack
if you can’t get them to install, try the portable version of superantispyware which does not require installation
http://www.superantispyware.com/portablescanner.html
in my opinion, webroot software can be resource hungry and slow your system down – cut your losses and uninstall it and use better free alternatives such Avira Antivir
http://www.filehippo.com/download_antivir/
you could also try AVG rescue cd – download the iso, burn it to cd, boot from the cd, connect to the internet via ethernet and update definitions and run a full scan
http://www.avg.com/ie-en/avg-rescue-cd
Try AVAST free or Caspersky. Also scan your system with a good system cleaner like reginout.
There can be two issues:
1. Virus (Use AVG free)
2.. Corrupt registry ( Use reginout)
I am sure it will help you.