I started a ticket with Malwarebytes (stupid me forgot to check here first). They have me running Combofix which requires my AV to be shut down. WRA doesn't seem to shut down. How can I go about doing so. And I cannot get Combofix to shut down either (I tried X-ing out but it pushed on ahead stating it will go ahead and run "at my own risk!"
I'd started the ticket there because my computer has been running sluggish but MBAM and WRA don't detect anything. I've worked with tech support on a previous computer and went there first (again, stupid me, forgetting the tech support here). They walked me through several steps and now we're looking at ComboFix.
When I open Web Console, I notice that an infection popped up yesterday LPPLUGIN.DLL with W32.InfoStealer.Zeus (probably during this process). Now when I click on support from my computer, I get sent to a blank browser page.
If I try to open a support ticket, I'm asked for e-mail address which I provide then a password, which I don't have (and the passwords I type in for forum and for web console don't seem to work either).
Best answer by Rakanisheu RetiredView original
If you think you have any infection it is always best to Submit a Support Ticket and start a new ticket if you can't get access to the old one as Webroot have there own Malware Removers and it's free with a paid subscription and if you use other tools like MBAM or Combofix it could do more damage and if necessary they will connect to your system remotely and remove any infection themselves. Also this is one important thing you need to see: http://community.webroot.com/t5/Webroot-Education/What-Happens-if-Webroot-quot-Misses-quot-a-Virus/ta-p/10202#.UfVIhm3Nnns
As to how to shut Webroot down, of course that is generally not advised. But... I do realize sometimes it needs to be done. Right click on the Webroot systray icon and choose Shut down Protection. Note: Webroot will also warn you that it is at your own risk.. all security software will do that when you try to shut it down :)
As for the password for your trouble ticket, you should have that in the reply to your first Trouble Ticket. Check your email for the reply made when you first opened a ticket, the password will be in there. (It WILL be different than what you use for the Community, your Console, or any other password you have assisnged.)
I did figure out how to submit a support ticket a couple of hours ago and did so. Hopefully I'll get a response soon.
I had checked out that video a couple of months back and re-rechecking it now (and walking through the steps) I find no unknown file or anything of that sort listed for LPPLUGIN.DLL with W32.InfoStealer.Zeus in the scan log (which comes up clean as it had previously).
Just quite frustrating. Sluggish computer, DOS-boxes popping up at times (and unsure what they are doing) combining to make me pull out my hair (and there's not much to begin with :D).
But as you'll notice, it did find an infection yesterday, then came back protected, then found the infected file again later. Here's what comes up when I open Scan Results:
Soooo, rather confused here. There does seem to be an infection but exactly what it is and what it's doing . . . .
Is that possibly a generic virus name that particular program uses for any file it detects with that kind of behavior for which it has no set definition file for?
If that is the case, of course Webroot support can help verify this as well as help make sure your system is clean. A request to the company detecting the dll in question to whitelist it as a false positive might also be in order.
Still haven't heard back from Support. Are they only available during the week? I've seldom dealt with support for Webroot (and the first/last time was just to log in to webconsole).
Thanks for the reply. I have created a ticket, I think. I clicked the open a support case link off the Individuals & Families page of the Community, entered e-mail address and problem. Haven't heard anything back. No e-mail response. Nothing so far except the assistance that Triple Helix and DavidP have offered.
If you could look into it, I'd appreciate it. Thanks again.
If it is your fine!
OK, thanks, for the note on Zeus.
But anything else to track down on the sluggishness? The DOS boxes popping up as indicated in the ticket? And I regularly CClean and defrag the harddrive.