Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Is WebRoot SecureAnywhere actually a virus?

Created: 26 Oct 2012 | 3 comments

I took over a pc at work that would have the message "your webroot subscription has expired, please buy it now".  then noticed i needed to install our Symantec AV product which went okay.  

After a reboot the PCs performance came to a screeching halt.   the Symantec scan would show the webroot program in the results section saying blocked memory or something.

I went to add/remove programs, uninstall webroot secureanywhere, and it opened a web page asking me to explain why Im uninstalling it??  is this not the pattern of all malware?  

Comments 3 CommentsJump to latest comment

Mick2009's picture

Hi Bradley_R,

FakeAV is everywhere, but an internet search does not turn up any obvious signs of FakeAV by that name.  There does seem to be a legit company called that.

It's never recommended to have more than one AV client on a computer at the same time.  There's a very high chance they will conflict when they both try to scan files at the same time, etc.

Please do keep this thread up-to-date with your findings!

With thanks and best regards,

Mick

Brɨan's picture

It is a legit program. However, as Mick already mentioned, it's best practice to only have one AV product on a system so as not to cause conflict, which looks to be what is happening in your case.

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Mithun Sanghavi's picture

Hello,

I agree with the Above comments.

However, as per your explaination, the WebRoot SecureAnywhere seems to be a Legitimate software.

Secondly, incase if you feel suspicious, you may like to run the Symantec Support Tool and submit these files.

Check these Articles: 

Using Symantec Support Tool, how do we Collect the Suspicious Files and Submit the same to Symantec Security Response Team.

https://www-secure.symantec.com/connect/articles/using-symantec-support-tool-how-do-we-collect-suspicious-files-and-submit-same-symantec-sec

How to submit suspicious files via the online submission form that have been quarantined by Symantec Endpoint Protection (SEP) or Symantec AntiVirus (SAV)

http://www.symantec.com/docs/TECH97449

How to submit file(s) from quarantine using the new user interface within Symantec Endpoint Protection 11.0

http://www.symantec.com/docs/TECH102189

Hope that helps!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.