System Security 2012 causing viruses to pop up.

I have System Security 2012, and just today did it start saying I have many viruses and malicious programs harming my computer. It also said I had infected programs, and I had to activate a antivirus program that I have. It also says I have spyware infection too.

I don't think I have one, so I tried to download AntiVira but System Security said it was already infected so I couldn't download it.

Also, it says that: svchost.exe replaced unauthorized program found.

Zeus Trojan also pop-ups many times saying if I want to block it.

Is there a program to help me stop this?

Window's defender says there is no harmful software detected. I also have Net-Worm.win32.kido.ih

Sorry this sounds broken down, I'm just trying to hurry before it shuts itself down again from all these pop-ups saying I have viruses and such.

Any help is appreciated, thanks :)

Hi, Milo69.

System Security 2012 is a rogue, using false security alerts and fake scan results to try and trick you into thinking that your computer is infected so that you will then purchase it.

Notes:

1. If you cannot connect to the Internet with the infected computer in Normal Mode, please restart in Safe Mode with Networking. To do this, turn your computer off and then back on and immediately when you see anything on the screen, start tapping the F8 key on your keyboard. Using the arrow keys on your keyboard, select Safe Mode with Networking and press Enter on your keyboard. Windows will now boot into safe mode with networking and prompt you to login as a user.
2. In the event the infection prevents you to download files on the infected computer, you will need to download the files on another computer and then transfer them to the infected computer via a CD/DVD, external drive, or USB flash drive.

1. Let's start by checking that the rogue didn't change IE settings. Please start Internet Explorer and do the following:

• Click on the Tools menu.
• Select Internet Options.
• Click on the Connections tab.
• Click on the LAN Settings button so you are on the Local Area Network (LAN) settings screen.
• Under the Proxy Server section, please UNCHECK the checkbox labeled "Use a proxy server for your LAN".
• Press OK button to close this screen.
• Press the OK button to close the Internet Options screen.

2. Please download the TDSSKiller.exe by Kaspersky... save it to your Desktop. <-Important!!!

• Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
  Vista - W7 users: Right-click and select "Run As Administrator".
  If TDSSKiller does not run... rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. ektfhtw.com).
  If you don't see file extensions, please see: How to change the file extension.
• Click the Start Scan button. Do not use the computer during the scan!
• If the scan completes with nothing found, click Close to exit.
• If malicious objects are found, they will show in the "Scan results - Select action for found objects" and offer 3 options.
  
  • Ensure Cure (default) is selected... then click Continue > Reboot now to finish the cleaning process.
  
  
• A log file named TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt will be created and saved to the root directory. (usually Local Disk C:).
• Copy and paste the contents of that file in your next reply.

3. Please download rkill from one of the following links and save to your Desktop:

One, Two,Three or Four

• Double-click rkill to run.
• A command window will open then disappear upon completion, this is normal.
• Please leave rkill on the Desktop until otherwise advised.
• Do NOT restart your computer after running rkill as the malware program(s) will start again.

Note: If you you receive security warnings about rkill, please ignore and allow the download to continue.

4. Please download Malwarebytes' Anti-Malware to your desktop.

• Double-click mbam-setup.exe and follow the prompts to install the program.
• At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, be sure Quick scan is selected, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is checked, EXCEPT items in System Restore as shown in this sample:
  
• Click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See the Note below)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Please post contents of that file in your next reply.

** Note ** If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

Please post the contents of both the TDSSKiller and MBAM logs in your reply and let us know how your computer is now.

Thank you so much! It helped a lot, both the programs: TDSSKiller and MBAM

My computer is back to normal, and I no longer have System Security 2012 with its fake virus complaints. Thanks again!!

You are very welcome, Milo69.