SecurityTool Virus/Malware.

UPSHitmanUPSHitman The Big NastyIndianapolis, Indiana Icrontian
edited March 2010 in Spyware & Virus Removal
Hello fellow icronticans! Yesterday my wife's laptop got hit by the "SecurityTool antivirus" virus. It's a real pain in the butt. She claims she was just on facebook when she got it and I tend to believe her. Anyway the laptop has been rendered useless because it prevents you to access your desktop icons, Start menu, or frankly..anything at that matter. All it does is once you boot up the PC it brings you to a blue security tool window and tries to tell me my computer in infected by a million viruses and worms and that I need to buy this so called "anti-virus software" HA! I don't think so! Anyway I was wondering if anyone of you guys or gals have ran into the same problem before and have any Jedi mind tricks up your sleeves on getting rid of it without having to wipe her laptop (which really isn't that bad if that's what I have to do). I googled it and found this pesky little parasite has hit many poor souls like myself in the past. I also found this website, http://www.bleepingcomputer.com/virus-removal/remove-security-tool I was wondering if this is legit way of getting rid of it or not? Anyway any help would be much appreciated. Thanks a lot folks!!

Andy a.k.a. ]UPS[ Hitman:respect:

Comments

  • PlayBoyZPlayBoyZ
    edited March 2010
    Hi :cool:,

    May i know what is your operating system?

    Is it XP or Vista or Windows 7?


    *******
    PlayBoyZ
  • PlayBoyZPlayBoyZ
    edited March 2010
    Hi,

    If you feel hard to understand my language i am really sorry.

    Follow this

    Try to boot the computer in safe mode

    Hope you know how to boot in safe mode. If No?

    Turn off the computer. Turn it on back and start tapping F8 key in the first row of the keyboard slowly and gently until your windows advanced options menu or Advanced Boot options.
    In that menu you can see the safe mode option.
    Use your up and down arrow keys in the key board to select it and hit ENTER.
    Just boot the computer by that way.

    This security tool wont be active in the safe mode.
    After you came to the desktop

    [

    Enable the hidden files and folders.
    Open My computer--> Click on Tools (menu)->Folder Options-->View(tab)-->Click show hidden files and folders
    Click OK

    If you cant see the tools menu
    Hold the Alt key and press T in the keyboard when you are inside the My computer window

    Else Start--> Run
    You can also open run by holding Windows key + R

    Inside the run box type "control folders" without quotes and hit OK.
    You will get the Folder options dialog box
    Then Folder Options-->View(tab)-->Click show hidden files and folders
    Click OK

    Else Go to control panel you can find Folder options
    Then Folder Options-->View(tab)-->Click show hidden files and folders
    Click OK

    ]

    Then You have to move to the location

    For Windows XP
    c:\Documents & Settings\All Users\Application Data\

    For Windows Vista & 7
    c:\Program Data\

    Inside this folder you can see a folder whose name will have only numbers

    * 8 digit random numbers

    Inside that numbers folder you can see a file with the same name as in the folder and with blue sheild

    That is the security tool virus

    Delete that file

    Restart the computer

    Your computer will be fine.



    In case if you where not able to boot the computer in safe mode.

    If you find dificulties in booting the computer in safe mode.

    Try this

    move to the location

    For Windows XP
    c:\Documents & Settings\All Users\Application Data\

    For Windows Vista & 7
    c:\Program Data\

    Inside this folder you can see a folder whose name will have only numbers

    * 8 digit random numbers

    Inside that numbers folder you can see a file with the same name as in the folder and with blue sheild

    That is the security tool virus

    Raname the file without .exe

    Like rename it as abc

    Restart the computer

    Your computer will be fine.

    Moving to that particular location is tough in the normal mode as this security tool will pop up like anything

    It is in your hands in moving to that location

    Or else

    Open Run Dialog box, copy & paste the location what i gave
    I think It will directly take you to that folder
    Then do the necessary things

    Have Fun :rockon::rockon::rockon:


    ***********
    PlayBoyZ:rockon::rockon::rockon:
  • UPSHitmanUPSHitman The Big Nasty Indianapolis, Indiana Icrontian
    edited March 2010
    Sorry I should I said it. I am using Vista.
  • UPSHitmanUPSHitman The Big Nasty Indianapolis, Indiana Icrontian
    edited March 2010
    Thanks I will give that a try!!!
  • PlayBoyZPlayBoyZ
    edited March 2010
    What happened, Have you tried these steps

    In vista

    Boot the computer in safemode

    Enable the Hidden Files and folders

    Move to the location

    c:\Program Data\

    Look for the folder name which is having only numbers

    It will have random numbers

    If u see that, Open the folder

    If a file is there with same numbers and security tool shield is present, delete that file.


    Check for any other folder with the same kind inside program data.

    for eg:

    c:\Program Data\84765672\84765672.exe

    Waiting for your reply
  • UPSHitmanUPSHitman The Big Nasty Indianapolis, Indiana Icrontian
    edited March 2010
    Sorry for the late reply, I was at work. I just did your recommended steps and it appears that the virus is gone and everything is running great! THANKS A LOT FOR THE HELP!!!! Once again Icrontic saves the day!!!

    Hitman
Sign In or Register to comment.