How in the Hell do I get Security Tool off of my computer?!?

How can I get rid of this garbage without having to pay every single one of the “anti-spyware” sites?! -Now I have SpyHunter as well as the the “security” bug on my computer.Help!!!!!

5 replies
  1. knowguy says:

    You can run antivirus and antispyware programs, but the sad fact is if you have found one virus on your computer, you probably have several. Cleaning the computer now requires you to follow these steps, because modern viruses and spyware entrench themselves in files that your computer needs in order to run:

    1. Virus-check your data files (not application files– you have installer CDs for those).
    2. Back up the data files, getting them off your hard drive.
    3. Get your original operating system CDs that came with your computer.
    4. Boot your computer from the operating system CD.
    5. Select the option that erases your hard drive and then reinstall your system software.
    6. Turn on your software firewall that came with your operating system.
    7. Reconnect to the internet, and download *all* Windows updates, no matter how long it takes.
    8. Reinstall your application software, and update the applications as much as you can.
    9. Reinstall your data files.
    10. Create a limited user account on your system that does *not* have administrator access, and web surf only from this account.

    Yes, this is a pain in the butt. No, there is no other way. No, antivirus and antispyware programs cannot fix this problem on its own.

    So, what do you do in the future?

    1. Never click on links you find in an e-mail.
    2. Never open an e-mail attachment, ever.
    3. Only download files from a reputable website that you know is on the up-and-up.
    4. Never use bit-torrent and other file-sharing programs.
    5. Never use an unsolicited drive-checking site.
    6. Turn off all java and java scripting by default, and only enable java and java scripting for sites that you know you can trust.
    7. Never read an unsolicited e-mail, and delete spam immediately. It is possible to be hacked by reading an e-mail alone.

    Please adhere to the ‘dont’s’ I provided above, because you will have to repeat the cleaning steps that I listed first *every time you get infected.* Anti-spyware and anti-virus programs are good to have, but they are a second line of defense. The best way to protect your system is you, and changing your behavior.

    Good luck!

  2. Sattamander says:

    Far too many people have been duped by these ploys in the last week alone. It appears that we are starting to see more and more everyday. NEVER download or install anything you did not personally go looking for. Check out this link for more on the rouge anti-virus fad:

    http://www.2-spyware.com/news/post454.html

    Allow us to provide some useful removal tips. Considering the fact that Security Tool usually makes your removal endeavors almost impossible (it blocks antivirus programs downloads, hijacks your desktop etc.), you may find it very hard to delete it. There is a real good method to trick this rogueware, though. Go ahead and try the following. Open up My Computer, go to your Local Disk (that’s ‘C’ drive mostly), double click Documents and Settings and choose All Users folder. When inside ‘All Users’ directory, go to Tools option at the top. Select Folder Options and click on the View tab. There, you should tick Show hidden files and folders and untick Hide protected Operating System files option. Now that you have done this, you will be able to see Security Tool’s folder inside Application Data directory. It’s usually the very first one shown, it has 8 random digits as its name. Double-click that folder, now you should see Security Tool executable – it looks approximately like this 45612378.exe. You need to rename this process to whatever you like (e.g.’456abc78.exe). Save the changes and restart your computer. After this reboot, Security Tool will be knocked down for a short while; additionally, you should now see its icon on your desktop. Don’t waste your time and download our removal tool below. Launch the remover and let it identify and exterminate Security Tool infection.

  3. vlj2002 says:

    Shows you how to remove rogues, but works for other viruses too (By me):

    http://www.youtube.com/watch?v=eGVWQgtCvtg

    Use combofix from bleepingcomputer.com, then download malwarbytes(you may need to rename the installer/setup to something like winlogon.exe to be able to run or install it) from malwarebytes.com or softpedia.com, then clean the rest of the virus with superantispyware and Hitman Pro 3.5 from softpedia.com/cnet.com and just in case you do have a rootkit on your system use GMER from majorgeek.com(Use gmer to scan and anything in red delete.)

    Future Protection use this wizard to recommend security protection for your system:

    http://www.techsupportalert.com/secwiz

    or go to safe mode and then do the above:

    To get into Safe Mode with Networking:

    1. Log out and reboot your machine.
    2. When the machine starts the reboot sequence, press the F8 key repeatedly.
    3. Select Safe Mode with Networking from the resulting menu.

    Note: Rogue security software is a form of computer malware that deceives or misleads users into paying for the fake or simulated removal of malware.

    Or Manually:

    Terminating the process:

    1.I verify that a Rogue is present. This isn’t hard, since it’s usually popping up just about every few seconds.
    2.Click CTRL-ALT-DELETE (if it’s available)
    3.Click Task Manager
    4.Click Processes
    5.Find a process that usually contain all numbers. For example 2342342.exe. If you do not see all numbers then your rogue has a name like…SystemSecurityPro.exe or GreenAV.exe…etc.
    6.Select that process and click end process.
    7.At this point the rogue process has been terminated.
    Removing Rogue Anti-virus that is named with random numbers.

    or If you can’t open task manager then use Rkill from http://download.bleepingcomputer.com/grinler/rkill.com

    1.Click Start
    2.Click Run (or for Vista/Win7 type in the start search box)
    3.For windows xp type: C:documents and settingsall usersApplication Data and click OK. A window will open containing a folder with about 8 numbers. Your Rogue is in there. Delete that folder.
    4.For Windows Vista/Win7 type C:usersall users in the “start search” box and click enter. Your randomly named folder with about 8 digits should be in there. Delete it.
    Removing Rogue Anti-Virus that has a name like System Guard Pro, AV2010, etc

    1.Open Windows Explorer.
    2.Open your C: drive.
    3.Open Program Files
    4.Find the Rogue and Delete the folder.

    If not seek an expert. Good Luck!

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.