Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    Senators Ask FTC to Investigate Smart TVs for Invading Users' Privacy

Featured Deal: Deal for 77% off a NordVPN 3 Year VPN Subscription

Photo

Infected with SecurityTool

Started by pinkfloyd99 , May 04 2010 03:27 PM

  • Please log in to reply
1 reply to this topic

#1 pinkfloyd99

pinkfloyd99

  • Members
  • 2 posts
  • OFFLINE
    •  
  • Local time:03:26 PM

Posted 04 May 2010 - 03:27 PM

So I'm trying to fix my friend's computer. It turns out she's infected with the SecurityTool malware. I've removed malware for a bunch of my friends in the past but this one is by far the most entrenched I've seen. I looked at the bleepingcomputer guide to removing SecurityTool but to no avail. Here's what I've tried already:

I ran rkill but SecurityTool prevents it from loading. I tried to follow the advice given on the bleepingcomputer guide that says that I should ignore attempts by securitytool in blocking rkill. I ran rkill about 20 times but every single time SecurityTool is able to interject and stop the rkill process. I've also tried loading MalwareBytes, ComboFix, IBProcMan, Killbox and Procexp. SecurityTool prevented all of those programs from loading.

I'm also unable to boot in safe mode. After safe mode loads, I see the mouse pointed but before i see the desktop, my computer restarts.

Any suggestions?
Thanks

EDIT: I guess I should also add that I'm running Vista

Edited by pinkfloyd99, 04 May 2010 - 03:39 PM.

BC AdBot (Login to Remove)

 

#2 pinkfloyd99

pinkfloyd99
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
    •  
  • Local time:03:26 PM

Posted 04 May 2010 - 03:52 PM

OK so I was able to finally load rkill and install malwarebytes. I will go forward with removing this damn malware.

To anyone who is going through the same problem, what I did was I put rkill in the Startup folder. To find your Startup folder, click on the Start button, under applications find the Startup folder. Right click on the Startup folder and click on Explore. Once you're in the Startup folder just put rkill in the directory and restart. When Windows restarts, it runs rkill and stops the SecurityTool process.

Hope this helps someone.

Edited by Budapest, 04 May 2010 - 04:59 PM.
Moved from Virus, Trojan, Spyware, and Malware Removal Logs ~BP

Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·