Security Tool virus - HotUKDeals
We use cookie files to improve site functionality and personalisation. By continuing to use HUKD, you accept our cookie and privacy policy.
Get the HUKD app free at Google Play

Search Error

An error occurred when searching, please try again!

Login / Sign UpSubmit

Security Tool virus

vengod Avatar
6y, 4m agoPosted 6 years, 4 months ago
Spent the afternoon trying to fix this for a friend to no avail...

Right, so let me explain what ive tried

Ran Malware Bytes, found 117 threats, removed all.
ran malware Bytes again, found nothing.

Yet the virus still loads up at startup?

Read on several internet sites to delete a registry entry - but the entry wasnt in said location, so couldnt delete it?

Once ive removed it from the processors it doesnt load back up until you restart computer? But its a pain in the a**e.

Anyone experienced this? Il post a pic of what the virus is,

Thanks
vengod Avatar
6y, 4m agoPosted 6 years, 4 months ago
Options

All Comments

(22) Jump to unreadPost a comment
Comments/page:
#1
http://www.howtoremoveit.com/wp-content/uploads/2010/04/SecurityTool.jpg
#2
http://rapidshare.com/files/410629743/security_tool_fix.zip.html

password asciihukd


double click mht file for instructions.. you will have to download a new copy of malware bytes but everything else should be In the zip I just uploaded
#3
Do you still have the icon for it on the desktop?
If you do right click and go to properties. This will give you the location of the virus, think this one sits in appdata. Go to this location and delete it. Then go to start - run - msconfig, and remove the tick next to the same location.
Do all this in safe mode and that should get rid of it. Believe it or not this virus isn't that hard to get rid of.
#4
run rkill first the follow instructions
#5
bathfan
Do you still have the icon for it on the desktop?If you do right click and go to properties. This will give you the location of the virus, think this one sits in appdata. Go to this location and delete it. Then go to start - run - msconfig, and remove the tick next to the same location.Do all this in safe mode and that should get rid of it. Believe it or not this virus isn't that hard to get rid of.

Hi, thanks...

There is no desktop item, it simply loads into taskbar..cant click on it or anything, its just a number?
#6
dontasciime
run rkill first the follow instructions

Thanks, you have experience of this?
#7
vengod
dontasciime
run rkill first the follow instructions
Thanks, you have experience of this?

fixed a few laptops in the last few weeks that had this. Obviously it's easier to do when computer is in front of you but everything I uploaded should do it... There are other ways but this should be the easiest to follow for users not too familiar with removal of nasties. Not saying you are not proficient just you know
#8
im guessing its your upload?

open the .rar

"! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\host files default\2003 server\hosts
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\host files default\2008 server\hosts
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\host files default\vista\hosts
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\host files default\w7\hosts
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\host files default\xp\hosts
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\hostsperm.bat
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\Remove Security Tool and SecurityTool (Uninstall Guide).mht
! C:\Users\Sam\Documents\Downloads\Compressed\security_tool_fix.zip: Unknown method in security tool fix\WNssq3GPa.exe
"
#9
Do i need to download it eith the infected computer?
#10
sod everything ive said, file downloaded fine.

Will have a go with it tomorrow.
#11
you basically need to remove malware bytes as it's probably been crippled. update your anti virus as well.

run rkill download a new copy of MBAM and rename it to vengod.exe then run it

place WNssq3GPa.exe into the malwarebytes program folder and run if the newly created vengod version of malwarebytes fails to run .

Update then Scan computer let it fix it and on restart it shoudl be gone.. If not then you need to repeat but after running rkill and(making sure you did not reboot after running rkill) run WNssq3GPa.exe from the MBAM program folder update it then scan


Edited By: dontasciime on Aug 02, 2010 19:52: .
Edited By: dontasciime on Aug 02, 2010 19:53: .
Edited By: dontasciime on Aug 02, 2010 19:56: .
#12
download 7zip.org to extract
#13
you can download it to infected computer or run the files on infected comp via usb pen (I would just download them to infected computer though)
#14
Thanks, will let you know tomorrow how i get on..
#15
Hi,

All the host files deafults are empty?
#16
They are default ones
#17
So they meant to be empty yeah?

Will definately give this a go tomorrow...
#18
It wouldnt let me run rkill...it would download it and then it would just disappear from desktop...

Anyhoo, so i download "Hijack This" which i then scanned. I noticed the number which was lniked to the virus...

I then clicked "More info" and managed to locate the viruses .exe file, which i then deleted.

All sorted.
#21
^just some more sources as not everyone has success with 1 type
#22
Its a sod to get rid of..

Thanks for your help.

Post a Comment

You don't need an account to leave a comment. Just enter your email address. We'll keep it private.

...OR log in with your social account

...OR comment using your social account

Thanks for your comment! Keep it up!
We just need to have a quick look and it will be live soon.
The community is happy to hear your opinion! Keep contributing!