[Closed] Computer has a virus, help!!!!!

Download Malwarebytes ( http://www.malwarebytes.org/ )and run it.

If the virus stops you downloading / running then reboot, hold F8 before the Windows splsh screen and enter "Safe Mode with Networking". Then download / run the above. Perform a "Full Scan".

Looks like the attack has started ... think it's via some of the ads on the website.

Or try Hitman Pro 3 (30 days trial) but the above should work.

My Malwarebytes AM has blocked some of the pics posted on some of the STW thread ...

The "Merkur ..." thread on page 3 keeping hitting (try to connect and call out from my system) my system but Malwarebytes stop it every time. Not sure which add on that page is infected ...

🙄

Could it have come from Facebook or possibly hotmail?? Heard of a couple of others getting virus attacks today!!

make sure you update malwarebytes b4 u run it

Had this the other night came up as spyware / anti virus site called system tool.

Reporting my pc had god knows what and that I needed to purchase the full system.

As said above start pc in safe mode with networking

In fact heres a link to the walk through I found.

http://www.spyware-techie.com/system-tool-2011-removal-guide/

I ran malware and it found them and rinsed them out. Thought all was well and then it popped back up again the other night. Ran malware again and it found them and got rid again, but im not convinced ive seen the last of it.

That's the one shredder, mother chuckers. Thanks all for the help, I'll give it a whirl!! But just one question, why would mcafee fail so badly??

welcome to the system tools virus club.

its got me and the missus' computers, knackard by XP boot sector.
Its a real nasty piece of programming thats got through several layers of protection we had

do a search on google for system tools for how to remove.

Not sure why it got through all my layers of protection either ?

And it concerns me that malware reported it removed and all seems well, and yet it re-appeared. Which resulted in having to run it again and clear again. Just feel it's still here somehow im considering a re-install of the OS.

Boot into safe mode with networking (repeadly press F8 whilst the machine is booting).

Start->All Programs->Accessories->System Tools->System Restore and restore the system to a known good point. It won't affect your files etc. but it will fix it.

Then download somethig like malware bytes and scan the system.

Mcafee failed to protect the system on my father in law's machine too.

On a clean machine, download rkill and malwarebytes. Rename both executables, and install them. Run rkill then run malwarebytes on a quick scan. Reboot, run rkill again, then malwarebytes on a full scan.

run more than 1 av 1 is never enough to get all the nasty buggers

why would mcafee fail so badly??

Because McAfee is an antivirus product and "System Tool" isn't a virus.

what cougar said.
or also use spybot s&d and superantispyware.

i had to clean my bosses laptop yesterday after she got hit with System Tool 2011. it's easy to get rid of it.

So could it have come from either Facebook or hotmail? They were the only two sites running at the time? Always happens to the wife 🙄

I had something like that yeaterday had to reset the whole laptop to get rid of it losing stuff in the process! These f@£kers should get out more!

So could it have come from either Facebook or hotmail?

I've not seen it with a machine in front of me yet, so I don't know.

I had something like that yeaterday had to reset the whole laptop to get rid of it losing stuff in the process!

Should've asked for help instead.

Could you guys let me know what browser do you use please when you got infected?

If you are using Firefox then you should at least install the minimum of defence such as [u]NoScript[/u] extensions as first line of browser protection.

Alternatively use Opera browser ...

🙂

yeah, i have no idea where the infection came from on the machine i sorted yesterday. browser was IE8 though... so, y'know...

Chew - i only use Opera.

According to the BBC story it came in through ads via an ad service, and exploited security flaws via java/adobe.

But i run avast antivir and malaware normally, plus a couple of other malware progs.

but it was only when i started up my PC up the next day that i got a problem - it wouldnt boot, never got any of the system tools virus scan hoax program, just a corrupted boot sector

I use ie 7 I think running on vista! First time I've had anything like this on either of our computers!!

hhmmm ... yes, the same old java/adobe/ads ... So Opera & IE are all vulnerable.

I guess everyone just have to switch off their java or find alternative to adobe. The latter plenty of alternative available.

Also, okay not working for the company, I think it is £20 one time payment for Malwarebytes AM is a good investment.

Yes, my mate got his PC infected too and when he checked he thought he got some sort of trojaan with roootkit creating backdoor ...

[img] [/img]

Does it look anything like the link above ?

Not mine, but the "victim" just ran a system restore and then ran a malware program just to make sure. Appears to have done the trick.

According to the BBC story it came in through ads via an ad service, and exploited security flaws via java/adobe.

This is why we need sticky posts on here. I've been saying this in threads for weeks now.

liam- yes. exactly like that.

I got hit by this on the weekend and so did 45 or more pc users in my company so pretty widespread 🙁

It's kept the IT team busy and cost a shedload shipping laptops back and fore.

Yes again Liam that was the one!! Did it actually make it onto the beeb news? Makes you wonder if many people got out their credit card tho! Stw to the rescue, cheers again!! 😀

Had a virus I could not sweep so last resort was to back everything up and format the hard drive.
Laptop runs far better now and I have got rid of all the programmes and files I never use.

Safe mode - System Restore worked for me, took about 5 minutes. I used the time to go to the shop and buy some crabbies

What was that catchphrase Arnie used to use...?

Once you've "removed" it, I'd suggest running a full MBAM scan anyway, and then making sure that Windows Update, Java and Adobe plugins are all up to date.

Cougar - Member

why would mcafee fail so badly??

Because McAfee is an antivirus product and "System Tool" isn't a virus.

i've had to explain that a dozen times at work today to various people who seem to think that because i do desktop support for a job, i actually give a toss about their home PC woes...

This thread has saved my PC !

For noreason at all last night this thing took over my PC, spent ages searching the web on how to get rid and then followed the simple advice above!

I had a "systemtool" invasion and tried the Safe mode-system restore. Nowt. In the end I had to get the PC cleaned at the local tech shop. Expensive. Intalled this:

http://www.kaspersky.co.uk/

afterwards - half the price of Norton and thoroughly recommended.

yep, had that about a month ago, did the safe mode start and just deleted the relevant files. A more insidious malware I suffer from is a google redirect that attacks my router. Worryingly there are a lot of "legit" companies who are using/employing the perpetrators.

Kaspersky is the best of the 'paid-for' AV solutions IMHO.

However, since MSE is arguably better, and free, it's a bit of a moot point these days.

a google redirect that attacks my router

Er, no.

Worryingly there are a lot of "legit" companies who are using/employing the perpetrators.

Can you expand on that?

err [url= http://tidystorm.com/423/the-redirect-virus-was-in-my-router/ ]yes[/url]

being redirected from and entirely unrelated link to www.monster.co.uk (among many others), whether directly or indirectly I don't know.

Got caught by this about a month ago. It reloads into the start up file each time computer reboots which is why it keeps reappearing. Luckily my computer is relatively ancient giving me enough time to look at the start up folder, find the link and remove the folder in which it lurked before it managed to get itself started. Subsequently pointed in the direction of the malwarbytes solution listed above.

Ah, apologies, I didn't read that properly. I thought you were saying that you had infection on the router itself. Cheerfully withdrawn.

(Incidentally, if you're still having problems with that, I can recommend Kasperky's TDSS killer).

(Incidentally, if you're still having problems with that, I can recommend Kasperky's TDSS killer).

yeah, i've run it lots of times, never finds anything.