Since October 2009, there have been many variations of Security Tool, also known by security experts as Security Tool Virus. This Trojan has exploited more than a million computers, but no one knows for sure what the exact number is for total computers infected.
Everyday a new bogus antivirus and or security application is released. These programs are clones from others like it with different branding and skins (look and feel).
These fake antivirus and security programs are money making machines. They fool users into purchasing the software in order to remove the fake threats on the user’s computer.
How does a computer get infected?
There are several ways a computer can get infected by these pesky fake security programs. The Trojan can be installed by other malware through email attachments and links, drive-by downloads, downloading free software and clicking on links shared from social networks.
Here are other ways you can be infected;
- Advertisements that go to malicious websites
- Fake torrent files or downloading files on file sharing networks
- Porn sites and Pirated software
- Search Engine Optimization poisoning
- Web pages containing exploits
If you ever see a notification in your system tray (below image), you probably are infected with this nasty Security Tool Virus.
How to Remove System Tool or Security Tool
- Download MalwareBytes to your desktop and rename it to Explorer.exe as Security Tool blocks the program named MalwareBytes. If you can’t download files, try using another machine that’s not infected and saving the files to a flash drive or other storage device.
- Reboot your PC and hit F8 to run your computer in Safe Mode with Networking.
- Run RKILL to stop all background processes related to Security Tool.
- Launch MalwareBytes and run a (Full Scan) to remove infections.
- Delete the file called “Hosts” in C:\Windows\System32\Drivers\etc\HOSTS and add the default Hosts file (below) for your operating system in C:\Windows\System32\Drivers\etc\
a. Windows XP HOSTS File Download Link
b. Windows 7 HOSTS File Download Link
- Reboot your computer.
Your computer should be clean and working normal again.
For more detailed instructions, visit http://www.bleepingcomputer.com/virus-removal/remove-security-tool
Your are typing very good tips. I really use your tips. Thanks for giving an information.