System Tool 2011 Virus

[wat docdude]

So my dad goes to hotels all the time with shoddy networks and browses the internet. It seems like everyday he comes back with some form of malware or another .

These rogue anti-viruses are what he has trouble with. It's sometimes possible just to remove some of the other things with a quick MBAM scan, but these things are just too hard for me to get rid of by myself.

The one that really has me stumped right now is "System Tools 2011". An icon popped up on the desktop with a padlock logo labeled "System Tools 2011", and it changed the backround to a really cheesy warning about how everything you do is saved on the computer and junk. It's pretty obviously fake, because of the fact that it's just a backround. I can change it to anthing else through the controll panel, and the backround has some binary in the backround to make it look official (Think The Matrix).

The only program it will let me run is IE. Anything else that I try to run comes up with a pop up from the virus that says it's infected. Anything from MBAM to The Snipping Tool.

I can't really think of anything more. I've done some googling and nothing has helped, and I don't want my dad to have to spend money to get this off of his computer.

Any ideas on how I can get this off the computer? It seems so difficult because it won't let anything else run.

 

[yowanvista]

Try scanning with mbam in safe mode

 

[Jaxryley]

Or go into MBAM's programs folder and rename mbam.exe to iexplore.exe and see if it will come up.

If it does start don't forget to try and update first before a scan.

If still no go then you could try the RogueKiller from the link below which is able to kill exe killing rogues if active and can even nullify quite a few from auto starting and then try a scan with MBAM to cleanup any dregs.

RogueKiller

 

[Victek]

These rogue anti-viruses are what he has trouble with. It's sometimes possible just to remove some of the other things with a quick MBAM scan, but these things are just too hard for me to get rid of by myself.

If your dad is running XP boot into SAFE mode and log into the (normally hidden) Admin account. Rogue AV's often install in the user account and won't be active when you login as Admin. Run a "quick scan" with MBAM. If MBAM doesn't catch it followup with SuperAntiSpyware.

If the OS is Vista/7 try SAFE mode first. If that doesn't work see if you can create a new Admin account and then log into it in SAFE mode...try the scans.

 

[Jacee]

Look at the top post here New Malware Threat System Tool 2011 - Spiceworks Community see if the same item is in the registry

 

[Bill2]

See here for the files and registry entries created by System Tool 2011, you can remove them manually after scanning with MBAM.

System Tool 2011 | Virus Removal at im-infected.com

 

[wat docdude]

See here for the files and registry entries created by System Tool 2011, you can remove them manually after scanning with MBAM.

System Tool 2011 | Virus Removal at im-infected.com

Thank you very much. I got it now.

 

[kpitao]

Same problem here!!! PLEASE HELP!!

I'm good with pcs, build and repair, always have a friend's pc to clean up.

But this virus is killing me, I cannot start any programs except IE and Windows explorer. I tried already to create another user, no go.... cannot start task manager or computer manager.The worse thing is I cannot even start in safe mode!!!

Somehow this crap block access to my keyboard even before windows starts!

The only thing that may work is a script to boot in safe mode. But I don't know how to create a scrpit at all.

Any ideas?

 

[r3plicat3]

Same problem here!!! PLEASE HELP!!

I'm good with pcs, build and repair, always have a friend's pc to clean up.

But this virus is killing me, I cannot start any programs except IE and Windows explorer. I tried already to create another user, no go.... cannot start task manager or computer manager.The worse thing is I cannot even start in safe mode!!!

Somehow this crap block access to my keyboard even before windows starts!

The only thing that may work is a script to boot in safe mode. But I don't know how to create a scrpit at all.

Any ideas?

go into your \system32 directory and find taskmgr.exe, doesn't matter if it wont work, just copy it and paste the copy to your desktop somewhere. rename it to iexplore.exe and run it. This will trick your virus into thinking that its really internet explorer and you can disable the goofy app with wierd strings of letters. youll notice it is usually letters and numbers like vdus87s9d9sdsd8 or something.
end those tasks, then run msconfig in run and disable it from the programs in the startup tab. Once you do that, use your antivirus tools like Malwarebytes' et al.

Good luck.

 

[zelkan]

filename

Hi,

after some trouble with this virus myself i found that the following file was created

c:/program data/pdapjni06300/pdapjni06300.exe

i removed all entries in the registry and deleted the file..

this did get rid of the virus however all of my shortcut links for IE etc are now defunct, i will still need to rebuild the machine

hope this helps people out

 

[jcan74]

System Tool Scareware

Hey Guys,

Ive just dealt with three of these this weekend alone. The best, and easiest way Ive found to reverse the problem is by using System Restore. Just press F7 during the boot sequence, then F8 in the next screen, click on System Restore, choose a restore point/date, and let it run. Doing this has fixed all of the systems I have repaired lately in about 5 or 10 minutes.

Hope this helps.

 

[harrypotter1]

removal of system tool 2011

Hi…………… really, system tool 2011 is a critical problem which completely damages the performance of our PC. Actually, system tool 2011 is a fake application which creates fraudulent error messages to ensure us about the presence of virus in our system. But, in actual it is not so.


Beside this, system tool 2011 corrupts all the important files of system and even don’t allow you to open the task manager window, therefore, you can't remove it from the system manually. So, to remove system tool 2011 you can use system tool 2011 removal software which quickly detect virus and make your system free from this fake application.

 

[marsmimar]

Hi…………… really, system tool 2011 is a critical problem which completely damages the performance of our PC. Actually, system tool 2011 is a fake application which creates fraudulent error messages to ensure us about the presence of virus in our system. But, in actual it is not so.


Beside this, system tool 2011 corrupts all the important files of system and even don’t allow you to open the task manager window, therefore, you can't remove it from the system manually. So, to remove system tool 2011 you can use system tool 2011 removal software which quickly detect virus and make your system free from this fake application.

Hello hp1 and welcome to Seven Forums.

With all due respect I think there's a better chance of removal using a couple of tried and true free on-demand scanners. Namely, Malwarebytes free, SuperAntispyware free, and Hitman Pro free.

Malwarebytes : Malwarebytes Anti-Malware PRO removes malware including viruses, spyware, worms and trojans, plus it protects your computer

SUPERAntiSpyware.com | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

Hitman Pro 3 - SurfRight

But once a computer gets infected with any kind of malware, the only sure way to know it's clean is to reinstall everything either from a known clean system image or the old fashioned way of reformatting/reinstalling everything from scratch.

 

[damien76]

Remove System Tool and SystemTool (Uninstall Guide)

But to be sure you may be more secure using an image backup or wipe the disc and reinstall everything. System image restore is just minutes away. But if you don't have one then...I know this is burdensome and will take a lot of hours (if you wipe and re-install) but you will be sure it will be gone.

Goodluck

 

[rob9]

Drag the pop up

So my dad goes to hotels all the time with shoddy networks and browses the internet. It seems like everyday he comes back with some form of malware or another .

These rogue anti-viruses are what he has trouble with. It's sometimes possible just to remove some of the other things with a quick MBAM scan, but these things are just too hard for me to get rid of by myself.

The one that really has me stumped right now is "System Tools 2011". An icon popped up on the desktop with a padlock logo labeled "System Tools 2011", and it changed the backround to a really cheesy warning about how everything you do is saved on the computer and junk. It's pretty obviously fake, because of the fact that it's just a backround. I can change it to anthing else through the controll panel, and the backround has some binary in the backround to make it look official (Think The Matrix).

The only program it will let me run is IE. Anything else that I try to run comes up with a pop up from the virus that says it's infected. Anything from MBAM to The Snipping Tool.


I can't really think of anything more. I've done some googling and nothing has helped, and I don't want my dad to have to spend money to get this off of his computer.

Any ideas on how I can get this off the computer? It seems so difficult because it won't let anything else run.

Each pop up will only happen once unless you keep making it go away ( I can drag and hide all but a tiny corner is showing) drag them to the corner of the screen so as little as possible is showing and forget about it it can only block one browser at a time it works for me.

 

[bru]

Each pop up will only happen once unless you keep making it go away ( I can drag and hide all but a tiny corner is showing) drag them to the corner of the screen so as little as possible is showing and forget about it it can only block one browser at a time it works for me.

So you don't try to remove a virus?