WiredWX Hobby Weather ToolsLog in

 


descriptionWndows XP/Security Tool EmptyWndows XP/Security Tool

more_horiz
My daughter clicked on a pop up on our PC -- she thought it was because the AVG antivirus was alerting her, but then she immediately realized something was wrong. I had not yet installed the Malwarebytes software, so I managed to get downloaded with the "Security Tool" pop ups kept coming, blocking the view of the screen. Then the blue screen, and the computer shut down. I am ticked off at myself because I have been too busy to backup the files on that computer, but that's not the issue now -- how do we get rid of this "Security Tool" malware?

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Please download the current version of HijackThis from HERE

  • Double click and run the installer.
  • It will install to C:\Program Files\Trend Micro\HijackThis\hijackthis.exe
  • After installing, you should get the user agreement, press accept and Hijack This will run.
  • Select Do a system scan and save a log file. This will open a notepad file of everything Hijack This found, copy and paste it back here.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
The program won't even let me into Explorer...I am on my laptop right now. The first thing I get is the "Security Tool" window, which overlaps a blank IE window. It does a scan and tells me I have "33 infections" and lists various worms, malware, trojans, rogues...but I can't get to a window to open anything else...

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Tried again...managed to get around the "security tool" windows, but is blocking the download -- message says it's infected.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
You've managed to download it though right? if not, we may need to use another machine ans transfer tools over via USB or CD.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
It is downloaded to the laptop I am using right now...I can't tell whether it downloaded successfully to the PC because the pop ups keep saying it's a malicious download...

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Okay, well we'll have to go with the method of transferring tools from your laptop, and see if you can run them then.

Let me know how that goes.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
uhhhh help... Can't Believe It can I just download HijackThis directly to the USB disk, or do I copy the file? Thanks for taking the time to help me!!!!!!!

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Yeah, download onto your USB, then carry across onto the infected machine, then try running it on that machine and see if it works.

Let me know if it doesn't.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
:sad: Had difficulty getting past the "Security tool" screens, when I finally did and accepted the terms, thehe "Security Tool" popped back up and said "HijackThis.exe is infected with worm lsas.blaster.keyloger and is attempting to send my credit card details to a remote host". Wont let me go past these pop ups again.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Thought so, can you try renaming HijackThis.exe to explorer (so it's called explorer.exe) and see if it will run.

If not, let me know.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
The program pops up, but it appears the "system tool" is blocking it. I managed, somehow, to get the malwarebytes to run from the start menu..hopefully it can quarantine this...the "system tool" popups just stay on the screen. no icons visible unless I cut the computer off and back on. Malwarebytes has been running a little over 50 minutes now...

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
Full scan mode or quick scan?
See if you can get a log when done.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
I have two logs from full scans -- one from HackThis and the other from Malwarebytes. How do I get these to you?

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
You'll need to transfer from over from USB if you can't post them from the infected machine itself.

descriptionWndows XP/Security Tool EmptyRe: Wndows XP/Security Tool

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum