GF's computer hit with System Tool 2.20

Iron Woode · Dec 18, 2010

I need some advice in removing this thing.

she is also on dial-up.

MBAM can't remove it and Avira can't either.

I believe it may be a rootkit infection.

Windows XP.

pcslookout · Dec 18, 2010

Iron Woode said:
I need some advice in removing this thing.

she is also on dial-up.

MBAM can't remove it and Avira can't either.

I believe it may be a rootkit infection.

Windows XP.

Hitman Pro to the rescue! Used as my backup plan and second scanner! Works 99% of the time!

thescreensavers · Dec 18, 2010

^ does hitman pro remove stuff on the trial?

pcslookout · Dec 18, 2010

Here is a Hitman Pro giveaway of the full version!

http://www.ghacks.net/2010/12/14/hitman-pro-review-and-giveaway-ghacks-christmas-giveaway/

Iron Woode · Dec 18, 2010

thescreensavers said:
^ does hitman pro remove stuff on the trial?

they give you a license for the trial (30 days) to remove stuff it finds.

pcslookout · Dec 18, 2010

Iron Woode said:
they give you a license for the trial (30 days) to remove stuff it finds.

Yep. So did it work ?

Iron Woode · Dec 18, 2010

pcslookout said:
Yep. So did it work ?

we don't live together and she's across town.

will look into it tomorrow and report back.

Lemon law · Dec 18, 2010

The point being, once you can correctly identify what ails your computer, one is way ahead of the game. Because you can google the "system tool 2.20 infection" and get pages and pages of various removal tools.

So for chuckles and grins I did just that, and just clicked om one random link.

http://www.cleanpcguide.com/remove-system-tool-2-20-how-to-remove-system-tool-2-20/

Which claims spyware doctor can do as well as hitman, and I am somewhat willing to bet further search would find removal tools not linked to any specific programs that can do the job even better.

But OP, don't let grass grow under your feet, system tools 2.20 disables your GF's entire
security defenses, and if she continues to access the internet while all her computer security fails to function, she can catch all forms of very hard to identify malware that
makes system tools mild in comparison.

pcslookout · Dec 19, 2010

Lemon law said:
The point being, once you can correctly identify what ails your computer, one is way ahead of the game. Because you can google the "system tool 2.20 infection" and get pages and pages of various removal tools.

So for chuckles and grins I did just that, and just clicked om one random link.

http://www.cleanpcguide.com/remove-system-tool-2-20-how-to-remove-system-tool-2-20/

Which claims spyware doctor can do as well as hitman, and I am somewhat willing to bet further search would find removal tools not linked to any specific programs that can do the job even better.

But OP, don't let grass grow under your feet, system tools 2.20 disables your GF's entire
security defenses, and if she continues to access the internet while all her computer security fails to function, she can catch all forms of very hard to identify malware that
makes system tools mild in comparison.

It is not portable like Hitman Pro can be.

pcslookout · Dec 19, 2010

http://www.wilderssecurity.com/showthread.php?t=280868&highlight=Spyware+Doctor

astark · Dec 19, 2010

MBAM should remove it, though your GF will have to disable System Tool before
scanning. She might need updating before scan.
To disable System tool, try entering one of its codes (they change rarely) here are around ten of them : http://www.2-viruses.com/remove-system-tool
If it does not work, reboot into safe mode and do a scan.

Iron Woode · Dec 19, 2010

1. I had her scan with MBAM in safe-mode and it can't remove it.

2. I told her to turn off the PC until I am able to go over there.

3. I will try Hitman Pro on it and see what happens.

MadScientist · Dec 19, 2010

If Hitman Pro does not work, try this.
1. Boot into Safe Mode with networking, download and run rkill. If rkill.exe does not run try one of its variants. DO NOT reboot. If you have to reboot, you will have to run rkill again.
http://www.bleepingcomputer.com/forums/topic308364.html

I have found that MBAM will not detect certain rootkill malware.

2. If this is a rootkit infection, download and run TDSSKILLER
http://support.kaspersky.com/viruses/solutions?qid=208280684

3. Update MBAM and run it again.

4. If still infected run Combofix. Back up all your important files first before running Combofix.
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Iron Woode · Dec 19, 2010

update 1:

I just got home with her PC, because I worked all day today.

Now I will attempt to remove this crap.

Iron Woode · Dec 20, 2010

Update 2:

Hitman Pro removed it in about 20 mins.

everything else seems ok.

pcslookout · Dec 20, 2010

Iron Woode said:
Update 2:

Hitman Pro removed it in about 20 mins.

everything else seems ok.

Good to hear

Chiefcrowe · Dec 22, 2010

I'd recommend also scanning it with an online scanner and a AV Boot cd just to be sure.

Search

GF's computer hit with System Tool 2.20

Iron Woode

Elite Member

pcslookout

Lifer

thescreensavers

Diamond Member

pcslookout

Lifer

Iron Woode

Elite Member

pcslookout

Lifer

Iron Woode

Elite Member

Lemon law

Lifer

pcslookout

Lifer

pcslookout

Lifer

astark

Junior Member

Iron Woode

Elite Member

MadScientist

Platinum Member

Iron Woode

Elite Member

Iron Woode

Elite Member

pcslookout

Lifer

Chiefcrowe

Diamond Member

TRENDING THREADS