Security Tool Malware

stimpson

Miller Lite Tester
Original poster
Oct 2, 2006
4,701
46
Benton, Arkansas
Not sure how it got on my home computer. It gives all those pop ups and virus warnings. I have tried the results from google searches. First step is to open task manager and stop process. It blocks it. It blocks every attempt to run malware removal software. Norton scans do not detect it. Any ideas?
 
I personally always keep a copy of Kaspersky Live CD on hand in my bag. Unfortunately I can''t link you to the iso cause I am posting from my phone right now. Just google it though. Works well and updates signatures via network connection and the built in net drivers work on 90% of systems.
 
Well, after useing several methods combined, I was finally able to stop Security Tool. Not sure whats going on now, but since that mess infected my computor, I have had no less that 50 intrussion attempts. All my scans show I'm clean. I just now got redirected to a page saying I was the big winner of the day when I clicked on my SatGuys bookmark.
 
Well, after useing several methods combined, I was finally able to stop Security Tool. Not sure whats going on now, but since that mess infected my computor, I have had no less that 50 intrussion attempts. All my scans show I'm clean. I just now got redirected to a page saying I was the big winner of the day when I clicked on my SatGuys bookmark.

Check your LAN settings. Go to Internet Explorer > Tools >Internet Options> Connections > LAN settings...Click LAN settings and see if Proxy is checked...if it is...uncheck it and it might help with the redirects...

And even if you use another browser...still check the settings. Malware seems to enable the PROXY setting and that seems to redirect (in some cases) to another site.

If you have Firefox (in addition to what I just mentioned)... go to Tools > Options > Security > Exceptions....then see what those exceptions are. My exceptions are Mozilla and Adobe. If there is anything in the EXCEPTIONS in Firefox...that seems out of place...disallow it.

Did you try the Rkill application ? In every case it worked great in stopping the malware. I keep a thumb drive with Rkill and Malwarebytes handy just in case the malware attempts to keep me from reaching it on the computer. I have rkill on all my Windows computers just in case. In the very rare case of not even the thumb drive working...put Rkill on a disc...and use that as alternate way of getting it into the computer to stop the malware process.


I took one of my desktops with Ubuntu 8.04 and connected it to my KVM switch so now I have a Linux computer now connected to my main setup....Soon I'll be using that for all my browsing and forum uses..should have done it awhile ago.

I just installed Ubuntu 10.04 on another machine yesterday with KDE after finding a excellent tutorial from sourceforge and found I really like 10.04 KDE after using gnome as my preferred Linux desktop...so I might replace the 8.04 Ubuntu Gnome with Ubuntu 10.04 KDE by doing a new reinstall.

While Windows XP SP3 is a good OS for the I have apps that are Windows only....in my opinion...I don't believe it is worth my time to be constantly ridding my computers of malware.

My laptop with Vista isn't all that much better either as twice I had to rid malware on that. I'm using AVG free on all the Windows computers...though I think I will try Microsoft essentials on one of them and see how well that works...

Some people think that Avast is better, they have a free as well as paid antivirus just like AVG does. While AVG is good, it does not stop everything...although it has caught exploits a few times. And that is even with normal browsing on regular mainstream sites.

I highly suggest checking out the forums on bleepingcomputer.com. It is one of the best anti malware /anti virus sites out there...

Good Luck


.
 
Last edited:
Check your LAN settings. Go to Internet Explorer > Tools >Internet Options> Connections > LAN settings...Click LAN settings and see if Proxy is checked...if it is...uncheck it and it might help with the redirects...

And even if you use another browser...still check the settings. Malware seems to enable the PROXY setting and that seems to redirect (in some cases) to another site.

If you have Firefox (in addition to what I just mentioned)... go to Tools > Options > Security > Exceptions....then see what those exceptions are. My exceptions are Mozilla and Adobe. If there is anything in the EXCEPTIONS in Firefox...that seems out of place...disallow it.

Did you try the Rkill application ? In every case it worked great in stopping the malware. I keep a thumb drive with Rkill and Malwarebytes handy just in case the malware attempts to keep me from reaching it on the computer. I have rkill on all my Windows computers just in case. In the very rare case of not even the thumb drive working...put Rkill on a disc...and use that as alternate way of getting it into the computer to stop the malware process.


I took one of my desktops with Ubuntu 8.04 and connected it to my KVM switch so now I have a Linux computer now connected to my main setup....Soon I'll be using that for all my browsing and forum uses..should have done it awhile ago.

I just installed Ubuntu 10.04 on another machine yesterday with KDE after finding a excellent tutorial from sourceforge and found I really like 10.04 KDE after using gnome as my preferred Linux desktop...so I might replace the 8.04 Ubuntu Gnome with Ubuntu 10.04 KDE by doing a new reinstall.

While Windows XP SP3 is a good OS for the I have apps that are Windows only....in my opinion...I don't believe it is worth my time to be constantly ridding my computers of malware.

My laptop with Vista isn't all that much better either as twice I had to rid malware on that. I'm using AVG free on all the Windows computers...though I think I will try Microsoft essentials on one of them and see how well that works...

Some people think that Avast is better, they have a free as well as paid antivirus just like AVG does. While AVG is good, it does not stop everything...although it has caught exploits a few times. And that is even with normal browsing on regular mainstream sites.

I highly suggest checking out the forums on bleepingcomputer.com. It is one of the best anti malware /anti virus sites out there...

Good Luck


.

Thanks so much for all the help. Checked my proxy and it is not check marked. I did try the Rkill program. It would not run. Even tried over and over like the folks at bleepingcomputer.com said to do. No dice. It would run in safe mode, but wouldn't find anything. I ended up renamming the .exe of malwarebytes to "word.exe", and was able to trick the maleware bug into letting it run. It found the crap and removed it. I then was able to run Fkill. I repaeated the steps several times untill it found nothing to kill. Reran malwarebytes over and over untill all was gone. We'll see.
 
Nice idea, renaming the executable. I'll have to remember that one.

I'm running avast. I've had avast screw up my computer. I've had firefox screw up my computer. I've had hardware trouble. I can't remember the last time I had an infection though.
 
Thanks for the update reminder harshness. I did in fact need to update Malwarebytes. Ran it and it found more nasties. So far no more redirects. I'm still getting hit about 20-30 times an hour though by intrusion attempts. Never had this many before.
 
***

Users Who Are Viewing This Thread (Total: 1, Members: 0, Guests: 1)

Who Read This Thread (Total Members: 1)