Remove Security Tools

Solved/Closed
pseudonym - Nov 30, 2009 at 10:37 AM
 JGluv2run - Aug 7, 2010 at 10:49 PM
Hello,
I just got some pop from a progam "security tools" and its not allowing me to do anything until I remove threats which I don't even have how do I get rid of it, Its irritating me

3 replies

In vista you must reboot in safe mode. To do so reboot while pressing the F8 function key. It may take several tries. After rebooting in safe mode go to restore system and restore the system a day or so before you got the malware. Easy and worked great.
3
I have tried different ways to remove it, it failed untill I did a restore system. It works for me well.
0
Thank you, that worked against a nasty malware, much appreciation
0
i tried that it just came back again
0
Ambucias
Posts
47360
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
September 1, 2021
11,256
Apr 22, 2010 at 05:58 AM
Here is how to get rid of this scam rogue virus designed to get to your credit card account and it is a good thing you did not fall for it.

Please follow the following procedure carefully and to the letter.

You have a rogue virus Trojan Horse which is self protective, thus it will prevent any antivirus from fonctionning.

You must kill the processes which the virus is presently running. If you don't it will keep reproducing the files for ever.

To kill the processes:

1. Download to your desktop and run Rogue Kill:

https://download.bleepingcomputer.com/grinler/rkill.com

2. You should now see a window that shows all of your desktop icons, including the rkill.com program.

3. Double-click on the rkill.com in order to automatically attempt to stop any processes associated with the Rogue programs. Please be patient while the program looks for various malware programs and ends them. When it has finished, the black window will automatically close and you can continue with the next step.

If you get a message that rkill is an infection, do not be concerned. This message is just a fake warning given by the Horse when it terminates programs that may potentially remove it. If you run into these infections warnings that close Rkill, a trick is to leave the warning on the screen and then run Rkill again. By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that rkill can terminate the processes . So, please try running Rkill until malware is no longer running.

As a matter of a fact, if you get messages, it is a sign that the virus is agonizing with excrutiating pain, so you can just grin while it is suffering!:)))

Please, DO NOT REBOOT your computer or the processes will come back to haunt you!

Download to your desktop Malwarebyte.

https://ccm.net/downloads/security-and-maintenance/4621-malwarebytes-anti-malware/

Once on your desktop, we must still outwit the virus.

Right click on the MBAM icon and click on rename. Rename it kioskea.exe.

Install Malwarebyte and launch it. From the second tab, update it.

Pretty please, request a FULL system scan which should take more than hour. Once the scan is finish, delete all of item that were found.

Once your computer is clean and working normally just to be on the safe side
*Turn off system restore and wait 30 seconds,
*Turn it back on and create a new restore point.

This way it gets rid of anything bad that might have gotten saved in a restore point and you have a clean restore point to use in the near future if needed.
Do not turn it off until your computer is clean and working normally because you might need to use it if something goes wrong during the clean-up process.
It is better to go back to an infected restore point if something goes wrong then to not be able to undo changes that were damaging.

(Malwarebyte may reboot your computer, don't be alarmed. Should it happened, relaunch Malwarebyte to complete the FULL scan)

Once all this is completed, I always suggest to delete Malwarebyte as some people have reported that it may interfere with other antivirus applications.

Please let us know about the results which I am sure will be positive.

Regards
0
awesome result
0
On Vista, Rebooting in safe mode while holding the F8 function then running system restore worked, but I also had to go into my files using the properties link, locate the"Security Tools" (5282391) file and delete the application. I was fortunate that my desktop was visible most of the time, but the blue screen did knock me off several times when I had the bug cornered. Thanks for the info.
0
i need your help to remove it
-1
Ambucias
Posts
47360
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
September 1, 2021
11,256
Apr 25, 2010 at 04:33 AM
Hi Tracy,

Please, read my message of April 22nd
0
hell you done some typing there Ambucias let me say 30 minutes top's??
0
Ambucias
Posts
47360
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
September 1, 2021
11,256
Apr 25, 2010 at 05:21 AM
I know, I'm exhausted!
0
i can not down load bleeping computer.com
it says internet explorer contains a threat and wont let it run
0
Ambucias
Posts
47360
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
September 1, 2021
11,256
Apr 27, 2010 at 06:06 AM
Hello Adiehl

1. Download link: http://live.sysinternals.com/procexp.exe
*2. Double-click to run it.
*3. Select Security Tool process from the list.
See if you can locate any unfamiliar processes such as numerical processes
press "Delete" button to end the process.
*4. Close Process Explorer.

If you do not find any processes,

Download to your desktop Malwarebyte.

https://ccm.net/downloads/security-and-maintenance/4621-malwarebytes-anti-malware/

Once on your desktop, we must still outwit the virus.

Right click on the MBAM icon and click on rename. Rename it kioskea.exe.

Install Malwarebyte and launch it. From the second tab, update it.

Ensure to close all Windows.

Pretty please, request a FULL system scan which should take more than hour. Once the scan is finish, delete all of item that were found.

Good luck
0