Last week my computer was invaded with virus

March 5, 2011 at 13:39:15
Specs: Windows Vista
Last week my Computet was invaded by a virus called "Systems Tool 2011." It virtually captured my computer by planting a big red sign on my screen, "WARNING" YOUR COMPTER IS INFECTED WITH A VIRUS." It refused to let me into Control Panel, the Internet, McAfee, or anywhere else I wanted to go to try and fix the problem. However, it did allow me to connect to the internet, through their site to pay $59.95 to fix the problem. Someone told me it's scam and even though my computer was repaired by Systems Tool 2011, they are still in my files somewhere ready to strike again. What should I do?

See More: Last week my computer was invaded with virus

Report •

March 5, 2011 at 14:57:57
This may help... it infects along similar lines:

You should learn to use Google... took 3 minutes to find this.

Report •

March 5, 2011 at 15:10:24
Sounds like you should contact the police. More than a scam a real crime.

If they fail to help or any other law enforcement then get your original xp disks out and reload the whole thing. Then update the service packs and get microsoft security essentials or another quality paid security suite before you use any usb or internet. Then scan all your other usb media and burned cd's.

"The era of big government is over," said Clinton 1996

Report •

March 5, 2011 at 15:34:21
Sadly those and similar pop up all over the place, so if you get one again just shut down the computer and don't touch the popup with the mouse (even the close X will start it).

MalwareBytes freebie is good at fixing these. If it won't download and run then get it on another computer and put it on yours using a flash drive.

Note that if MalwareByes won't run because exe files have been blocked then you can change the file extension of either the download itself or the MalwareBytes program to .cmd or .bat

It is best to run MalwareBytes (or any other fixer) in Safe Mode.

Please come back and let us know how you got on.

Report •

Related Solutions

March 5, 2011 at 15:39:27
It is a total fake/scam, hope you checked they have not cleaned out your Bank Account, now that they have your credit/debit card details.

Yes it will re-appear in the future with a different issue, next time probably registry errors.

You should get a qualified PCRepairer to clean the crap out, but after 2 weeks it may be beyond redemption!


What is System Tool 2011?
System Tool 2011 with an alias SystemTool is a virus made to look like a legitimate anti-virus program but in reality it was a piece of fake application or commonly known as rogue security program. It will arrived on computers as a recommended virus removal tool from a fake online virus scanners. Instead of getting rid of computer threats, victims will experienced a more disturb computer system. A continuous pop-up alerts will be displayed accompanied by a promotion to get the licensed version of System Tool 2011. Some Windows functionalities will be rendered unusable like task manager, registry editor and control panel. This was intended to prevent users from removing System Tool 2011 manually.

When finding it hard to remove System Tool 2011, some will resort into purchasing the registered version of this useless software. By doing so, victims will be redirected to an online payment processing web site where credit card information will be requested. Providing this details may cause excessive charges to credit card for other unknown transactions. Instead of obtaining this potentially unwanted program. You might as well get a free version of an effective anti-malware program that was known for its ability to take out malicious programs from the infected computer.

Report •

March 5, 2011 at 16:24:29
I am in the process of cleaning the same infection from a system right now. First never provide your credit card to one of these links. Since you have the first thing to do is contact your bank and you will be changing your card number and possibly the checking account also.

Besides MalwareBytes another utility to try first is RKill. It can disable the basic problem and then run MalwareBytes starting in SAFE mode (must be done on all user accounts) and re-running until the results are clean, then boot to normal mode and repeat the process until the tests are clean in Normal mode.

The reason cleaning must be done on every account is that the virus will infect each through the registry, typically the virus also infects all the restore points so that if things look clean you will reinfect the system by doing a restore. Part of the cleaning process is to disable restore which removes all restore points and then re-enable it after the cleaning process is complete.


Report •

Ask Question