RCI Design and Development

Providing affordable solutions for small businesses that need a powerful presence on the Internet

“System Tool 2011″ or “PC Tool 2011″ Removal

Posted By admin on January 27, 2011

A suicide gun for dummies.    The malware that goes by the name “System Tool 2011″, “PC Tool 2010″ or some variation of that title or year will not harm your computer in any way, however it is extremely annoying and will prevent you from using your computer until it is removed. Malware is a short term for malicious software and in this case can be viewed as Adware on steroids. On an infected computer this software will use a series of pop up windows that appear to be running a system scan for viruses and then will display some type of warning that viruses have been discovered on your machine. These pop up windows are in fact not real and no scan has been preformed on your computer.

    The software will also prevent any execute file with the “.exe” file extension from being launched. This will prevent you from starting any program on your computer including any virus programs you may have. You will not be able to reboot your machine with the “Control, Alt, Delete” hot keys that bring up the Task Manager because it is started with an “.exe” file. In fact the only program that can be started is the Internet Explorer.

    At some point a pop up window will inform you to use the Internet Explorer to log on to the internet and provide you with an address that you can go to that will accept your credit card to pay for a virus removal program that will fix your computer. Getting you to use your credit card at the fake web site is the only function of this malware.

    The trojan software consist of one folder and a couple of small files located inside the folder. You can not delete the folder or files when Windows is running because they are activated at start up. To delete the files turn your computer off. When you turn your computer back on tap the F8 key to bring up the alternate start up menu screen for a safe mode boot. From there choose the option for “Safe Mode with Networking”. Navigate to the Explorer, the “my computer” icon located either on the desktop or in the Start menu. On the “C” drive drill down to the Application Data folder on this path:        C:\Documents and Settings\All Users\Application Data\
Look for a folder with a name that is made up of random letters and may also include numbers. Example: …\Application Data\fluijp01803. Inside the folder the file will probably have the same name, i.e. fluijp01803.exe. Delete all files in the folder and then delete the folder also. Normally there will be one image file (gif or jpg) plus one or two other files with names similar to the folder name. The image file is usually for a desktop short cut icon. Deleting it here should also remove it from the desktop. That’s it, just reboot and start Windows as normal.


Comments

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Switch to our mobile site