Security Tool Descriptions:
Security Tool is the rogue anti-spyware program, created to look like a real parasite remover. However, only its name sounds impressive but there is nothing like that in the application itself. The parasite gets into your computer through different Trojans and you aren’t even able to notice that. One more way for Security Tool to enter your system is download it through the browser hijacker S i t e s e c u r i t y t e s t.c o m.
As soon as you install Security Tool on your machine, the following annoying and nerve-racking things start to flood it. Users start getting popups as well as fake system notifications which claim that there are a list of threats found on your machine. In addition, Security Tool pretends to scan your computer. But the simulated threats can be removed only if you purchase the program.
All in all, these are not the only features that make Internet users infected by Security Tool start worrying. The application will also decrease the performance of your system, block certain websites, and won’t let some applications to run. Therefore, we advise you not to install Security Tool on you computers. If it has already sneaked in, remove it as soon as possible. If you want to remove Security Tool manually, we provide the instructions below. You can also do it automatically bu downloading spyware detection utility. Good luck!
Remove the rogueware as soon as possible.
Manual Security Tool Removal Instructions:
Stop These Security Tool Processes:
(Learn how to do this)
Security Tool.exe
uninstall.exe
4946550101.exe
Find and Delete These Security Tool Files:
(Learn how to do this)
%System Root%\Samples
%User Profile%\Local Settings\Temp
%Documents and Settings%\All Users\Start Menu\Programs\SecurityTool
%Documents and Settings%\All Users\Application Data\SecurityTool
%UserProfile%\Start Menu\Programs\Security Tool.lnk
%UserProfile%\Application Data\4946550101\4946550101.bat
%UserProfile%\Application Data\4946550101\4946550101.cfg
%UserProfile%\Application Data\4946550101\4946550101.exe
%UserProfile%\Application Data\4946550101
%UserProfile%\Desktop\Security Tool.lnk
%Program Files%\SecurityTool
Remove These Security Tool Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “SecurityToolâ€
HKEY_CURRENT_USER\Software\Vista Antivirus 2010
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SecurityTool
HKEY_LOCAL_MACHINE\SOFTWARE\SecurityTool
77DC0B63-ff35-4ba9-8BE8-aa9EB676FA02
7897A556-0E82-49F4-8C80-D0983CBF0352
7F23592B-8F2C-4C08-83A8-BBE01BF9CC64
a791a998-ae9a-42cb-b833-45279b64dd30
AF4DA69B-E1D6-469A-855B-6445294857D4
After hrs of trying to get this f’n virus off, I used Eswar info posted above. Worked in no time. Thanks!!
The easiest way I found to get this problem solved was to open the Windows Task Manager (ctrl+alt+del)
Then click on processes. The thing you want to look for is an 8 digit number followed by .exe
Then Right click that and go to ‘open file location’
When the file location pops up it should have that shield from the security tool logo. (if you don’t see that you didn’t select the right process….go back to the task manager and search for the correct one)
If you see that shield go to the task manager and end that 8 digit #.exe process.
Once you did that simply go back to that open file location and right click the shield and select delete. Also delete the folder that was in.
Then your computer should go back to normal.
Stephen’s method for the win. This thing reared its ugly head on my sons laptop, and following Stephan’s method, it was removed in about 15 mins. Thanks alot, buddy!
To remove all you have to do is log in under guest or create another account malware is stored under user profile settings. Changing your user profile setting will allow you to run your software and do a full scan also before doing this delete windows temp file there is most likely a bad file in the folder windows will automatically create another clean temp folder
Please could someone kindly give me the instructions (simply) on how to restore the speed on my pc; it is very slow since I got rid of Security Tool…..
ALSO, PJ on 14 Feb, said he has XP, and pressed F8 for Safe mode. This “then gave (him) the option of running the computer in safe mode or restoring to an earlier date”. I have XP and this option does not appear for me, but only ‘Restore Last Known Good Configuration’, which does not help; how do I enter a specific date please?
Just used Stephen’s instructions from Dec 10, 2009 and they worked perfectly to get rid of Security Tool. I never did this before and it worked great. Thank you.
These instructions worked to a T. You took me to places in my computer I have never visited ! Thank you, Stephen.
I have followed the video online to remove this however once I get to the part where you open Application Data, the number is NOT in this folder, any ideas as to where else it may be?
I have Vista Business Sp2. Got this malware a few hours back. Couldn’t do anything, can’t find and of the files/ keys mentioned at the top of the page.
So I simply followed Eswar’s method and within minutes, it is gone.
Quote Eswar:
I have Vista Home Basic. This afternoon got infected with the Security tool scareware. To get rid of this fake program.
shutdown or power off your computer.
Power on
As the initial splash screen comes up keep hitting F8 repeatedly. This will bring up boot option screen
Choose run windows in Safe Mode using the arrow keys and hit enter.
Windows will start up in Safe Mode
Security Tool should not be starting up now in Safe mode.
Go to Programs>accessories>system restore
Restore windows to a date prior to the infection
Windows will be restored to an earlier date and will reboot itself up in normal mode without the stupid Security Tool scareware.
Took me 3 minutes to fix mine. Hope it helps.
On Windows XP, I was able to use Windows Defender to remove Security Tool program. I was unable to use any of the other programs that I downloaded because Security Tool prevented me from using any other .exe file. Windows defender was able to remove all traces of the program.
I could not open anything when I was infected by Security Tool. I had to go to the library to print out instructions. Luckily I found this site. I copied some of the comments here. I used a hybrid method and it worked. I did not have to go into safe mode.
1. Power on computer
2. Get Task Manager running ASAP so it’s running before Security Tool starts.
3. Find the 8 digit number with exe at the end. It was at the top of my list of processes on Task Manager.
4. End the process
5. Go to All Programs > Accessories > System tools >
Sorry. To finish my comment…
5. Go to All Programs > Accessories > System tools > System Restore.
6. Restore to a date and time before infected.
Some of us are intimidated to go into safe mode. This method worked without needing to. My pc was virtually useless before I found this site, so thank you!
Finally this piece of trash called Security Tool these advice really worked andthank you to this website for exsisting
everytime when I open my laptop it appears when I thought I destroyed it and guess what Too much advice makes me confused and I don’t know what to choose
I just wanted to spread the knowledge of how I got rid of it! Press F8 when computer is booting up to enter “safe mode with networking”. I searched all files including hidden for security tool. Once the results where up I deleted them then emptied the recycling bin. I hope this works for someone! That virus was ridiculous!
This just worked for me after I stupidly let it in when link scanner was turned off and it pretended to be a firefox update:
REBOOT
PRESS F8 and get into SAFE MODE
GET TO SYSTEM RESTORE and GO BACK TO BEFORE YOU GOT THE DANG THING. Luckily I knew just when and it was only 12 hours ago.
RESTORE only holds 4 days unless you pick out dates, so do it ASAP.
I have Vista Home Premium. Here is simple method without the need to go into safe mode derived from reading posts here. It’s a combination of Ryan’s Dec 15 (and others) suggestion to launch Task Manager and Eswar’s Apr 22 post.
Launch Task Manager ASAP upon startup so it is launched before Security Tool starts. End the Security Tool process. It’s a series of 8 numbers followed by exe. Now you can work in peace.
Go to All Programs > Accessories > System Tools > System Restore. Launch System Restore. Just follow the prompts. It automatically sets periodic restore points. I chose the day before my pc was infected and clicked on it. Rebooted infection free!
My infection was so severe I could do nothing. I went to my library and luckily found this site. I copy and pasted several suggestions to Word and printed them out. Some of us are intimidated when asked to work in Safe Mode, so hopefully this additional method helps. Thanks everyone!
Last night Security Tool attacked my computer. I tried a variety of suggestions (both manual and malware removal software), but nothing was working. Then I figured I would have to reformat my hard drive. But I decided to go into safe mode one more time to see if there was anything else i could try. So I rebooted and hit F8. One of the options I had was to open Windows with “Last Known Good Configuration”, so I tried that. And my computer rebooted without Security Tool popping up. It looks like that did the trick. Everything seems like it’s back to normal.
I tried to follow Stephen’s instructions but I am computer ignorant so I got lost in computer world. So I went to safe mode with networking then went to taskmaster and deleted the file to the recycle bin then downloaded super anti spymaster and let it do its thing. But security tool was still there. So I repeated taskmaster and downloaded windows defender and logged off. So far it seems to be working but I am worried that it will come back. Thanks to all the wonderful comments it really helped.
SYSTEM RESTORE SYSTEM RESTORE SYSTEM RESTORE!!!!!!!! YOU HAVE TO RESTART YOUR COMPUTER AND HIT F11 SYSTEM RESTORE RIGHT BEFORE IT BOOTS UP AND RESTORE THE SYSTEM TO A FEW DAYS PRIOR. I RESTORED MINE WITHIN 30 MIN OF GETTING THE VIRUS AND IT WORKED! THANK GOD FOR SYSTEM RESTORE
I just had a version where fixes were not working. Had same idea. Did a F8 boot and went to Sys Rest. Solved.
Thanks Mary. I did the same in safe mode. Restore back 2 days. Laptop back up and running no Security toll.
I found the file, deleted it, and restarted my computer. It wasn’t in the folder that you said it would be in.
does anyone know where the batch file (and name of it ) is so i can delete that as well?
yo guys…when i went into safemode i didnt know what to do..then i got an idea, i restored my comp. to five days earlier, it works perfect for me..(unless you have installed/downloaded any programs within that period of time) hope i was able to help
thanks Stephen
Ricky on the 2nd Feb nailed it. Well done sir.
if the processes have numbers like what you said like 6706429.exe that is the process which is security tool, that has happened to me and i got rid of ST by actually putting the ST file in my Avira Quarintine
A few other people have mentioned this and it works. I have fixed two laptops this way.
-Restart
-Press F8 before it boots up
-Open in safe mode
-Go to back up and restore
-Restore to a point before Security tool took over
-Once you get back in be sure you go re-install any security and windows updates.
So I too have been hit with this Nasty POS! Now, my mouse is completely disabled!! Even when I enter safe mode, my mouse is completely frozen! I can’t even log in!!! Can someone PLEASE help?!?!?? This is awful! I want to hurl my laptop at the wall! I have xp.
this really works good
think you mean… hkcu\software\microsoft\windows\currentversion\run\
it is not a security tool it is a *** tool….this tool have damaged my entire sys…the entire team of this tool should stop this type *** to sale…it is a criminal offence….
Hey, I knew there was a reason why I visited your website. Its because of great stuff like this. Thank you for the info. Look forward to more. See ya!
Thank you so much! I did the System Restore process as suggested and (fingers crossed) it’s worked so far!
Thanks again!
Stephens post from 12/9/09 works great!!! Thanks so much
Thank you so much – this information really helped.
I followed Stephens advice (Dec 10 2009). This seemed to work well for me. Cheers Stephen!
A couple of minor points that I did differently. My harmful #####.exe file was in the ‘Local’ folder of ‘AppData’. I was however not however permitted to delete the ‘Local’ folder, so instead just removed the #####.exe file.
Followed the ‘regedit’ instructions but initially found loads of files. To prevent this from happening, and to avoid irrecoverable removal of other registry files I would suggest checking the ‘match whole string only’ box. The offending file(s) will then be visible for you to delete and on your second search you will get the message ‘finished searching through the registry’
I repeated the ‘regedit’ search once PC had been rebooted succesfully in normal mode and did find another #####.exe file not identified in safe mode. Deleted this too.
All seems fine at the moment. I intend to restart several times and run a McAfee full scan – perhaps they have incorporated this virus into their detectable programs now!
I agree. I never had these problems on the mac.
I combined Stephen (Dec 10, 2009) and Ryan’s (Dec 15, 2009) advice and successfully removed this piece of SHITE malware from my computer. THANK YOU both for sharing your directions. Life savers! I’m still concerned with making sure all traces were removed. Has anyone experienced any problems post-removal?
I have Vista, removed security tool with windows defender thats it!
Thanks Ryan this was simple and works – you’re a star.
By Ryan on Dec 15, 2009 | Reply
Step 1 – Restart Your Computer
Step 2 – Before the security tools actually runs hit cntrl alt delete then start the task manager.
step 3 – end the process of the security tools the name is usually a number.
step 4 – once you stopped that from working go to the shortcut, right click open file location
step 5 – go to that file location and delete everything.
step 6 – empty your recycle bin
step 7 – restart your computer and should be fine
hope that helps
David….tried hitting Task Manager before virus runs, but can never action it in time!
Luck man, Gary…your Defender removed it. When I run my McAfee and windows scans, my computer shuts down half way through, to protect my computer!!
great job, this virus has been making my sister in law crazey(crazier), this is a real pain……..
I am glad to see someone kill this virus.
mk
In short you can just run the rkill file and then run malware scan followed by the deletion of security tool from app data.
i just got the virus last night. now that i realized that this crap went berserk, i seriously need to kill it. i have windows vistam and most of these guys have xp. help me…
Dave,
Thank you so much for sharing this user friendly version of getting rid of security tool.
It really worked and you saved me $129.00 that Att tech support was going to charge me.
Thanks again,
Pasha
THANK YOU THANK YOU THANK YOU STEPHEN!! I was going crazy and your directions were not only easy to follow, but WORKED!! I am so glad this thing is off my computer. Much appreciation your way!!
Marty W’s suggestion is fast and effective. Don’t waste your time with everything else, just follow his simple instructions!
it for window 7.
want to remove sequrity tool no download and no spyware is wanted
1. click folder option and do show hidden files
2. then start computer with safe mode if you don’t know just switch off pc direct and it show
safe mode
safe mode with nework
safemode with command promot
start window normal
click on safe mode
3. then open
my computer>>
local dick (c)>>
user>>
open your libery (not open public)>>
you see a hidden folder appsData>>
open it and you see squrity tool file>>
just delete it
you done.
start computer normal no sequrity tool is there…