My PC, which has McAfee installed and fully up-to-date, became infected with SYSTEM TOOLS 2011. At first it just displayed annoying alarm messages which try to get you to buy fake adware/anti-virus software. But now the PC will not boot-up at all. The initial Dell start up page is displayed (the one with F2 and F12 in the top right corner), but then the screen goes completely blank and stays that way. Exactly the same happens when I start in safe mode. I am completely stuck!!
khubani
Distinguished
- Mar 22, 2010
- 596
- 0
- 19,010
Hi,
If you are unable to boot into Windows, you may have to play into the System Tools. Let it scan your computer, then it will allow you to boot into your PC. When it does, try to access the internet. Go download Microsoft Security Essentials available @ www.Microsoft.com.
If you are unable to access the internet, goto another computer, download the executable, store onto a flash drive/external hard drive, and transfer it to your infected PC. Install it, scan it, remove the virus. Run a FULL, THOROUGH SCAN.
Run through this article and follow the four-step removal process. http://www.spywareremove.com/removeSystemTool2011.html
If you are unable to boot into Windows, you may have to play into the System Tools. Let it scan your computer, then it will allow you to boot into your PC. When it does, try to access the internet. Go download Microsoft Security Essentials available @ www.Microsoft.com.
If you are unable to access the internet, goto another computer, download the executable, store onto a flash drive/external hard drive, and transfer it to your infected PC. Install it, scan it, remove the virus. Run a FULL, THOROUGH SCAN.
Run through this article and follow the four-step removal process. http://www.spywareremove.com/removeSystemTool2011.html
Thanks for the suggestion Khubani. However, I can't do as you say because all that happens when I power up is that the Dell start up screen appears in the normal way, until the white bar has extended from left to right, and then the screen goes completely blank and stays that way. This happens in both normal and safe mode. I need to find out how to get past this problem first?
tigsounds
Splendid
- May 29, 2010
- 3,922
- 1
- 23,460
Pull the drive and connect to another machine, as extra data drive. Use a real virus scanner on it, clean it up, put it back and try for safe mode again.
If safe mode is still ng, get the XP CD and do a repair.
Then reinstall all updates, hot fixes, Net.Framework and DirectX again.
Wasn't Mc Afee fun? (to understand that comment, look at my comment HERE.)
If safe mode is still ng, get the XP CD and do a repair.
Then reinstall all updates, hot fixes, Net.Framework and DirectX again.
Wasn't Mc Afee fun? (to understand that comment, look at my comment HERE.)
Saga Lout
Retired Mod
- Mar 31, 2010
- 24,042
- 310
- 69,740
[I hate to disagree but I've removed six of these threats in the last two weeks and needed to run ComboFix to make sure I got everything out. At the blank screen, try Control Shift and Escape together to see if that brings up the Task manager. If it does, you might be able to end the Process A20295.
If that fails, press your Windows key and R together to bring up a Run box. Use that to browse to Documents and Settings and look for a file called A20295.EXE and delete it. Restart into Safe Mode and run a full scan of MalwareBytes from http://www.malwarebytes.com. Post the log of that scan back here for further steps you need to take.
If that fails, press your Windows key and R together to bring up a Run box. Use that to browse to Documents and Settings and look for a file called A20295.EXE and delete it. Restart into Safe Mode and run a full scan of MalwareBytes from http://www.malwarebytes.com. Post the log of that scan back here for further steps you need to take.
Saga Lout
Retired Mod
- Mar 31, 2010
- 24,042
- 310
- 69,740
It sounds to me that the system is running but not displaying his Desktop. Startin gTask Manager gives you the chance to go to Processes and from the File menu>New Task, type explorer.exe and bring thr Desktop back up.
System Tools like all the other crook-spread con-tricks, makes its living out of allowing people on to the Net. There's no money in it for them if their code causes systems to crash comletely.
Saga Lout
Retired Mod
- Mar 31, 2010
- 24,042
- 310
- 69,740
Control Alt and Delete does cause that restart and that's why Control Shift and Escape is better. Sounds like there's life in there anyway - have you tried booting into Safe Mode? Did you download Aford10's suggestion of the AVG Rescue Disk?
Finally, do you have your own named User Account in there or do you log in as Adminstrator?
tigsounds
Splendid
- May 29, 2010
- 3,922
- 1
- 23,460
If you have a way to copy a file into your machine...
The system sounds like it's loading properly until the black freeze hits.
If lsass.exe is bad for any reason, everything stops there. Sometimes a blinking cursor will be present in the top left corner, but not always.
Back to can you copy a file into your drive....
I posted a good lsass.exe at 4shared.com you can try to copy into your machine.
It goes in the Windows/system32 folder.
My file is an exe file (red flags go up everywhere).
So, details are in order....
It is 13,313 bytes in size.
Version 5.1.2600.5512
It was not replaced by service pack 3 so if you are running SP2 it will still work.
If interested, get it by clicking HERE
If you can copy a file into your machine, you should be able to copy one out as well. Copy out yours first and store it so it can be put back someday if need (or it ends up not being bad).
The system sounds like it's loading properly until the black freeze hits.
If lsass.exe is bad for any reason, everything stops there. Sometimes a blinking cursor will be present in the top left corner, but not always.
Back to can you copy a file into your drive....
I posted a good lsass.exe at 4shared.com you can try to copy into your machine.
It goes in the Windows/system32 folder.
My file is an exe file (red flags go up everywhere).
So, details are in order....
It is 13,313 bytes in size.
Version 5.1.2600.5512
It was not replaced by service pack 3 so if you are running SP2 it will still work.
If interested, get it by clicking HERE
If you can copy a file into your machine, you should be able to copy one out as well. Copy out yours first and store it so it can be put back someday if need (or it ends up not being bad).
It is not possible to copy a file into the machine so I couldn't try the Isass.exe
I created the AVG rescue disc but it would not run on the infectred/faulty PC.
I had some success with the suggestion of taking the HD out and running it as an auxiliary drive on another machine. It was recognisable as drive E so I cleaned it up with an antivirus programme and re-installed it in the original machine. Unfortunately, it is exactly as it was beforehand - a blank screen after the initial DELL screen.
I have concluded that the drive must have gone faulty shortly after the SYSTEM TOOLS virus attacked it. This gave the impression that the virus was causing the blank screen etc. but in actual fact, the drive is faulty and the virus attack was a complete red herring. I have installed a spare HD now and will live with the fact that some recent files were lost.
Incidently, I take on board the critism of McAfee, but which anti-malware programme would you recommend instead?
I created the AVG rescue disc but it would not run on the infectred/faulty PC.
I had some success with the suggestion of taking the HD out and running it as an auxiliary drive on another machine. It was recognisable as drive E so I cleaned it up with an antivirus programme and re-installed it in the original machine. Unfortunately, it is exactly as it was beforehand - a blank screen after the initial DELL screen.
I have concluded that the drive must have gone faulty shortly after the SYSTEM TOOLS virus attacked it. This gave the impression that the virus was causing the blank screen etc. but in actual fact, the drive is faulty and the virus attack was a complete red herring. I have installed a spare HD now and will live with the fact that some recent files were lost.
Incidently, I take on board the critism of McAfee, but which anti-malware programme would you recommend instead?
tigsounds
Splendid
- May 29, 2010
- 3,922
- 1
- 23,460
TRENDING THREADS
-
Question Using cloning software for a dying HDD which shows only 10% health ?- Started by Mashuumatics
- Replies: 1
-
Question Wifi card speed fluctuating on my Lenovo Ideapad pro 5 16APH8- Started by sirdariush
- Replies: 6
-
News Windows 11 will reportedly display a watermark if your PC does not support AI requirements- Started by Admin
- Replies: 24
-
Question Recovering an old version of a Notepad file in Windows 10 ?- Started by MC72
- Replies: 2
-
Facebook
Twitter
Instagram