Virus on my moms laptop. - Off-topic

Alright. She has some weird program on there called "System Tools 2011" and I don't know how it got there. Right when you boot up, a minute into it, it pops up the app and a wallpapers and blocks you from A LOT of things. You can't back up files to a USB, can't access Control Panel, etc... when I did get into the Control Panel, it won't allow me to uninstall the app because it doesn't show up and there is no way to uninstall it. Is there anything I can do to get rid of it? Any ideas? Let me know please. Thanks.

Original Android <3ers! said:
Alright. She has some weird program on there called "System Tools 2011" and I don't know how it got there. Right when you boot up, a minute into it, it pops up the app and a wallpapers and blocks you from A LOT of things. You can't back up files to a USB, can't access Control Panel, etc... when I did get into the Control Panel, it won't allow me to uninstall the app because it doesn't show up and there is no way to uninstall it. Is there anything I can do to get rid of it? Any ideas? Let me know please. Thanks.
Click to expand...
Click to collapse
Download RKill and run it!!! search Google about RKill. And stop turning it off and on...that will damage your computer to the point of no return
I've removed that virus from two computers already but read above!!!
Nice to see you around little one

Or you can google the name and find the registry keys for said virus and remove them. DOne that at work manny times and saves the time of backup and format

I have had to literally roll back my computer to an earlier date to get rid of the annoying pop ups and remove viruses like that. And yes, I got them from torrents.

As an IT Tech for many years those Viruses are a pain to deal with. I use a paid AV Boot CD called Avast BART or you can try using TRK (Trinity Rescue Kit) Bootable CD AV's work best as they are seperate from the OS. Try TRK just google it and burn it to a disk. Best of luck!

Malwarebytes/Spybot/NOD32 cocktail also does a pretty decent job at getting rid of that crap. Just remember to turn off System Restore or your viruses will be back upon booting your computer.

MalwareBytes anti-malware is great but some viruses are so good that they will block any known anti-virus program from executing.

What are the Symptoms of System Tool 2011 Infection?
It will modify Windows Registry and add the following entries:
HKEY_CURRENT_USER\Software\System Tool 2011
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “5648541024″
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[random]”
The threat will drop the following malicious files:
%AppData%\[random]\
%AppData%\5648541024
%AppData%\5648541024\5648541024.bat
%AppData%\5648541024\5648541024.cfg
%AppData%\5648541024\5648541024.exe
%UserProfile%\Desktop\System Tool 2011.lnk
%UserProfile%\Start Menu\Programs\System Tool 2011.lnk
How to Remove System Tool 2011 Manually
1. Restart your computer in SafeMode
- Press F8 on keyboard as soon as you turn on the computer
- Select SafeMode to start the computer loading only minimal resources
2. Delete Windows registry entries the malware created. It is important to BACKUP YOUR REGISTRY FIRST.
- On Windows Start Menu, Click Start > Run
- Type in the field, regedit
- Find registry entries mentioned above and delete if necessary
3. Files related to System Tool 2011 must be deleted:
- Browse and delete malicious files detected above.
- Some files cannot be deleted instantly. Press Ctrl+Alt+Del to open Windows Task Manager, look for any virus-related files mentioned on this page and highlight it, click End Process. Try to delete the file once more.
4. Run Antivirus Program
- You must be connected to Internet to be able to update your anti-virus program. This is needed to have the latest database available and detect newer threats.
- Thoroughly scan the computer and clean or delete all detected threats.

+1 for rkill > malwarebyte
if rkill doesn't work at the first time, keep running it until is says successful

Dude don't watch porn on your moms laptop! Number 1 rule

#1 way to get rid of viruses on your computer...
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}

Backup personal data, format the HDD, reinstall the OS, no viruses.

Related

Install APKs on your device by double clicking on your PC with installAPK [Beta 1]

Android is really great, but there a few points of Android ownership that are a bit of a pain... one of which is installing APKs on your device. Enter installAPK!
The current release is Beta 1 - usual Beta caveats apply!
What it does
installAPK is currently for Windows only. After installation on your machine, you can double click APK files to install them on your USB attached android device. Simple as that!
Where do I get it?
Download the install EXE and USB drivers if required here at MoDaCo - http://shortun.com/3o
Anything else I should know?
This is the first Beta, tested on XP, Vista and Windows 7, but please post here with any issues!
P
PS Android SDK download / install is NOT required!
PPS More APK related fun coming from me soon!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Wow, this has a LOT of potential, it'll make reinstalling apps after a wipe a breeze. Thanks!
Related - repack APKs to EXE:
http://forum.xda-developers.com/showthread.php?p=3878743#post3878743
P
i dont think the link is working...sounds like a great idea
Links fine here...
P
Hi paul
nice to see you on here
your CAB file to phone app was great
will test this next time I need to install an app to install to my G1 from my pc
Regards
David
OMFG! You rock! <3
Nothing magic here...
It just runs 'adb install whatever.apk'.
Just as easy to simply associate "apk" files with the command "adb install".
Of course!
It does mean you don't have to manually download the SDK and grab ADB however... and just running this setup is easier than doing that, installing and associating.
It also puts a nicer GUI on it, a GUI that will be updated as development progresses, things like 'Save a copy of the APK on your storage card?' and much much more.
P
Wow will have to try it later
Might I suggest a Start Menu shortcut option, I created mine manually, but it'd be nice to leave the option to the user in the install process.
A start menu shortcut to do what?
P
To launch the program. I had to browse into the Program Files folder to launch it, and figured if it just automatically adds to the start menu, it's a tad bit easier.
Great app, but if your going to install a lot of apps after a wipe I find it better to setup a .bat file and just run it. After all the Hero roms I have installed it makes it 20 times faster. Here is the example on my batch file.
Code:
adb install apps\art.wild.gdocs.apk
adb install apps\at.abraxas.mountusb.apk
adb install apps\com.a0soft.gphone.aTrackDog.apk
adb install apps\com.androidapps.widget.battery.apk
adb install apps\com.ap.AppDock.apk
TimSykes said:
Great app, but if your going to install a lot of apps after a wipe I find it better to setup a .bat file and just run it. After all the Hero roms I have installed it makes it 20 times faster. Here is the example on my batch file.
Code:
adb install apps\art.wild.gdocs.apk
adb install apps\at.abraxas.mountusb.apk
adb install apps\com.a0soft.gphone.aTrackDog.apk
adb install apps\com.androidapps.widget.battery.apk
adb install apps\com.ap.AppDock.apk
Click to expand...
Click to collapse
This idea intrigues me... are you running the .bat file from the tools folder or have you set up an environmental variable?
yeah I have the batch file in mt tools folder, and a apps folder that hold all my .apk in that tools folder as well.
TimSykes said:
yeah I have the batch file in mt tools folder, and a apps folder that hold all my .apk in that tools folder as well.
Click to expand...
Click to collapse
Wonderful, thanks!
glad to help
it would be nice if it had option of reinstalling when app is installed (adb install -r)
Huge thanks goes to the author of this. Speaking for the masses, I really want to thank you for making this.

Droid explorer (sideload without root!)

I'm surprised I have never seen this program mentioned on here before and this will actually install apks without root or sideloading enabled! Even though it says you need root you don't for alot of operations!
http://de.codeplex.com/ get it here
Here are some of the things that you can do with this and its free!
Features:
Multiple Device Support
Copy and auto-apply update.zip
Copy local files to device
Auto detection of connected/disconnected device
APK file icon and extended information
Device command shell window
Reboot device
Reboot device in to recovery mode
Open files for viewing / execution locally with the default file type executable
Drag & Drop file copy from Explorer
Flash Recovery Image
Package Manager (Install & Uninstall)
No need to mount SD card to access files from computer
Access files in other directories besides SD card
Copy files from device to local clipboard
Paste files from local clipboard to device
Open files on local machine
Display open with dialog to specify what to open a file with
Right click APK and Uninstall
Right click APK and Install
Delete files from device
Take a Screen Shot (landscape or portrait)
Plugins can register as a component to open files
Open from within Computer
Should now work with more ROMs as long as they are Rooted and have busybox
Device "Friendly Name" instead of device serial number.
Android Screencast Plugin - Control your android device with your mouse and keyboard
Install/Uninstall APK files right from explorer
Standalone plugin runner (will mainly be used for windows 7 jump lists and the apk installer but can be used to run any plugin.
Better Hero Support
Backup the "Google Experience" applications and creates an update.zip containing the applications
Use an existing Android SDK with Droid Explorer, or let Droid Explorer set up the SDK for you.
I've been using this prog for a while now and think its an absolute necessity to have on my pc. Hope you enjoy this!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
[/URL]
[/IMG]
Nice and useful, but this should be under themes and apps, not development.
Stock Bell Atrix on Rogers with updated radio, Rooted, deodexed, Honeycomb theme, and frozen!
D_one said:
Nice and useful, but this should be under themes and apps, not development.
Stock Bell Atrix on Rogers with updated radio, Rooted, deodexed, Honeycomb theme, and frozen!
Click to expand...
Click to collapse
I see your point but this can definetly be used for developmental purposes and its not an app for android its a windows app.
Gutterball said:
I see your point but this can definetly be used for developmental purposes and its not an app for android its a windows app.
Click to expand...
Click to collapse
not really sure what you can develop with it.
dLo GSR said:
not really sure what you can develop with it.
Click to expand...
Click to collapse
Just the fact that you can sideload without root or having sideloading enabled. Is a development really. Just for example with this you can actually push the gingerbreak.apk to your phone without having sideloading enabled to obtain root.
you can do that with adb too
and the sideload wonder machine
thanks alot...I have root access but don't have sideload, because I do everthing with adb oO

How to remove android and factory reset

Hello, I have looked all over for this solution
I have cm9 currently on the TP but wanted to restore it to its original state and then put android on it again. Any help?
ACMEUninstaller. Look here: http://forum.xda-developers.com/showthread.php?t=2147284
As stated above, and pay particular attention to the part I have copied below it will make it a lot easier.
New* Easy Way DOS Batch files (Optional) If you are unfamiliar with DOS, then you can now use a Batch file to complete the install or uninstall procedure from your PC. A Batch file(.bat) is a type of script, which contains a series of text commands. In this case it will run the above ACMEIinstaller3/ACMEUninstaller commands in DOS on your PC, just double click the file to run it. Gradular has created two files for use that you can Download here: installcm and removecm.
-To use these files make sure you have followed the instructions up to 'Step 4) Installation, On the PC'. Make sure your HP TouchPad is in WebOS Recovery mode and is connected via the USB cable. Simply download and run the files installcmorremovecm. to complete the complete the procedure.
sstar said:
As stated above, and pay particular attention to the part I have copied below it will make it a lot easier.
New* Easy Way DOS Batch files (Optional) If you are unfamiliar with DOS, then you can now use a Batch file to complete the install or uninstall procedure from your PC. A Batch file(.bat) is a type of script, which contains a series of text commands. In this case it will run the above ACMEIinstaller3/ACMEUninstaller commands in DOS on your PC, just double click the file to run it. Gradular has created two files for use that you can Download here: installcm and removecm.
-To use these files make sure you have followed the instructions up to 'Step 4) Installation, On the PC'. Make sure your HP TouchPad is in WebOS Recovery mode and is connected via the USB cable. Simply download and run the files installcmorremovecm. to complete the complete the procedure.
Click to expand...
Click to collapse
I tried this and clicked on the program but when it says will remove android it closes and nothing happens
mcdaking84 said:
I tried this and clicked on the program but when it says will remove android it closes and nothing happens
Click to expand...
Click to collapse
Have you dl acmeuninstaller and put in your palm, inc folder?
sstar said:
Have you dl acmeuninstaller and put in your palm, inc folder?
Click to expand...
Click to collapse
yep and I tried doing it to through dos commands and it could not find the acme file
mcdaking84 said:
yep and I tried doing it to through dos commands and it could not find the acme file
Click to expand...
Click to collapse
I've tested this myself so I know it works, would you mind taking a screen shot on your pc showing the acmeuninstaller in the palm, inc folder just in case I can see see anything wrong.
sstar said:
I've tested this myself so I know it works, would you mind taking a screen shot on your pc showing the acmeuninstaller in the palm, inc folder just in case I can see see anything wrong.
Click to expand...
Click to collapse
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
thanks for your help
OK mine doesn't have. md5 at the end and is 8.62mb try my backup here https://www.box.com/shared/7864f020cef48470ea91
sstar said:
OK mine doesn't have. md5 at the end and is 8.62mb try my backup here https://www.box.com/shared/7864f020cef48470ea91
Click to expand...
Click to collapse
worked great. thanks a ton

[GUIDE] How to install Ubuntu to VM and More

This is a guide of easy installing Ubuntu on a second drive (not partitioning) or a pen drive which you can carry around your system.​​
First of all we need VmWare : VMware Workstation 9
Ubuntu CD: Ubuntu Download
First we download VmWare and Ubuntu CD (I used 12.10)…
After successful setup of VmWare create a new VM.
Using New VM Wizard we choose Custom (Advanced).
Hardware Compability --> Vmware 9.0
We select the Ubuntu CD to the Installer Disc Image File.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Enter desired username and password
Give VM a name and select the place for config files
(as we will use physical disk to install,
only a small amount of data will written to this folder)
Select the number of cores you will spend for this VM
Select the Memory you will spend for this VM
Select the Network type you desire
Select I/O Controller Type
When in Select Disk screen Select Use a physical disk (for advanced users).
In Vista/7/8 Admin Rights needed for this operation
Select the Second Drive (separate disk or Usb stick) and select Use Entire Disk
ATTENTION: YOU WILL LOOSE ALL THE INFORMATION IN THIS PARTITION SO BE CAREFUL WHEN SELECTING. AND DON’T BLAME ME FOR LOOSING YOUR PRECIOUS DATA.
Just hit next
Select Customize Hardware. Remove Floppy and close. Hit Finish
When VM restarts it will repartition your drive removing old one and creating Ubuntu partitions
Wait for Ubuntu Setup to copy system Files
You can enter your system with the username and password you have selected while creating VM.
If no problem occurs you can now browse your favorite forum.
And if you install your Ubuntu to a Pen Drive, you can use it on any computer by selecting your pen drive as Primary Boot Drive from BIOS.
​
Multiboot Selection from Windows
There is a magic tool called EasyBCD which we can take control of the Windows Boot menu easily.
We can easily download a non commercial one from its site: EasyBCD Download
After setup, open the program. Select Add New Entry from left menu. And on the right panel select Linux/BSD.
Select:
Type: GRUB 2
Name: Whatever you want
Drive: Automatically locate and load
Click Add Entry. And all done now we have multi boot menu which can load windows or ubuntu on choice.
If you install Ubuntu on a Pen Drive or a removable drive, dont forget to plugin before starting your computer.
Reserved for something but cant remember now....
This would be better suited in another, more general forum, considering it's not related to Android devices.
I also don't think such an easy thing needs yet another guide (plenty of tutorials all over the Internet), but that's just my opinion. Good effort nevertheless.
Totally agree with GermainZ
Same Opinion
Ask Moderators to move it in General Section
iamareebjamal said:
Totally agree with GermainZ
Same Opinion
Ask Moderators to move it in General Section
Click to expand...
Click to collapse
Ok send a PM to one of the moderator. is it enough?
I will be needing this! Thanks alot!

Is my XZ3 Hacked?

Hi everyone,
I installed infected flashtool app wa strying to flash my xz3, usb debugging was activated when windows detected a malware from the computer during flashtool setup while my phone was plugged, is there any possibillity to be hacked? and if so, is wipping data and factory reset would solve the problem? thank you all.
Rvn.
I believe so. If not we can solve anything here lol
Of course it's possible
ID the issue. Isolate your backup data drives from both machines until proven clean.
A factory reset won't get rid of flashed malware... a hacker's wet dream.
If so you need reflash with a clean rom copy.
Pachacouti said:
I believe so. If not we can solve anything here lol
Click to expand...
Click to collapse
Lol, after some pain and suffering...
Lol, but In android even if usb debugging activated you need to approve the access to it whenever a computer going to use it, a window pop up on your phone to either approve or deny which it didn't appear at all. So I'm safe I think?
ravncool said:
Lol, but In android even if usb debugging activated you need to approve the access to it whenever a computer going to use it, a window pop up on your phone to either approve or deny which it didn't appear at all. So I'm safe I think?
Click to expand...
Click to collapse
Well it isn't going to kill you, so you are safe.
As for the affected device(s)... they are scared.
Trust Windows security?
I mean, deny/allow window appears on phone not windows, I didn't allow because it didn't appear at all lol, sorry for my English
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I didn't get this at all, so computer got no access through USB debugging then phone is safe right loool
Dont feel safe JUST yet...
If the adb window for granting keys does not show, that could be a warning sign, that adb MAY still be hacked (if hacked at all)
disconnect fone, go into developer options. look for revoke permissions, then plug fone back in, tell me if you see the window again?
Sometimes it goes into the background and you cant see it in time so it shuts you out...
If all goes well, on pc,
adb shell (should give grant window in fone)
settings put secure install_non_market_apps 1
settings put global adb_enabled 1
settings put global setup_wizard_has_run 1
settings put secure user_setup_complete 1
settings put global device_provisioned 1
settings put global development_settings_enabled 1
then even after a flash, if you never flashed your bootloader, you wont need to continually grant keys
Thanks for your time and answers brother..
But to make it more clear, I wasn't at a point where it had to show up (ADB window on phone), I just opened the app flashtool, I have seen it getting online stuff from GitHub and getting ready, after that it started detecting the phone after Malware Warning appeared on windows, at this time I just removed the phone and it wasn't into any mode. Only usb debugging was active.
I hope I make it more clear, and waiting your answers. Thanks a lot.
You've a virus in your pc, so fone wont allow you to connect until you remove virus ?
Deal with the virus first, then we'll probably find out your fone is fine...
Flashtool MAY be seen as a virus in windows so you may need to disable some security settings, it may not be a virus at all :O
Edit, best doing flashtool offline btw
I love you man, really I appreciate your time and help, now it's fine. I understand. Thanks a lot guys.

Categories

Resources