System tool (also you can find it named System tool 2011, System Tool 2.20) is the fake antivirus which should be known for you if interested in fake anti-spywares because it hails from the same family as the “famous” Security Tool. These both programs are useless in detection and removal of any cyber threat because they are created for only stealing the money. It’s done by simply “finding” viruses and then aggressively asking the money for their removal. As you should have already realized, you should NEVER purchase System Tool because you will end up with more viruses on your PC. It has no real full version and it can not remove any viruses as it claims.
System Tool is spread by worms, trojans, drive-by downloads and faked freeware/shareware installs. There is a high chance to get this parasite if you install Adobe flash or reader updates from third party sources and not from makers website. Sometimes it is very hard to tell how you got System Tool installed on your machine as it may also come with some file downloads or be downloaded by other trojan infections. After Installation, this parasite starts acting classically and displays various alerts and popups trying to scare users into scanning PC and then paying for its full version. These alerts look like this :
System Tool Warning
Your PC is infected with dangerous viruses. Activate antivirus protection to prevent data loss and avoid the theft of your credit card details.
Click here to activate protection.
System Tool Warning
Intercepting programs that may compromise your private and harm your system have been detected on your PC.
Click here to remove them immediately with System Tool.
Security Monitor: WARNING!
Attention: System detected a potential hazard (TrojanSPM/LX) on your computer that may infect executable files. Your private information and PC safety is at risk. To get rid of unwanted spyware and keep your computer safe you need to update your current security software.
Click Yes to download official intrusion detection system (IDS software).
Warning: Your computer is infected
Windows has detected spyware infection!
Click this message to install the last update of Windows security software…
System Tool 2011 might also change your background to image that warns about infections :
Your’re in Danger!
Your Computer is infected with Spyware!
All you do with your computer is stored forever in your hard disk. When you visit sites, send emails… All your actions are logged. And it is impossible to remove them with standard tools. Your data is still available for forensics, and in some cases
For your boss, your friends, your wife, your children. Every site you or somebody or even something, like spyware, opened in your browsers, with all the images, and all the downloaded and maybe later removed movies or mp3 songs – ARE STILL THERE and could break your life!
Secure yourself right now!
Removal all spyware from your PC!
Additionally, it will block execution of some of the programs while executing them. You will get message like this :
Application cannot be executed. The file cmd.exe is infected.
Please activate your antivirus software.
All these warnings should be ignored because removal of some files reported by System Tool may damage your computer. Paying for System Tool will not solve any problems, but will result in giving away your Credit card details to rogues.If you have already paid for it, contact your credit card company to dispute the charges.
System Tool will block launching of legitimate processes and prevent one from visiting certain websites. This means that once you will try executing programs like task manager, command prompt or similar, you will get an SystemTool popup which will tell that program is infected and program will not launch. However, you can overcome that problem by renaming the executable to other names, as some of programs are allowed, or using safe mode. Additionally, usually you can launch task manager during login process to windows: System Tool launches at later stages and it will not stop programs already working.
As it must have been turned out, you should never pay for System Tool – it is a scam, and you will not get fully working version despite paying. It will only bombard you with tons of annoying system scanners, alerts and notifcation that will announce dangerous activity detected. Do NOT leave this parasite on PC: it is a sign of infection with trojans, which might download other parasites and compromiser the system further. Thus you have to remove SystemTool from PC and not ignore the popups. Follow the instructions bellow.
Special removal instructions for System Tool
To remove System Tool, you might need to overcome the malware protection from executing other files. You have several options for that :
1. Reboot, and while being logged in, press ctrl+shift+esc to launch task manger. As long as system tool is not active, you will be able to start task manager and stop its process after launch.
2. Try running Msconfig and disabling all unclear startup entries from these locations mentioned in this System Tool removal guide. Reboot
3. Try renaming files you want to launch to xxxx.com or similar names. Typically, most of parasites block only .exe files
4. Try this key WNDS-S0DF5-GS5E0-FG14S-2DF8G to disable the malware (check the window where it asks for license )
Some other keys (recovered by panda labs)
Even if you stop seeing System Tool symptoms, the infection still might be here, so I recommend scanning with spyhunter and deleting all the trojan downloaders and other malware that allowed System Tool infection to infect your PC. Having a good Anti-Malware tool like full versions of spyhunter or Malwarebytes Anti-Malware prevent majority of parasites like System Tool.
Automatic System Tool removal tools
Important Note: Although it is possible to manually remove System Tool, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend using Reimage or other tools found on 2-viruses.com.