I recently used MalwareBytes to clean out an infection of System Tool 2011 / “Rogue.Spyware”, as well as sysreserve.ini / “Malware.Trace”. I understand what System Tool 2011 does. What does sysreserve.ini do? I’m finding a lot of references online to cleaning this thing out and not much indicating what it is or what it does.
I’m not asking for help cleaning out a computer, I’m just curious as to what the infection could have done.
System Tool 2011 was identified as Rogue.SystemTool, not Rogue.Spyware.
INI files are usually just a place to store settings. Since it’s listed as a Malware.Trace, that means it’s just a file that is left by a previously removed piece of malware, perhaps even System Tool 2011.
In general, stuff that’s labeled Malware.Trace is used as a quick identifier that a certain piece of malware is installed, although it’s not the malware itself. But it’s rare for a program to be able to identify the trace file without also being able to identify the malware file.
Still, to be safe, I’d run an antivirus scan with a rootkit detector. A live CD version would be the best. Avira has one that works really well. Just use it overnight or something.