LinkBack URL
About LinkBacksWindows Recovery is a scareware which masquerades as a system performance optimization tool. Belonging to the FakeSysdef trojan family, it comes in many names including HDD Defragmenter, Check Disk, Windows Repair, Windows Restore, Windows SafeMode, Windows Fix Disk and Windows Recovery. It uses a variety of fake warning alerts about non-existent errors in computer hard drive, memory and Windows registry to try and cheat gullible users. This rogue optimization software disables Windows Task Manager and Quick launch bar. It also hides All Programs, My Documents and Administrative Tools menu items to confuse and scare the victims.
After continuous bogus error messages, the system is forcibly restarted every few minutes. On restart the rogue software runs a scan automatically and declares finding of multiple errors. The desktop background is blanked and the unclose-able Windows Recovery window hogs the focus.
Scareware like WindowsRecovery are commonly installed when users are redirected to fake online scanner pages, fraudulent porn sites, illegal cracks/warez sites and fake ‘video codec required’ pages distributed through out the Web by cyber criminals using blackhat SEO techniques, Spam and Malicious flash advertisements.
WindowsRecovery Removal (How to remove WindowsRecovery)
- Boot in to Windows Safe Mode with networking
- Download or from a clean computer download and copy to a removable drive like CD, DVD or USB flash drive. MalwareBytes’s Anti-Malware Free edition (mbam-setup.exe) and TDSSKiller – often this family of scareware comes bundled with the TDSS rootkit
- Right click and save the file Fakesysdef_unhide.txt to your desktop. Rename the file from Fakesysdef_unhide.txt to Fakesysdef_unhide.cmd. This file will help to reveal the files and folders hidden by this rogue optimizer.
- Run the TDSSKiller utility to check for the rootkit.
- Double-click mbam-setup.exe to start the installation. Proceed with installation following the prompts. Make sure that the following option is checked when you finish the installation: Update Malwarebytes’ Anti-Malware.
- Once the update is completed, Launch Malwarebytes’ Anti-Malware and select Perform full scan in the Scanner tab. When the scan is completed, click “Show results“, confirm that all instances of the rogue security software are check-marked and then click “Remove Selected” to delete them. If prompted restart immediately to complete the removal process.
- To unhide files and folders hidden by this rogue optimizer, double-click and run Fakesysdef_unhide.cmd.
http://www.malwarehelp.org/windowsre...oval-2011.html
Welcome to the Free Computer Help and Technical Support Forum.
+ Reply to Thread
Results 1 to 1 of 1
-
05-22-2011 #1Super Moderator
- Join Date
- Mar 2011
- Posts
- 346
How to remove WindowsRecovery
Reply With QuoteLinkBacks (?)
-
10-20-2011, 01:36 PM
Members who have read this thread : 1
You do not have permission to view the list of names.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
Powered by vBulletin® Version 4.1.9
Copyright © 2012 vBulletin Solutions, Inc. All rights reserved.
Content Relevant URLs by vBSEO 3.6.0
Extra Tabs by vBulletin Hispano
Copyright © 2012 vBulletin Solutions, Inc. All rights reserved.
Content Relevant URLs by vBSEO 3.6.0
Extra Tabs by vBulletin Hispano
All times are GMT -5. The time now is 12:29 PM.
vBulletin 4.0 skin by CompleteVB
Bookmarks