Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

I have detected GenericPWS.y!cpu in files that appear to be recovery files.

Posted on 2011-03-19
3
329 Views
Last Modified: 2013-11-22
The files are cdlogic_ret.exe,apprecoverylink_ret.exe, restorelink_ret.exe,creatorlink_re.exe, runlink_ret.exe, rtcdlink_r.exe, sysrecoverylink_ret.exe, and wizardlink_ret.exe.  All of these files are showing infected with the GenericPWS.y!cpu virus.  I did some research on this virus and read that it steals information. I would simply delete it except I found some forums saying that it may be a false positive on these files, so  now I am worried about deleting them out of quarantine.  I guess I need to know if I can delete these safely without effecting the system.
0
Comment
Question by:CDS-JBC
3 Comments
 
LVL 62

Accepted Solution

by:
☠ MASQ ☠ earned 125 total points
ID: 35175371
If the files are already quarantined your anti-virus software is preventing Windows use them anyway, so if your system is still behaving normally you can safely remove them.
0
 
LVL 16

Expert Comment

by:legalsrl
ID: 35175474
Also turn system restore off and remove any snapshots, then turn it back on
0
 

Author Closing Comment

by:CDS-JBC
ID: 35201180
Thank you for your help with this.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
The next five years are sure to bring developments that are just astonishing, and we will continue to try to find the balance between connectivity and security. Here are five major technological developments from the last five years and some predict…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question