I have detected GenericPWS.y!cpu in files that appear to be recovery files.
Posted on 2011-03-19
The files are cdlogic_ret.exe,apprecoverylink_ret.exe, restorelink_ret.exe,creatorlink_re.exe, runlink_ret.exe, rtcdlink_r.exe, sysrecoverylink_ret.exe, and wizardlink_ret.exe. All of these files are showing infected with the GenericPWS.y!cpu virus. I did some research on this virus and read that it steals information. I would simply delete it except I found some forums saying that it may be a false positive on these files, so now I am worried about deleting them out of quarantine. I guess I need to know if I can delete these safely without effecting the system.