?
Solved

I have detected GenericPWS.y!cpu in files that appear to be recovery files.

Posted on 2011-03-19
3
Medium Priority
?
333 Views
Last Modified: 2013-11-22
The files are cdlogic_ret.exe,apprecoverylink_ret.exe, restorelink_ret.exe,creatorlink_re.exe, runlink_ret.exe, rtcdlink_r.exe, sysrecoverylink_ret.exe, and wizardlink_ret.exe.  All of these files are showing infected with the GenericPWS.y!cpu virus.  I did some research on this virus and read that it steals information. I would simply delete it except I found some forums saying that it may be a false positive on these files, so  now I am worried about deleting them out of quarantine.  I guess I need to know if I can delete these safely without effecting the system.
0
Comment
Question by:CDS-JBC
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 63

Accepted Solution

by:
☠ MASQ ☠ earned 500 total points
ID: 35175371
If the files are already quarantined your anti-virus software is preventing Windows use them anyway, so if your system is still behaving normally you can safely remove them.
0
 
LVL 16

Expert Comment

by:legalsrl
ID: 35175474
Also turn system restore off and remove any snapshots, then turn it back on
0
 

Author Closing Comment

by:CDS-JBC
ID: 35201180
Thank you for your help with this.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With the rising number of cyber attacks in recent years, keeping your personal data safe has become more important than ever. The tips outlined in this article will help you keep your identitfy safe.
The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question