I have detected GenericPWS.y!cpu in files that appear to be recovery files.

The files are cdlogic_ret.exe,apprecoverylink_ret.exe, restorelink_ret.exe,creatorlink_re.exe, runlink_ret.exe, rtcdlink_r.exe, sysrecoverylink_ret.exe, and wizardlink_ret.exe.  All of these files are showing infected with the GenericPWS.y!cpu virus.  I did some research on this virus and read that it steals information. I would simply delete it except I found some forums saying that it may be a false positive on these files, so  now I am worried about deleting them out of quarantine.  I guess I need to know if I can delete these safely without effecting the system.
CDS-JBCAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
☠ MASQ ☠Connect With a Mentor Commented:
If the files are already quarantined your anti-virus software is preventing Windows use them anyway, so if your system is still behaving normally you can safely remove them.
0
 
legalsrlCommented:
Also turn system restore off and remove any snapshots, then turn it back on
0
 
CDS-JBCAuthor Commented:
Thank you for your help with this.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.