Windows Error Recovery

Updated: May 8, 2012 Rogue 0 Comment

Windows Error Recovery is a fake tool for your hard drive. It has a flaw design that is not suited to fix any errors on the computer.

Windows Error Recovery is a new fake hard drive defragmenter tool. To some who are unaware of rogue software, Windows Error Recovery virus may appear to be a trusted program. However, their initial notion will change once this rogue tool begins to operate on the computer. It does not only produce displeasure but also hampers your Internet browsing. It purposely redirect Internet search to harmful web sites. Knowing that Windows Error Recovery is a member of a huge group of counterfeit hard drive utility, never expect it to be a useful program. Other members of this group include Data Recovery and System Recovery.

This bogus software can be loaded on computer without a notice. Trojan downloads it on your PC through security holes and software flaw. Also, the Trojan is showing off with the advanced technology that able to obscure antivirus detection. This is called rootkit technology. A method in which Trojan will inject its code to valid system files.

Once it successfully breaks into system, Windows Error Recovery will arrange for automatic start-up. Then, after Windows log-in, it initiates system test. It will provide numerous mock findings as anticipated. These errors are a complete lies and are just device to oblige users for the purchase of Windows Error Recovery full version. At any condition, never trust this rogue software. Moreover, do not spend for this worthless product. Resort to effective and legitimate tool to remove Windows Error Recovery virus from your PC. That is the best thing you can execute on situations like this.

Screen Shot Image:

Image of Windows Error Recovery

Technical Details and Additional Information:

Damage Level: Medium

Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7

[cf]regis[/cf] [cf]files[/cf]

How to Remove Windows Error Recovery

Manual Removal Procedure

1. Unload any running Windows Error Recovery process by pressing Ctrl+Alt+Del on your keyboard. This will open Task Manager. Look for the following process and click on End Process.
(random characters).exe

2. If there is an antivirus program installed, connect to Internet and update it to have the latest database and pattern files.
3. Thoroughly scan the computer and clean/delete all infected files. Check if there are remnants of virus-related files, delete if found.

4. Edit Windows registry and delete Windows Error Recovery entries. [how to edit registry]
5. Close registry editor, changes will be save automatically.

6. Remove Windows Error Recovery start-up entry by going to Start > Run, type msconfig on the "Open" dialog box. System Configuration Utility will open. Go to Startup tab and uncheck these Startup items.
(random characters).exe
7. Click on Apply and reboot the computer for changes to take effect.

Windows Error Recovery Removal Tool

Efficient and complete removal of Windows Error Recovery can be provided by Malwarebytes Anti-Malware. Download the program from this location. If downloading is blocked by a virus, use a clean computer and save it to a Disc or USB drive and execute the removal on infected machine.

Alternative Removal Method for Windows Error Recovery

Option 1 : Use Windows System Restore to return Windows to previous state

If Windows Error Recovery enters the computer, there is a big chance that Windows files, registry entries and other essential components are also infected. System Restore can reinstate clean system files by restoring the configuration to an earlier date. The method also replaces compromised files with a clean version. If you have a saved restore point before Windows Error Recovery infiltrates the PC, we highly encourage you to execute this procedure if none of the above works. You may proceed with Windows System Restore, click here to see the full procedure.

Option 2 : Windows Error Recovery manual uninstall guide

IMPORTANT! Manual removal of Windows Error Recovery requires technical skills. Deleting system files and registry entries by mistake may result to total disability of Windows system. We advise you to perform a backup of registry before proceeding with this guide.

1. Kill any running process that belongs to Windows Error Recovery.
- Press Ctrl+Alt+Del on your keyboard.
- When Windows Task Manager appears, look for Windows Error Recovery files (refer to Technical Reference) and click End Process.

End Task

2. Delete all registry entries that belong to this malware.
- Press [Windows Key]+R on your keyboard.
- In the 'Open' dialog box, type regedit and press Enter. This will open registry editor.
- Find and delete registry entries as mentioned in Technical Reference section below.
- Close registry editor. Changes made will be save automatically.

Run Regedit

3. Scan the computer with antivirus program.
- Connect to Internet and open your antivirus software. Please update to obtain the latest database and necessary files.
- Restart the computer in Safe Mode.
- Just before Windows logo begins to load press F8 on your keyboard.
- On Windows Advanced Boot Options, select Safe Mode and press Enter.

4. Delete all files dropped by Windows Error Recovery.
- While still in Safe Mode, search and delete malicious files. Please refer to 'Technical Reference'. Make sure that you execute 'End Task' first before deleting the file. Otherwise, the system will not let you perform this action.

Technical Reference

Associated Files and Folders:
File Location for Windows Versions:
  • %UserProfile% for Vista/7 user is C:\Users\<Current User> for Windows Vista/7, for Windows XP/2000 this is C:\Documents and Settings\<Current User>.
  • %LocalAppData% for Vista/7 refers to C:\Users\<Current User>\AppData\Roaming, while for Windows XP/2000 user it is C:\Documents and Settings\<Current User>\Application Data.
  • %StartMenu% on Vista/7 it refers to C:\Users\<Current User>\AppData\Roaming\Microsoft\Windows\Start Menu while for Windows XP/2000 this is C:\Documents and Settings\<Current User>\Start Menu\.
Added Registry Entries: