System Recovery
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 100 % (High) |
Infected Computers: | 6 |
First Seen: | September 5, 2011 |
Last Seen: | January 8, 2020 |
OS(es) Affected: | Windows |
System Recovery is a fake defragmenter that belongs to a large family of rogue system optimization tools named FakeSysDef. Like most rogue defragmenters, System Recovery pretends to be a legitimate system optimization tool while really being a harmful malware invader. The presence of System Recovery on your computer system is a sign of a severe security breach, with a high chance of other malware infections being present as well. If you find that System Recovery is installed on your computer system, ESG PC security researchers advise running a full, in-depth scan of your computer with an up-to-date anti-malware tool.
A few of the System Recovery clones include System Defragmenter, Ultra Defragger, HDD Control, Win HDD, Win Defrag, Win Defragmenter, Disk Doctor, Hard Drive Diagnostic, HDD Diagnostic, HDD Plus, HDD Repair, HDD Rescue, Smart HDD, Defragmenter, HDD Tools, Disk Repair, Windows Optimization Center, Scanner, HDD Low, Hdd Fix.
Table of Contents
Rather Than Recovering Your System, System Recovery Severely Damages It
System Recovery is marketed as a system optimization tool. Everything in its interface, website, and fake security alerts is designed to mimic real computer optimization programs. However, System Recovery is made up entirely of malicious scripts and Trojans, hidden behind its genuine-looking interface. This malicious program is not designed to help you recover your system. Rather, it is designed to damage your computer system intentionally in an attempt to convince you to buy a useless "full version" of System Recovery. Below, our team of malware analysts has listed a few of the problems associated with System Recovery and its clones:
- System Recovery is designed to spam you with numerous fake security alerts and error messages. These will typically claim to have found virus infections or severe hard drive problems. For anyone experienced with computers, the "errors" found by System Recovery are laughably improbable, or even impossible.
- System Recovery runs in the background without the computer user's authorization. It can start and stop file processes by itself, severely affecting your computer's performance. A computer system infected with System Recovery will become slower and less stable. Frequent crashes and the "Windows Blue Screen of Death" are common in computers infected with System Recovery and its clones.
- System Recovery attempts to block your access to your own files and to the Internet, specifically those websites associated with computer security. It does this to increase the difficulty of its removal. You can bypass this "feature" of System Recovery by starting up your computer in Safe Mode. Remember, starting up in Safe Mode does not remove System Recovery, it simply prevents it from launching automatically at start-up.
SpyHunter Detects & Remove System Recovery
System Recovery Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | iMXxHFmRWxGIKn.exe | af4c4d542ce33cf71cf2e1fca7953fb5 | 1 |
2. | %LocalAppData%\[RANDOM CHARACTERS].exe | ||
3. | %LocalAppData%\~[RANDOM CHARACTERS] | ||
4. | %Temp%\smtmp\1 | ||
5. | %Temp%\smtmp\4 | ||
6. | %StartMenu%\Programs\System Recovery\Uninstall System Recovery.lnk | ||
7. | %Temp%\smtmp\3 | ||
8. | %StartMenu%\Programs\System Recovery\System Recovery.lnk | ||
9. | %LocalAppData%\[RANDOM CHARACTERS] | ||
10. | %Temp%\smtmp\ | ||
11. | %Temp%\smtmp\2 | ||
12. | %StartMenu%\Programs\System Recovery\ | ||
13. | %UserProfile%\Desktop\System Recovery.lnk | ||
14. | GyxHFmRWxGIKn.exe | a8e9d0c3e94425633d2a063074170145 | 0 |
15. | BvhFlJwnduMa.exe | 16077679cd29b633b380389d192aef56 | 0 |
16. | BvhFlJjjduMa.exe | 85e8b994c934b8a948e39fec39a0851a | 0 |
17. | YvhFlJjjduMa.exe | cb4a95d5b7068d1f5a189be43469c77c | 0 |