Windows Error Correction
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 100 % (High) |
| Infected Computers: | 15 |
| First Seen: | March 7, 2011 |
| Last Seen: | January 8, 2020 |
| OS(es) Affected: | Windows |
Windows Error Correction Image
Windows Error Correction is yet another fake security program that claims to be a Microsoft product. Not only is that not true, but also, Windows Error Correction is malware. Do not trust anything that Windows Error Correction tells you about your computer.
Table of Contents
Symptoms of a Windows Error Correction Infection
If you're wondering how you'll know if Windows Error Correction is telling you things about your computer, you'll know. Windows Error Correction will seriously interfere with your computer, and Windows Error Correction will do it while pretending to be security software. Through a combination of scare tactics and ransoming (i.e., disabling your PC), Windows Error Correction will try to get you to think that you have no choice but to pay for its useless software. Basically, Windows Error Correction is a scam.
The first time you come across something calling itself Windows Error Correction will be when it shows up after you start your computer. Before you are able to see the desktop, Windows Error Correction will pop up with its fake user interface. This interface uses the Windows name and logo, and some generic icons to represent the state of your computer's security (which the Windows Error Correction interface will always represent as being extremely low). The interface exists in order to run fake system scans, and there is no way to skip them. Windows Error Correction will play a little status animation, and then tell you that Windows Error Correction has found several serious threats on your computer. Windows Error Correction may even use the names of real viruses, in order to scare you. Then, Windows Error Correction will tell you that Windows Error Correction can't remove these threats until you pay its activation fee; and if you follow its prompts, Windows Error Correction will take you to its payment site. You can enter your credit card information and pay money for Windows Error Correction – but because the whole thing is a scam, that's where Windows Error Correction ends. There is no functionality to be had in Windows Error Correction.
Once you get past the interface, which will show up every single time you start Windows, Windows Error Correction will continue to interfere with your use of your PC. Windows Error Correction will show the same handful of security alerts over and over, and these include an alert about Firefox being a virus, an alert about someone trying to alter your system registry, and an alert about the lsass.exe service causing Windows to boot improperly. Like the fake scans, these fake alerts will ask you to "activate" Windows Error Correction by paying for it.
Furthermore, Windows Error Correction can prevent other programs from starting, and that includes Task Manager. Windows Error Correction will give you an alert each time Windows Error Correction prevents you from using another program, and the alert will say that the program you tried to access was malicious. Obviously, this isn't true; it's just one of Windows Error Correction's survival strategies. Along with this disabling of other applications, Windows Error Correction can cause your web browser to redirect to malicious sites, and Windows Error Correction may even prevent you from getting online at all. After all, if you can't get online, you can't access resources that might help you remove the malware.
How Windows Error Correction Infects PCs
Windows Error Correction infects a computer with the help of the fake Microsoft Security Essentials Alert Malware, a Trojan that creates pop-up alerts that look as if they are coming from Microsoft Security Essentials, so that you will be more likely to believe that Windows Error Correction is a Windows product. The Trojan is frequently hidden in spam attachments, as well as in fake video codecs or Flash updates on malicious sites. You will not know you're downloading the Trojan, and then suddenly, you'll see an error message that says that Windows has detected a threat. That message will suggest that you run a scan of your computer, and if you agree to this scan, Windows Error Correction will tell you that Windows Error Correction has found a specific Trojan on the system, and ask if you want to download the recommended software to remove the Trojan. If you agree to download this "recommended" software, you download Windows Error Correction, and Windows Error Correction will go active the next time you re-start your computer.
Background Information on Windows Error Correction and Related Malware
Windows Error Correction is nearly identical to a staggeringly huge number of other fake security applications. In fact, Windows Error Correction comes from a family of scam-related Russian malware that relies heavily on the fake Microsoft Security Essentials Alert Malware, as well as using the Windows name and logo without permission in all of its fake anti-virus programs. Windows Error Correction's malware "family" gains a new member literally every day, and Windows Error Correction is just the name that was chosen for the end of the first week of March, 2011. Other members of this family include include Windows Health Center, Windows Troubles Analyzer, Windows Optimal Settings, and several dozen more rogue anti-virus applications with similar names.
SpyHunter Detects & Remove Windows Error Correction
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | icsmeq.exe | b01dc3f849d7a9d329c1ae44269e8548 | 1 |
Messages
The following messages associated with Windows Error Correction were found:
|
"System Security Warning
Attempt to modify register key entries is detected. Register entries analysis is recommended." "System component corrupted! System reboot error has occurred due to lsass.exe system process failure. This may be caused by severe malware infections. Automatic restore of lsass.exe backup copy completed. The correct system performance can not be resumed without eliminating the cause of lsass.exe corruption." |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.