How To Get Rid Of HDD Recovery Antivirus? How To Uninstall HDD Recovery Antivirus? How To Remove HDD Recovery Antivirus? Eliminate And Remove HDD Recovery Antivirus Manually - By: ArticleSubmit Auto

How to Get Rid of HDD Recovery Virus? Eliminate and Remove HDD Recovery Virus Fake Antivirus Completely and Manually

HDD Recovery Virus is not a original Antispyware Program but itself a virus, more precisely a new kind of fake antispyware program from the same household of Win HDD, HDD Defragmenter, HDD Scan.The only difference being the center files are changed a little bit and the name is changed to hide it's detection by real Antivirus programs installed on your PC.

This program is spread-out with the aid of trojans. When the trojan is commenced, it will automatically download and install HDD Recovery Virus onto your computer without your consent and knowledge and set up it to run when you restart OS.

When HDD Recovery Virus is commenced, it will simulate a system scan and find a lot of various infections that will not be fixed unless you first purchase the program. Important to know, all of these reported infections are fake and don't actually exist on your PC! So you can safely disregard the scan results.

While HDD Recovery Virus has started, it will cease the ability to run any programs as a technique to scare you into thinking that your computer is infected with spyware.

The following warnings will be shown

Windows detected a hard drive problem.
A hard drive error occurred while starting the application.

Or

Windows cannot find notepad. Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search.

Fix Disk
Windows Disk Diagnostics will scan the system to identify performance problems.
Start or Cancel
Requested registry access is not allowed. Registry defragmentation required
Read time of hard drive clusters less than 500 ms
32% of HDD space is unreadable
Bad sectors on hard drive or damaged file allocation table
GPU RAM temperature is critically high. Urgent RAM memory optimization is required to prevent system crash
Drive C initializing error
Ram Temperature is 83 C. Optimization is required for normal operation.
Hard drive doesn't respond to system commands
Data Safety Problem. System integrity is at risk.
Registry Error - Critical Error

Critical Error!
Damaged hard drive clusters detected. Private data is at risk.

Critical Error
Hard Drive not found. Missing hard drive.

Critical Error
RAM memory usage is critically high. RAM memory failure.

Critical Error
Windows can't find hard disk space. Hard drive error

Critical Error!
Windows was unable to save all the data for the file System32496A8300. The data has been lost. This error may be caused by a failure of your computer hardware.

Critical Error
A critical error has occurred while indexing data stored on hard drive. System restart required.

System Restore
The system has been restored after a critical error. Data integrity and hard drive integrity verification required

Realize these are all fake alerts and make sure you do not take any action on these warning messages. Follow the below instructions to clean up these fake antivirus alerts.

And now coming back on How>, you need a good program to fix the damages, the rogue has caused. It changes files, folders,permissions and registry keys completely....to rejuvenate your PC from malicious trojans that may still reside and make your PC slow and to stop from getting re-infected.

How to get rid ofHDD Recovery Virus manually.

In order to get rid of HDD Recovery Virus altogether, start your PC in safe mode with networking, by pressing F8 key. Clean your Windows temp folder.

Windows Temp folder.

By default, this is C:/Windows/Temp for Windows 95/98/ME, C:/DOCUMENTS AND SETTINGS/ProfileName/LOCAL SETTINGS/Temp for Windows 2000/XP, and C:/Users/ProfileName/AppData/Local/Temp for Windows Vista and Windows 7

HDD Recovery Virus stores its files in Windows temp folder. You need to delete these files.

Altered Registry Entries, Files and Folders.

%Temp%[Random Characters]
%Temp%[Random Characters].exe
%Temp%dfrg
%Temp%dfrgr
%Temp%[Random Characters].dll
%Temp%[Random Characters].exe
%Temp%tmp2.tmp

And also

%UserProfile%DesktopHDD Recovery.lnk
%UserProfile%Start MenuProgramsHDD Recovery
%UserProfile%Start MenuProgramsHDD RecoveryHDD Recovery.lnk
%UserProfile%Start MenuProgramsHDD RecoveryUninstall HDD Recovery.lnk

%UserProfile% is C:/Documents and Settings for Windows 2000/XP & C:Users for Windows Vista/7

%Temp% is C:/DOCUMENTS AND SETTINGS/ProfileName/LOCAL SETTINGS/Temp for Windows 2000/XP & C:/UsersProfile/Name/AppData/Local/Temp for Windows Vista and Windows 7

Registry Entries:
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun "[Random Characters]"
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun "[Random Characters].exe"

Processes:
[Random Characters.exe]

You can also taskkill the random characters.exe file from your task manager e.g (AcD26689iuipv.exe) before you run the reimagepcrepair scan using the command

Go to start menu and click 'Run' and type as below

taskkill /f /im randomcharacters.exe like taskkill /f /im AcD26689iuipv.exe

If you can`t run the IE, then you should repair the proxy settings of Internet Explorer.

Run Internet Explorer,

Click Tools -> Internet Options

Choose Connections Tab

Click LAN Settings button.

Uncheck "Use a proxy server" box. Click OK.

Click Apply.

Click OK.

And go to http://pcreimage.cz.cc to run a Scan.

Reimage works by comparing each and every Windows system files with the correct files from a network repository of 25 million operating system components. (since Reimage works by comparing with correct file, it can easily find the concealing rootkit, infact this is what a rootkit remover do......dumps a list of files from your hard disk drive and compares it with the list from the recovery console in order to find a hiding virus) This is the exclusive reason you can get a PC as good as new once you run Reimage, all other antivirus and antimalware programs just delete the virus....but they don't fix the damage...which results in re-infection and slow performing PC.

Reimage first scans your computer thoroughly; all the files, folders, registry keys and values, drivers, softwares, stacks and then either repair or remove those stuffs that should be there. But it's not just that it does. They have an tremendous web repository of application, drivers, system objects, etc. from where they compare your PC's files and if corrupted replace it with the healthy ones.

About the Author

Mike J Bennett is a Software System Architect, who has more than 15 years of experience. He has wide knowledge on System Security Visit PC Reimage to remove all your fake antiviruses

Article Directory Source: http://www.articlerich.com/profile/ArticleSubmit-Auto/95152

Additional Articles From - Home | Computers | Malware & spyware