FakeSysdef

FakeSysdef Description

FakeSysDef is a group of rogue defragmenters, memory-checkers and system diagnostic tools that create fake alerts and fake problems to make it appear as though your PC is infected by multiple types of high-level threats (such as keyloggers, rootkits or Trojans). Because scamware programs within the FakeSysDef try to look visually-identical to a real system diagnostic product, you may be tricked into thinking that buying a FakeSysDef program might not be a self-destructive idea. However, doing this will not solve any of the problems that a FakeSysDef infection causes, nor will FakeSysDef accomplish anything other than giving your money and credit card over to criminals. SpywareRemove.com malware analysts recommend that you treat any FakeSysDef application as a hostile invader to your PC and take steps to delete your FakeSysDef infection via suitable anti-malware system scans.

FakeSysDef – a Single Type of Scamware with More Names Than You Can Count

A fake diagnostic program from the FakeSysDef family is often acquired by visits to malicious websites or infected P2P files. Variants of FakeSysDef products may use different methods to launch themselves, potentially including sophisticated techniques like memory-injection or alterations to the Windows Registry. However, the baseline behavior for a FakeSysDef infection, once installed, is typically predictable, although many FakeSysDef applications will use different names to try to keep an appearance of legitimacy. Examples of FakeSysDef programs that SpywareRemove.com malware researchers have looked over include:

The ‘Disk’ branch – Disk Repair, Disk Tool, Disk Optimizer, Disk OK, etcetera.
The ‘Windows’ branch – Windows Scan, Windows Tool, Windows SafeMode, Windows Diagnostic, Windows Fix Disk and so on.
The ‘HDD’ branch, including HDD Low, Hdd Fix, HDD Repair, HDD Plus, HDD Rescue and others.
Miscellaneously-named programs that lack fully-developed branches (for the moment) such as FullScan, FastDisk, Check Disk and Ultra Defragger.

FakeSysDef applications may also use an operating system name as a prefix – this is often some version of Windows (for example, Windows 7 Repair or Windows XP Restore).

How to Distinguish a FakeSysDef Attacker from Real System Defense Programs

A FakeSysDef infection can be identified by its persistent use of fake system alerts and bad system scans that imply that your PC is seriously-damaged or infected by threats that other anti-malware programs can’t detect.

Samples of these scarecrow warnings that SpywareRemove.com malware researchers have brought to light can be, but aren’t restricted to:

Bad sectors on hard drive or damaged file allocation table – Critical Error

28% of HDD space is unreadable – Critical Error

Critical Error
A critical error has occurred while indexing data stored on hard drive. System restart required.

A problem detected while reading boot operation system files

Boot sector of the hard drive disk is damaged – Critical Error – Limited Edition

System Restore
The system has been restored after a critical error. Data integrity and hard drive integrity verification required.

Windows – No Disk
Exception Processing Message 0×0000013

Confirmation
Your hard drive contains a lot of critical errors!
All your data including installed programs, documents, email, etc. are at risk of irreversible corrupt.
The trial version does not have low-level access module needed to fix the errors found.
It is strongly recommended to activate the full version software with necessary modules. Activate full version now?

A FakeSysDef infection is also extremely-likely to try to block your security and anti-malware programs. You may also experience software blockages for other applications such as Task Manager or Registry Editor. All of these attacks serve the purpose of convincing you to purchase an activation key for the FakeSysDef program in question. Rather than doing this and wasting your money, SpywareRemove.com malware researchers suggest that you delete your FakeSysDef infection with a real anti-malware program. Finding some method to stop the FakeSysDef application from launching itself (such as a Safe Mode boot) may be required before you remove all FakeSysDef-infected components.

Posted: November 30, 2010 | By SpywareRemove