Home Malware Programs Rogue Anti-Spyware Programs BootCare


Posted: January 13, 2012

Threat Metric

Ranking: 3,780
Threat Level: 1/10
Infected PCs: 8,043
First Seen: January 13, 2012
Last Seen: October 16, 2023
OS(es) Affected: Windows

BootCare is a fake anti-malware application that has its origin in Korean websites. Although BootCare presents most of its content in Korean, it's still capable of infecting Windows computers from other regions, and SpywareRemove.com malware researchers recommend deleting BootCare immediately as a mid-level threat to your PC. Major symptoms of a BootCare infection consist of inaccurate warning messages about the presence of PC threats or other system problems, although BootCare may also be involved in browser redirects or attempts to dismantle your computer's security software. Because scamware products like BootCare are often installed by trojans and may not be alone on your computer, you should only remove BootCare with as thorough a system scan as is available to you from an anti-malware product that you trust.

Why Placing Your PC in BootCare's Tender Care is Unwise

BootCare has the polished and clean look of a real PC security program, but its looks are the only thing that BootCare has going for it. Actual alerts and warning messages from BootCare will only identify problems that your computer doesn't have, and everything that BootCare does is designed to feed into its desire to scam you out of your money in a fraudulent registration process for its software. Since BootCare doesn't have genuine security features for your PC, you should be careful to identify warning messages from BootCare and distinguish them from legitimate alerts by real security programs – mistaking one for the other can lead you to take self-destructive actions while attempting to 'clean' your computer of PC threats from completely-harmless system files.

SpywareRemove.com malware analysts also strongly warn against spending money on BootCare even if you would only do so to make its removal less-tedious than it would otherwise be. Doing this not only wastes your money but places your financial information into the possession of criminals who are likely to have few reservations about making other fraudulent charges in your name. Complete removal of BootCare can be accomplished without purchasing it at all, and is best done with any anti-malware software of good repute.

Recovering from BootCare's Marketing Hoax

After removing BootCare, you may want to double-check the settings for your web browser, including your DNS and Windows Registry settings, to make sure that accidental exposure to BootCare's website is unlikely in the future. Since many types of scamware, including Korean brands of rogue anti-malware products like BootCare, are often known to hijack web browsers to redirect them to hostile sites, you should always be certain to undo any changes that BootCare may have made, in addition to deleting BootCare itself.

Drive-by-downloads from scamware sites like BootCare's own are common and, as SpywareRemove.com malware researchers note, can be avoided with proper security settings for your web browser (such as disabled scripts). Although this doesn't totally-mitigate the necessary of having good security software, it does limit obvious exploits that can be utilized by BootCare and other PC threats that may install themselves even if they lack your consent for the process.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:

C:\WINDOWS\system32\uninst_bootcare.exe File name: C:\WINDOWS\system32\uninst_bootcare.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\bootcare\bootcare.exe File name: C:\Program Files\bootcare\bootcare.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file