Windows System Manager

Windows System Manager is a fake anti-virus program that tries to 'manage' potential infections only in the sense that it makes them up and then charges you money to remove these nonexistent PC threats. Windows System Manager has a long pedigree that's linked to other rogue anti-virus products that our SpywareRemove.com malware researchers have previously confirmed as security threats and borrows both the majority of its functions and most of its looks from Windows Performance Manager, Windows Efficiency Manager, Windows System Optimizator, Windows Armature Master and many other fake AV product clones. Because Windows System Manager is incapable of providing real anti-virus functions and may endanger your PC by blocking security programs or hijacking your web browser, deleting Windows System Manager with a powerful anti-malware application should be on the top of your to-do list.

Tracing Back Through Windows System Manager's Own Shady Managers

Windows System Manager is a somewhat new version of a very old rogue anti-virus program that started early on with fake AV products like Windows Problems Protector, Windows Health Center and Windows Software Guard, and afterwards expanded to such ignominious examples as Windows Salvor Tool, Windows Easy Supervisor and Windows Test Master. Scamware AV programs from this family, such as Windows System Manager, are distributed by trojans, most prominently the Fake Microsoft Security Essentials Alert trojan.

You can notice a Fake Microsoft Security Essentials Alert trojan installing Windows System Manager by spying out unusual error messages like the examples shown here:

Threat prevention solution found
Security system analysis has revealed critical file system vulnerability caused by severe malware attacks.
Risk of system files infection:
The detected vulnerability may result in unauthorized access to private information and hard drive data with a seriuos [sic] possibility of irreversible data loss and unstable PC performance. To remove the malware please run a full system scan. Press 'OK' to install the software necessary to initiate system files check. To complete the installation process please reboot your computer.

Microsoft Security Essentials Alert
Potential Threat Details
Microsoft Security Essentials detected potential threats that might compromise your private or damage your computer. Your access to these items may be suspended until you take an action. Click 'show details' to learn more.

Naturally, these errors don't find real problems with your PC, and are just part of an overall scam to make you believe (inaccurately) that Windows System Manager is a reputable security product. The depressing reality that our malware experts have found, however, is that Windows System Manager can't find or delete viruses or other PC infections any more than its ancestors could do so.

Bringing Back Real Security for Your PC - By Evicting Windows System Manager

Like the Fake Microsoft Security Essentials Alert trojan that delivered it, Windows System Manager will show error messages of its own to fool you into thinking that a multitude of teeming viruses, trojans and other infections are on your PC. These fake warnings may even go as far as tricking you into believing that specific programs are infected, particularly anti-malware and security-related ones, as seen below:

Unknown Win32/Trojan was detected on your computer

Warning!
Location: [application file path]
Viruses: Backdoor.Win32.Rbot

Warning!
Name: [application file name]
Name: [application file path]
Application that seems to be a key-logger is detected. System information security is at risk. It is recommended to enable the security mode and run total System scanning.

System Security Warning
Attempt to modify register key entries is detected. Register entries analysis is recommended.

Warning! Database update failed!
Database update failed!
Outdated viruses databases are not effective and can't [sic] guarantee adequate protection and security for your PC!
Click here to get the full version of the product and update the database!

System component corrupted!
System reboot error has occurred due to lsass.exe system process failure.
This may be caused by severe malware infections.
Automatic restore of lsass.exe backup copy completed.
The correct system performance can not be resumed without eliminating the cause of lsass.exe corruption.

Warning! Running trial version!
The security of your computer has been compromised!
Now running trial version of the software!
Click here to purchase the full version of the software and get full protection for your PC!

These errors have zero grounding in reality, and there's no reason to purchase Windows System Manager to fix them. However, SpywareRemove.com malware analysts have found plenty of reasons to remove Windows System Manager quickly, such as:

• Software-blocking behavior. Windows System Manager will try to stop you from accessing any program that could delete Windows System Manager.
• Browser hijacks that redirect you away from anti-malware websites or towards Windows System Manager's own website.
• An automatic startup routine that refuses to be disabled. This causes Windows System Manager to take up constant system resources and lets it initiate the other actions noted earlier. The proper response to disable this startup routine, and, therefore, all of Windows System Manager's attacks, is to use Safe Mode or a system boot from an external hard drive.

Technical Details