Sep 06

System Recovery Rogue of the FakeSysDef Family

System Recovery rogue of the FakeSysDef Family, is a fake analysis application that uses scareware tactics of having hard drive and system errors to scare those infected to purchase the rogue.

The FakeSysDef family of rogues infections includes an MBR (Master Boot Record) Rootkit like TDSS,  TDL#, or  Sinowal designed to generate profits from search engine results hijackings even after the user purchases the rogue.

System Recovery GUI

Files and Locations:
%LOCAL_APPDATA%\<Random File Names>.exe

Note: %LOCAL_APPDATA% refers to:
<drive>:\Documents and Settings\<user>\Local Settings\Application Data

For Vista/Win 7 OS’s:

The Rogues of the FakeSysDef Family can be removed with manually methods, however, as this family also includes MBR Rootkit infections, it is recommend to use our Antispyware/Antivirus removal tool, VIPRE Antivirus.

You can download a free trial to remove the rogues of the rogues of the FakeSysDef family from your PC for no cost by clicking on the link below:


If you are unable to download and install our malware removal tool because this has infected your computer and is not allowing you to install the program, you can use our VIPRE Rescue Disc here:


Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>