1 of 8
Danger level 9
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Block exe files from running
  • Installs itself without permissions
  • Connects to the internet without permission
  • Slow internet connection
  • System crashes
  • Annoying Pop-up's
  • Slow Computer
Other mutations known as:

Windows Optimal Solution

Despite the best efforts of the online security industry to adequately warn their customers about the dangers associated with allowing rogue security tools to run wild on their systems many consumers continue to fall victim to threats such as Windows Optimal Solution. This rogue in particular originates from a long and illustrious family of rogue antispyware applications the likes of which include Windows Safety Protection, Windows Utility Tool, Windows Security & Control and Windows System Optimizator. These disturbing facts along completely discredit Windows Optimal Solution as a helpful and powerful security tool. What’s more is the fact that Windows Optimal Solution was never designed to offer any type of benefit or convenience for a PC system, but only devastation and destruction.

Windows Optimal Solution’s infiltration into the system is near impossible to detect. This alone makes it a far more dangerous rogue than most other and it is therefore imperative to destroy Windows Optimal Solution upon detection. It makes use of Trojan horse infections to carry and root its infection into host PCs, and users are warned to stay away from online portals known to actively participate in Windows Optimal Solution’s online marketing campaign. These portals include bogus online malware scanners and seditious browser hijackers. These browser hijackers make use of disturbing and sly drive-by download techniques which delivers the Windows Optimal Solution Trojan into a PC simply by having the user visit its compromised landing page once.

As mentioned earlier, the user will be unaware of Windows Optimal Solution’s presence on his system. Windows Optimal Solution will first reveal its presence when it spams the user with various fake security messages. These false notifications are completely without merit and should not enjoy any attention from the PC owner. Its sole purpose is to cause panic in the user and to get him to believe his system is being attacked. Windows Optimal Solution will then offer to get rid of the false threats and protect the system from future attacks but only once the user pays for its fake software. Some of the false alerts to be on the lookout for include the following:

Microsoft Security Essentials Alert
Potential Threat Details
Microsoft Security Essentials detected potential threats that might compromise your private or damage your computer. Your access to these items may be suspended until you take an action. Click 'show details' to learn more.

Threat prevention solution found
Security system analysis has revealed critical file system vulnerability caused by severe malware attacks.
Risk of system files infection:
The detected vulnerability may result in unauthorized access to private information and hard drive data with a seriuos possibility of irreversible data loss and unstable PC performance. To remove the malware please run a full system scan. Press 'OK' to install the software necessary to initiate system files check. To complete the installation process please reboot your computer.

System Security Warning
Attempt to modify register key entries is detected. Register entries analysis is recommended.

System component corrupted!
System reboot error has occurred due to lsass.exe system process failure.
This may be caused by severe malware infections.
Automatic restore of lsass.exe backup copy completed.
The correct system performance can not be resumed without eliminating the cause of lsass.exe corruption.

Warning!
Name: firefox.exe
Name: c:program filesfirefoxfirefox.exe
Application that seems to be a key-logger is detected. System information security is at risk. It is recommended to enable the security mode and run total System scanning.

It goes without saying that these false security alerts are not to be trusted, and that all correspondence received from Windows Optimal Solution should be treated as extremely suspicious.

Users who did not get rid of Windows Optimal Solution in time complained about being unable to connect to the Internet, as well as being denied access to their Desktops. Disturbing and utterly frustrating as these symptoms are, there is a way to restore access to the Desktop and bring back some semblance of order to your PC system. Follow these instructions to reestablish your Internet connection and regain access to your Desktop:

1. Reboot your system. You will find the Windows Optimal Solution startup screen blocking access to your Desktop. Click the “OK” button to make it go away. The malware will start a fake system scan.
2. Wait until the scan is done. Once the scan is finished you will see another fake security notice. Click “OK” one more time.
3. Make the notification go away by clicking on the red “X” at the right top of it.
4. It should now disappear and you will be able to access your desktop again.

Do not think that only by following the above instructions you have now successfully eliminated the threat. In order to assume complete control back of your PC it is necessary to completely destroy Windows Care Tool. The best way to permanently erase Windows Care Tool is by making use of a genuine security tool which will also offer adequate protection against future attacks and threats.

Download Spyware Removal Tool to Remove* Windows Optimal Solution
  • Quick & tested solution for Windows Optimal Solution removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove Windows Optimal Solution

Files associated with infection (Windows Optimal Solution):

xgflqg.exe
%AppData%\[random].exe

Processes to kill (Windows Optimal Solution):

xgflqg.exe
%AppData%\[random].exe

Remove registry entries (Windows Optimal Solution):

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell “%AppData%\[random].exe”
Disclaimer

Comments

  1. Mathew Joseph Feb 11, 2011

    information, thanks for providing such useful informative blog. After followed all instruction, I have successfully removed virus from my computer system.thanks!

  2. kevin Feb 11, 2011

    Thank u i had this virus in my pc & after using your advise it has gone so

  3. campos Feb 11, 2011

    this is good

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.