Published Jan 04, 2011|Updated Sep 15, 2017

Win32/FakePAV

Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: AntiSpy Safeguard (other) Clean This (other) LizaMoon SQL injection (other) Major Defense Kit (other) fake Microsoft Security Essentials (other) Palladium Pro (other) Peak Protection 2010 (other) Pest Detector (other) Privacy Guard 2010 (other) Red Cross Antivirus (other) ThinkPoint (other) Windows Advanced Security Center (other) Windows Antivirus Master (other) Windows Attention Utility (other) Windows Background Protector (other) Windows Debug System (other) Windows Defence Center (other) Windows Defence Counsel (other) Windows Defence Unit (other) Windows Efficiency Manager (other) Windows Efficiency Magnifier (other) Windows Error Correction (other) Windows Emergency System (other) Windows Expansion Center (other) Windows Lowlevel Solution (other) Windows Passport Utility (other) Windows Performance Manager (other) Windows Power Expansion (other) Windows Premium Console (other) Windows Process Regulator (other) Windows Remedy (other) Windows Secure Surfer (other) Windows Servant System (other) Windows Simple Protector (other) Windows Stability Center (other) Windows Support System (other) Windows Threats Removing (other) Windows Trouble Remover (other) Windows Troublemakers Agent (other) Windows Web Commander (other) Windows Defence Unit (other) Windows AntiBreach Module (other)

Windows Defender detects and removes this threat.

This family of rogue security programs pretend to scan your PC for malware, and often report lots of infections. The program will say you have to pay for it before it can fully clean your PC.

However, the program hasn't really detected any malware at all and isn't really an antivirus or antimalware scanner. It just looks like one so you'll send money to the people who made the program. Some of these programs use product names or logos that unlawfully impersonate Microsoft products.

Even if you do pay to "unlock" the app, it won't do anything because your PC isn't actually infected with all that malware it "found".

Different brands of the rogues may modify various settings on your computer, end or close programs or system services, or block access to websites.

It might have been installed on your PC by a Rogue:VBS/FakePAV variant.

Find out ways that malware can get on your PC.