Skip to main content
Published Aug 18, 2010 | Updated Sep 15, 2017

Rogue:Win32/FakePlus

Detected by Microsoft Defender Antivirus

Aliases: Win-Trojan/Fakeav.666624.B (AhnLab) not-a-virus:FraudTool.Win32.AntivirusPlus.ax (Kaspersky) Mal/FakeAV-AA (Sophos) Win32/Adware.AntivirusPlus (ESET) Win32/FakeAV.ALL (CA) Antivirus Plus (other) Trojan:Win32/FakePlus (other) Trojan:Win32/FakePlus.A (other)

Summary

Win32/FakePlus is a rogue security program that falsely claims the user's system is infected and encourages the user to buy a promoted product in order 'remove' the bogus infections.
 
Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late.  These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software.  Some of these programs, such as Win32/Antivirusxp and Win32/FakeRednefed may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products. 
 
To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:
 
 
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.
To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:
 
 
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.
Follow us