Click on screenshot to zoom
Danger level 9
Type: Rogue Anti-Spyware
Common infection symptoms:
  • Blocks internet connection
  • Block exe files from running
  • Installs itself without permissions
  • Connects to the internet without permission
  • Normal system programs crash immediatelly
  • Slow internet connection
  • System crashes
  • Annoying Pop-up's
  • Slow Computer
Other mutations known as:

FakePAV

FakePAV is a family of rogues that share similar infection symptoms and has the same goal when they enter your computer. They usually pose as official products of Microsoft Security Essentials, and unfortunately a lot of users get tricked by FakePAV rogues, because they copy the design and layout of Microsoft Security Essentials security programs, and the users who are worried about their computers are too frustrated the check the credibility of a program that sends them fake threat reports. As a results FakePAV tricks the user into buying useless rogue antivirus system, extorting the hard earned money from the user’s bank account.

In order to stay in your computer for a longer period of time these rogues can also successfully terminate such processes as Windows Registry Editor, Internet Explorer and Windows Restore. FakePAV terminates Windows Registry Editor, because upon the installation the rogue modifies the Registry that allows it to run every time you start your computer. With Registry Editor you might be able to delete the keys added by FakePAV, so the rogue terminates the program. Internet Explorer is killed so that you would not be able to find information on rogue removal and Windows Restore is blocked so that you would not be able to perform a system restore and get rid of FakePAV. The rogue is also known to kill Adobe programs, bitorrent clients, other internet browsers, Java applications, useful toolbars and instant messaging programs.

The rogues that belong to the FakePAV family include CleanThis, ThinkPoint, Red Cross Antivirus, Windows Remedy, Windows Defence Center, Palladium Pro, Windows Debug System and many more. It all starts with a fake Microsoft Security Essentials Alert message that you have been infected by Unknown Win32/Trojan. If you follow the instructions given by this infection you will end up fully installing the rogue into your system. Then the rogue will perform a fake system scan if you try to remove the threats with it, it will state that it cannot do it unless you purchase the full version of the program. Also, FakePAV does not allow you to close the rogue’s window, because once you try to do so, it says “Current settings don’t allow unprotected startup. Please check your settings”.

In a sense FakePAV hinders your system to the point you can no longer load your programs, or browse the internet. The main focus is only on the rogue and how it wants to help you removing the “threats”. However, you should not do what it wants you to. If you cannot remove FakePAV on your own, get yourself a good computer safeguard tool that will help you to terminate FakePAV automatically. If your internet browser is blocked, you need to follow the instructions to unblock it, or load Windows in Safe Mode with Networking and download the computer security program. To load the Safe Mode with Networking, restart your computer and press F8 while it boots, and then choose Safe Mode with Networking from the option menu that appears.

Whatever you do, you have to remove FakePAV from your computer as soon as possible, because not only does this rogue aim for your money. It can successfully cripple your system, and in the end it can cause an ultimate system crash.

Download Spyware Removal Tool to Remove* FakePAV
  • Quick & tested solution for FakePAV removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove FakePAV

Files associated with infection (FakePAV):

ccdhwe.exe
jyykow.exe
ywbgwx.exe
yuilaj.exe
wkutcw.exe
vunvff.exe
udoipu.exe
tyjdno.exe
sonltq.exe
sjmiyt.exe
rdqoap.exe
protect.exe
palladium.exe
ofcbqg.exe
ocgrga.exe
nierml.exe
ncdyeo.exe
mutrub.exe
mimhik.exe
ldwegj.exe
Keygen.Windows_7_SP1_EN_32_Bit_DN.exe
KB8652361.exe
KB6262218.exe
KB591898.exe
KB46470779.exe
KB32920859.exe
KB31460425.exe
KB28959822.exe
KB27884008.exe
KB26935943.exe
KB2336458.exe
KB1895334.exe
KB14831592.exe
KB12716968.exe
jmfhkg.exe
isggax.exe
hotfix.exe
hnmidy.exe
gog.exe
freevideoplugin.exe
freesystemscan.exe
fnphyr.exe
fmloky.exe
flashplayer.exe
emoesw.exe
egdstc.exe
defender.exe
Crack.GridinSoft.Trojan.Killer.2.0.9.5.exe
chaxgq.exe
cbohac.exe
caywyi.exe
bnadlt.exe
avs.exe
AntiSpyWareSetup.exe
antispy.exe
akymdv.exe
AdobeFlashPlayer_10.7.exe
6.tmp
23D2.tmp

Processes to kill (FakePAV):

ccdhwe.exe
jyykow.exe
ywbgwx.exe
yuilaj.exe
wkutcw.exe
vunvff.exe
udoipu.exe
tyjdno.exe
sonltq.exe
sjmiyt.exe
rdqoap.exe
protect.exe
palladium.exe
ofcbqg.exe
ocgrga.exe
nierml.exe
ncdyeo.exe
mutrub.exe
mimhik.exe
ldwegj.exe
Keygen.Windows_7_SP1_EN_32_Bit_DN.exe
KB8652361.exe
KB6262218.exe
KB591898.exe
KB46470779.exe
KB32920859.exe
KB31460425.exe
KB28959822.exe
KB27884008.exe
KB26935943.exe
KB2336458.exe
KB1895334.exe
KB14831592.exe
KB12716968.exe
jmfhkg.exe
isggax.exe
hotfix.exe
hnmidy.exe
gog.exe
freevideoplugin.exe
freesystemscan.exe
fnphyr.exe
fmloky.exe
flashplayer.exe
emoesw.exe
egdstc.exe
defender.exe
Crack.GridinSoft.Trojan.Killer.2.0.9.5.exe
chaxgq.exe
cbohac.exe
caywyi.exe
bnadlt.exe
avs.exe
AntiSpyWareSetup.exe
antispy.exe
akymdv.exe
AdobeFlashPlayer_10.7.exe
Disclaimer

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.