FakeCog
FakeCog is endorsed on some web site as a useful tool that can remove spyware and computer viruses, but in a real world of computer security, it falls under the category of rogue application. This simply means that FakeCog virus has not passed the usual security software standards. It may have the look of an antivirus program but lacks the functionalities to be as one. In fact, FakeCog will attempt to mislead computer users by posting several threats detected on the computer. We all know that rogue programs are keep on fabricating local security threats for the same purpose – that is to convince users to obtain the licensed version to be able to get rid of viruses found by fake AV program.
It was also known that FakeCog will be installed on computers with various identities, it could be in the brand of Defense Center, Protection Center, Data Protection or Anvi Antivirus. Whatever name its uses, the graphical user interface remains the same. Again all of these was developed to be sold online in a fraudulent manner. If in case you got any of these on your system, please remove FakeCog immediately with a simple step-by-step solution provided below.
Alias: Win32/FakeCog, Trojan.Win32.FakeCog
Damage Level: Medium
Systems Affected: Windows 9x, 2000, XP, Vista, Windows 7
FakeCog Removal Procedures
Manual Removal:
1. Unload any running FakeCog process by pressing Ctrl+Alt+Del on your keyboard. This will open Task Manager. Look for the following process and click “End Process”:
wmsdk64_32.exe
avt.exe
2. If there are antivirus programs installed, connect to Internet and update it to have the latest database and pattern files.
3. Thoroughly scan the computer and clean/delete all infected files. Check if there are remnants of virus-related files, delete if found.
4. Edit Windows registry and delete FakeCog entries. [how to edit registry]
5. Close registry editor, changes will be save automatically.
6. Remove FakeCog start-up entry by going to Start > Run, type msconfig on the “Open” dialog box. System Configuration Utility will open. Go to Startup tab and uncheck the following Startup item(s):
wmsdk64_32.exe
avt.exe
7. Click on Apply and reboot the computer for changes to take effect.
FakeCog Removal Tool:
For automatic removal of this malware, please download and run Malwarebytes Anti-Malware here. There are instances that FakeCog Trojan will block the downloading execution of security application. On this situation, please download the file from an uninfected computer and rename it before installing on the infected computer.
Technical Details and Additional Information:
Malicious Files Added by FakeCog :
HKEY_LOCAL_MACHINE\SOFTWARE\FakeCog
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run = “wmsdk64_32.exe”
FakeCog Registry Entries:
%UserProfile%\Local Settings\Temp\wscsvc32.exe
%UserProfile%\Local Settings\Temp\wmsdk64_32.exe
%UserProfile%\Desktop\troj000.exe
%UserProfile%\Desktop\spam003.exe
%UserProfile%\Desktop\spam001.exe
c:\Program Files\AnVi\Uninstall.exe
c:\Program Files\AnVi\avt.exe
Comments and Suggestions
On this area you can find Visitor's personal suggestions. We cannot control and evaluate each recommended procedure from visitors so please use it at your own risks. If your inquiry pertains to FakeCog payment refund or lost serial key, kindly check the FAQ for rogue program first.
Disclaimer:
Read our article disclaimer about FakeCog.