Trojan.FakeAlert.RGenX removal tips

Malware Removal

The Trojan.FakeAlert.RGenX is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan.FakeAlert.RGenX virus can do?

  • Executable code extraction
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.FakeAlert.RGenX?


File Info:

crc32: AADB4565
md5: fafcf75fac2f074c5e28b1c5426900dc
name: FAFCF75FAC2F074C5E28B1C5426900DC.mlw
sha1: fe83442ad379b8633e5d8fc35155b997f2bd6969
sha256: 4eec70a54424f36b149c91b2f8e950db25668aecabc1bfbef439906e96efcb39
sha512: 135c4ffdb35c8052140c38a4b541caed73700a272a229bc2168d4805f9483b46b3e4bde105974f1f8f485a6c68651ca4aa470a985664c4d49f30b9a3dac9e943
ssdeep: 1536:RXTNI7WyKQ+/+cyJHsZgoOk85o4VauIGuh/RrPg+HDL:bIIKcypsZDOkSo4Va/ZRjg+HDL
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Trojan.FakeAlert.RGenX also known as:

BkavW32.AIDetect.malware2
MicroWorld-eScanGen:Heur.VIZ.8
FireEyeGeneric.mg.fafcf75fac2f074c
CAT-QuickHealTrojan.Urausy.C
ALYacGen:Heur.VIZ.8
CylanceUnsafe
VIPRETrojan.Win32.FakeAV.ka (v)
AegisLabTrojan.Win32.Foreign.j!c
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0040f3c81 )
BitDefenderGen:Heur.VIZ.8
K7GWTrojan ( 0040f3c81 )
Cybereasonmalicious.fac2f0
CyrenW32/FakeAlert.WR.gen!Eldorado
SymantecPacked.Generic.417
APEXMalicious
AvastWin32:Reveton-RX [Trj]
ClamAVWin.Ransomware.Generickdz-9652412-0
KasperskyTrojan-Ransom.Win32.Foreign.cmev
AlibabaRansom:Win32/Foreign.da0b05c9
NANO-AntivirusTrojan.Win32.RiskGen.cqjtxq
ViRobotTrojan.Win32.Ransom.98304.E
RisingRansom.Urausy!8.2B7 (CLOUD)
Ad-AwareGen:Heur.VIZ.8
EmsisoftGen:Heur.VIZ.8 (B)
ComodoTrojWare.Win32.Kryptik.BAQC@4xm2qg
F-SecureTrojan.TR/Rogue.9830458
DrWebTrojan.Winlock.8128
ZillyaTrojan.LockScreen.Win32.7807
McAfee-GW-EditionRansom-FBXU!FAFCF75FAC2F
SophosML/PE-A + Mal/Ransom-AO
IkarusTrojan.Win32.FakeAV
JiangminTrojan/Foreign.fju
WebrootW32.Rogue.Gen
AviraTR/Rogue.9830458
eGambitGeneric.Malware
MAXmalware (ai score=98)
Antiy-AVLTrojan[Ransom]/Win32.Foreign
KingsoftWin32.Troj.LockScreen.A.(kcloud)
MicrosoftVirTool:Win32/Obfuscator.AFQ
ArcabitTrojan.VIZ.8
SUPERAntiSpywareTrojan.Agent/Gen-FakeAV
ZoneAlarmTrojan-Ransom.Win32.Foreign.cmev
GDataGen:Heur.VIZ.8
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Foreign.R67643
Acronissuspicious
McAfeeRansom-FBXU!FAFCF75FAC2F
VBA32BScope.Trojan.Agent
MalwarebytesTrojan.FakeAlert.RGenX
PandaTrj/Resdec.HEU
ESET-NOD32Win32/LockScreen.APR
TencentWin32.Trojan.Foreign.Ehrw
YandexTrojan.GenAsa!Z8FPBd6tpW4
FortinetW32/SystemSecurity.AL!tr
BitDefenderThetaGen:NN.ZexaF.34590.gqW@ay@Oe6ki
AVGWin32:Reveton-RX [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_60% (D)
Qihoo-360Win32/Trojan.6f6

How to remove Trojan.FakeAlert.RGenX?

Trojan.FakeAlert.RGenX removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment