FakeRean is a Trojan that is usually included and spread as an email attachment similar to ZBot. Spam messages are successful with spreading FakeRean by including an executable called "install.exe" within a zip archive. If a computer user downloads the ZIP file and runs the "install.exe" file, then they their system will be infected with the FakeRean Trojan horse. FakeRean can cause damage to a computer’s system files and prove difficult to manually detect and remove in some cases. FakeRean is also known as W32/FakeAV.AE!genr, W32/FakeRean.A.gen!Eldorado or TrojanDownloader:Win32/FakeRean.
File System Details
|#||File Name||Size||MD5||Detection Count|
|1||%LOCALAPPDATA%\Microsoft\Windows\Temporary Internet Files\Content.IE5\FV3G78HU\go.exe||168,960||d4cfdb42e6af91847fb3965675a888a7||70|
|2||%TEMP%orary Internet Files\Content.IE5\42D8JTLC\antivirus.exe||167,424||89bba09c44e26fc370156b91ac65f056||44|
|4||%USERPROFILE%\My Documents\My Pictures\installer_70108.exe||195,584||dc762d29b9c7b18b28ae9b2c4dad860b||6|
|5||%LOCALAPPDATA%\Microsoft\Windows\Temporary Internet Files\Content.IE5\9FU1KFFR\movie.exe||181,760||af1737dea3c3d825403d8eb155820a17||5|
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.