1. /
  2. Security Response/
  3. Trojan.Fakeavlock


Risk Level 1: Very Low

21 June 2012
3 December 2012 2:47:13 PM
Infection Length:
450,560 Bytes
Systems Affected:
Windows 2000, Windows 7, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista, Windows XP
Trojan.Fakeavlock is a Trojan horse that locks applications making the computer unusable and attempts to convince the user to purchase software in order to remove non-existent malware or security risks.

Antivirus Protection Dates

  • Initial Rapid Release version 20 June 2012 revision 018
  • Latest Rapid Release version 23 May 2013 revision 004
  • Initial Daily Certified version 20 June 2012 revision 020
  • Latest Daily Certified version 23 May 2013 revision 003
  • Initial Weekly Certified release date 27 June 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Medium
  • Payload: Misrepresents the security status of a computer and asks user to pay for software activation.
  • Causes System Instability: Performs actions that prevents the user from accessing certain programs on the computer.


  • Distribution Level: Low
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Andrea Lelli
2015 Internet Security Threat Report, Volume 20