Home » News » Rogue Antispyware » Remove AntiMalware, AntiMalware Removal

Remove AntiMalware, AntiMalware Removal

By Bryan on November 10, 2009 | Rogue Antispyware, AntiMalware, Anti Malware, Ant-iMalware, Remove AntiMalware Remove AntiMalware, AntiMalware Removal

AntiMalware is a rogue security application trying to convince the user of being a part of Windows security center. Although the program might look like a legitimate system protection tool and imitate some of its actions, the actual purpose of Anti Malware is to destruct the existing computer security and make it accessible for the other malware applications.

AntiMalware is extremely dangerous because it is able to delete the real security programs therefore preventing them from detecting and removing AntiMalware itself. It is also made for stealing money from the users who fall for this trick and actually take AntiMalware for a real security tool. They are urged to purchase AntiMalware in order to keep their computer clean and virus-free. Unfortunately, Anti Malware is not able to provide any system protection services as it is only made for corrupting the system. AntiMalware also displays various fake security warnings, such as:

User’s activity loggers detected!
It’s strongly recommended to remove detected threats right now!

AntiMalware detected the virus of the harmful program on your computer!
Internet Explorer is infected with worm Rootkit.Win32.Agent.pp. This worm can harm your computer.

AntiMalware network security alert
Network attack rejected!
Your computer is being attacked from remote host. Attack has been classified as Remote code execution attempt.


More Antimalware screenshots at our forum

Do not trust AntiMalware and remove it upon detection.

AntiMalware websites

activesecurityguard.cn
webdocuments.cn
grahamscansecurity.cn
Learn how to block rogue websites

New processes created

antimalware.exe Learn how to remove malicious processes

New AntiMalware registry entries created

HKEY_CLASSES_ROOT\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000}
HKEY_LOCAL_MACHINE\SOFTWARE\Active Security
HKEY_LOCAL_MACHINE\SOFTWARE\AntiMalware
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AntiMalware
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "AntiMalware"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{5E2121EE-0300-11D4-8D3B-444553540000}"
Download RegistryBooster 2010 to scan your registry errors
Learn how to remove malicious registry entries

New files and directories created

c:\Program Files\AntiMalware
c:\Program Files\AntiMalware\amext.dll
c:\Program Files\AntiMalware\antimalware.exe
c:\Program Files\AntiMalware\help.ico
c:\Program Files\AntiMalware\malw.db
c:\Program Files\AntiMalware\uninstall.exe
c:\Documents and Settings\All Users\Desktop\AntiMalware Support.lnk
c:\Documents and Settings\All Users\Desktop\AntiMalware.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiMalware
c:\Documents and Settings\All Users\Start Menu\Programs\AntiMalware\AntiMalware Support.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiMalware\AntiMalware.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\AntiMalware\Uninstall AntiMalware.lnk
%Temp%\4otjesjty.mof
%Temp%\c.dat
Learn how to unregister malicious DLL files

Symptoms in a Hijackthis log

O4 - HKCU\..\Run: [clspackxq.exe] C:\DOCUME~1\USERNAME\LOCALS~1\Temp\clspackxq.exe
O4 - HKCU\..\Run: [AntiMalware] "C:\Program Files\AntiMalware\antimalware.exe" -noscan

How to remove AntiMalware

To remove AntiMalware manually you must block rogue AntiMalware related websites, remove malicious processes and registry entries, unregister dlls and delete all malicious AntiMalware files from your computer.
Please note: cleaning your computer is a difficult and dangerous task, manually editing registry entries and removing processes and files may cause serious damage to your system. We strongly recommend scanning your computer with one of the legitimate antispyware scanners.

Scan your computer

More Rogue Antispyware news

Remove Malware Protection Center fraud

Remove Malware Protection Center fraud

Malware Protection Center is designed to look like a decent security program but the looks are deceiving. The tool is actually malicious and fraudulent. If Malware Protection Center reports "infections" on a screen of your PC, it’s Malware Protection Center itself that should be deleted with no hesitation.Malware Protection Center is quite pesky as it loads enormous amounts of counterfeit security alerts. Read more.


News categories

Latest news