Max Secure Software: Encyclopedia

Home / Spyware Encyclopedia / Fake Anti Spyware.AntiMalware << Back

Recommendation to Automatically remove Fake Anti Spyware.AntiMalware

Our products can remove Fake Anti Spyware.AntiMalware and thousands of other Virus and Spyware automatically and instantly.

Fake Anti Spyware.AntiMalware Details

Category Fake Anti Spyware
Discovered 11/10/2009 11:39:16 AM
Modified 8/9/2023 3:10:13 PM
Threat Level Critical
Category Description
These are programs which look like any legitimate program but usually download without users permission, entice users into buying them by showing fake results to improve users PC performance. They may also download spyware and other unwanted programs.

The following Files were created:

VALUE	FILESIZE	COMPANYNAME	VERSION	SIGNATURE
200903.exe	26893	vbAccelerator	1.0.0.135	0ca97182147a0b5e9f6726f68fb6becd
winagent.exe	89600	NTWind Software	2.0.7.0	d9e6f9d0c74757cfa315643ce323ff3a
exe.exe	56320	Microsoft Corporation	5.2.3790.0	79e6875ae7683a7287d58c987523c8f6
111exe.exe	55808	Microsoft Corporation	5.0.2195.6601	77928a0f3a6fc954716519cc2eb16567
chetvpont.exe	135168	Geezdamaygxebeapc	6.1.1553.2737	e0b8d2087156947fc2d63c53f4ed23ce
antimalware.exe	1572864	Active Security Software	1.0.0.1	ee13a46e54cf326c16277c862a56512c
antimalware.exe	1572864	Active Security Software	1.0.0.1	d7cb2ac94a4ad92df54f46fa1a1518dc
acdc.exe	111104			cdbfedf68e0878e5549eaef5f04a6737
6_ldr3.exe	96768			ae08d9e9b245609df4b0b81057f03cf4
teste1_p.exe	309760			a7c7dca0a8fa7be8c4bd71ca8fa4c95a

The following Registry Entries were created:

..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\4_pinnew.exe"\"%root%\docume~1\admin\locals~1\temp\4_pinnew.exe:*:enabled:enabled"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"antimalware"\""%pf%\antimalware\antimalware.exe" -noscan"

..\Software\Microsoft\Windows\CurrentVersion\Uninstall\antimalware\(Default)

..\System\CurrentControlSet\Enum\root\legacy_ndisfileservices32\(Default)

..\System\CurrentControlSet\Services\ndisfileservices32\(Default)

..\Software\mediasolaris\(Default)

..\Software\active security\(Default)

..\Software\Microsoft\Windows\CurrentVersion\\"tr"

..\Software\Microsoft\Windows\CurrentVersion\\"cf"

..\Software\Microsoft\Windows\CurrentVersion\Run\\"poprock"\"%das.au.ls%\temp\b.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Recommendation to Automatically remove Fake Anti Spyware.AntiMalware

Fake Anti Spyware.AntiMalware Details

Useful Links