AntiMalware
Posted: November 9, 2009
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
Threat Level: | 10/10 |
---|---|
Infected PCs: | 77 |
First Seen: | December 1, 2009 |
---|---|
OS(es) Affected: | Windows |
AntiMalware is an updated version of older types of rogue anti-malware programs that claim to detect and protect your PC from Trojans, rootkits and other types of malicious software while actually causing problems for your computer and begging for money. By using a popular PC security brand's logo and a Windows-friendly interface, AntiMalware attempts to goad you into spending money on its fake security features to stop all of the attacks that, in fact, originate from AntiMalware itself. AntiMalware is capable of blocking security-related programs and due to this function, should be shut down before any attempt to remove AntiMalware from your PC. However, SpywareRemove.com malware researchers are happy to note that once this is achieved, actual anti-malware products can remove AntiMalware harmlessly and without incurring longterm damage to your computer.
AntiMalware – a Fraudulent Program That Masquerades As Its Mortal Enemy
AntiMalware is just a recent version of rogue anti-malware programs like Zentom System Guard, Internet Security 2011, Internet Defender, Antimalware Tool, Security Defender and Antimalware Defender. Like its duplicates, AntiMalware will display misleading alerts and scanner results that announce the presence of high-level PC threats such as Rootkit.Win32.Agent.pp, Net-Worm.Win32.Mytob.t, Trojan-Downloader.HTML.Agent.aq or Virus.Win32.Hala.a. Because SpywareRemove.com malware experts have found zero evidence that AntiMalware can detect anything except for figments of its imagination, it's recommended that you ignore any unusual warning messages while AntiMalware is on your PC.
The point behind AntiMalware's fake alerts is to siphon money towards AntiMalware's criminal creators, since AntiMalware will only offer to remove all PC threats after you've purchased its full version. Doing this can endanger your bank account or credit card, and actually will put your PC farther from safety than simply getting rid of AntiMalware would do.
For the sake of reference, SpywareRemove.com malware analysts have provided these samples of AntiMalware's multitude of fake warnings (although this list shouldn't be considered conclusive):
"Antimalware security update for [operating system] (KB961118)"
Warning!
Infections on your PC can cause:
- Applications won’t start
- Unwanted advertising displaying
- Loss of Internet communication
- Lost documents and settings
- Some files can disappear from PC
- You need registered version of Zentom System Guard to remove these infections.
Click "Remove threats" to activate protection and eliminate these security hazards.
Attention! Network attack detected!
Your computer is being attacked from remote host. Attack has been classified as Remote code execution attempt.
Network intrusion detected! Warning! Network attack detected!
Process is trying to steal your passwords listed below. It is highly recommended to block this threat now.
Your computer is being attacked from a remote PC.
Attack from: 145.7.151.43:34630
Trojan.Spy threat has been detected.
This threat module advertises websites with explicit content. Be advised of such content being possibly illegal. Please click button below to locate and remove this threat now.
Warning! Removed attack detected!
AntiMalware has detected that somebody is trying to stole Your private data remotely via Trojan.Win32.Generic!BT.
Transfer for Your private data via Internet will start in: 10 seconds
We strongly recommend You to block attack immediately.
AntiMalware – Hacker attack detected
Your computer is subjected to hacker attack. Zentom System Guard has detected that somebody is trying to transfer Your private data via Internet. We strongly recommend you to block attack immediately.
Attention! Threat detected!
[Program_name].exe is infected with Trojan-BNK.Keylogger.gen
Private data can be stolen by third parties including card details and passwords.
It is strongly recommended to perform threat removal on your system.
Firewall file transfer detected
Hidden file transfer to remote host was detected
AntiMalware has detected that somebody is trying to transfer Your private data via Internet. We strongly recommend you to block attack immediately.
Warning! Threat detected!
Threat module detected on your PC!
Zlob.Porn.Ad threat has been detected. This threat module advertises websites with explicit content. Be advised of such content being possibly illegal. Please click button below to locate and remove this threat now.
Scorching Out AntiMalware's Fake Security with the Real Deal
Since AntiMalware considers real anti-malware products to be both a threat to itself and competition, you may need to exert a little extra effort to remove AntiMalware with an appropriate anti-malware program – in most cases, AntiMalware will attempt to block, not only security-related programs, but also unrelated applications. Starting Windows in Safe Mode, renaming a blocked program file to a generic name (like 'explorer.exe') or even booting Windows from an external device can help to stop AntiMalware from blocking its own deletion.
Until AntiMalware is removed, you should also be cautious of the possibility of browser redirect attacks that force your browser to load AntiMalware's website. SpywareRemove.com malware research team warns that any contact with AntiMalware's site or other scamware sites can result in further infections via scripted attacks. Using a browser with strong security settings can lower this possibility, although this shouldn't be considered a substitute for having anti-malware software to guard against AntiMalware infections as they occur.
Initial installations of AntiMalware and similar types of rogue anti-malware programs have often been noted to include pop-ups about fake anti-malware security updates. However, since related types of Trojan droppers may install AntiMalware regardless of what you select, you should consider your PC potentially-infected after any encounter with an unusual update window.
Aliases
More aliases (18)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:antimalware.exe
File name: antimalware.exeSize: 1.6 MB (1601536 bytes)
MD5: 4689058a0d017dc865f4969e8f4d3892
Detection count: 91
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 8, 2010
antimalware.exe
File name: antimalware.exeSize: 1.6 MB (1601536 bytes)
MD5: a15d8b2aba915c9d01ece6aed792a7e8
Detection count: 90
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 8, 2010
AntiMalware.exe
File name: AntiMalware.exeSize: 37.47 MB (37471560 bytes)
MD5: b7f355a106a75ad266ac85ef00e6faa3
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: January 21, 2010
Related Posts
- PUP.PC PowerSpeed Antimalware
- Tweakerbit Antimalware
- Activeris Antimalware
- Antimalware – Proven Antivirus Protection
- Antimalware PC Safety
THis page was awesome at helping me solve my problem.
Is there an easy way to do step 3? ive tried just searching for it and deleting but is that all i need to do?
will downloading this make my computer go faster..
Please help me get rid of this virus.
Computer antivirus, please help get out of this confusion.
please help me to remove this antivirus
Do i need to edit my registry?
i've deleted everything I've found that says Antimalware, but the pop ups persist. Where could this thing be hiding. When I searc my computer it says no matches found now, but the problem is still there
Has anyone got a way of contacting the companies that own this shit, i [REMOVED WORD]ing hate this virus shit on my computer.
Youtube: Fearon856
Someone please message me a number.
yea i cant stand the pop ups heellllppp mmmeee!! i have spywere on my comp now but its stil not gettin rid of it !!!!!!!!!!!
I pressed [ Alt + Ctrl + delete ] then [Applications] and clicked on the bug (mine was antimalwere) the pop ups now gone! YAY FINALY! I hope its not still infecting my comp though !
um yeah.... this is some f&*%in bulls&^t antimalware has my comp by the throat. cant enter safe mode and cant get on long enough before it crashes..... any suggestions????
Buena idea
I just purchased speedyPC, then nothing happened?? I hope this isn't a scam or hacker?!?!?!??!