Home / Spyware Encyclopedia / Fake Anti Spyware.AntiMalware << Back

Recommendation to Automatically remove Fake Anti Spyware.AntiMalware


Our products can remove Fake Anti Spyware.AntiMalware and thousands of other Virus and Spyware automatically and instantly.

Fake Anti Spyware.AntiMalware Details


  • Category Fake Anti Spyware
  • Discovered 11/10/2009 11:39:16 AM
  • Modified 8/9/2023 3:10:13 PM
  • Threat Level Critical
  • Category Description
    These are programs which look like any legitimate program but usually download without users permission, entice users into buying them by showing fake results to improve users PC performance. They may also download spyware and other unwanted programs.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
systemwindows.exe 57344微软中国1.0.0.01676bd2d7be48b73a058979b918ad062 
200903.exe 26893vbAccelerator1.0.0.1350ca97182147a0b5e9f6726f68fb6becd 
winagent.exe 89600NTWind Software2.0.7.0d9e6f9d0c74757cfa315643ce323ff3a 
exe.exe 56320Microsoft Corporation5.2.3790.079e6875ae7683a7287d58c987523c8f6 
111exe.exe 55808Microsoft Corporation5.0.2195.660177928a0f3a6fc954716519cc2eb16567 
wscsvc32.exe 949760Microsoft Corporation1.0.0.16a8716db05fc7c860d033c1bd1092d35 
dd-file.exe 126976Lrfdfirftomtrfhluydgs Jenlljtjqsnxn6.0.4.1b261c8a5f516c4215acd347ed93e45cf 
chetvpont.exe 135168Geezdamaygxebeapc6.1.1553.2737e0b8d2087156947fc2d63c53f4ed23ce 
antimalware.exe 1572864Active Security Software1.0.0.1ee13a46e54cf326c16277c862a56512c 
antimalware.exe 1572864Active Security Software1.0.0.1d7cb2ac94a4ad92df54f46fa1a1518dc 

The following Registry Entries were created:
..\System\CurrentControlSet\Services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\"%das.au.ls%\temp\4_pinnew.exe"\"%root%\docume~1\admin\locals~1\temp\4_pinnew.exe:*:enabled:enabled"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"antimalware"\""%pf%\antimalware\antimalware.exe" -noscan"
..\Software\Microsoft\Windows\CurrentVersion\Uninstall\antimalware\(Default)
..\System\CurrentControlSet\Enum\root\legacy_ndisfileservices32\(Default)
..\System\CurrentControlSet\Services\ndisfileservices32\(Default)
..\Software\mediasolaris\(Default)
..\Software\active security\(Default)
..\Software\Microsoft\Windows\CurrentVersion\\"tr"
..\Software\Microsoft\Windows\CurrentVersion\\"cf"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"poprock"\"%das.au.ls%\temp\b.exe"

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.