July 8, 2011

Anti-Malware Lab.

Anti-Malware Lab is a fake antivirus program that was recently detected infecting random computer systems. It is a predecessor of infamous Internet Security Essentials, My Security Shield, My Security Engine rogue antiviruses.
The infiltration of Anti-Malware Lab is based on Trojan viruses meaning that it is completely impossible to stop this badware at the stage of its infiltration.

Anti-Malware Lab uses the same techniques as other rogue programs. It creates an illusion that your system is at risk, suffering from a bunch of system infections. The program causes a flood of pop up ads and alerts in the system providing contrived information, such as harmful software has been detected on your machine. Scanners of Anti-Malware Lab make the situation look even worse. They are launched constantly without wish or permission of the user. Running for a few minutes a scanner of Anti-Malware Lab concludes that your system is at risk. Basically it displays a list of files supposedly harming your system. Have in mind that these files probably do not even exist on your system. Even if they do, they are completely harmless.
If you wonder why this show is created on random computer systems, the answer is very simply. Each such campaign is followed by an offer to purchase a full version of Anti-Malware Lab. The program attempts to prove that this is the only way to solve security issues that appeared on your machine. However, the actual problem is far away from this version. Once facing this scareware on your computer you should only think about removing Anti-Malware Lab from your computer as soon as possible.Running an upgraded version of a reputable antispyware will also guarantee that your system will be protected against this kind of attacks in future. 


Kill malicious Processes from Task Manager: 
  • <random>.exe
 Location of the infection:
  1. %Documents and Settings%\All Users\Application Data\[random]\[random].exe
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1?
  • HKEY_CLASSES_ROOT\PersonalSS.DocHostUIHandler
Although it is possible to manually remove Anti-Malware Lab, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend  malware and spyware removal applications.

After removing all these files, restart your computer and the issue will be fixed. And don’t forget to do update your Security Software, check the Firewall Settings and the Operating System and finally do a full system scan with the Security Software.


Post a Comment

Related Posts Plugin for WordPress, Blogger...

Search This Blog



Twitter Delicious Facebook Digg Stumbleupon Favorites More