How to remove XP Antimalware 2010
Wednesday, March 17th, 2010 at 3:08 amHome » Rogue Antispyware » XP Antimalware 2010
XP Antimalware 2010 description
XP Antimalware 2010 is named like a security program in order to attract people into purchasing the tool. XPAntimalware 2010 is actually useless as an anti-spyware; it can only mimic some actions usually performed by security tools.
XP Anti Malware 2010 displays imitations of system scan and infection alerts. The pop-ups urge purchasing the program for keeping a computer safe. XPAntimalware2010 is actually dangerous for a computer as it disables regular security apps and it redirects web browser to malicious websites. Don’t trust XP Antimalware 2010. Remove this fraud right after you notice its presence on you PC.
Get rid of XP Antimalware 2010
XP Antimalware 2010 is a Rogue Antispyware software
How to manually remove XP Antimalware 2010
To remove XP Antimalware 2010 spyware you must block XP Antimalware 2010 sites, stop and remove processes, unregister DLL files, search and delete all other XP Antimalware 2010 files and registry utility. Follow the XP Antimalware 2010 detection and removal instructions below.
The most typical software removal method is to remove XP Antimalware 2010 by using "Add or Remove Programs" service. However there may be hidden XP Antimalware 2010 files, running processes and registries in your computer, so XP Antimalware 2010 may recreate all other files after reboot.
XP Antimalware 2010 manual removal instructions
Block XP Antimalware 2010 sites:
security-pc-care.com
Read more how to block XP Antimalware 2010 sites
Stop and remove XP Antimalware 2010 processes:
av.exe
ave.exe
Read more how to kill XP Antimalware 2010 processes
Locate and delete XP Antimalware 2010 registry entries:
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CURRENT_USER\Software\Classes\secfile\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CLASSES_ROOT\.exe\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_CLASSES_ROOT\secfile\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "%1" %*
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command "(Default)" = "%UserProfile%\Local Settings\Application Data\av.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "AntiVirusOverride" = "1"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center "FirewallOverride" = "1"
Read more how to delete XP Antimalware 2010 registry entries
Download RegistryBooster 2010 to scan errors caused by XP Antimalware 2010
Detect and delete other XP Antimalware 2010 files:
av.exe
ave.exe
We strongly recommend you to use spyware remover to track XP Antimalware 2010 and automaticaly remove XP Antimalware 2010 processes, registries and files as well as other spyware threats.
XP Antimalware 2010
Trackbacks
- Remove Win 7 AntiMalware 2010, Win7 AntiMalware 2010 removal
- Remove Vista AntiMalware 2010, VistaAntiMalware 2010 removal help
- Remove XP Malware 2010, XPMalware 2010 removal help
Leave a Reply
Subscribe
Search
Categories
- Adware
- Backdoor
- Browser Helper Object
- Browser Hijacker
- Fake warning messages
- Keylogger
- Malicious domains
- Remote Administration Tool (RAT)
- Rogue Antispyware
- Tracking Cookie
- Trojan
- Worm
Latest spyware threats
- Decrypt Protect Virus
- Win 8 Protection 2013
- Vista Protection 2013
- Safe PC Cleaner
- SpeedMaxPc
- Securebit
- Error Repair
- System Care Antivirus
- PC Fix Speed
- Win 7 Security Cleaner Pro
- Vista Security Cleaner Pro
- Antivirus Security 2013
- AVASoft Professional Antivirus
- XP Security Cleaner Pro
- Homeland Security Virus
Recently commented
- Google Redirect Virus
- Fake Microsoft Security Essentials Alert
- Win 7 Security Cleaner Pro
- Win 7 Anti-Virus 2011
- Smart PC Cleaner
- XP Antivirus 2012
- Windows Microsoft Guardian
- RegFix Pro
- XP Antispyware 2013
- Myfreeze.com
- Privacy Components
Malicious domains
- 7search.com
- iCityFind
- Antivirsword.com
- Webantispy.com
- Antivirmore.com
- Antivirglass.com
- Oksave9.co.cc
- Smartsecadv.com
- AV-look.com
- Profantivir.com
Fake warning messages
- Firefox need to update immediately
- Kaspersky Internet Security 2011 Enhanced Protection Mode
- Comodo Enhanced Protection Mode
- Microsoft Security Essentials Enhanced Protection Mode
- McAfee Enhanced Protection Mode
- Norton Antivirus Enhanced Protection Mode
- ESET Smart Security Enhanced Protection Mode
- Microsoft Defender Enhanced Protection Mode
- Avast Enhanced Protection Mode
- Fake “Windows – No Disk” alert
Tutorials
- Contact Us
- How to block malicious websites using HOSTS file?
- How to delete registry entries?
- How to download and install Spyware Doctor
- How to kill malicious processes?
- How to recognize a rogue security program?
- How to recognize a rogue website?
- How to unregister DLL files?
- Signs of browser hijacker infection
Archive
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
Tags
Security News- Beware of Decrypt Protect Virus ransomware
- What is Win 8 Protection 2013 and why it is dangerous
- Delete Vista Protection 2013 rogue tool
- Do not trust Safe PC Cleaner optimizer
- Remove SpeedMaxPc fake system optimizer
- What is Securebit and why you need to remove it
- Do not trust Error Repair rogue system tool
March 23rd, 2010 at 1:44 am
Cheers mate. Mine was actually called “ave.exe”. Thought you should know. Thanks again
Reply
March 23rd, 2010 at 4:39 am
This is probably the single most annoying thing I’ve ever been infected with. Thanks much for the detailed removal info. Just stopping the process via taskmanager (it was ave.exe) gave me enough time to get my real anti-malware running.
Reply
Sam Reply:
April 20th, 2010 at 8:38 pm
I can’t believe an external program was able to get access to turn off my firewall!
Reply
Cara Reply:
April 28th, 2010 at 4:07 am
it dint just turn mine off it took it apart! i had to delete it and re-download!
Reply
March 23rd, 2010 at 7:33 am
DO NOT follow these registry edit directions, they will yield this error when trying to open any program.
“This file does not have a program associated with it for performing this action. Create an association in the folder options control panel.”
that causes more problems then the spyware itself, horrible advice
Reply
Matt Reply:
March 24th, 2010 at 4:11 pm
uh oh, too late, i removed the ave.eve from the registry using the above, and then from hard drive wherever it appeared and now when i try to open any programme i get the
“This file does not have a program associated with it for performing this action. Create an association in the folder options control panel.”
error, what can i do?
Reply
Rozky Reply:
March 24th, 2010 at 5:47 pm
The instructions work very well, what you have to do once you delete these files on the regedit is just to change the value to “%1″%” to avoid any further problems.
Reply
brian Reply:
March 28th, 2010 at 6:16 pm
i cant even open the regedit. i get this “This file does not have a program associated with it for performing this action. Create an association in the folder options control panel.” how do i go back and edit the value??????
Reply
Luciana Reply:
March 28th, 2010 at 11:03 pm
Apparently your registry editor is blocked by XP Antimalware 2010. Follow the removal procedure in a safe mode; this way the infection shouldn’t get in your way.
Ming Reply:
April 4th, 2010 at 12:16 am
Open control panel > folder options > file types > new (button) in the new window click advanced. In the file extension dialog box type exe. In the drop down menu locate and select application > click ok
This worked for me.
wombat Reply:
April 3rd, 2010 at 11:07 am
It took me 2 hours to fix my registry after following these instructions. DO NOT DELETE any of these values when you find them or none of your exe files will run and the icon for your browser in the start menu will stop working. Instead you need to edit the values back to the default settings by removing everything up to the “%1″ %* and the C:\Program Files\Internet Explorer\iexplore.exe for your browser start button.
On a very weird note I never found the ave.exe file on my computer, but it was the file listed in my registry.
Another good practice is to empty all your temp file folders and your C:\windows\prefetch folder and then empty your recycle bin to make sure something isn’t still lurking that will reinfect you.
Reply
wombat Reply:
April 12th, 2010 at 2:20 pm
I finally found the file that was causing the problem. It installed intself as a system file and I didn’t have those viewable in the windows explorer so it wouldn’t show up during any of the file searches. Once I made them visible I found it right away and deleted it no problem. During all this I found a registry fix in a zip file that restored the broken executables issues that results if you delete the values in the registry as oppsed to editing them.
Reply
pissedoff Reply:
April 24th, 2010 at 7:51 pm
agreed – horrible advice. i’ve spent the last 3 hours trying to get windows to recover from the botched registry. still lots of work left to do to get back to normal, but at least windows loads now. argh.
Reply
Luciana Reply:
April 25th, 2010 at 9:45 am
XP Antimalware 2010 messes the Windows registry up but there is a way to fix it. Click here for registry fix tutorial.
Reply
March 24th, 2010 at 8:38 am
This worked perfectly for me. I might add that I did not delete all of the entries, but rather modified them and removed the information regarding the ave.exe execution.
Best of luck to you all. Thanks for the nice tutorial.
Reply
March 31st, 2010 at 7:30 am
This download removed this Attak after purchase this Software “Spyware Doctor”
Reply
April 5th, 2010 at 9:24 am
Just spotted this in the wild under vma.exe.
I just did asearch in the registry for vma.exe and it found all the locations to make the changes. do not just delete, Make the substitution as stated below.
It should read as follows “%1″ %* not “%1″%” the last char should be a * not a “
Reply
April 7th, 2010 at 6:49 am
ugh! Followed all the instructions…did d/l the programs but still cannot use IE or install the programs to get rid of the nasty thing. Am going to try empting the Prefetch folder as suggested and hopefully that will do the trick after now going on two days of messing with this critter. Any other suggestions would be greatly appreciated.
Reply
April 12th, 2010 at 3:55 am
I just bought Spyware doctor and the spyware has been removed.
Reply
April 16th, 2010 at 12:13 am
this was awesome help. thank you so much!
Reply
April 21st, 2010 at 2:17 am
well… this hasn’t worked… first I tried the processes for deleting the ave.exe files and then importing malware databytes through a file re-naming exercise but it wouldn’t start. I the tried sourcing the TDSS driver but it wasn’t there.
I then downloaded spyware doctor as recommended here and it all seemed fine.. the scan picked up the trojans etc but when I went to pay to cover the removal costs I found I couldn’t do so as the spyware prevented access to the net becasue the trojans kicked in….
I thne disabled the spydoctor auto function but while this should have allowed access to the net as the preventative function was disabled I now find I can’t access the net at all.
its now been three hours and I think I have seen all the advice the net has to offer but nothings worked so far … help welcome.
Am sending this from another computer
Reply