Title: XP AntiMalware

Type: Rogue Antispyware

Remove XP AntiMalware. Removal instructions

Also known as: XPAntiMalware

Severity scale:

(67 / 100)

XP AntiMalware is a rogue anti-malware program that is promoted through the use of Trojans, browser hijackers and other similar malware. When your computer is infected with this bogus software, you will see many fake security alerts and notifications stating that your computer is infected. While running, XPAntiMalware will supposedly scan your computer and display a variety of infections that won't be removed unless you first purchase the program. The scan results are false, you can safely ignore them. The same could be said about fake system security alerts, you should ignore them too.

To make things even worse, XP AntiMalware will hijack Internet Explorer so that you will be constantly redirected to various misleading websites that promote malicious software or display misleading online ads. The rogue application will also block security related websites and antivirus software to protect itself form being deleted. As you can see, program is nothing more but a scam. Please use the removal guide below to remove XP AntiMalware from your PC as soon as possible.

XP AntiMalware removal instructions:

1. Click Start->Run (or WinKey+R). Input: "command". Press Enter or click OK.

2. Type "notepad" as shown in the image below and press Enter. Notepad will open.

3. Copy and past the following text into Notepad:

Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USERSoftwareClasses.exe]
[-HKEY_CURRENT_USERSoftwareClassessecfile]
[-HKEY_CLASSES_ROOTsecfile]
[-HKEY_CLASSES_ROOT.exeshellopencommand]

[HKEY_CLASSES_ROOTexefileshellopencommand]
@=""%1" %*"

[HKEY_CLASSES_ROOT.exe]
@="exefile"
"Content Type"="application/x-msdownload"

4. Save file as "exefix.reg" (without quotation-marks) to your Desktop.
NOTE: choose Save as type: All files

5. Double-click to open exefix.reg. Click "Yes" for Registry Editor prompt window.

6. Download Spyware Doctor or an automatic removal tool below. Update Spyware Doctor and run a full system scan.

If you can't complete the above steps then please use another PC to download an automatic removal tool and exefix.reg (Right Click (Save Target As)) to download file. Copy these files to USB flash drive or any other external media and transfer them to infected computer. Launch exefix.reg file first and then install Spyware Doctor.

Related files: %UserProfile%Local SettingsApplication Dataave.exe

XP AntiMalware properties:
• Changes browser settings
• Shows commercial adverts
• Connects itself to the internet
• Stays resident in background

Automatic XP AntiMalware removal:

remover for XP AntiMalware

SpyHunter is recommended remover to uninstall XP AntiMalware. You should confirm using free trial that it detects current version of parasite.

Note: Tested and Confirmed means that we have tested spyware remover with multiple versions of XP AntiMalware and got the best results. There might be updated or modified version of particular parasite that require manual killing of parasite process or an update. In such case try other removers in the line.

Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove XP AntiMalware using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

Tested and Confirmed! STOPzilla removes XP AntiMalware (2010-03-17 04:38:09)

Malwarebytes Anti Malware

download | review

Tested and Confirmed! Malwarebytes Anti Malware removes XP AntiMalware (2010-03-17 04:38:09)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing XP AntiMalware (2010-04-28 07:41:22)

XoftSpySE Anti Spyware

download | review

XP AntiMalware manual removal:

FORUM:
Discuss XP AntiMalware in
spyware removal forum

Kill processes:
ave.exe

HELP:
how to kill malicious processes

Delete registry values:
HKEY_CURRENT_USERSoftwareClasses.exe
HKEY_CURRENT_USERSoftwareClasses.exeDefaultIcon
HKEY_CURRENT_USERSoftwareClasses.exeshell
HKEY_CURRENT_USERSoftwareClasses.exeshellopen
HKEY_CURRENT_USERSoftwareClasses.exeshellopencommand
HKEY_CURRENT_USERSoftwareClasses.exeshellrunas
HKEY_CURRENT_USERSoftwareClasses.exeshellrunascommand
HKEY_CURRENT_USERSoftwareClasses.exeshellstart
HKEY_CURRENT_USERSoftwareClasses.exeshellstartcommand
HKEY_CURRENT_USERSoftwareClassessecfile
HKEY_CURRENT_USERSoftwareClassessecfileDefaultIcon
HKEY_CURRENT_USERSoftwareClassessecfileshell
HKEY_CURRENT_USERSoftwareClassessecfileshellopen
HKEY_CURRENT_USERSoftwareClassessecfileshellopencommand
HKEY_CURRENT_USERSoftwareClassessecfileshellrunas
HKEY_CURRENT_USERSoftwareClassessecfileshellrunascommand
HKEY_CURRENT_USERSoftwareClassessecfileshellstart
HKEY_CURRENT_USERSoftwareClassessecfileshellstartcommand
HKEY_CURRENT_USERSoftwareClasses.exeshellopencommand | @ = ?�??�?%AppData%ave.exe?�? /START ?�?%1?�� %*?�?
HKEY_CURRENT_USERSoftwareClasses.exeshellopencommand | IsolatedCommand = ?�??�?%1?�� %*?�?
HKEY_CURRENT_USERSoftwareClasses.exe | @ = ?�?secfile?�?
HKEY_CURRENT_USERSoftwareClasses.exe | Content Type = ?�?application/x-msdownload?�?
HKEY_CURRENT_USERSoftwareClassessecfileshellopencommand | @ = ?�??�?%AppData%ave.exe?�? /START ?�?%1?�� %*?�?
HKEY_CURRENT_USERSoftwareClassessecfileshellopencommand | IsolatedCommand = ?�??�?%1?�� %*?�?

HELP:
how to remove registry entries

Delete files:
%UserProfile%\Local Settings\Application Data\ave.exe

HELP:
how to remove harmful files

Information added: 2010-03-17 04:38:09
Information updated: 2010-04-28 05:04:07

Additional resources related to XP AntiMalware:

Attention: If you know or you have a website or page about XP AntiMalware removal, feel free to add a link to this list: add url

more resources

<Guest>

la sequence n'est pas reconnue comme sequence de commande de registre...

Reply »

2010 03 20

<Guest>

i did everything and the spyware doctor said it removed all the trojans and stuff, but why do i keep getting a popup from the anti malware?

Reply »

2010 04 16

<Guest>

FYI- we beat this virus once, or so we thought...it comes back as vma.exe At least the user knew enough this time not to think it was real and follow all the faux prompts. We are running NAV, superanti-spyware, SpyBot AND MalwareBytes...how many damn software do we need to get rid of this thing!

Reply »

2010 04 16

Post Comment:

Attention: Use this form only if you have additional information about XP AntiMalware parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Latest spyware news:

Subscribe to news

Similar parasites:

Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.