Anti-Malware Lab

What is Anti-Malware Lab?

Anti-Malware Lab is a fake security program designed to scare users off by displaying various notifications regarding inexistent PC infections in an attempt to trick them into purchasing a license of the software.

How Did I get infected with Anti-Malware Lab?

As in most cases, this fake antivirus client is installed as part of an elaborated larger infection mechanism setup by digital criminals in order to steal money from unsuspecting victims. This usually happens when the victim PC is inadequately updated with the latest security patches and vulnerability fixes, reason why Anti-Malware Lab is usually found on computers with vulnerable flash player or outdated Adobe reader installations.

What is Anti-Malware Lab Doing to My Computer Right Now?

Once installed on a vulnerable computer, Anti-Malware Lab will most likely secure its presence by conducting various operating system modifications at both registry and file system level. Once this is done, Anti-Malware Lab will start displaying various annoying messages regarding the fact that the PC is infected. This is indeed true and the problem should not be treated lightly, however, the infection is caused by Anti-Malware Lab and other related malware that aid this fake antivirus client to spread on the Internet.

According to our experience, it is recommended to follow the necessary steps in order to properly delete Anti-Malware Lab as well as any other related malicious software that may be affecting the operating system in correlation with the presence of this fake antivirus client.

Anti-Malware Lab

System Smart Security

» Download Anti-Malware Lab Removal Software

What Do I Do To Remove Anti-Malware Lab?

The first recommended step is to follow the manual removal guide included below in this article. The guide has been written based on our personal analysis as well as a result of generic community reports and support offered by our readers, reason why we would like to ask any person that has relevant experience interacting with Anti-Malware Lab to comment on whatever data has been found on their systems related to this fake security client.

Automatic Anti-Malware Lab Removal

Online Anti-Malware Lab Removal Service

computer repair

Remove Proxy Setting so You Can Connect to the Internet Again. Some need this some do not.

Proxy Settings

Anti-Malware Lab Manual Removal Procedures

The first step you must take in order to remove Anti-Malware Lab is to stop its main running process:

  • [random].exe

Unfortunately Anti-Malware lab does not have a static main executable file name, reason why the user will have to identify it based on a predefined known file path location.
Known File Path Locations
XP:

  • C:\Documents and Settings\%User Name%\Application Data\[random]\[random].exe

Vista / Windows 7:

  • C:\Users\%User Name%\AppData\Roaming\[random]\[random].exe

To stop this process you can either identify it in the process manager or task manager (based on the fact that this malware has a process name composed of randomly chosen alpha-numeric characters) or simply navigate to the above mentioned file system paths and try to identify the malware’s files based on a descending date sorting of the folder’s contents.
If for some reason you are not sure how to remove Anti-Malware Lab running process and related files it is recommended to read the content that we have published related to how to terminate a running process. Additionally, in in order to make sure that no other infections are present on the system or to restore certain functionality that may have been affected by Anti-Malware Lab it is recommended to boot into safe mode with networking and download Spyware Doctor with Antivirus from the links found in this article.

KNOWN LOCATIONS OF THIS VIRUS

Windows XP:

  • C:\Documents and Settings\%User Name%\Application Data\[random]\

Windows Vista / Windows 7:

  • C:\Users\%User Name%\AppData\Roaming\[random]\

Once you have deleted the above executable, it is crucial to make sure that Anti-Malware Lab will not be installed again in the system. For this purpose, we recommend using Spyware Doctor with Antivirus to scan the entire operating system for any Anti-Malware Lab adjacent infections.

If you find this threat too hard to remove it is always possible to contact a professional computer repair service that can remotely delete Anti-Malware Lab as part of a secure and safe procedure.

Anti-Malware Lab Registry Removal Procedures

PLEASE NOTE: Editing the registry can cause fatal operating system problems and flaws, reason why it is not recommended for inexperienced PC users to conduct the instructions found in this section. Optionally, in order to avoid the manual registry cleaning procedures required for Anti-Malware Lab removal it it is recommended to install and use a copy of PC Health Advisor.
Here are the registry traces for your reference only:

  • HKEY_CLASSES_ROOT\PersonalSS.DocHostUIHandler
  • HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “RunInvalidSignatures” = “1"
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “ProxyServer” = “http=127.0.0.1"
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “Anti-Malware Lab"
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random].exe"
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options “Debugger” = “svchost.exe”

Anti-Malware Lab Directories:

XP

  • C:\Documents and Settings\%User Name%\Application Data\[random]\

Windows 7 / Windows Vista

  • C:\Users\%User Name%\AppData\Roaming\[random]\

Due to the fact that Anti-Malware Lab is known to create different folder names for each of its installations it is recommended to use caution when deleting folders that you believe are to be related with this malicious software.

Conclusion

The removal of Anti-Malware Lab can be a tricky process, however, in order to avoid the risks of conducting any manual procedures (especially when working with sensitive data stored on the infected PC) it is recommended to use the services of a professional online computer repair company. In order to make sure that the job is done properly and that Anti-Malware Lab will not bother you again it would be a good idea to install and maintain a legitimate antivirus solution such as Spyware Doctor with Antivirus.

RemoveVirus.org cannot be held liable for any damages that may occur from using our community virus removal guides. Viruses cause damage and unless you know what you are doing you may loose your data. We strongly suggest you backup your data before you attempt to remove any virus. Each product or service is a trademark of their respective company. We do make a commission off of each product we recommend. This is how removevirus.org is able to keep writing our virus removal guides. All Free based antivirus scanners recommended on this site are limited. This means they may not be fully functional and limited in use. A free trial scan allows you to see if that security client can pick up the virus you are infected with.