Sunday, 3 April 2011
Antimalware Tool is a fake security software (rogue). It is from the same family as: Antivirus Antispyware 2011, AntiVirus System 2011, Security Inspector 2010, AntiVirus Studio 2010, Desktop Security 2010, Total PC Defender 2010, Desktop Defender 2010, Contraviro, UnVirex.
Antimalware Tool displays a lot of disturbing warning messages pushing users to purchase a license.
If your PC is infected with Antimalware Tool, follow pcthreat guide to remove the infection.
Fake scanner page:
Source code (obfuscated)
If you are interested into code debfuscation you must see this interesting article from Nicolas Brulez in MISC N°54 (March/April 2011) Malware Corner (French)
Fake remove guide from the rogue:
The rogue is loaded with rundll32.exe with the argument "DllUnregisterServer":