Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Anti Spy Protector 2009 help [Moved]

  • Please log in to reply
1 reply to this topic

#1 jphenry36


  • Members
  • 1 posts
  • Local time:06:19 AM

Posted 02 September 2009 - 10:53 AM

I am new to this so please let me know if I left any info out.

I have a computer that has been infected with some sort of AntiSpy Protector 2009 variant. Here are the symptoms:

Computer startup is extremely slow. One the desktop loads, none of the start up applications will launch.

When trying to open anything that relies on an "EXE" to run a command box opens (flashes) then closes and the ensuing program does not run. This does not seem to effect any document or other type of file that is not "EXE" driven.

I have noticed that one clicking on an application such as MalwareBytes, the command box that opens redirects the path from "C:\program files\ malwarebyte's anti-malware" to "C:\program files\desote.exe"

After several clicks and some speed reading it appears this is happening to all applications that I try to launch, not just security apps. I am unable to run anything from Antivirus clients to solitaire. I cannot open msconfig, regedit, and the list goes on.

Any and all research that I have done, says to delete the desote.exe file and any variant of it from the C::\ windows\ system32 folder.

Not being a total nube I renamed the two files that I found to desote.old and ddesot.old. Once doing this windows no longer can associate an EXE file. It opens the file association window and asks which application would you like to use to run the program.

This being the case, I named the files back to the original, and tried only renaming one at a time. The same results are experienced each time.

Again I apoligize if I this topic has been discussed somewhere else, but any help or points in the right direction would be appreciated.


BC AdBot (Login to Remove)


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator

  • Moderator
  • 37,008 posts
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:07:19 AM

Posted 02 September 2009 - 05:31 PM

As no logs have been posted, I am shifting this topic from the specialized HiJack This forum to the Am I Infected forum.

==>PLEASE DO NOT NOW POST LOGS<== unless a log is specifically requested.
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users