Pro Antispyware 2009 or Antispyware Pro 2009 is a rogue antispyware application. It is from the WinSpywareProtect family. The program uses fake online scanners, a variety of malicious software and advertising on the Internet for distribution. If you click on the ads, it will open a site, which immediately appear pop-up with a warning that you are infected and you must download and install Pro Antispyware 2009 to clean your computer.
During installation, it configures itself to run automatically every time, when you start your computer. Once running, Pro Antispyware 2009 will scan your computer and reports false or exaggerated system security threats on the computer that cannot be removed unless you first purchase the software. Do not do it!
Symptoms in a HijackThis Log:
O2 – BHO: mxlivemedia browser enhancer – {1C2D9A21-18DE-86A7-CCB2-A770588A16CF} – C:\WINDOWS\system32\kcnffqtgrtmhj.dll
O4 – HKLM\..\Run: [royxolvezsjz] C:\WINDOWS\System32\regsvr32.exe /s “C:\WINDOWS\system32\kcnffqtgrtmhj.dll”
O4 – HKLM\..\Run: [AntiSpyware Pro] “C:\Program Files\AntiSpyware Pro\AntiSpyware Pro.exe” hide
O4 – HKCU\..\Run: [Pro Antispyware 2009] “C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\proas2009.exe” /autorun
Use the following instructions to remove Pro Antispyware 2009 or Antispyware Pro 2009.
- Download Malwarebytes Anti-Malware (MBAM).
- Once downloaded, close all programs and Windows on your computer (including this one).
- Double-click on the icon named mbam-setup.exe to install the application.
- When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure a checkmark is placed next to Update Malwarebytes’ Anti-Malware and Launch Malwarebytes’ Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select “Perform Quick Scan”, then click Scan.
- MBAM will now start scanning your computer for malware. This process may take some time to finish,so please be patient.
- When the scan is complete, click OK, then Show Results to view the results.
- Make sure that everything is checked, and click Remove Selected.
- MBAM will now delete all of the files and registry keys and add them to the quarantine.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.
If you need help with the instructions, then post your questions in our Spyware Removal forum.
I can download mbam.exe but the rogue programme prevents me from installing it, it also prevents any System Restore attempts. Is there any way I can get round this please
Probably your computer infected with TDSSserv trojan. Read and follow these steps.