Ok, My computer is really stuffed up! I will make some description what happened: One day i opened the Taskmanager and noticed come prog running, called pup.exe. i closed it and saw other progs running, like lsass.exe, csrss.exe, smss.exe, and things like msblaster.exe and really weird progs i have never heard of before! now i deleted the folder where the pup.exe was located in (C:\Progs\dm\0\pup.exe) and deleted lots of registry things containing things abut the pup.exe i thought it was all fine and opened my spybot to check once again, it found about 400 viruses/backdoors/trojans/dialers/stuff that wasnt installed by me or my parents/family. well i think u know what my eraction was like! I ran it once again, after fixing them, and there had been another abotu 50 of them coming up. i did that like for an hour and tehre were more and more coming up. Then i closed my internet connection and did it one last time and set my sygate firewall on Block all and restarted connection, somehow there were still comine about 20 new progs per 10 minutes throu. so now i am here, and here about all sorts of things what this pup.exe does and that nobody has really ever eliminated these problems. couild anyone help me as soon as possible? pup.exe is still running, IE doesnt work because my svchost.exe collapses on startup of comp, and even things like copy/paste dun work. PLS help me, thanks PS.: if needed i can make some screenshots and post them

dude, u got some HELL OF A BIG PROBLEM here well first of all, get your hands on AD-AWARE (or spybot is good if u r comfy wid dat.. but i prefer adaware) update your antivirus definitions and scan it first b4 starting the check, remove your internet connection PHYSICALLY (if u get internet thru cable, unplug it totally) then run spybot (or adaware) twice or thrice (ofcourse with the latest definitions for that too) and then rescan your PC wid da antivirus software then go online, update your windows (http://windowsupdate.microsoft.com ) and download all the stuff there and then run a scan ... and yeah, try using ZONEALARM (its da world's best firewall available till date... its nice) u shud have your PC all fixed up once and for all anything else, mail me CHetan Thaker

You say: IE doesn't work because my svchost.exe collapses on startup of comp, and even things like copy/paste dun work You've got blaster (or welchia) worm on your computer! You can find the remedies for this in about 20 other posts around here, but here are the steps again: the steps I would suggest: 1. block port 135 in your firewall 2. scan your computer with an up to date virus scanner (if getting virus definitions updates on internet is impossible because of your svchost problem, download them on another computer and put them on a floppy disk or cd to copy the update to your own computer) 3. run the tools that scan for and fix W32.Blaster.Worm and W32.Welchia.Worm (you can find then here: http://securityresponse.symantec.com/avcenter/tools.list.html 4. run windows update (there should be a shortcut in your start menu) and install all critical updates. 5. scan your computer again to be sure you're not infected anymore... for the spyware stuff use adaware as told above :)

Looks like you may have a trojan or virus as posted here :- http://www.techsupportforum.com/computer/topic/9455-1.html Try the Mcafee "Stinger" :- http://download.nai.com/products/mcafee-avert/stinger.exe YES - Do use Ad Aware :- http://www.lavasoft.de/support/download/ Also try Spybot S&D :- http://download.com.com/3000-2144-10122137.html?part=104443&subj=dlpage&tag=button Good Luck. . . :o)

1st you should create a snapshot of your system under system tools (system restore)just in case you need to go back if things don't go as planned. Then you should go to your task manager and kill the 'pup' running. After that you should do a files and folders search of your system and look for the following files and delete them: winpup.exe, pup.exe, sysu.exe, 2831667.exe, 3644961.exe, 1923769.exe, 81911867.exe, 70399111.exe, internet optimizer, ddm, dd_m, amcompat. Even just running the numbers/names without the '.exe' ending the files should come up. Also delete everything in your temporary internet files folder. Next to last, run REGEDIT and look for and delete any of the above values. Some do not have the '.exe' ending but will be named things like 'pup' or 'winpup.setup'. Delete them all. You may have to delete some of the registry keys as well but do so with caution. If you don't 'pup' will creep back in. Finally, run MSCONFIG and look for anything suspicious i.e. values running in startup with the above names. I hope this helps. It took me about 8 hrs. to delete 'pup'. I kept missing the 70399111 file name. Also it would be a very good idea to download adaware for free and spybot-search and destroy for free and running them to see what they can kill.

My, that is one big load of trash to get rid of . . . ALSO. . . Disable system recovery.... Do this because some of the files you are about to delete may be covered by the system recovery. Restart and then hack you way through. Once SURE you have got everything, you can re enable system recovery.... :o)

I also found this pup.exe running on my WinXP computer. I had no viruses, but this pup.exe kept bringing ads up on my screen. In the task manager (alt-ctrl-del) I right clicked on pup.exe, then clicked on "Go To Process". It highlighted a process called "99862307.EXE". A search of my hard drive found 3 different pup files. I also found 99862307.exe in my C:/windows/system32 folder. I scanned through that folder to see if there were any other EXE files with that naming convention. Sure enough I found one other called 73397463.exe. I deleted all 5 of these files and hopefully that's the end of this PUP thing! So if you have it, delete all those files! By the way, I ran SpyBot Search & Destroy before deleting anything and it didn't find it. So either it's not spyware, or SpyBot doesn't know about it yet. Hope this helps someone out there.