Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help! PUP cant remove!!


  • Please log in to reply
9 replies to this topic

#1 Marlowg

Marlowg

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 10 December 2014 - 03:41 PM

Hi so lately i've been having issues with my computer. i have mcafee and a message keeps popping up saying there's a potential unwanted program and when i click to remove it the message keeps popping up. i went into the control panel and deleted some programs but one program called performance optimizer with the publisher linker ltd will not uninstall. when i try to delete it, it says:---------------------------

RunDLL
---------------------------
There was a problem starting C:\PROGRA~3\PERFOR~1\PERFOR~1.DLL
 
The specified module could not be found.
 
 
---------------------------
OK   
---------------------------
 I run mcafee scans and it tells me that theres nothing wrong but the PUP message keeps coming up. The mcafee message says: Name: Adware-BProtect and that it is quarantined from performance optimizer. Also when i start up windows i get errors saying a certain program is not working properly and sometimes by browser gets changed to something called astromenda. please help this is the only computer i have.


BC AdBot (Login to Remove)

 


#2 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 10 December 2014 - 03:50 PM

Hello there     :welcome:
 
Welcome to Bleeping Computer, I'm LighthouseParty. Let's run a couple of scans to see what could be causing this.
 
Step One:
Download and run Mini Tool Box

  • Click here to download MiniToolBox to your desktop.
  • Double click MiniToolBox.
  • Select the following and then press go.
  • Post the log in your next reply.

Flush DNS
Reset IE Proxy Settings
Reset FF Proxy Settings
List Installed Programs
List Restore Points
 
Step Two:
Install and run Malwarebytes Anti-Malware

  • Click here to download Malwarebytes to your desktop.
  • Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
  • On the dashboard, click update now.
  • After that, click scan now - the scan will now begin.
  • When the scan's completed, select apply actions - make sure the action is quarantine.
  • Restart your computer.

How to get the log.

  • On the dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.

Step Three:
Download and run Security Check

  • Click here to download Security Check to your desktop.
  • Double click SecurityCheck and follow the on-screen instructions.
  • A log should open, called checkup.txt.
  • Please post the contents of it in your next reply.

Thanks and good luck!



#3 Marlowg

Marlowg
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  

Posted 10 December 2014 - 03:56 PM

MiniToolBox by Farbar  Version: 30-11-2014
Ran by marg (administrator) on 10-12-2014 at 14:54:02
Running from "C:\Users\marg\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
 
=========================== Installed Programs ============================
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.2.1.650 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.2.1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AOL Toolbar (HKCU\...\AOL Toolbar) (Version:  - )
AOL Toolbar (HKLM-x32\...\AOL Toolbar) (Version:  - AOL Inc.)
AOL Uninstaller (Choose which Products to Remove) (HKLM-x32\...\AOL Uninstaller) (Version:  - AOL Inc.)
Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Control Center (HKLM-x32\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.0714.2131 - )
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0714.2132.36830 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help English (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help French (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help German (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0714.2131.36830 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0714.2132.36830 - ATI) Hidden
ccc-utility64 (Version: 2009.0714.2132.36830 - ATI) Hidden
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Marketplace Webslice IE8 (HKLM-x32\...\{CF67ED0C-F85D-4791-AED3-3FE882EDB45D}) (Version: 8.0 - Nextjump Inc)
Dell MusicStage (HKLM-x32\...\{F336F89D-8C5A-432C-8EA9-DA19377AD591}) (Version: 1.4.162.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.30 - ArcSoft)
Dell Stage (HKLM-x32\...\{D770F4B4-C422-45D9-8CEE-1B4C66E68CA8}) (Version: 1.4.173.0 - Fingertapps)
Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.1.1.1408 - CyberLink Corp.)
Dell VideoStage (x32 Version: 1.1.1.1408 - CyberLink Corp.) Hidden
Download Updater (AOL Inc.) (HKLM-x32\...\SoftwareUpdUtility) (Version:  - AOL Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.52 - Dropbox, Inc.)
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
File Association Helper (HKLM\...\{C168639F-5810-4EC8-B1E8-0251AA8A771C}) (Version: 1.2.225.65451 - WinZip Computing International, LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden


#4 Marlowg

Marlowg
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 10 December 2014 - 05:01 PM

when i go to the application log its blank 



#5 Marlowg

Marlowg
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 10 December 2014 - 05:06 PM

 Results of screen317's Security Check version 0.99.92  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
McAfee Anti-Virus and Anti-Spyware   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 McAfee SiteAdvisor    
 Java 7 Update 67  
 Java version 32-bit out of Date! 
 Adobe Reader XI  
 Google Chrome 36.0.1985.143 Google Chrome out of date!  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 mcafee VIRUSS~1 mcvsshld.exe  
 mcafee VIRUSS~1 mcvsmap.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 15% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log`````````````````````` 


#6 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 11 December 2014 - 01:37 AM

Hello there,

 

When you ran Malwarebytes, do you remember if it detected anything?

Step One:
Uninstall Some Programs 
 
There's currently some programs on your PC that we need to remove, for the time-being at least. Press the Windows + R key on your keyboard and type in appwiz.cpl and press enter. Navigate to each of the following below one-by-one and click uninstall:

  • AOL Toolbar 
  • Download Updater

If any programs listed above aren't in Programs and Features, you can just skip them. Please download JavaRa from here and once opened it, select 'remove JRE'. Make sure you skip the re-install Java option! Google Chrome is currently out-dated, click here for instructions on how to update it.

Step Two:
Download and run rKill

  • Click here to download rKill to your desktop.
  • Double click it (Win 7 and Vista users, right-click and select run as admin)
  • The tool will run and then a log file should open.
  • Please post the contents of it in your next reply.

Please don't restart your computer before running the next step.

Step Three:
Download and run AdwCleaner

  • Click here to download AdwCleaner to your desktop.
  • Double click adwcleaner_x.xxx.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • If prompted, click I agree.
  • Click scan. When it's finished, select clean.
  • Allow AdwCleaner to restart your computer.
  • Once your computer's restarted, a log should appear.
  • Please post this in your next reply.

Step Four:
Download and run Junkware Removal Tool

  • Click here to download Junkware Removal Tool to your desktop.
  • Double click JRT.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • Press any key and the scan will begin.
  • At the end, a log will open. Please post this in your next reply.


#7 Marlowg

Marlowg
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 11 December 2014 - 04:18 PM

I was confused about the JavaRa do i click remove Java runtime or go into additional tasks 



#8 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 11 December 2014 - 04:58 PM

Click remove Java Runtime :)



#9 JaneChapman

JaneChapman

  • Members
  • 1 posts
  • OFFLINE
  •  

Posted 14 December 2014 - 10:18 AM

I am having the exact same issue as the original poster. Will try this.



#10 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 14 December 2014 - 02:27 PM

If you continue to have the same issue, I recommend you create your own thread.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users