pup.crossfire.sa

system · January 2, 2013, 9:39pm

I ran a scan as my computer has been moving a bit slower and the attached came up. Is there a way I can make sure there is nothing else on my system?

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.02.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Mary :: MARY-PC [administrator]

1/2/2013 4:29:08 PM
mbam-log-2013-01-02 (16-29-08).txt

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\215 APPS (PUP.CrossFire.SA) → Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\Software\InstalledBrowserExtensions\215 Apps|4493 (PUP.CrossFire.SA) → Data: Coupon Companion → Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

essexboy · January 2, 2013, 9:41pm

Yep initially run AdwCleaner if there is no improvement then we will look deeper

CLEAR THE BAD TOOLBARS

Download AdwCleaner from here to your desktop
Run AdwCleaner and select Delete

https://dl.dropbox.com/u/73555776/AdwCleaner.GIF

Once done it will ask to reboot, allow this
On reboot a log will be produced please attach that

Pondus · January 2, 2013, 9:46pm

and PUP is not virus… possible unwanted program

Crossfire coupon is a bonus currency within the game Crossfire… something you know?

system · January 2, 2013, 9:54pm

Sorry I wasn’t sure where to post the original question.

Attached is the requested log.

essexboy · January 2, 2013, 9:55pm

Has that improved any now, Babylon and Crossrider have been removed

system · January 2, 2013, 9:58pm

It seems a little faster will have to give it some more time to make sure.

Thanks!

essexboy · January 2, 2013, 10:01pm

If you have any concerns I can look deeper ;D

system · January 2, 2013, 10:19pm

It just seems as if the system loads very slowly…takes forever for the Dell Dock to come up.

essexboy · January 2, 2013, 10:21pm

Do you use the dell dock at all ?

Download OTL to your Desktop
Secondary link

[*]Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

https://dl.dropbox.com/u/73555776/OTL_Main_Tutorial.gif

[*]Select All Users
[*]Under the Custom Scan box paste this in

netsvcs
BASESERVICES
%SYSTEMDRIVE%*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
winsock.*
/md5stop
CREATERESTOREPOINT

[*]Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
[*]When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
[*]Post both logs

system · January 2, 2013, 10:58pm

I only use Dell Dock because it is there…I don’t really have a purpose for it.

The logs you requested are attached due to the character limitation.

essexboy · January 3, 2013, 2:46pm

Lets see if I can stop the dock loading

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

[*]Under the Custom Scans/Fixes box at the bottom, paste in the following

https://dl.dropbox.com/u/73555776/OTL_Fix.GIF


:OTL
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (Coupon Companion) - {11111111-1111-1111-1111-110011441193} - C:\Program Files (x86)\Coupon Companion\Coupon Companion.dll (215 Apps)
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
O4 - Startup: C:\Users\Mary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]

[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

pup.crossfire.sa

Announcements