Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: How can I be sure if I am still infected with "Win32/Small.CA" virus".

06 Nov 2012   #41
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

It's really important, if you value your PC at all, to stay away from P2P file sharing programs, like utorrent, Bittorrent, Azureus, Limewire, Vuze.
Criminals have "planted" thousands upon thousands of infections in the "free" shared files.
Some of these infections can turn your machine into a doorstop.

It's also very important to avoid any "cracks" or "Keygens" that allow unauthorized use of programs.
Besides being illegal, these files also are loaded with "planted" malware.

Pirated program: c:\program files (x86)\adobe\adobe dreamweaver cs5.5\configuration\taglibraries\html\keygen.vtm
Please remove this program!


My System SpecsSystem Spec
.
06 Nov 2012   #42
shiphen

Windows7 Pro x64
 
 

Yikes - I'm genuinely not sure how that keygen thing got there. I paid good money for my Dreamweaver!

Anyhow I've deleted Dreamweaver off my laptop.

Btw, there is also a file called KEYGEN.html (in C:\Program Files (x86)\Macromedia\Dreamweaver MX 2004\Configuration\Content\Reference\HTML) on my Windows 7 machine. Do I need to uninstall dreamweaver (MX 2004) from that machine too?

Meanwhile, how bad do the rest of my systems look?

With thanks
J
My System SpecsSystem Spec
06 Nov 2012   #43
shiphen

Windows7 Pro x64
 
 

@vincenso - yes I like your disk imaging ideas. Definitely something worth considering for next time. Right now as @Golden has spotted, I am concerned that all my data could be unsafe/infected too!

Btw, one thing that puzzles me is how come AVG and/or MSE anti-virus software applications have failed to spot/kill viruses as they arrive. I mean everything that opens is apparently being scanned (which, btw, is something of a pain as it seems to me that they tend to slow things up big-time...)

J
My System SpecsSystem Spec
.

07 Nov 2012   #44
shiphen

Windows7 Pro x64
 
 

Do I need to re-run anything now?
Many thanks
J
My System SpecsSystem Spec
07 Nov 2012   #45
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Run CKScanner again and post the text results. Also, let me know how your computers are running now.
My System SpecsSystem Spec
08 Nov 2012   #46
shiphen

Windows7 Pro x64
 
 

Hi

A) On my WinXP laptop, ckscanner.exe gives:

CKScanner 2.1 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11.BBAPXH
----- EOF -----

I've not been using it much but the laptop seems fairly unresponsive and slugging, but not excessively so(?)


B) On my Win7 x64 Home PC skscanner.exe gives:

CKScanner 2.1 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.RP.11.ABAALO
----- EOF -----

This machine has suddenly started to run very fast in the last 2 or 3 days

J
My System SpecsSystem Spec
08 Nov 2012   #47
shiphen

Windows7 Pro x64
 
 

ALSO
I desperately need to sync data with my work PC (Win7 x64).
What should I run on my work PC, (in what order) to look for bad stuff?

J
My System SpecsSystem Spec
08 Nov 2012   #48
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Uninstall Combofix .....

Click on the Start button and then select Run from the menu. This will open up the Run box.
Copy/Paste combofix /uninstall (Please note that there is a space between combofix and /uninstall), click on the OK button or Enter on your keyboard.
You can now delete the ComboFix.exe program from your computers.

Next, download TFC by Old Timer TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums and save it to your desktop.
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista/Windows 7 right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
My System SpecsSystem Spec
08 Nov 2012   #49
shiphen

Windows7 Pro x64
 
 

==> On my Home PC (Win7 x64):
I managed to uninstall Combofix. It moaned about MSE still running but seemed to proceed okay. I also ran TFC successfully and it then re-booted. When I logged back in I discovered MSE had stopped realtime scanning, so turned it on again.

==> On my laptop (WinXP)
Combofix did not appear to still be loaded. I searched for with Everything desktop search but no sign of the Combofix.exe file itself. Anyhow so then I rans TFC.

Now what?

==> And what precautions do I need to take on my work PC (Win7 x64) - with whom I have been sharing my documents until recently?

With many thanks

J
My System SpecsSystem Spec
09 Nov 2012   #50
shiphen

Windows7 Pro x64
 
 

Any more thoughts?

J
My System SpecsSystem Spec
Reply

 How can I be sure if I am still infected with "Win32/Small.CA" virus".




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Kyboard deos not respond to the keys: "e", "d", "c" and "3"
Example sentence: vrytim I prss ths kys, nothing happns. Now I'm writing with my on-sreen keyboard. I'm clueless when it comes to computer stuff. How do I fix this? Is this a software problem, or a hardware problem?Help is much appreciated!
Hardware & Devices
Changing the "minimize" "maximize" and "close" buttons of a theme
Ok so I'm using a custom visual style made by another user however I don't really like the buttons used that I mentioned above. The creator states it is acceptable to change the theme to however you like as long as you don't redistribute it anywhere. Ok so I opened up the .msstyles file (using...
Customization
BSOD every few hours: mostly "STOP: 0x00000F4", "c00021a" & "c0000135"
Hi everyone! Yesterday my HP laptop (Windows 7) started getting BSOD with various types of errors (mostly "STOP: 0x00000F4", "STOP: 0x0000007A", "c00021a" and one "missing %hs, c0000135"). Most of the time it restarts without any issues and works fine right after the BSOD and then an hour or two...
BSOD Help and Support
Need to add "TASKBARS" (MSese for "Launchpads", "Docks" NOT "Toolbars"
My office just upgraded, and I can no longer use Windows XP. On this system, I was able to add a separate taskbar to facilitate quick access to commonly-browsed folder locations on our vast network, and another one expedited the launching of useful programs and lists. Each task on each taskbar...
General Discussion
"application" can't be run in win32 mode"
I'm trying to run VIPRERESCUE to check for rootkit virus's, but when I dbl click on the application, I get a pop up saying "application can't be run in Win32 mode." I'm using a system that is loaded with the 64 bit version of Win 7 Home Premium. I have run this successfully in the past (don't...
Software
display settings only shows "Small" & "Medium"
My notebook is set to the recommended screen resolution, under display settings that allows you to change the text size indepdenent of the screen resolution, I was expecting to see 3 radio buttons (as per the windows 7 tutorial) but I can see only "Small" and "medium". I haven't played around with...
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:19.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App