Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Yet another with Win32/Small.CA virus detected

06 Sep 2013   #11
cottonball

Windows 7 Home Premium
 
 

We need to see the events for 30/08/2013and forward...

In the Number or Date of events section, check:
>Date of events
Use the dates From: 28 08 2013 To: 06 09 2013

That should do it for us.


My System SpecsSystem Spec
.
06 Sep 2013   #12
Dragonride

Windows 7 Pro 32bit
 
 

Interesting...

Quote:
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 06/09/2013 17:34:09

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I ran VEW.exe as administrator with the following dates as per image, null results??

My System SpecsSystem Spec
06 Sep 2013   #13
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Check 'number of events', then type 20. Post the log after running Vew again.
My System SpecsSystem Spec
.

06 Sep 2013   #14
cottonball

Windows 7 Home Premium
 
 

@Jacee

That was done already, but it did not go back to 30/08/2013 where we need to be.

@Dragonride,

Maybe if the computer gets restarted, the dates can be run...give it a whirl, please.

If no luck, see if you can find the 30/08/2013 log using the following:
Event Viewer - Open and Use in Windows 7
In the left column, select: Windows logs
The pertinent log should be under Applications or Security.
My System SpecsSystem Spec
06 Sep 2013   #15
Dragonride

Windows 7 Pro 32bit
 
 

Sorry guys, both Event Viewer logs only go back to about 14.00hrs on the 5th September.

Okay, I've just checked when I did something, last month my hard drive started warning me of an overheating issue, so I got a replacement drive, cloned my system c/d drives onto the new drive, which is in place now. I've just checked the date I did the actual cloning, 27th of August, took nine hours to clone, and I replaced it on the 28th. But that still means I was using the new drive on the 30th.
My System SpecsSystem Spec
06 Sep 2013   #16
cottonball

Windows 7 Home Premium
 
 

Dragonride,

In Event Viewer, left pane, Custom Views > Administrative Events

Do you find any events there dating back to 30/08/2013? If so, how many?
What info is under the Source column?

You may have to maximize the Event Viewer window, and move the columns of Level, Date and Time, Source Event ID, and Task Category, by placing the mouse pointer over the column title, and when it turns blue/green, move it to the right until you see the info under it.

Of particular interest are Errors or Warnings related to services.exe, Service Control Manager, and Services and Controller app.
My System SpecsSystem Spec
07 Sep 2013   #17
Dragonride

Windows 7 Pro 32bit
 
 

Just the one event for that date, and it's a printer spooler issue.

My System SpecsSystem Spec
07 Sep 2013   #18
cottonball

Windows 7 Home Premium
 
 

Let's move on...

Please download Temp File Cleaner (TFC):
http://www.geekstogo.com/forum/files/file/187-tfc-temp-file-cleaner-by-oldtimer/
Save to the Desktop
Double-click on TFC.exe to run the program.

Be sure to save any work in progress before running TFC!!

Click on Start to begin the cleaning process.
TFC closes all running programs, and may ask to restart the computer.
If so, please restart.



Next, please use the Junkware Removal Tool Download
Save to the Desktop.

Make sure you temporarily disable your AntiVirus, Firewall, and any other AntiSpyware applications. These programs may interfere with the running of JRT.
Info: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides

Right-click JRT.exe and select: Run as Administrator

The tool opens and starts scanning the system. Please be patient as this can take a while...

When done, a report, JRT.txt is saved on the Desktop.

Please post the contents of JRT.txt in your reply.


Now, let’s run the Microsoft Safety Scanner.
Download:
http://www.microsoft.com/security/scanner/en-us/default.aspx

Under the Download Now blue button, click: Select your version, which is 32-bit
Save to the Desktop

At the program console, select: QuickScan
(Depending on whether it finds malware, and what it finds, you may be prompted to run a Full Scan.
If so, please do.)

When done, search for the msert.log, and post its results.


Also check the Action Center. Is the message still showing?
My System SpecsSystem Spec
07 Sep 2013   #19
Dragonride

Windows 7 Pro 32bit
 
 

Thanks guys for all the help, I'm just wondering if this might be a left over that didn't clone across from the old drive?

JRT Log:
Quote:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.8 (09.05.2013:1)
OS: Windows 7 Professional x86
Ran by David on 07/09/2013 at 21:29:27.95
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\David\AppData\Roaming\mozilla\firefox\profiles\1bjpo402.default-1365761907426\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07/09/2013 at 21:41:56.71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
MSRT.log not found, report says:

The scan completed successfully and no viruses, spyware, and other potentially unwanted software were detected.
My System SpecsSystem Spec
07 Sep 2013   #20
cottonball

Windows 7 Home Premium
 
 

Dragonride,

That is exactly what was expected of the Microsoft Safety Scanner.

Is the message still showing?
My System SpecsSystem Spec
Reply

 Yet another with Win32/Small.CA virus detected




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
How do I know if I actually have the Win32/Small.CA virus?
Hi hi all and thanks in advance for taking the time to read this. I hope I can get some help with this as well as help persons who also need help with this. I had posted this same message on TomsHardware.com but to no avail, I got no responses so I hope SevenForums can be more help. So Friday I...
System Security
Win32/Small.CA virus detected
Ive just received an action centre message stating Win32/Small.CA virus detected Part 1 DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16506 BrowserJavaVersion: 10.25.2 Run by matthew.gee at 14:54:17 on 2013-09-19 Microsoft Windows 7 Enterprise ...
System Security
Win32/Small.CA virus removal
Hi Can anyone help me get rid of this virus? Windows Action centre is telling me I have the Win32/Small.CA virus and it stopped my PC working on the 19th June. Since then I have run various antivirus software (Sophos, Malwarebytes, Microsoft security scanner) but none of them have found...
System Security
win32/Small.CA virus
A little background info. Afew days ago I installed Easy Burner prog. from Soft Pedia in error and uninstalled it but parts of it did not uninstall. Did afew sys. restores, then PC wouldn't shut down & had to use power button to be able to restart again. Then Windows said that it detected a...
System Security
How can I be sure if I am still infected with "Win32/Small.CA" virus".
Hi I got a "Solve PC Issues" (white flag) saying "Remove the Win32/Small.CA virus". I am running MSE (Microsoft Security Essentials) on Windows 7 Pro (x64). So I did an update followed by a full scan using MSE. I then ran - Malware Anti-Virus - SUPERAntispyware - Microsoft Safety Scanner...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 11:46.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App