It's been only a few days, I started using Windows Vista. Recently, I installed the AVG Anti-Virus free 2011 on my PC. But, after its installation, when I scanned the computer with it, it displayed a warning that there is a spyware (Potentially Harmful Programme), named Crack.exe is present on my PC. I scanned my whole computer for several times, but the result was the same.
I manually explored & found the file under C:\Windows\Crack\Crack.exe with a size of 291KB.
When I hover my mouse-pointer on it, it displayed Vista OEM BIOS Emulation Setup.
Now, please tell me, is this really any Spyware / any Potentially Harmful Programme or any Windows System file? Can I remove it or do I need it for running my PC?
Please help me to solve the problem. Thanks in advance!
If your OS is OEM you no doubt have a genuine copy of Vista. I trust that the retailer gave you the backup CD's for you may need them.
Crack.exe is a virus and you must remove it for here is short list of its malicious behaviour:
The Process is packed and/or encrypted using a software packing process
This process creates other processes on disk
Executes a Process
Writes to another Process's Virtual Memory (Process Hijacking)
Registers a Dynamic Link Library File
The Process is polymorphic and can change its structure
This Process is a file infector which modifies program files to include a copy of the infection
Adds a Registry Key (RUN) to auto start Programs on system start up
Modifies System Runtime Policies to limit system usability
Adds a Registry Key (DXCOM) to auto start Programs on system start up
This Process Deletes Other Processes From Disk
Adds products to the system registry
Injects code into other processes
Creates new folders on the system
Please request a FULL system scan, which may take from 20 minutes to hours. Do not interfere no matter how long in takes. The creators of Malwarebyte recommend that while the tool is running that you go do something else, such as watching a rerun of Gone with the Wind or read Tolstoy's War and Peace.
If Malwarebyte restarts your system, launch it again to finish the Full scan.
When the scan is completed, delete all items found.
Once your computer is clean and working normally just to be on the safe side
*Turn off system restore and wait 30 seconds,
*Turn it back on and create a new restore point.
This way it gets rid of anything bad that might have gotten saved in a restore point and you have a clean restore point to use in the near future if needed.
Do not turn it off until your computer is clean and working normally because you might need to use it if something goes wrong during the clean-up process.
It is better to go back to an infected restore point if something goes wrong then to not be able to undo changes that were damaging.