Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


"phantom" files - how do I see/remove them?

  • Please log in to reply
No replies to this topic

#1 jack_s


  • Members
  • 2 posts
  • Local time:06:46 AM

Posted 10 August 2009 - 05:36 PM

I was cleaning up my 3-year old WinXP Home computer. My anti-virus (Avast Home Ed.) trapped a Trojan as I was working so I did a "Standard Sheild" scan - I watched it scan the Documents & Settings folder where it found more than 20,000 files (6+ gbytes worth). Some of the files were called bind[1].htm and bind[2].htm - it took Avast a while to scan each one so I assume they are pretty large.

I tried to locate these folders (all had random names) and were located down in DocsandSettings>username>LocalSettings>...
...on the virus scan I could see a folder TempContent but in the above path there was only "Temp"

I "unhide" all the folders and tried to Search for them - no luck - and can't locate them manually either

I have used a number of malware scanners, anti-virus, etc. products in the past six months fighting off problems - I can't find any indication of infections yet - except for in the past few days I received Google Alerts (that I ordered) but that contained links that let to malware sites ("Your computer is infected", etc.) - it appeared tha Avast trapped them but ....

So my questions are:
How do I find and delete all of this stuff in the Documents and Settings folders? (other than cleaning up browser history, temp files...)

(Depending - I guess on the response - I might need to move these questions to the Anti-virus Forum):

Are the bind[1].html files normal or do they have anything to do with DNS poisoning exploits?

My Thunderbird mail tool was infected (? or otherwise messed up) last spring. I reinstalled a new copy (after cleaning some virus/malware out of the system). Could it be possible that some script is lurking somewhere waiting to hijack any Google Alerts that come in? (I forwarded the email Alerts to Google Security but I don't think they'll tell me anything)

I read elsewhere on this site that Registry Cleaners are not of value. I used one, called "RegCure" that I think fixed some problems for me - so I bought it and let it scan my box once a week. It invariably finds - and removes- 75 empty file/path references - could this be causing problems?

...btw, the computer runs OK and doesn't seem impaired performance-wise

Thanks for any help and info!

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users