Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Having trouble with possible Recycler virus


  • Please log in to reply
1 reply to this topic

#1 mankeezTech

mankeezTech

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:39 AM

Posted 07 January 2018 - 04:54 PM

Hey there!

I'm having trouble recognising if my machine is infected with recycler. I have read everywhere that the $RECYCLE.BIN folder, the System Volume Information folder and the desktop.ini files are safe but viruses can hide in these locations. I have also read online that if a your $RECYCLE.BIN folder is written like this: "$Recycle.Bin" instead of like this: "$RECYCLE.BIN" it means you're infected.

Here's my specific case:

I'm running Windows 10 and 2 desktop.ini files appear on my desktop. At first I tried to delete them but after researching I realised that would not solve it. I have a 1TB WD external hard drive wher I have olg photos, security copies and whatnot. I have seen both $Recycle.bin folder and a System Volume Information folders there. I do not have access to the System Volume Information one but I do have access to the $Recycle.bin one. In it there are 3 things. A Recycle Bin icon and two files with really long alphanumeric names separated by "-". I do not have access to any of them. I have ran a malwarebytes scan of the full system and nothing was detected. I also downloaded USBFix and I ran a scan after of which I was presented with some random french text which I think told me I was safe. Please help!



BC AdBot (Login to Remove)

 


#2 buddy215

buddy215

  • Moderator
  • 13,504 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:02:39 AM

Posted 08 January 2018 - 06:30 AM

Welcome to BC...

 

Have you installed a program to protect against ransomware such as RansomFree?

 

RansomFree utilizes canary files, which are folders of files created throughout the computer. These files are then monitored for any changes by an external program.

 

If not, then submit the file...not just the name of the file....to VirusTotal - Free Online Virus and Malware Scan  and it will be scanned

by numerous security programs.


Edited by buddy215, 08 January 2018 - 06:42 AM.

“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users