c:\recycler\S-1-0-5... can't be delete

I ran find.bat and here is the log... Help!!! Thanks..


Warning! This utility will find legitimate files in addition to malware.
Do not remove anything unless you are sure you know what you're doing.

Find.bat is running from: C:\Documents and Settings\LUcid 3d\Desktop\finditnt2000xp\Find It NT-2K-XP


Edit by chaslang: Inline log from a tool we don't use removed. READ & RUN ME sticky not followed.

 

I deleted the content with fileassassin, but not the folder itself named S-1-0-5... etc... wonder if that was ok or enough... please let me know... someone...

 

talked too soon there they are again:

C:\RECYCLER\S-1-5-21-7358...etc...-0003\desktop.ini
C:\RECYCLER\S-1-5-21-7358...etc...-0003\INFO2

what are they?

 

Chaslang, I followed the read and run me carefully and then this instruction found in a post that have same issue

chaslang
MajorGeeks Admin - Malware Expert Join Date: Feb 2004
Location: Northern New Jersey USA
Posts: 55,982
Thanks: 7
Thanked 1,911 Times in 792 Posts

Re: Where is this???

--------------------------------------------------------------------------------

As I said awhile ago,

"There is some nasty malware going around that will make the Recycle Bin look empty when it is not."

Let's see if we can eliminate at least one possible problem with it.

Download this: http://www.thatcomputerguy.us/downl...ditnt2000xp.zip

Extract find.bat and run it. Post the log it creates back here.

 

update... help please....

Logfile of Trend Micro HijackThis v2.0.2

 

thank you for your response... just to see if I understand you, those files are virus and I only can delete them by turning off the system restore... is that right?

 

two more thing before doing that:

I need to delete the recycler folder, or the S-1-0-5... folder and keep the recycler folder?

what happen if I delete desktop.ini with no restore point and it was a good file?

 

ok I reboot the computer without system restore...

the cecycle bin look empty but the c:\recycler\S-1-0-5.. etc still there...

I have four hard drivers in my computer the four of them repet the same folder and files.

c:\recycler\S-1-0-5.. etc
d:\recycler\S-1-0-5.. etc
e:\recycler\S-1-0-5.. etc
f:\recycler\S-1-0-5.. etc

the recycle bin is configurated to use one setting for all drivers, and is empty

Is that ok?

 

oh thanks thats a relief...

I was infected by the google-redirect malware and in my desperation of destroy it I almost destroy the computer too. A friend sent me to major geeks forum for advice before keep deleting things.

Do you think is necesary to post you a last HijackThis log to see if everything is ok?

 

Sorry for that, it is not excuse but I was so crazy a couple of days ago that I messed up all those instructions... now that I am more relaxed and started reading line by line I understand what I missed... I will take the time to run all the software properly and go back to you for the last check if you are still there for help...

 

...finally... here are the update logs...

 

here...

 

many many thanks for taking your time to give me a diagnostic... and very happy to use the computer again without fear... but I got a kind of surfphobia after this... hopefully your last instructions can keep me safe...

gracias...