Virus Recycler.exe

Posted on 2008-11-16
Last Modified: 2013-11-22
picked up this virus..... saw many vairing posts....
Is there anyone who has had experiance with this virus...? It opens a hidden file on my C drive and could not be found by Symantec c:recycler ? Any help would be appereciated..!!
Question by:querten
    LVL 8

    Expert Comment

    Hi querten,

    All you need to remove Recycler.exe.
    LVL 8

    Expert Comment

    LVL 47

    Expert Comment

    Try any of these tools and show us the logfiles.

    1.  Download and run this tool and follow the prompts:

    2.  Please download ComboFix by sUBs:

    You must download it to and run it from your Desktop
    Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
    Double click combofix.exe & follow the prompts.
    When finished, it will produce a log. Please save that log and attach it in your next reply by pasting it in the "Code Snippet" or "Attach File" window.
    Re-enable all the programs that were disabled during the running of ComboFix..

    Do not mouse-click combofix's window while it is running. That may cause it to stall.

    CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

    Or, MalwareBytes:
    Download Malwarebytes' Anti-Malware to your desktop. check for Updates before scanning.
    LVL 23

    Accepted Solution

    If you can restart your computer to Command Prompt Mode
    You can just Delete the file manually by typing
    del /f /s recycler.exe        (First Command)
    RD /q c:\RECYCLER

    The first command will delete the recycler.exe file from all your Directories.
    The second one will delete the Recycler bin folder from your C:\ drive and it will just be empty from any files.

    Try this and hope it works

    LVL 5

    Expert Comment

    we had this one , you want to check your system32 drive for 3 hidden alpha numerical folders and remove

    check to see if there's an alphanumerical process something like 1EDF2K.EXE running and end task.

    also check %userprofile%\Local Settings\Temp\E_N4\ and delete this folder.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Malicious software is nothing new. Viruses have been created and spread since before physical networks became popular; back then viruses spread via floppy disk and modem connections with shared systems. Viruses weren't so rampant and protecting your…
    If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
    It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
    how to add IIS SMTP to handle application/Scanner relays into office 365.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now