Can I delete a folder which contains malware?
My malware program detected the malware: Application.DealAlpha.1.Ge
Since I know it is in just one folder within a Recycle Bin, can I just delete that folder?
Also, I remember when there were small apps like MBAM (before it became a full-fledged anit-malware program) that you could just download that were good for detecting and removing malware. Is there one you would recommend for this one?
Finally, Anti-Spyware was recommended as a topic. I suggested anti-malware, malware, trojans, viruses, etc. Are those no longer available?
Since I know it is in just one folder within a Recycle Bin, can I just delete that folder?
Also, I remember when there were small apps like MBAM (before it became a full-fledged anit-malware program) that you could just download that were good for detecting and removing malware. Is there one you would recommend for this one?
Finally, Anti-Spyware was recommended as a topic. I suggested anti-malware, malware, trojans, viruses, etc. Are those no longer available?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you Dr. Klahn and Edmond.
Dr. Klahn. Can you elaborate on Eraser? Is it the one from Stellar Data?
Dr. Klahn. Can you elaborate on Eraser? Is it the one from Stellar Data?
it has been deleted and moved in to the recycle bine though technically it is possible to restore them as it hasn't been completely deleted.
as it is already at low risk now, you won't need to worry about to delete or not.
i think what you should consider now is - why this could happen? is there any vulnerable component or operation on your computer that may cause this infection. that's something you need to worry about. better review what you do daily on this computer and see any improvement can be done.
as it is already at low risk now, you won't need to worry about to delete or not.
i think what you should consider now is - why this could happen? is there any vulnerable component or operation on your computer that may cause this infection. that's something you need to worry about. better review what you do daily on this computer and see any improvement can be done.
You can try Notron Power Eraser.
https://support.norton.com/sp/en/us/home/current/solutions/v69675421?src=smr2011&type=smr2011
There is likely some browser add on installed and creating of chunks of unnecessary files and folders to slow down the machine. Best to remove the add ons.
https://support.norton.com/sp/en/us/home/current/solutions/v69675421?src=smr2011&type=smr2011
There is likely some browser add on installed and creating of chunks of unnecessary files and folders to slow down the machine. Best to remove the add ons.
ASKER
I will look into both. Where I am confused is how do the folders I have shown which are obviously related to deleted files, compare with the Recycle Bin being emptied already?
I suppose it would be great if I had a full-time IT running my network. I am well aware of the phrase, Once infected, Always supected.
On the other hand, while I only have four staff using the client computers, no matter how much I educate them and no matter how much everyone tries to stay away from a driveby website, another Trojan or some type of malware will make it to the server. If I were using one computer, I would wipe it clean and start over. But, I simply can't redo both VMs everytime there is a virus. I guess I know the risk.
This setup is different than my old client/domain network with everything running on the clients and the data and databases with Exchange and SQL, etc. all on the server. It is more like thin clients (although full workstations) remoting into a VM with RDP and RDS.
I suppose it would be great if I had a full-time IT running my network. I am well aware of the phrase, Once infected, Always supected.
On the other hand, while I only have four staff using the client computers, no matter how much I educate them and no matter how much everyone tries to stay away from a driveby website, another Trojan or some type of malware will make it to the server. If I were using one computer, I would wipe it clean and start over. But, I simply can't redo both VMs everytime there is a virus. I guess I know the risk.
This setup is different than my old client/domain network with everything running on the clients and the data and databases with Exchange and SQL, etc. all on the server. It is more like thin clients (although full workstations) remoting into a VM with RDP and RDS.
ASKER
Going back to my original question. It appears that the folders above with the third from the bottom showing it is infected are the folders of the Recycle Bin. Emptying the RB didn't fix it. Can I just delete these folders? Or do I need to delete the folder and Erase It. The one I downloaded above doesn't run on Windows Server 2016 Standard.
The root cause which is the addon may still be around, so better to go into safe mode to scan and remove. Can they using NPE to remove Unwanted Applications (known as PUPs).
ASKER
OK, so I am not a professional IT here. :) How do we know it is an add-on? I have checked every browser on the server, the VMs and there are none there that shouldn't be.
You can try running the NPE, backup your important file before that.
Try also AdwCleaner that check the PUP and Adware.
https://www.malwarebytes.com/adwcleaner/
I am thinking whether to share the link below though it has steps through for the checking of your browser. But I find that you may still have challenge to identify. At least you can reset the browser setting to clean any that has installed.
http://www.malwaregrounded.com/deleting-application-dealalpha-1-gen-in-simple-steps
So based on tool may be easier for a start may be easier for you.
Try also AdwCleaner that check the PUP and Adware.
https://www.malwarebytes.com/adwcleaner/
I am thinking whether to share the link below though it has steps through for the checking of your browser. But I find that you may still have challenge to identify. At least you can reset the browser setting to clean any that has installed.
http://www.malwaregrounded.com/deleting-application-dealalpha-1-gen-in-simple-steps
So based on tool may be easier for a start may be easier for you.
>> Anti-Spyware was recommended as a topic. I suggested anti-malware, malware, trojans, viruses, etc. Are those no longer available? << sure, but they have evolved since the time you talk about ( see MBAM)
you can run scans with different tools :
http://www.malwarebytes.org/mbam.php MBAM
http://majorgeeks.com/RogueKiller_d6983.html Roguekiller
http://www.lavasoft.com/ ADAWARE
you can run scans with different tools :
http://www.malwarebytes.org/mbam.php MBAM
http://majorgeeks.com/RogueKiller_d6983.html Roguekiller
http://www.lavasoft.com/ ADAWARE
ASKER
Hi experts,
Thank you for all the help. I always feel silly when I indicate that all are helpful. They were, but the main thing was answered first by Edmond.
Thanks again!
Thank you for all the help. I always feel silly when I indicate that all are helpful. They were, but the main thing was answered first by Edmond.
Thanks again!
On a server it might be prudent to obtain one of the file eraser programs (e.g. Eraser) to destroy files in the Recycle Bin rather than just freeing up the disk space.