Solved "$Recycle.Bin" in the Root directory of WD External Hardrive Detected

[Ramen]

Also i did a manual scan of the G drive and C drive but no detection.

 

[Ramen]

How's your computer behaving now?


Startup: C:\Users\Shingo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ニコ生アラート(本家).lnk
ShortcutTarget: ニコ生アラート(本家).lnk -> C:\Program Files (x86)\niwango\ニコ生アラート(本家)\ニコ生アラート(本家).exe ()





What is this? Legitimate or not?

Thats a ligtimite software for a ligimite website called Nico-Nico Douga, sort of like a Japanese youtube that
has a feature like a twitcast (online broadcasting).

and this software is their official software that will give me a noritification when a broadcast starts.

 

[argus]

https://www.virustotal.com/en/file/not/found/

Malware, but something new.

 

[Ramen]

I think I got it now.. I used to use this G Drive with a mac and when I use it with a Mac, it leaves the DS.Store files in folders.((It is hidden in the MAC OS and comes visible in Windows OS)

I deleted another DS.Store file that was in one of the folders within the G Drive and did a scan with MCS and it detected as a malware.
(when it didnt detect it as a malware when nothing is done to it)

For some reason, DS.Store files I have found in a USB stick that I used with a mac - windows the MCS did not detect any malware.
Should I attempt to get non-DS.Store files out of my G Drive and paste it to a new HDD then format the G drive so that it will be a fresh one?

 

[argus]

http://www.mcshield.net/

Keep MCS on windows and you will be safe 100%. (worms)
MAC no viruses

 

[argus]

I do not see active malware, We'll run another test.

Scan with Malwarebytes' Anti-Malware
Please download Malwarebytes Anti-Malware and save it to your desktop.

• Install the progam and select update.
• Once updated, click the Settings tab, in the left panel choose Detection & Protection and tick Scan for rootkits.
• Click the Scan tab, choose Threat Scan is checked and click Scan Now.
• If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
• Upon completion of the scan (or after the reboot), click the History tab.
• Click Application Logs and double-click the Scan Log.
• At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.

 

[Ramen]

A "non malware" threat was detected and I quaranteened it (I wasn't prompted to restart)
so here is the copy.

 

[argus]

Cheers!


Download DelFix by Xplode and save it to your desktop.

• Run the tool by right click on the
  
  icon and Run as administrator option.
• Make sure that these ones are checked:
  • Remove disinfection tools
  • Purge system restore
  • Reset system settings
• Push Run and wait until the tool completes his work.
• All tools we used should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

 

[Ramen]

Here it is hopey you'll find something if there are any infection
or proof of no infection.

 

[argus]

No, remove the tools that we use.

• Remove disinfection tools
• Purge system restore
• Reset system settings

 

[Ramen]

Okay, I ( or the Delfix) have done that... just wondering what to do now?

 

[argus]

Nothing, solved.

 

[Ramen]

Thanks Argus, I feel a little better now.
Should I try formatting the G Drive after backing up (excluding the $Recycle.bin)
in vain that the $Recycle.bin will disappear?
(ofcouse I only want your opinion and I will not hold you responsble for this)

 

[argus]

Should I try formatting the G Drive

You can freely.

 

[Ramen]

Okay thank you very much your help. You and your team are great as usual.