Search the Community
Showing results for tags 'Rotinom'.
Hello everybody, So, I was recently infected by this beast, Rotinom, not really that dangerous but persistent enough. (Note: I had no Antivirus in my laptop when this happened.) To be brief, I managed to, seemingly, get rid of it by the combined help of Malwarebytes, Kasperksy and some online instructions I followed manually (e.g. adjusting some registry values in order to show super hidden folders). However, the next time I switched my laptop on, I discovered in each one of the folders called "Recycler" -which exist in each one of the hard disks, built-in or external- a folder with the name "S-1-5-21-583907252-764733703-682003330-1005". Which, incidentally is the name of one of the folders Rotinom creates inside the Application Data folder after it has infected a pc. Since my laptop seemed to have no problem anymore, I thought it was just a leftover so I deleted it through a program called "windirstat" -because it was impossible to accomplish it by simply pressing "delete", as a message "you cannot delete file. Close first all programs... etc." appeared every time I attempted it. (As a matter of fact, the only way I found to view this folder's contents was through this program. Which contents are: a folder called "files" which contains two files, "desktop.ini" and "INFO2" and a folder called "Dc2" with nothing in it.) Thinking that I managed to get rid of these too, after a while, I checked again Recycler and it was again there (again in every Recycler folder). I deleted it again but to no avail. As I said, my laptop seems to work normally two days now, but the persistence of this folder makes me think that it is not entirely disinftected. Any idea as to whether I am still infected and to how I can send this folder permanently to the hell it belongs?