I can't seem to get rid of a Trojan, after scanning.

January 18, 2012 at 19:57:19
Specs: Windows XP, 4GB RAM
Hello guys

I'm back with yet another PC issue, this time a pesky Trojan. though my PC is stable at this time, it won't be for long, let me tell you why.

I am currently using a Norton Anti-Virus Trial and Malwarebytes Anti-Malware I've scanned with Malwarebytes and deleted all that its found, and also scanned with Norton, letting it do it's thing.
whenever I turn on my PC, I can see that Norton blocks the Trojan, so basically the Trojan is still running and doing what it does best, however is being blocked by Norton on startup. However once my Norton Trial is up, I'm worried the Trojan will not be blocked and can begin it's path of destruction. I'm not sure if I'm overdoing it or if Trojans really are a big deal, but I'm uncomfortable with it being on my PC and I just want it to go away

I've found it's location, with Norton and it says its in my Recycle Bin, yeah that's weird huh? so the window I'm displayed with when I click locate is called this:


There are 3 files lurking in this directory, they are the following: desktop - Configuration Settings (5kb) the second is a file called "INFO2" (1kb) and the third file that Norton is telling me about is, "SAGEGMG.YAE which is 0kb and a "YAE" file whatever that is. I have tried simply deleting them but knowing my luck, it doesn't do anything, I am prompted with a message "cannot delete Sagegmg: access is denied"

It really is some scary stuff, all these viruses and malware, genius sure, but dangerous, annoying and greedy more so. Please if anyone can help me delete this supposed Trojan I would greatly appreciate it. I don't have anything worth stealing on my PC but its just that feeling that there's something lurking on my PC, I just wanted to get rid of it

Thank you


See More: I cant seem to get rid of a Trojan, after scanning.

January 19, 2012 at 13:48:22
sorry, try this first..

To resolve this issue, delete the files from an MS-DOS prompt. To do this, follow these steps:
1.Click Start, click Run, type cmd.exe in the Open box, and then click OK.
2.Change to the drive and folder where you deleted the files. For example if you deleted a file from the C:\Windows folder, type cd\windows at the C: prompt, and then press ENTER.
3.From that folder type cd recycler, and then press ENTER.
4.From the Recycler folder type dir, and then press ENTER. You may see some UserSID folders where SID is the security ID for each user who deleted files in that folder.
5.Type cd userSID, and then press ENTER.
6.Type del *.*, and then press ENTER. If you receive an error message that indicates some files are open, quit all the programs running on your computer.
7.Type cd.., press ENTER, and then repeat steps 5-7 for each folder in the Recycler folder.
8.Type exit, and then press ENTER.

0 byte files can get difficult to remove but there are programs that should be able to remove them. Holler back and let me know if this gets them.

Report •

January 19, 2012 at 21:18:10
when i type to get a list of the Directories in the RECYCLER folder it only displays one of the two there.
back to the GUI;
the folder i want to get into, i right click the folder contained the Problem and go Properties and the Hidden Attribute is not ticked but the Button is ghosted meaning i cant Select it. The folder how ever its Icon has some sort of transparency so it must be hidden. Im not sure if a hidden folder will Appear in the list of Directories in the command line.

Report •

January 20, 2012 at 12:24:20
It may very well mean there is a driver or program using that particular file.

There is a program that should remove it but I hesitate until I am more certain of what deleting this file could mean.

Let me investigate this a little.

Report •

Related Solutions

January 21, 2012 at 10:18:53
Download/extract and open Avenger by Swandog 46


In the script field box copy and past the following between the lines:


Folders to delete:


Keep "scan for rootkits" checked and click on the Execute button.

Your computer will reboot and a log file will open. Look and be sure the folder was indeed deleted.

Report •

Ask Question