| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 118837 | 2011-06-23 04:00:00 | Malware Experts | SolMiester (139) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1211378 | 2011-06-23 04:00:00 | Have cleaned out a fake alert trojan, however I cant see any of the users documents, even though a properties dialog box of the folder states 52GB of files?... Anyone seen this before?....doing a backup, which appears to see and backup files, but ummm yeah.... |
SolMiester (139) | ||
| 1211379 | 2011-06-23 04:07:00 | Hmmm, okay, found this............. 4) when you computer restarts don’t be dismayed to find that your files and desktop are still missing. That’s because this Windows Recovery malware “hides” your original files as part of its nastiness. 5) now go and download Trojan-Killer’s free “unhider” here: trojan-killer.net/how-to-restore-missing-files-and-folders-after-virus-attack/#more-2706 or directly here: trojan-killer.net/download/unhider.exe 6) double-click the downloaded file to run it and wait as it “unhides” all your files and folders on your computer. It takes about 10 minutes to complete (with no progress indicator), but you’ll see your desktop icons slowly reappear, though your original desktop background image will probably still be missing and some files still may not be accessible. |
SolMiester (139) | ||
| 1211380 | 2011-06-23 04:14:00 | Yea seeing this more and more now. There are few tools available that will do what you want, as you found. :D |
CYaBro (73) | ||
| 1211381 | 2011-06-23 04:27:00 | Sounds like a real nasty, one that I havent struck yet thank goodness. I think if it was me I try and make a backup of user files and data etc, format it and do a fresh install. Good luck with that one. |
Iantech (16386) | ||
| 1211382 | 2011-06-23 04:30:00 | If its the same infection I've seen a lot of, For XP go to C:\Documents and settings\Username\Local Settings\temp\smtmp Inside the smtmp folder will be three other folders, 1,2 & 4 All your data, documents and all program shortcuts, links etc will be in there. The infection really screws with the folder layout, so normally I simply clone the drive to save the data, reinstall. Haven't actually seen it yet in Vista or W7 |
wainuitech (129) | ||
| 1211383 | 2011-06-23 04:47:00 | yep, seen this a few times. Some of the new malware changes the attributes of many files try changing settings in my computor/tools/folder options/veiw/ click show hidden files.. , untick protected operating files if that enables you to see them, cmd prompt cd\ attrib -h /s /d Later variation on this malware also removes shortcuts/program links |
1101 (13337) | ||
| 1211384 | 2011-06-23 04:57:00 | Yeah, W7 Pro.....bloody nuisance!...I can see most of the file, trouble is the start menu has lost a lot of the shortcuts...!!!! | SolMiester (139) | ||
| 1211385 | 2011-06-23 05:15:00 | Same infection -- First W7 :) So far I've come across about a dozen PC's with the infection, as pointed out in your post #2 - number 6 list "and some files still may not be accessible. " It really screws the system files. Removing the infection is easy,sometimes fixing the damage is not. Try looking in the (and its a guess - show hidden folders) C:\users\username\appdata\local\Temp\ Look if the smtmp folder is there. Or even do a search for it start/ smtmp Some say you simply move the shortcuts back to their original path and all will work again -- So far tried it on two PC's -- :crying |
wainuitech (129) | ||
| 1211386 | 2011-06-23 08:02:00 | Repair install - then, if still dodgy reinstall. | pctek (84) | ||
| 1211387 | 2011-06-23 08:24:00 | Repair install - then, if still dodgy reinstall. If its the same bug that I have had, a repair install doesn't work (tried it in XP) - the missing icons/shortcuts & folders are still missing in action.:mad: Its a "nasty piece of work" | wainuitech (129) | ||
| 1 2 3 | |||||