Jump to content
CCleaner Community Forums

Just fixed a nasty virus


rridgely

Recommended Posts

  • Moderators

A family member brought over a laptop with a nasty virus. They told me the virus started out by telling them that their hard drive was failing and then all of their files, shortcuts, desktop background, and even start menu links disappeared. The virus hid every file on the computer. I had never seen anything quite like this one.

 

The remedy was to run Malware Bytes in safe mode to remove the virus and this tool to unhide the files:

http://www.bleepingcomputer.com/download/unhide/

 

The machine had Microsoft Security Essentials installed but it didn't catch the viruses. It did flag a few files, but MBAM was the only thing that cleaned it up.

Link to post
Share on other sites
  • Moderators

The machine did have the latest MSE installed. It would flag a file at boot up but couldn't remove it permanently.

I had never seen a virus that will hide all the files on a computer before, the desktop looked crazy when I booted it up! I cant try any other scans thought because I backed up and formatted the machine. The laptop had a recovery partition, so this seemed like the easiest way to get a clean and safe windows install.

 

I have bookmarked hitman pro, seems interesting. I think I remember that program a while ago needing to have a bunch of different programs installed, now its getting all of their definitions from the cloud?(just from their description it what it seems like).

Link to post
Share on other sites
  • Moderators

Use Hirens to do an Eset Online Scan if you cannot use safe mode with networking.

 

Also rridgely when using HMPro if you hold down the Ctrl key and double click the installer it kills all running processes so it can do its job without interfence (like rkill)

 

Don't know if you are aware that MBAM, free and paid, has rkill built in sort of now (start-all progs-mbam-tools-chameleon)

Link to post
Share on other sites

I have seen viruses that hide all the files quite a few times.

 

Yes, it does look weird. The start menu folders, desktop folders, & other places are affected because their folders are marked hidden.

 

Glad you got it sorted out!

Link to post
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...