One of my clients handed me a computer where all of her work and personal files in Documents, and Pictures and the like were missing. in addition, all of her programs were missing as well. She is running Windows 7 Professional. Her fear, as well as my own, were that they had been deleted. As it turned out, they had been “hidden” by the malware. The file attributes had been changed to “hidden.” Going to Windows Explorer, Tools, File, Folder options and setting the “show Hidden Files and Folders” option did not restore them to view. I was eventually able to find them using a file restoration tool I use in the business.
Any easy way to fix this problem from the command prompt is: Open command prompt from START MENU > RUN. Type CMD and hit enter. Go to the drive, for example drive C. Type “C:” and enter. The command we use to restore files is ATTRIB. Type this command : attrib –s –h *.* /S /D and hit enter.
Further research indicated that this was probably an example of the AUTORUN.INF virus. This bit of malware jumps from computer to computer via any USB key. It will “hide” files on the USB key as well. You can use the same method to restore files on an infected key, just change the drive letter from C: to E: or whatever drive letter that is assigned by your PC.
Most Internet Security programs will remove the AUTORUN.INF virus, but be sure to include your flash drive in the full system scan.Share