update:CAUSE FOUND, need solution now
Update:
using a software called Easy Recovery Professional, I was able to recover some data and some researching on the internet identified the culprit to be this Trojan horse. No I did not download the XP key gen, but I am suspecting something I downloaded was a renamed XP key gen.
Upon further investgations using Hack man, many files has been displaced with 33bytes file filled with 0's(in hex editor), others had file extensions mixed up, first character of the file replaced with "_" and other files were displaced with the phrase "You did a piracy, you deserve it."
Some files are functional. All the functional mp3 files are renamed to DOS 8+3 capital letter only system.
Ok... now how do I fix it???
Data recovery will cost me minimum of $350 and I really don't want them seeing my personal files and I would like to avoid it unless I am absolutely hitting the bottom.
the original post
\/
Ok first of I'd like to say this maybe off-topic for this forum and I understand the resistnace, however this is where most my AT friends are and I need all the help I can get. I am sorry if this doesn't agree with your idea.
Today has been a extremely bad day for me. I was running Diskeeper defrag as I was watching TV. After watching the TV for a while, the defrag was done I decided to reboot. When I rebooted I got bunch of errors so I had to use the reset button. When the computer rebooted, it says invalid system disk. I booted up using a DOS boot up floppy to see what was going on. To my astonishment the volume info said basically my drive was 100% empty.
Not only was my system drive trashed, all my data partitions on a separate physical drive was completely trashed. All four partitions are accessible and all directories are intact, but files are gone just like when you use del *.* command on MS-DOS. I am suspecting hacking or virus action and since all the directories are intact I'd like to hope the files are just tagged as deleted and not actually been wiped out.
I only have the backup for the C partition which gets corrupted the most often. The data partitions are on a physically separate drive and I never thought this would happen so I don't have any back up.
On the data partitions I had considerable amount of files that has alot of sentimental values to me. The affected files includes all my chat ICQ logs from past three years, chatroom logs, family photo, my school papers, pics I took with friends in school, pics I took with my current and all previous S.O.'s and pretty much all my school papers and projects since eigth grade. I would be completely terrified to lose any of these files and I'd like to know if there is anything I can do about it.
The system was running Windows Me, connected to the internet at the time of the incident. The hard drives are configured as follow:
Quantum 7200RPM 40GB pri master holds C:\, system drive(20GB) ; E:\, temporary storage. The second drive is on a RAID controller of my onboard RAID controller and it is a Western Digital 40GB holding D:\, data partition 1(20GB); E:\data partition 2(20GB). All I know is that everything is lost.
Please go to "my rigs" sig and click on "trashed rig" if you need to know more about the hardware. Should you have any questions, please post here, PM me or email me at email, whichever is convenient for you.
I yanked out the DSL modem and am using my PIII 600MHz machine as I type this, so I do have access to the net. I didn't want to risk further messing up the hard drive by using it without knowing what I am doing on it. The poor Athlon rig is sitting on corner of my room
Any help would be appreciated.
Thank you,
Jer
Update:
using a software called Easy Recovery Professional, I was able to recover some data and some researching on the internet identified the culprit to be this Trojan horse. No I did not download the XP key gen, but I am suspecting something I downloaded was a renamed XP key gen.
Upon further investgations using Hack man, many files has been displaced with 33bytes file filled with 0's(in hex editor), others had file extensions mixed up, first character of the file replaced with "_" and other files were displaced with the phrase "You did a piracy, you deserve it."
Some files are functional. All the functional mp3 files are renamed to DOS 8+3 capital letter only system.
Ok... now how do I fix it???
Data recovery will cost me minimum of $350 and I really don't want them seeing my personal files and I would like to avoid it unless I am absolutely hitting the bottom.
the original post
\/
Ok first of I'd like to say this maybe off-topic for this forum and I understand the resistnace, however this is where most my AT friends are and I need all the help I can get. I am sorry if this doesn't agree with your idea.
Today has been a extremely bad day for me. I was running Diskeeper defrag as I was watching TV. After watching the TV for a while, the defrag was done I decided to reboot. When I rebooted I got bunch of errors so I had to use the reset button. When the computer rebooted, it says invalid system disk. I booted up using a DOS boot up floppy to see what was going on. To my astonishment the volume info said basically my drive was 100% empty.
Not only was my system drive trashed, all my data partitions on a separate physical drive was completely trashed. All four partitions are accessible and all directories are intact, but files are gone just like when you use del *.* command on MS-DOS. I am suspecting hacking or virus action and since all the directories are intact I'd like to hope the files are just tagged as deleted and not actually been wiped out.
I only have the backup for the C partition which gets corrupted the most often. The data partitions are on a physically separate drive and I never thought this would happen so I don't have any back up.
On the data partitions I had considerable amount of files that has alot of sentimental values to me. The affected files includes all my chat ICQ logs from past three years, chatroom logs, family photo, my school papers, pics I took with friends in school, pics I took with my current and all previous S.O.'s and pretty much all my school papers and projects since eigth grade. I would be completely terrified to lose any of these files and I'd like to know if there is anything I can do about it.
The system was running Windows Me, connected to the internet at the time of the incident. The hard drives are configured as follow:
Quantum 7200RPM 40GB pri master holds C:\, system drive(20GB) ; E:\, temporary storage. The second drive is on a RAID controller of my onboard RAID controller and it is a Western Digital 40GB holding D:\, data partition 1(20GB); E:\data partition 2(20GB). All I know is that everything is lost.
Please go to "my rigs" sig and click on "trashed rig" if you need to know more about the hardware. Should you have any questions, please post here, PM me or email me at email, whichever is convenient for you.
I yanked out the DSL modem and am using my PIII 600MHz machine as I type this, so I do have access to the net. I didn't want to risk further messing up the hard drive by using it without knowing what I am doing on it. The poor Athlon rig is sitting on corner of my room
Any help would be appreciated.
Thank you,
Jer