Combofix Deleted all Personal Files - docs, pics, music, desktop, etc

Welcome to Major Geeks!

Yes this is a recent bug that just appeared with ComboFix.

Get the C:\QooBox\ComboFix-quarantined-files.txt and attach it here so we can attempt to work up a fix to restore everything. We will need to use ComboFix to restore everything so we will have to restore it to since this bug has deleted ComboFix.exe from the Desktop too (or from whereever it was run).

We have already fixed several PCs where this problem has occurred.

Do not attempt to restore anything on your own. Make no more changes to your PC. Just get us the De-Quarantine file so we can make a fix. Also get the ComboFix.exe file out of the Quarantine and back onto your Desktop. If you don't know how to get this file back on to your Desktop, just tell us.

 

Yes this is a problem that just began today due to a recent change in ComboFix.


To copy ComboFix from quarantine back to desktop, click Start > Run > copy paste the below into the run box and then click OK.

You should now have a ComboFix icon back on your desktop. Tell me if you see this icon now. This need to be done before we can restore the files.
If you see the ComboFix icon on your Desktop, you can continue on with the below.

NOTE: This fix only applies to this user! It will definitely not work for anyone running Vista or Win 7 so do not attempt
to use this fix if you are not the user who created this thread.


Now we need to use ComboFix to restore files. This will only restore, it will not delete anything.

• Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
  • If it is not on your Desktop, the below will not work.
• Also make sure you have shut down all protection software (antivirus, antispyware...etc) or they may get in the way of allowing
  ComboFix to run properly.
• If ComboFix tells you it has expired or need to be updated to a new version, make sure you allow it to update.
• Open Notepad ( Click Start > Run, type notepad then press Enter ) and copy/paste the text in the below quote box into it:

• Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
• At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
• You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
• Now use your mouse to drag CFscript.txt on top of ComboFix.exe
• Follow the prompts.
• When it finishes, a log will be produced named c:\combofix.txt
• I will ask for this log below

Note:

Do not mouseclick combofix's window while it is running. That may cause it to stall. Be patient. It can take awhile for all files
to restore. You will slowly notice things appearing on the Desktop. Wait for ComboFix to finish. It will show you a De-Quarantine log when it is
finished.


After reboot, tell us how things are looking. You should check each user account.