Like a few others here, I used ComboFix to resolve a Google Redirect Virus issue (not knowing that it had been pulled by the dev), and it "deleted" (quarantined) every file on my machine. A quick look around my C:\ I found all the files with a brand spanking new .vir extension. </panic mode>
Following instructions and recommendations from tetonbob given to another forum member in another thread, I was able to use a dequarantine script to recover all my data back to its original location. Fantastic!
At this point I just need someone to help me address some housekeeping issues...it seems all my data was copied from the Quarantine folder and the .vir extension was removed, because the quarantine folder is still showing the "infected" files. Essentially I have two sets of files, the normal one and the set that was quarantined and marked .vir. Is it safe to remove the set of quarantined data?
Are there any other things that I should be doing to get my PC back to its condition before I ran ComboFix?
Thanks in advance for your help!
Edited by garmanma, 25 January 2010 - 11:17 AM.