Posted 21 March 2010 - 07:27 PM
I'm working on cleaning a friend's Vista PC. I already used my usual favorites MBAM, Spybot S&D, Adaware, and SAS, and removed some malware they found. Now I'm trying Sophos Anti-Rootkit for the first time just to cover all possibilities.
But it is listing tons of files as "Unknown hidden file", most of which are exe's and dll's, most of which look perfectly legitimate, such as 'C:\Users\mickie\Downloads\install_flash_player.exe' which I downloaded using Secunia PSI earlier.
Sophos' readme says that if drive compression is used, this can happen, but I checked that folder mentioned above ('C:\Users\mickie\Downloads\') and it's not compressed. Neither do the files have the 'hidden' attribute set in Explorer.
Why is this happening? Am I doing something wrong?