Posted 07 January 2015 - 12:51 PM
This is the first time I've seen this one. Over 1,000 files have had their contents replaced by a single repeated text character. For example a word document was replaced with "L" repeated enough times so it has the same size as the original file, or a.BMP file filled with "ü". The files and location seems to be random including doc, bmp, mp3, db, htm, exe, etc. All the replacements occurred within approximately 3 minutes on 9/18/10 (02:43 - 02:46) according to the modified timestamp. (I'm not sure whether the replacements actually happened 4 years ago and not noticed since then or if it happened at a different time with a hacked timestamp.
I know this machine has had malware issues in the past; but I'm not sure exactly when.
Has anyone else seen this? I assume that all the affected files are nonrecoverable. I have run a number of malware scans against the system - all come up clean.
Thanks in advance for any insight into this issue.