What is the FileHider Virus?

Home
Advanced Computer Repair Techniques Operating Systems

Menu 1 C to R
Compress Data
Corrupt Profile Problems and Fix
Disabling a Service
DOS 16 Bit
Drive Letters
Drivers
Dual Boot not Wanted
Encryption
Encrypt Your Data
Event Viewer and Logs
Dr Watson and the Event Viewer
F6 Option
File Attributes
File Transfer Without Using a Network
Getting into Safe Mode
GPO - Group Policy Option
How Often Should Defragment Be Used
How To Make a Partition Smaller
How To Recover Original Environmental Variables
I Can Hack Your Computer In Less Than Two Minutes
Lockups Or Freeze Ups
Low Display Real Estate
Memory Dump File
No Desktop ICONS
No Shutdown
Operating System Is Corrupt
Operating Systems
Ram Drive Program Test Results
Why Have or Use a RAM Disk
Recover Deleted Files
Registry Cleaners

FIX ME!
ACR Techniques Operating Systems

Menu 2 R to X
Speed Up My PC!
Stop Error
System Restore
Temporary Files
User ID and Password Compromised
What is the FileHider Virus
What Media For Backup Would Survive a Natural Disaster
Why Have More Than One Operating System
Why Make An External Hard Drive Bootable
Why Is XP a Great Operating System
Is Windows-7 Another Vista
Disabling a Windows 7 Group Policy
Windows 7 Emergency Repair Disk-ERD
Display Settings for Windows 7
Installing Windows 7 On New SSD In A Notebook
Windows 7 File System
Is Windows 7 Getting Better
Windows Registry What Is It
Windows Registry Data Types
Windows Registry Clean Ou a Sneaky Virus
Windows Registry Do a Backup
Windows Registry Restoring
Windows Registry the Main Keys
Windows Remote Desktop
Windows Task Manager
Windows User ID and Password
Windows 10 Desktop, Folders, and Shortcuts a comparison
XP Update...

FIX ME!

Support

Sitemap

FileHider Virus is still active, is your Anti Virus up to date? If not then do it before trying to repair the damage...

Before you reset the attribute you have to eradicate it, does that make sense?

A question that has a lot of popularity in my old Q & A forum is about the filehider virus that sets the "Hidden" attribute on files and folders, then locks out the Explorer from removing the hidden attribute.

Then why can't some people understand this?

From: ~~https://www.virus-database.com/description/1186-filehider.1067.html~~ about the this virus. This web site is no longer available.

The current FileHider Virus is an updated version of the old DOS FileHider.1067, the updated version not only hides files it also modifies the Explorer program to keep it from removing the hidden attribute of files and folders by intercepting INT 21h (interrupt 21h is the instruction to read file attributes). Then it writes itself to the end of any executable file that is opened or executed while the OS is running. Although not destructive it is annoying and may display messages such as:

Good machine you have!
Monochrome is out! Try VGA graphics!
Making day out of night again?
Give me a rest!
Your disk is quite full, isn't it?

Insure your AV programs are up to date. To eradicate this virus from a computer running the Windows OS you should be in the 'Safe Mode'.

A file attribute is the setting that tells the Operating System what a user can do to a file, it is a set of bits that are attached to the file name in the MFT (Master File Table) when the file is created, changed, or when security is applied.

The attribute bits are:

Read Only

System

Hidden

Archive

Compressed

Although Explorer will only show the Read Only and Hidden attributes.

For more information on Anti Virus programs see the Self Computer Repair Unleashed 2nd Edition Manual.

You need this in your IT Tool Box! Get yours today...

The 5 Steps to high quality and cheap
DIY Computer Repairs

Get It Today...

The easiest way to reset the attribute is to use Explorer (you should be in the 'Safe Mode') and right click on the folder that was affected by the virus, go to Properties, remove the check box from "Hidden" then click apply. When the window opens asking if you want to remove the attribute from the folder or the contents click the radio button that says "Apply changes to this folder, subfolders, and files".

Do not do this to the Root of the Boot drive, this will remove the hidden attribute from the system files and you really don't want to do that.

If you are comfortable with the command line - you should be in the 'Safe Mode' - (DOS box) you could use the attrib.exe command (from the C:\Windows\System32\ folder) in each folder that has had the hidden file attribute set, this would take a little longer than using the Explorer program but will have the same results.

If you suspect that there are hidden files in a folder use the attirb.exe program to find them, check the help file by typing attrib.exe /? or attrib.exe /help at the command prompt to see a list of options and commands for the program.

Emergency Repair
Disk (ERD) - Will Yours Work?

Emergency
Repair Disk

Custom made for you...

You keyboard isn't thirsty, and it doesn't need calcium. Milk and other liquids will ruin a keyaboard!

This Web
Site is a
labor of Love!
But Love
doesn't pay
the bills!
Please chip in $5 to keep it live...

NOTE: Checklists and manuals are temporally off line...

Need A Checklist?

Need A Repair Manual?

You can:

Return to
previous page:

Note: Adobe has stopped production / update of the Flash program, until I find a suitable replacement videos on this web site will not run, the blank space is a place holder for those videos...

Thank you for visiting my web site, and please come back again.

This website is not intended for children under the age of 18.

Author of this web site: Monte Russell

FTC Endorsement Rules

All testimonials on the DIY Computer Repair web site are from
customers who were not paid to comment on any products!

Proudly Made in The U. S. A.

www.diy-computer-repair.net
From the Desert South West ~ Arizona, U. S. A.

Return to top of FileHider Virus

Now what part of the message about the FileHider Virus is confusing?

Home About Sitemap

From the Desert South West ~ Arizona, USA