• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 319
  • Last Modified:

Help!Urgent (It's about NT)

Hi all guys

Our NT is hacked by hacker, that guys leave a no Name folder,  
its no name, just leave a folder in our server,
But we cannot delete as well as we cannot open it,
but we right click the properties is access to everybody,
When we intend to open it, it prompt a msg,
say no access right,
How can we solve it??
And How can we delete the folder ??
and Does the folder have any virus ???
Or how can we find the virus it hide ??

Thanks
0
kankan
Asked:
kankan
  • 3
  • 3
  • 3
  • +3
1 Solution
 
stevenlewisCommented:
Can the administrator take ownership of the folder?
also try looking at the name in a dos window (from the command prompt) it may be using alt+255 as it's name (windows does not recognize this name.
0
 
SysExpertCommented:
rename it and then delete it or use
the delete from a DOS prompt.

rd /s

As specified in JSI tip 2057 I went to the command line, switched to the directory and typed -- RD /S
    "" This removed the offending directories and files (with names nt doesn't like) per and in similar
      fashion to,
   http://www.jsiinc.com/tip2000/rh2057.htm

I hope this  helps !
0
 
SysExpertCommented:
rename it and then delete it or use
the delete from a DOS prompt.

rd /s

As specified in JSI tip 2057 I went to the command line, switched to the directory and typed -- RD /S
    "" This removed the offending directories and files (with names nt doesn't like) per and in similar
      fashion to,
   http://www.jsiinc.com/tip2000/rh2057.htm

I hope this  helps !
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
kankanAuthor Commented:
But this command [RD /S ""]
Will Delete the other folder 2 ???
I mean I afarid it will infect other important folder at other directory.
0
 
SysExpertCommented:
RD is short for remove directory.

do an rs /? to see the help for it.

Just do it for the folder you want to get rid of.


I hope this helps !
0
 
ahoffmannCommented:
as stevenlewis said, take ownership as administrator of the folder. Then rename it to a reasonable name.Administrator can always do it.
After renaming, i recommend to use cmd.exe and look at the folder, using dir, what else is there.
0
 
kankanAuthor Commented:
hi ahoffmann
but the ownership is admin. but when we open it, it just said we didn't have the right to open it
otherwise, i open it before.
and we can't rename the folder, even remote login as well~
but we can see the folder is 0 byte and that guys create a many many sub folder in this folder
0
 
ahoffmannCommented:
kankan, did you take ownership before?
> but we can see the folder is 0 byte and that guys create a many many sub folder in this folder
how can you see subfolders in a folder which cannot be opened?
0
 
stevenlewisCommented:
try a dir command from a command prompt and see what the folder is named in dos
0
 
stevenlewisCommented:
again one way to create a "blank" name is to use keystrokes that windows doesn't recognize
the ALT+255 keystroke combo will do this. I have used this to mess with a friends desktop, and create a folder that he could see, but when he clicked on it, it said path not found, even though he was looking at it
0
 
andyalderCommented:
What makes you think this was done by a hacker? It looks more like a filesystem corruption to me, have you run chkdsk on it to check the filesystem is clean?
0
 
kankanAuthor Commented:
but abdyyalder how's u feeling it's not ??
coz i can open the folder,
but we now try to format the drive,
but it prompt a error msg "no premission of this folder .... something like that."

and not related to ALT+255 this keystroke, coz we guess this type of folder is generate from some program,
and then run on our server
0
 
lrmooreCommented:
kankan,
No comment has been added lately (718 days), so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area for this question:

RECOMMENDATION: Award points to SysExpert http:#6349515

Please leave any comments here within 7 days.

-- Please DO NOT accept this comment as an answer ! --

Thanks,

lrmoore
EE Cleanup Volunteer
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

  • 3
  • 3
  • 3
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now