New
#1
Files "Locked" and Cannot Backup or Delete After Malware Incident
Hi, I recently had a malware incident that forced me to restore a system image - however, I failed to realize that restoring the system image would not restore data stored in C:\Users\myname
Once the system image was restored and I realized that I should probably include this Users folder in my daily mirror backup (using FreeFileSync), I ran the backup but 77 files generated a "Cannot Read File" error when trying to back them up. It also says "The file is locked by another process: System."
I may be wrong to think this, but I suspect that the malware that was launched somehow created these unecessary files or locked them down. I would like to delete them if they are not required.
Some of the files are .dat, dat.LOG1, .dat.LOG2, .log, .bin, .edb, .toc, .jfm, .jtx
most are either locked by "System" and/or "Registry". Others are locked by various WindowsApps, System32, or Google Chrome processes.
I'm attaching a few screenshots here... but like I said, there are 77 files so I won't put them all here.
I'm assuming it is recommended to backup the entire C:\Users\myname folder and that this is not normal.
Please advise...