Iconman_R + ASUS unist.= change icons to clock icons!

June 11, 2015 at 13:21:07
Specs: Windows 7, 320 ghz, 8 gb ram
Iconman_R, follow-up to it's appearance on my task mgr

RE: Iconman_R, follow-up to it's appearance on my task mgr. processes, now trying to uninstall Realteck progs., inc sound card reader, which may ruin sound for me, but this is what started it. Google shows lots of malware possibilities, in form of trojan):

Hi. I was troubleshooting delay in Windows 7 shut down and saw ASUS files maybe causing slow shut down, so uninstalled ASUS web storage and multiframe (which I don't remember why I had it) and now all my desktop icons of shortcuts and text files have a CLOCK icon (4:00 to be exact)! I am afraid some kind of schedule to delete my files has begun on my own machine, at 4:00! I can't change any icons to a different icon, it's a blue clock saying 4:00.

To Asus support: I was about to restore program and start synching files too. I was having problems deselecting default file locations and setting up my own locations. Just help me assure that my files will be ok and this desktop icon change doesn't mean anything and is not a system-wide icon change, afraid to look, but I will.


See More: Iconman_R + ASUS unist.= change icons to clock icons!

Report •


#1
June 11, 2015 at 13:35:49
You have now posted this on two different forums here, and it reads like a follow-up to some communication or other. The last bit on this one is addressed to Asus support. We are nothing whatever to do with them or any other company.

Maybe you need to find whatever website you were communicating with. If you really did intended to ask for help on this forum then give us the background so that we properly understand it.

EDIT:
I see another helper has picked this up, so maybe that will help and/or I misunderstood this one.

Always pop back and let us know the outcome - thanks

message edited by Derek


Report •

#2
June 11, 2015 at 13:39:34
You've pretty obvious been "hit" with a pest or three.

For starters - and there may be more later, run the following in this order:

Adwcleaner

http://www.bleepingcomputer.com/dow...

JunkWare Removal Tool (JRT)

http://www.bleepingcomputer.com/dow...

JRT will install itself to the desktop, from where you run it. It will open into a dos style window; follow the instructions therein. It will reboot the system as part of its process.

Malwarebytes

http://filehippo.com/download_malwa...

Then download the Kaspersky Rescue Disk. You download the ISO; burn to a DVD. Boot with the DVD.

It will load itself into RAM only; then will go online to update itself. After-which it will scan the entire hard drive and deal with anything it find... The Kaspersky item is Linux based utility. It scans for pests that can frequently hide within the windows OS when it's booted up; and thus avoid detection/removal. Kaspersky gets around that "trick".

http://support.kaspersky.com/viruse...

http://support.kaspersky.co.uk/4162

http://support.kaspersky.co.uk/8092

http://tinyurl.com/373ojxb --- this last link is detailed how to from another site; worth to read.

Do NOT entertain any factory reset/restore routines - yet... Likely the problems can be dealt with without going that path. Retain any logs generated - as they may be useful later.

All of the above are"free"; regularly recommended here, and safe to ue.

When you install anything off the web (the above included) do NOT use the AUTOMATIC instal option; use MANUAL option. Carefully uncheck all those pre-checked boxes - all so helpfully pre-checked for you. You don't need what they offer to install; invariably nuisances to eradicate. Frequently those unwanted add-ins cause problems that mean you have to run assorted clean out utilities anon...


Report •

#3
June 11, 2015 at 13:47:15
More trawling via Google seems to suggest this is actually a legit utility??? Never heard of it until now... but I'd still run the above cleaners regardless.

Also this link seems to address the "utility" specifically, and how to remove it...

http://tinyurl.com/ne4dhqt

But it doesn't appear to include restoring icons to their norm?

Do you have any System Restore points set prior to the events as described?

And three more "removal" guides:

http://tinyurl.com/nvf8h8o

http://www.malwareuninstaller.com/f...

http://tinyurl.com/qj87btq

Not sure about the last one as it appears to be a little commercial in its approach - but perhaps have a look at least?

message edited by trvlr


Report •

Related Solutions

#4
June 11, 2015 at 13:57:30
Thanks. Sorry to msg. #1 if I'm in wrong arena . . . computing.net instead of asus, or realteck. I think I should go to Windows and ask, since actions seemed to have a scheduled 4:00 Office task to make it's stamp across desktop icons, which, of course, could be the mark of a Trojan. I just ran McAfee and Defender, so I'm off to see if I should just System Restore to before I woke up. Thanks again. MStone, WSJ, NYC

Report •

#5
June 11, 2015 at 14:02:57
By all means stick around if you wish. Maybe I'm going bonkers, it's just that your original post came across to me as if it was the middle of an existing conversation.

Always pop back and let us know the outcome - thanks


Report •

#6
June 11, 2015 at 16:10:26
From the info thus far it reads like you have acquired a pest of some sort; although - as I say earlier - the item also "appears" to be something from Realtek?

Regardless I'd still run the clean out routines in my earlier post above.


Report •

#7
June 11, 2015 at 16:43:16
Yes, definitely run the programs suggested in #2.

They might well find it.

Always pop back and let us know the outcome - thanks


Report •

#8
June 11, 2015 at 18:28:16
you're not going bonkers; that's the way I talk when I'm between thousands of possible
links to solutions to chose from, etc

Report •

#9
June 11, 2015 at 21:05:18
I think I found fix: https://support.microsoft.com/en-us...

Report •

#10
June 12, 2015 at 06:06:06
Good find - let us know how you get on.

Always pop back and let us know the outcome - thanks


Report •

#11
June 12, 2015 at 13:18:42
After transferring uers files/local/apps to new profile, many files in C:\dir still had superimposed blue clock, while new desktop was clean, even with old files transferred. So, this morning I took action, which ended in the nightmare that follows:

I did a system restore, removing my personal files by accident. It only used the first disk (3 full DVD's) I made from Dell's recovery and backup. I still have 2 more dvd's that were unused that may have all my personal "Backup" files. Is there anyway I can generate these files onto new profile? I had a corruption, super-imposing a blue clock on many of my files and tried alot of fixes yesterday; Should have hit "NO" when asked by dell to write over "personal files"

Dell Recovery & Backup Manager windows 7 Dell Prog Used 3 dvd's but recovery action & only used 1; lost all backup and personal files? Help. I did a system restore, removing my personal files by accident (thinking question referred to "USER" files, not personal folders on my C:/!!!!_. It only used the first disk I made from Dell's recovery and backup. I still have 2 more dvd's that were unused that may have all my personal "Backup" files. Is there anyway I can generate these files onto new profile? I had a corruption, super-imposing a blue clock on many of my files and tried alot of fixes yesterday; Should have hit "NO" when asked by dell to write over "personal files" - - - I want to recover all my backuped up files on the last 2 dvd's into anywhere, or this new profile, but Dell software doesn't offer option.

http://en.community.dell.com/suppor...


Report •

#12
June 12, 2015 at 13:57:43
Just to clarify. When folk say System Restore it is usually taken to mean "Windows inbuilt System Restore", which goes back to a selected point in time but preserves your own files.

What you did is what we normally call a "Factory Restore (or Reset)" which if you are not careful can set you right back to square one. It is not easy to recover from anything this does. There are programs that can search the HD for traces but these are far from 100% and the least you have done since the better. This one is quite popular:
https://www.piriform.com/recuva

Always pop back and let us know the outcome - thanks

message edited by Derek


Report •

#13
June 14, 2015 at 17:46:19
I'm not picking a best answer yet, because I am still in sweat and suffer mode. Thank G-d, I had sent files to Dell cloud up until April, but the download has been tortuous and I still have 2.5 months of work lost. Mr. King at Dell is heloing me and I am worried that either the Iconman_R Trojjan took the Dell Program .lnk and wreaked havoc on my life, or the Dell Backup and Recovery program has an alert that marks files/icons with its Blue Clock (set to 4:00) to remind one to synch or buy program.

Here's part of my last reply to Dell, 3 days into still downloading my files from their Cloud:
One last thing, had it not been for the Dell ICON BLUE CLOCK superimposing itself on all my desktop icons and many of my files on c:\, I would have never thought of considering anything wrong. This is a problem maybe calculated into the Backup&Recovery program itself, in trying to warn one to either
go into Cloud Synch mode and allow a backup update or a reminder to buy the program, before it expires in 2 weeks. Either way, I almost had a stroke, lost alot of hair and swore alot.

Please submit this to your technical analysts, though I doubt it's not something they've not heard of before, as you assured me (.lnk files pointing to wrong places on Windows, etc).

Let me know if there is anyway I can speed things up with this tortuously slow download of my thousands of original graphic files, etc. Thanks.

SO UNTIL THIS HORROR ENDS, I'VE STILL GOT MY OWN BEST ANSWERS, since the Karposky idea was to deep and probably wouldn't have given me a fix.


Report •

#14
June 14, 2015 at 18:07:26
I guess you've been having reminders about Best Answers - they will stop. This post is ongoing, so marking, if any, can be left on the back burner.

As for the .lnk files run the LNK fix from here:
http://www.sevenforums.com/tutorial...

If that doesn't help run the EXE fix too, on the same page.

"Please submit this to your technical analysts"
Just an aside to put you in the picture:
This is an open forum where folk come in and answer posts where they think they might be able to help others - a spare time activity. So there are no analysts or even a department/building - just a website.

Always pop back and let us know the outcome - thanks

message edited by Derek


Report •

#15
June 15, 2015 at 20:37:29
3 days and still downloading my files. It's 75% complete as of 8 pm tonight. I also noticed this afternoon program's were added, modified to Dell and Dell recovery . . . where I also noticed an application called HARDLINKS. This is probably part of the program that stamped my icons and files with the Blue Clock.
Not a .lnk misdirection, as Dell tech noted.

I could have avoided this entire fiasco of maybe a false Profile Corruption if I had know that this was a signal to update, or something. Nonetheless, tons of program files have been added to the Dell program, on my machine this afternoon, without authorization. I hope this all goes away after I finish downloading, do a disk backup and remove any Recovery program until I get .lnk concept down.

I have a big headache, but at least some files are coming back from Cloud and not lost all together. Have a good night. MIS


Report •


Ask Question