Solved

Windowsup.exe ????

Posted on 2004-09-21
6
424 Views
Last Modified: 2007-12-19
I scanned my PC with Norton Anti-Virus with the latest virus definition and it found the file windowsup.exe, in c:\winnt\system32, infected with w32.spubot.worm. But it failed to repair or to delete it. When I browse the folder, I cannot see the file. What can I do to remove it
0
Comment
Question by:chriska
  • 2
6 Comments
 
LVL 29

Expert Comment

by:blue_zee
ID: 12111991

Try running NAV in Safe Mode.

Zee
0
 
LVL 1

Expert Comment

by:jonathan6587
ID: 12112850
chriska,

try doing an "attrib -h -s -r c:\winnt\system32\windowup.exe"

then,

del c:\winnt\system32\windowup.exe

if you can't delete it then... boot to safe mode and try to delete it there.

If that doesn't work - let us know.

-Jonathan

0
 
LVL 1

Expert Comment

by:jonathan6587
ID: 12112906

whoops.  

From the command prompt.

attrib -h -s -r c:\winnt\system32\windowsup.exe

-h = remove hidden flag
-s = remove system flag
-r = remove readonly flag

del c:\winnt\system32\windowsup.exe <-- you will probably get an access denied message

boot to safe mode

del c:\winnt\system32\windowsup.exe <-- should work, but be aware that even if you delete this file that it may come back.

Sorry for the repost I don't like making errors or throwing just anything on the page without an explanation.

-Jonathan  

0
 
LVL 1

Accepted Solution

by:
sevie earned 30 total points
ID: 12114564
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

By this time the large percentage of day-to-day transactions have shifted to mobile banking; here are some overriding areas QAs must investigate while testing mobile banking apps.  
Big data transfers via information superhighways require special attention and protection. Learn more about the IT-regulations of the country where your server is located. Analyze cloud providers and their encryption systems for safe data transit. S…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now