Solved

Windowsup.exe ????

Posted on 2004-09-21
6
428 Views
Last Modified: 2007-12-19
I scanned my PC with Norton Anti-Virus with the latest virus definition and it found the file windowsup.exe, in c:\winnt\system32, infected with w32.spubot.worm. But it failed to repair or to delete it. When I browse the folder, I cannot see the file. What can I do to remove it
0
Comment
Question by:chriska
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 29

Expert Comment

by:blue_zee
ID: 12111991

Try running NAV in Safe Mode.

Zee
0
 
LVL 1

Expert Comment

by:jonathan6587
ID: 12112850
chriska,

try doing an "attrib -h -s -r c:\winnt\system32\windowup.exe"

then,

del c:\winnt\system32\windowup.exe

if you can't delete it then... boot to safe mode and try to delete it there.

If that doesn't work - let us know.

-Jonathan

0
 
LVL 1

Expert Comment

by:jonathan6587
ID: 12112906

whoops.  

From the command prompt.

attrib -h -s -r c:\winnt\system32\windowsup.exe

-h = remove hidden flag
-s = remove system flag
-r = remove readonly flag

del c:\winnt\system32\windowsup.exe <-- you will probably get an access denied message

boot to safe mode

del c:\winnt\system32\windowsup.exe <-- should work, but be aware that even if you delete this file that it may come back.

Sorry for the repost I don't like making errors or throwing just anything on the page without an explanation.

-Jonathan  

0
 
LVL 1

Accepted Solution

by:
sevie earned 30 total points
ID: 12114564
0

Featured Post

SuperAntiSpyware Licenses Discounted by 25% !

Exclusive offer to Experts Exchange Members!
Buy SuperAntiSpyware License(s) from us and save 25% on the regular purchase price.
- Includes Full SuperAntiSpyware Vendor Support Entitlements
- Your Subscription does not begin until you activate your license
- Buy for your friends

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question