| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 46852 | 2004-07-07 21:35:00 | Spyware File Removal - DOS Commands | reti (5851) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 250537 | 2004-07-07 21:35:00 | Hiya, For the past 3 months Internet Explorer has defaulted to a home page www.bestsearch.com and could not be changed manually, with Adaware 6.0, or Spybot(from last PCWorld Disk). Exploring Spybot advanced features - Startup, showed a file loading at startup c:\windows\downloaded programmes\2.exe. This file was not visible in Windows Explorer, but was via the MSDOS prompt DIR. Suspecting this was the problem, I tried a simple DEL command at the DOS prompt and was prompted access denied. I then tried a DELTREE command which was executed, but, a DIR check showed the file remained, and the ATTRIB setting was set to A. Finally, Norton Clean Sweep deleted the file and the associated registry key, and the problem has resolved. Questions arising from this: 1. Why did Adaware and Spybot not resolve this problem ? 2. Why could I not see this file in Windows Explorer ? 3. Why was access denied with a DEL command ? 4. Why did DELTREE appear to execute, but didn't actually remove the file ? Regards Dr Shane Reti |
reti (5851) | ||
| 250538 | 2004-07-07 21:41:00 | Questions arising from your questions: What version of Windows? In later versions, there is no real DOS function, only a DOS emulator under Windows. Naturally access will be denied to a process that Windows is using, while you actually remain within Windows. Have you set Windows Explorer to show Hidden and System files? |
godfather (25) | ||
| 250539 | 2004-07-07 21:51:00 | 1. There are some nasty trojans, adware, spy stuff that even these programs cannot keep up with. I have a colleague at work who has the same problem, and none of the available packages can solve the problem at this stage. 2. Did you have system and hidden files turned off. Otherwise not sure 4. DELTREE does not report back on whether it is successful or not, it just does it. Hope that is some help Peter |
Obelix (752) | ||
| 250540 | 2004-07-07 22:37:00 | "deltree" be carefull with that one. It has been known to completly delete ALL directories and files within, from a hard drive. I found it once in a autoexec.bat on a 98 machine. Luckly the syntax was wrong otherwise format and reinstall the os would have been needed | beama (111) | ||
| 250541 | 2004-07-08 10:41:00 | Hi, Win 98 & Yes, I had activated/enabled the show system & hidden files option Shane |
reti (5851) | ||
| 250542 | 2004-07-08 10:42:00 | Thanks Peter, That explains why Deltree "appeared" to execute. Shane |
reti (5851) | ||
| 1 | |||||