Virus Infection Created Symbolic Links in Microsoft Security Client Directory
My co-worker and I have been buggered about how to removed both symbolic links and invalid directory trees. I did find removing invalidly named directory trees worked in a Linux Environment such as Parted Magic. But how do I remove symbolic links? Everytime we try to delete it, we get an error:
Folder Not Empty.
The folders/links that were created are the same names as folders preventing MSSE from installing properly. "En-us", "Drivers" and "Backup" are the names of these folders in the Security Client directory. The target of these symbolic links is the C:\Windows\System32\Config folder. As a result, we're unable to remove these links, even in the Parted Magic Environment.
Is there a way to remove these entries w/o doing any damage to the targets? Is there a "Root" command that can be used to removed JUST the symbolic link itself? And if so, how do I navigate via the command window to that location "C:\Program Files\Microsoft Security Client"?
Further, are there any tools you'd recommend for removing invalid directory entries aside from booting into a linux shell and deleting it that way?
Wanting Answers in Washington
Edited by gabthetech, 12 September 2013 - 01:12 PM.