HijackThis
Tutorial  

Support
Forum

HJTHotkey

Get Files

BBCode
to  HTML

GetFiles

I have found that when a user has many files which they need to manually delete it takes time to put together a list of files. I wrote the following program to speed up the process.

First, Go through the log and create a list of all the bad files as you would normally do. e.g.

O4 - HKLM\..\Run: rrxpmg.exe
O4 - HKLM\..\Run: C:\WINDOWS\System32\cmd32.exe
O4 - HKLM\..\Run: C:\Program Files\SurfSideKick 2\Ssk.exe
O4 - HKLM\..\Run: C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: "C:\Program Files\Internet OPtimizer\optimize.exe"
O4 - HKLM\..\Run: C:\Program Files\VBouncer\BundleOuter.EXE
O4 - HKCU\..\Run: C:\WINDOWS\System32\m?config.exe
O4 - HKCU\..\Run: C:\Program Files\SurfSideKick 2\Ssk.exe


Run "GetFiles.exe" and copy this list into the window that appears.

(select the list and press Alt+D to avoid having to copy and paste the list here.)



Click OK.

A new window will appear where you can choose to delete the folder instead of the file.



Use the "<<" button if you want to select the folder instead of the file for deletion. Click it again to select the next folder up for deletion instead.

Click "Copy to clipboard when done"

When you paste into your post then the log will look like this-


C:\Program Files\SurfSideKick 2 << This Folder
C:\WINDOWS\System32\m?config.exe << This file
C:\Program Files\VBouncer << This Folder
C:\Program Files\Internet Optimizer << This Folder
C:\Program Files\ISTsvc << This Folder
C:\Program Files\SurfSideKick 2 << This Folder
C:\WINDOWS\System32\cmd32.exe << This file
* rrxpmg.exe << This file

* Locate via Start>Search

You can now add your canned speech for deleting files.


You can download the program from here-
http://hometown.aol.co.uk/JRMC137/GetFiles/Getfiles.zip

I am keeping this seperate from HJTHotkey since it's only people who analyse other peoples logs often that will find it useful.