Delete file in privileged folder like system32

Question

Working in a script able to delete files in privileged folder like system 32. But getting “File '\Windows\System32\Tryme
ew 2.txt' does not exist.” on the script bellow. According to the reponce on  this: Automox runs as SYSTEM so this issue is unlikely related to elevated privileges.Any suggestions? What am I missing here?  Evaluation Code:Exit 1 Remediation code: $filePath = "C:\Windows\System32\Tryme
ew 2.txt"# Check if the file existsif (Test-Path $filePath) {    try {        # Attempt to delete the file        Remove-Item -Path $filePath -Force -Recurse        Write-Output "File '$filePath' has been successfully deleted."    } catch {        # If an error occurs, display the error message        Write-Output "An error occurred while trying to delete the file: $_"    }} else {    # If the file does not exist, inform the user    Write-Output "File '$filePath' does not exist."}

JohnG-Automox · Accepted Answer

Hi @victor.tremea!I believe the issue you are seeing is related to the fact that the Automox agent is a 32-bit process.You'd want to usesysnativeto return the redirectedSysWoW64folder and test for the file in there.Source:https://learn.microsoft.com/en-us/windows/win32/winprog64/file-system-redirectorExample,$filePath = "$env:windir\Sysnative\Tryme
ew 2.txt"Let me know if that doesn’t work for you!

victor.tremea · Answer

That worked! Thank you,@JohnG-Automox.

Delete file in privileged folder like system32

2 replies

Reply

Reply

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded