why can malware writte in system32 folder?

  • Thread starter Thread starter PL
  • Start date Start date
P

PL

Guest
Hi guys
I have a question, why can malware writte in system32 folder if these is
read only?, someone know?


--
Saludos
PL
 
Re: why can malware writte in system32 folder?

From: "PL" <pedrolerma@hotmail.com>

| Hi guys
| I have a question, why can malware writte in system32 folder if these is
| read only?, someone know?


| --
| Saludos
| PL


This isn't a anti malware group.

Please rewrite your query and fully express what you want to know in;
microsoft.public.security.virus

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
 
Re: why can malware writte in system32 folder?

It's not a matter of Folder attributes so much as it is the privileges of
the user or service making the change. Called ACL ( Access Control
List(s) ), it's the privilege table of what users can perform what actions.

"PL" <pedrolerma@hotmail.com> wrote in message
news:7E74348F-CFED-4B0C-9152-42227517596A@microsoft.com...
> Hi guys
> I have a question, why can malware writte in system32 folder if these is
> read only?, someone know?
>
>
> --
> Saludos
> PL
>
>
 
Re: why can malware writte in system32 folder?

Simple, system32 folder ISN'T read only.

PL wrote:

> Hi guys
> I have a question, why can malware writte in system32 folder if these
> is read only?, someone know?
>
>
 
Re: why can malware writte in system32 folder?

Thanks Mr McCarty, I'll read about that.


"R. McCarty" <PcEngWork-NoSpam_@mindspring.com> wrote in message
news:u7RRpWnIJHA.1968@TK2MSFTNGP06.phx.gbl...
> It's not a matter of Folder attributes so much as it is the privileges of
> the user or service making the change. Called ACL ( Access Control
> List(s) ), it's the privilege table of what users can perform what
> actions.
>
> "PL" <pedrolerma@hotmail.com> wrote in message
> news:7E74348F-CFED-4B0C-9152-42227517596A@microsoft.com...
>> Hi guys
>> I have a question, why can malware writte in system32 folder if these is
>> read only?, someone know?
>>
>>
>> --
>> Saludos
>> PL
>>
>>
>
>
 
Re: why can malware writte in system32 folder?

Thanks David, I didn't know that these group.


"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:OU$xYVnIJHA.3708@TK2MSFTNGP02.phx.gbl...
> From: "PL" <pedrolerma@hotmail.com>
>
> | Hi guys
> | I have a question, why can malware writte in system32 folder if these
> is
> | read only?, someone know?
>
>
> | --
> | Saludos
> | PL
>
>
> This isn't a anti malware group.
>
> Please rewrite your query and fully express what you want to know in;
> microsoft.public.security.virus
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
>
>
 
Re: why can malware writte in system32 folder?

really??? I saw read only access in folder properties, I'll check, my goal
is try to never without administrative privileges can write in it.

Thanks bob, Sorry I'm starter user


"Bob I" <birelan@yahoo.com> wrote in message
news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
> Simple, system32 folder ISN'T read only.
>
> PL wrote:
>
>> Hi guys
>> I have a question, why can malware writte in system32 folder if these is
>> read only?, someone know?
>>
>>
>
 
Re: why can malware writte in system32 folder?

That "check box" means nothing as to the "attributes" of the folder
itself. It's only purpose in life is to allow a user to Set or UNset,
enmass, the read-only attributes of the files contained within the folder.

PL wrote:

> really??? I saw read only access in folder properties, I'll check, my
> goal is try to never without administrative privileges can write in it.
>
> Thanks bob, Sorry I'm starter user
>
>
> "Bob I" <birelan@yahoo.com> wrote in message
> news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
>
>> Simple, system32 folder ISN'T read only.
>>
>> PL wrote:
>>
>>> Hi guys
>>> I have a question, why can malware writte in system32 folder if
>>> these is read only?, someone know?
>>>
>>>
>>
 
Re: why can malware writte in system32 folder?

Ok, I'll read more about that, thanks Bob.


"Bob I" <birelan@yahoo.com> wrote in message
news:eclfarnIJHA.4996@TK2MSFTNGP04.phx.gbl...
> That "check box" means nothing as to the "attributes" of the folder
> itself. It's only purpose in life is to allow a user to Set or UNset,
> enmass, the read-only attributes of the files contained within the folder.
>
> PL wrote:
>
>> really??? I saw read only access in folder properties, I'll check, my
>> goal is try to never without administrative privileges can write in it.
>>
>> Thanks bob, Sorry I'm starter user
>>
>>
>> "Bob I" <birelan@yahoo.com> wrote in message
>> news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
>>
>>> Simple, system32 folder ISN'T read only.
>>>
>>> PL wrote:
>>>
>>>> Hi guys
>>>> I have a question, why can malware writte in system32 folder if these
>>>> is read only?, someone know?
>>>>
>>>>
>>>
>
 
Re: why can malware writte in system32 folder?

Sure, you can see it for yourself, make a temp folder to play with, and
then copy some files to it, then look in the folder and set the view to
Details and show attributes. Now close the folder, r-click it and
properties, click the readonly box until the black check shows and then
apply, Now go look at the attributes of the files in that folder.

PL wrote:

> Ok, I'll read more about that, thanks Bob.
>
>
> "Bob I" <birelan@yahoo.com> wrote in message
> news:eclfarnIJHA.4996@TK2MSFTNGP04.phx.gbl...
>
>> That "check box" means nothing as to the "attributes" of the folder
>> itself. It's only purpose in life is to allow a user to Set or UNset,
>> enmass, the read-only attributes of the files contained within the
>> folder.
>>
>> PL wrote:
>>
>>> really??? I saw read only access in folder properties, I'll check, my
>>> goal is try to never without administrative privileges can write in it.
>>>
>>> Thanks bob, Sorry I'm starter user
>>>
>>>
>>> "Bob I" <birelan@yahoo.com> wrote in message
>>> news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
>>>
>>>> Simple, system32 folder ISN'T read only.
>>>>
>>>> PL wrote:
>>>>
>>>>> Hi guys
>>>>> I have a question, why can malware writte in system32 folder if
>>>>> these is read only?, someone know?
>>>>>
>>>>>
>>>>
>>
 
Re: why can malware writte in system32 folder?

Sounds good, I'll do in my machine test...then will tray to write some
malware in that folder.
I work with 250 users running win xp and I want to reduce the risk to virus
attack.
thanks again bob



"Bob I" <birelan@yahoo.com> wrote in message
news:OiYIExnIJHA.4280@TK2MSFTNGP04.phx.gbl...
> Sure, you can see it for yourself, make a temp folder to play with, and
> then copy some files to it, then look in the folder and set the view to
> Details and show attributes. Now close the folder, r-click it and
> properties, click the readonly box until the black check shows and then
> apply, Now go look at the attributes of the files in that folder.
>
> PL wrote:
>
>> Ok, I'll read more about that, thanks Bob.
>>
>>
>> "Bob I" <birelan@yahoo.com> wrote in message
>> news:eclfarnIJHA.4996@TK2MSFTNGP04.phx.gbl...
>>
>>> That "check box" means nothing as to the "attributes" of the folder
>>> itself. It's only purpose in life is to allow a user to Set or UNset,
>>> enmass, the read-only attributes of the files contained within the
>>> folder.
>>>
>>> PL wrote:
>>>
>>>> really??? I saw read only access in folder properties, I'll check, my
>>>> goal is try to never without administrative privileges can write in it.
>>>>
>>>> Thanks bob, Sorry I'm starter user
>>>>
>>>>
>>>> "Bob I" <birelan@yahoo.com> wrote in message
>>>> news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
>>>>
>>>>> Simple, system32 folder ISN'T read only.
>>>>>
>>>>> PL wrote:
>>>>>
>>>>>> Hi guys
>>>>>> I have a question, why can malware writte in system32 folder if
>>>>>> these is read only?, someone know?
>>>>>>
>>>>>>
>>>>>
>>>
>
 
Re: why can malware writte in system32 folder?

PL wrote:
>
> I have a question, why can malware writte in system32 folder if these is
> read only?, someone know?

Perhaps that's why they call it malware. Best bet is NOT to download it
or install it for best results.

--
http://www.bootdisk.com/
 
Re: why can malware writte in system32 folder?

Trust me the malware WILL write to that folder. As i said, that feature
has NO effect on the attributes of the folder itself.

PL wrote:

> Sounds good, I'll do in my machine test...then will tray to write some
> malware in that folder.
> I work with 250 users running win xp and I want to reduce the risk to
> virus attack.
> thanks again bob
>
>
>
> "Bob I" <birelan@yahoo.com> wrote in message
> news:OiYIExnIJHA.4280@TK2MSFTNGP04.phx.gbl...
>
>> Sure, you can see it for yourself, make a temp folder to play with,
>> and then copy some files to it, then look in the folder and set the
>> view to Details and show attributes. Now close the folder, r-click it
>> and properties, click the readonly box until the black check shows and
>> then apply, Now go look at the attributes of the files in that folder.
>>
>> PL wrote:
>>
>>> Ok, I'll read more about that, thanks Bob.
>>>
>>>
>>> "Bob I" <birelan@yahoo.com> wrote in message
>>> news:eclfarnIJHA.4996@TK2MSFTNGP04.phx.gbl...
>>>
>>>> That "check box" means nothing as to the "attributes" of the folder
>>>> itself. It's only purpose in life is to allow a user to Set or
>>>> UNset, enmass, the read-only attributes of the files contained
>>>> within the folder.
>>>>
>>>> PL wrote:
>>>>
>>>>> really??? I saw read only access in folder properties, I'll check,
>>>>> my goal is try to never without administrative privileges can write
>>>>> in it.
>>>>>
>>>>> Thanks bob, Sorry I'm starter user
>>>>>
>>>>>
>>>>> "Bob I" <birelan@yahoo.com> wrote in message
>>>>> news:#VjeLanIJHA.3540@TK2MSFTNGP04.phx.gbl...
>>>>>
>>>>>> Simple, system32 folder ISN'T read only.
>>>>>>
>>>>>> PL wrote:
>>>>>>
>>>>>>> Hi guys
>>>>>>> I have a question, why can malware writte in system32 folder if
>>>>>>> these is read only?, someone know?
>>>>>>>
>>>>>>>
>>>>>>
>>>>
>>
 
Back
Top