One-click restoration of 7.25 to windows Folder Vulnerabilities

Source: Internet
Author: User

I re-installed the system a few days ago, and by the way, I got a one-click Restore wizard from the Internet and made a backup. To prevent accidents. I want to back up the backed-up ghost image. However, after searching for a long time, no. gho file was found. No solution ......

After reading the introduction of this version, it is even more unsolvable. What about deep hiding ???

One-click recovery genie Professional Edition 7.25 introduction:

In this version, the hard disk MBR is not partitioned or changed. Instead, the system is backed up to a hidden folder. Suitable for beginners and general family users



I backed up the system to the edisk, which automatically generated the yjbf file. The following figure shows a g.txt and readme.txt file. The txt file contains [Warning !!! Do not delete any files in this folder or format this partition. Otherwise, the one-click Restore wizard becomes invalid !!!]

Point g. The file has an error:


Okay, I'm almost defeated. The backup cannot be found. However, the hard disk capacity is 2 GB less. I know. It's here. Now is the method problem.

After thinking about it, I found that the g. folder is suspect.

I think this should be similar to the file directory in dos.

So in the address bar, I tried to input g ..

I did not expect to find this secret. Surprised ~~~~

========================================================== ========================================================== ====================

So I found a lot of information and the problem began to become clear.

This is a windows Folder Vulnerability. If the file name. folder is found in the system, you need to keep an eye on it. It may be infected with Trojans or some special directory encryption software installed.

============================================== Gorgeous passing by ====== ==============================================

So how can we create such a file?

Good question!

The experts have explained:




[We all know that the "/" symbol in Windows is the path separator. For example, "C:/Windows/" means the Windows folder in the C partition, "C: the system.exe file in the Windows folder in the/Windows/system.exegion C partition is as follows:

What if the file name contains the "/" symbol? Assume that "S/" is the name of a folder. The folder is located at "F:/" and its path is "F:/S /", when we try to access the file, Windows will mistakenly think that the file we want to open is the S folder of the C partition, so that Windows cannot be opened and an error will be returned, because the preceding path does not exist.

Maybe you are creating the "S/" file, but Windows will prompt you that the "/" symbol cannot be used as the name of the file or folder. It seems that Windows has come up with this idea. If we continue, we do not believe that we cannot create a file containing the "/" symbol.

Now open your computer and we have to make some interesting attempts. After entering Windows, click Start> Run, enter "cmd", and press enter (if it is Win98, enter "COMMAND"). Then you will see the Windows COMMAND console, we want to use it to complete our remaining tests:

Microsoft Windows XP [version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
F:/Test> mkdir s/

F:/Test> mkdir s/s1/

F:/Test> mkdir s ./
The subdirectory or file s./already exists.

F:/Test> mkdir s ../

F:/Test> mkdir s .../

Why? Let's talk about the "S. "folder, which cannot be opened or deleted. It cannot be opened because its actual path is" F:/Test/s .. /"(we can determine the actual path we created) but the name in Windows Resource Manager is changed to" S. "That is, when you try to open it, Windows actually tries to open" F:/Test/s. /"of course, it cannot be opened, and the file does not exist, so Windows will report an error. It cannot be deleted because of this. In Windows, parsing an actual file path error as a non-existent path and performing operations cannot be completed.

The file "S .." can be opened but cannot be deleted. Wait ...... Open? Do you think Windows really opened the "s.../" file we created? You will understand the following experiment:

Microsoft Windows XP [version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

F:/Test> echo 1> Txt1.txt

F:/Test> copy Txt1.txt s ../
1 file has been copied.

F:/Test> echo 2> Txt2.txt

F:/Test> copy Txt2.txt s ../
1 file has been copied.


Now go back to your resource manager and open the "S .." folder. What do you see? “Txt1.txt "file how can be found here? We did just copy "S? Is opening the "S .." folder actually opening "S ."? That's true. In fact, if you create another "S" folder, "S." can be opened, but "S" is actually opened ".

"How can I delete it ?", It is not difficult to delete it, but the conventional method cannot be deleted. There are two options: 1. Enter DOS deletion (not recommended ). 2. Enter the command prompt and enter "rmdir directory name". The directory name is the name you created. If you forget it, check it in the resource manager and add ". /". If the prompt "the folder is not empty", add the "/s" parameter. Delete an instance:
Microsoft Windows XP [version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
F:/Test> dir
The volume in drive F is BGTING
The serial number of the volume is 2C8E-FE1C.

F:/Test directory

<DIR> ..
<DIR> s.
<DIR> s ..
9 bytes for one file
3,390,029,824 bytes available for five Directories

F:/Test> rmdir s ../
The directory is not empty.

F:/Test> rmdir s .. // s
S ../, are you sure you want to confirm (Y/N )? Y

F:/Test> rmdir s... // s
S.../, are you sure you want to confirm (Y/N )? Y

With this vulnerability, we can do a lot of things, such as accessing the "S" folder, but we can create "S .. /"to point to" S "so that you can browse across permissions. In addition, a new generation of trojan programs may exploit this vulnerability to hide themselves in a "X .. /"directory, so that the user can not find him, even professional anti-virus software will only kill" X "and skip" X .. /". If a malicious program creates many "../" folders on the computer, Fotmat may be the best choice at that time.

1. create "X .." in Windows .. /"folder, the folder will not be deleted through the conventional method, but you can Copy the file into, in the resource manager is displayed as" X. ", the error points to the" X "folder. (Hey, why is it a shortcut ?)

2. Create "X ../" by entering "mkdir X ../" in the command line ../".

3. you can delete it by entering "rmdir directory name" in the command line. The directory name is the name you created. If you forget it, you can view it in the resource manager and add ". /". If the prompt "the folder is not empty", add the "/s" parameter .]

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.