DIRECTORY | LOCAL GROUP |
PERMISSIONS |
C:\ (or System Drive) |
Administrators:
CREATOR OWNER:
Authenticated Users:
System: |
Full Control
Read
Read
Full Control | |
\TEMP |
Administrators:
SYSTEM:
CREATOR OWNER:
Authenticated Users: |
Full Control
Full Control
Full Control
Full Control |
\Program Files |
Administrators:
Account Operators
Backup Operators
Server Operators
CREATOR OWNER:
Authenticated Users:
SYSTEM: |
Full Control
Special (All)(None)
Special (All)(None)
Special (All)(None)
Read
Read
Full Control |
\Program Files\NTReskit |
Administrators:
SYSTEM: |
Full Control
Full Control |
\WINNT |
Administrators:
CREATOR OWNER:
Authenticated Users:
SYSTEM:
|
Full Control
Full Control
Read
Full Control |
DIRECTORY | LOCAL GROUP | PERMISSIONS |
\WINNT\REPAIR |
Administrators:
SYSTEM: |
Full Control
Full Control |
\WINNT\SYSTEM32\CONFIG |
Administrators:
CREATOR OWNER:
Authenticated Users:
SYSTEM: |
Full Control
Full Control
List
Full Control |
\WINNT\SYSTEM32\SPOOL |
Administrators:
CREATOR OWNER:
Authenticated Users:
System Operators:
SYSTEM: |
Full Control
Full Control
Read
Change
Full Control |
\WINNT\COOKIES
\WINNT\FORMS
\WINNT\HISTORY
\WINNT\OCCACHE
\WINNT\PROFILES
\WINNT\SENDTO
\WINNT\Temporary Internet Files |
Administrators:
CREATOR OWNER:
Authenticated Users:
System: |
Full Control
Full Control
Add
Full Control |
|
FILES | LOCAL GROUP |
PERMISSIONS |
\Boot.ini
\Ntdetect.com
\Ntldr |
Administrators:
SYSTEM: |
Full Control
Full Control |
\Autoexec.bat
\Config.sys |
Administrators:
SYSTEM:
Authenticated Users: |
Full Control
Full Control
Read |
Policy Editor (\winnt\poledit.exe)
Registry Editor (regedit) (\winnt\regedit.exe)
ACL Control (\winnt\system32\cacls.exe)
File Conversion (\winnt\system32\convert.exe)
DHCP Admin (\winnt\system32\dhcpadmin.exe)
Event Viewer (\winnt\system32\eventvwr.exe)
IIS Installation (\winnt\system32\inetins.exe)
User Manager (local) (\winnt\system32\musrmgr.exe)
NT Backup (\winnt\system32\ntbackup.exe)
RAS Administrator (\winnt\system32\rasadmin.exe)
Emergency Disk (\winnt\system32\rdisk.exe)
Registry Editor (regedt32) (\winnt\system32\regedt32.exe)
Remote Boot Manager (\winnt\system32\rplmgr.exe)
Server Manager (\winnt\system32\srvmgr.exe)
System Key (\winnt\system32\syskey.exe)
System Editor (\winnt\system32\sysedit.exe)
Trivial FTP (\winnt\system32\tftp.exe)
User Manager (domain) (\winnt\system32\usrmgr.exe)
Disk Administrator (\winnt\system32\windisk.exe)
WinMSD (\winnt\system32\winmsd.exe)
WINS administrator (\winnt\system32\winsadmin.exe) |
Administrators:
SYSTEM: |
Full Control
Full Control |
Rollback.exe (may be located anywhere on hard drive) |
Delete this file |
