Vista block batch files from being unzipped

  • Thread starter Thread starter Francois PIETTE
  • Start date Start date
F

Francois PIETTE

When unzipping a batch file using WinZip 11, I get an error "Windows has
blocked the file TestBak.bat from being extracted".

How do I change Vista setup so that batch files are allowed to be be
extracted ?

Best regards,
 
have you tried unpacking it using the built in unzip function.



(e-mail address removed)



When unzipping a batch file using WinZip 11, I get an error "Windows has
blocked the file TestBak.bat from being extracted".

How do I change Vista setup so that batch files are allowed to be be
extracted ?

Best regards,
 
have you tried unpacking it using the built in unzip function.

Once WinZip is installed, you have no more access to the built in unzip feature.

--
Francois PIETTE
http://www.overbyte.be


"mikeyhsd" <[email protected]> a écrit dans le message de have you tried unpacking it using the built in unzip function.

When unzipping a batch file using WinZip 11, I get an error "Windows has
blocked the file TestBak.bat from being extracted".

How do I change Vista setup so that batch files are allowed to be be
extracted ?

Best regards,
 
Francois said:
Once WinZip is installed, you have no more access to the built in unzip
feature.
Have you looked to see if the zip file is blocked?

Right click and look at the bottom of the General Tab
 
have you tried unpacking it using the built in unzip function.
Have you looked to see if the zip file is blocked?

Right click and look at the bottom of the General Tab

The problem seems linked to a zip file downloaded from the internet. Looks
like Vista remember I downloaded the file from the internet. Unzipping a bat
file from another zip file doesn't pose any problem. Strange, strange...
 
Francois said:
The problem seems linked to a zip file downloaded from the internet.
Looks like Vista remember I downloaded the file from the internet.
Unzipping a bat file from another zip file doesn't pose any problem.
Strange, strange...

So was your zip blocked or not? From your answer I can't make out if you
have solved the issue or not!
 
So was your zip blocked or not?

The zip was not blocked at all. Was is blocked is a batch file which is into
the zip. Everything unzip perfectly, except the batch file. When unzipping a
batch file (alone or with other files) using WinZip 11, I get an error
"Windows has
blocked the file TestBak.bat from being extracted".
From your answer I can't make out if you have solved the issue or not!

I've got the batch file by other mean so I'm not stuck right now, but the
problem still has to be solved.

As I said in the previous message, it looks like Vista remember the zip file
has been downloaded and prohibe any bat file from being extracted. Other
files are OK from the same zip file, and other zip files created on my
system, containing bat files, do not have any problem.
 
On Sun, 24 Jun 2007 15:31:53 +0200, "Francois PIETTE"
The zip was not blocked at all. Was is blocked is a batch file which is into
the zip. Everything unzip perfectly, except the batch file. When unzipping a
batch file (alone or with other files) using WinZip 11, I get an error
"Windows has blocked the file TestBak.bat from being extracted".

Hm, interesting.

What I'd do is create a do-nothing .BAT (such as a single REM
statement), zip it up, and see if you get repro. If you don't, then
send that .ZIP to yourself so that when it arrives by email, it should
be flagged as from "the Internet", and retry.

If you still don't get repro, then have a very close look at the
particular .BAT (is it .BAT.PIF? Does it contain MZ code, or "nasty"
statements? Is the .ZIP password-protected? Do the av's logs say
anything about intercepting it?)
As I said in the previous message, it looks like Vista remember the zip file
has been downloaded and prohibe any bat file from being extracted. Other
files are OK from the same zip file, and other zip files created on my
system, containing bat files, do not have any problem.

OK, then yes; it prolly does indeed "remember" these as being to be
handled in the Internet Zone (at least, if not Restricted Zone). Or
there's a different Vista mechanism involved, such as IE 7's Protected
Mode - are these pulled down via IE 7? Do you get repro if you pull
then down via, say, Firefox?


-------------------- ----- ---- --- -- - - - -
Tip Of The Day:
To disable the 'Tip of the Day' feature...
 
I've done the test with the mail. Here is the result: Vista block the bat
file when trying to extract from the zip file saved from the mail I sent to
myself. There was no problem to extract from the original zip file.

So I confirm it is a problem with security settings in the system. I used
"Windows Mail" to send/receive the mail with teh attached zip file.

Where are the security settings ? I guess I have to use secpol.msc. I'd like
to know where to search because there are so much items to try !
OK, then yes; it prolly does indeed "remember" these as being to be
handled in the Internet Zone (at least, if not Restricted Zone). Or
there's a different Vista mechanism involved, such as IE 7's Protected
Mode - are these pulled down via IE 7? Do you get repro if you pull
then down via, say, Firefox?

I have not used IE7 to get the file. It was sent by email.

Regards,
 
On Mon, 25 Jun 2007 18:29:31 +0200, "Francois PIETTE"
I've done the test with the mail. Here is the result: Vista block the bat
file when trying to extract from the zip file saved from the mail I sent to
myself. There was no problem to extract from the original zip file.
So I confirm it is a problem with security settings in the system. I used
"Windows Mail" to send/receive the mail with teh attached zip file.
Where are the security settings ?

I don't know if it's changed, but when IE4's OE and MS Office 2000's
Outbreak debuted HTML "message text", it was handled in the Internet
Zone by duuuuhfault, tho you could set it to Restricted Zone.

IOW, the "security model" in those days was along the lines of IE's
security zones, not NT/NTFS's permissions, account rights, etc.

Bubbleboy PoC'd malware attack via scripts embedded in "message text".
then Kak went wild, then San and Valentine dropped destructive
payloads into the same email mechanism, as AFAICR did BleBla.

Throughout all of this, MS kept shipping these HTML-aware email
clients in Intrernet Zone by duuuuhfault. In fact, it was only with
Windows and MS Office XP that this changed - at last, the default is
Restricted Zone. This may be what's biting you in Vista, or it may be
a separate setting somewhere within Windows Mail.

Personally, I just avoid MSware email apps and use Eudora instead.
I guess I have to use secpol.msc. I'd like to know where to search
because there are so much items to try !

I'd start with IE's security zone settings and details, then look for
settings within Windows Mail - something like latter-day OE's "block
dangerous attachment types" checkbox. It would be good security to
propagate that block down through contents of .ZIP archives, even when
they are moved. Chances are the marker might be an ADS; look for
that, or exclude it by copying the downloaded copy of the .zip to a
FATxx file system, try again from there, then if no joy, rename and
try again (in case the name is tracked somehow).
I have not used IE7 to get the file. It was sent by email.

OK. Both OE and Outlook used to work with IE's security zones, and in
fact passed the message "text" to the same HTML rendering engine. As
I say, I don't know whether that has changed in Vista; I suspect not,
in that HTML is such a significant risk surface, I doubt if it would
be duplicated. Let's see if a search picks up anything... yep!

http://windowsvistablog.com/blogs/w...indows-vista-and-protection-from-malware.aspx

"While Windows Mail blocks running executables even when they are
included in a .ZIP file, other email clients could as well if they
used a technology available (via APIs) in Windows called Attachment
Manager (AM), first introduced in Windows XP Service Pack 2"

http://technet2.microsoft.com/Windo...e919-49c8-bdd1-715b56995cba1033.mspx?mfr=true

(I see why you're referring to Group Policy}

Not finding what I was looking for; the role (if any) of ADS in
tagging such content.
 
That for your long response.
What I'm looking is where Vista remember a file was downloaded from the
internet. There is probably an attribute bit somewhere and I want to be able
to reste this bit at will.

This protection bit has nothing to do with IE or Windows Mail settings
(well, it is set by IE or WM) since external programs such as WinZip are
affected by the protection after the downloaded file is recorded on disk.
 
On Tue, 26 Jun 2007 09:20:42 +0200, "Francois PIETTE"
What I'm looking is where Vista remember a file was downloaded from the
internet. There is probably an attribute bit somewhere and I want to be able
to reste this bit at will.

That's what I'm looking for as well. I suspect it involves either a
tag written into the HTML itself, or an ADS attached to the file.

If it's neither of those, then there'd have to be a list somewhere of
untagged items and what their state should be.
This protection bit has nothing to do with IE or Windows Mail settings
(well, it is set by IE or WM) since external programs such as WinZip are
affected by the protection after the downloaded file is recorded on disk.

Yup - it's truly OS territory. The "IE security zones" aren't just
for IE, and this is an example of the messiness that followed IE's
deep integration into the OS.

Actually, it predates this, right back to early Win9x that would have
a desktop icon for IE that was named "The Internet" :-)

--------------- ----- ---- --- -- - - -
Never turn your back on an installer program
 
What I'm looking is where Vista remember a file was downloaded from the
That's what I'm looking for as well.

I've found where it is. It is in an Alternate Data Stream (ADS) for the
file.
To be able to use the file at will, it is enough to remove the ADS. You can
do that using the "streams" utility by Mark Russinovich (ex-SysInternals,
now Microsoft). Download from
http://www.microsoft.com/technet/sysinternals/FileAndDisk/Streams.mspx

Assuming the downloaded file is test.zip, you can display the ADS with the
command line:
streams test.zip
You can remove the ADS using:
streams -d test.zip

After removing the ADS, the file can be used as any other file.
 
Back
Top