prev
next
out of 5

Wp.usb Write Protect.en Us

Embed Size (px)

Citation preview

  • 8/3/2019 Wp.usb Write Protect.en Us

    1/5

    Page 1

    Write Protect USB Devices

    in Windows XP

    Dustin Hurlbut

    In the recent release of Windows XP Service Pack 2 (SP2), a new feature was added by Microsoft toallow the write protection of USB block storage devices. This entails a simple Registry modification thatrequires no hardware devices to write protect thumb drives. This allows us to examine and duplicateUSB devices with write protection that previously didnt exist.

    To enable this feature, well go step by step to modify the Registry. As in all Registry operations, it isadvisable to back up your Registry files prior to modification. You can do this easily by either creating aRestore Point in XP or by using FTK Imager to look at your own drive and export the Registry Files.

    To create a Restore Point, go to Start > Programs > Accessories > System Tools > System Restore(see below). Once at the System Restore dialog box, select Create a restore point and follow thesteps. This creates a backup of selected system files that can then be enabled to restore the systemback to the state it was in.

    To create the necessary Registry values to enable USB write protection, follow these steps:

    Step 1 - Go to Start > Run and type in regedit.

  • 8/3/2019 Wp.usb Write Protect.en Us

    2/5

    Page 2

    Step 2 - Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet and highlight the Controlkey. The CurrentControlSet key has system information about the current configuration of the machine.The system keeps a backup of this key. You will see the current and backup listed as ControlSet001and 002 in this example. The select key will show which is valid. The key CurrentControlSet is the onebeing used at this moment and is the one you want to modify.

    Step 3 - Right click on Control and select New > Key. Name the key StorageDevicePolicies.

    Select Key Showing the

    Current Control Set

    (001)

    Highlight the

    Control Key

  • 8/3/2019 Wp.usb Write Protect.en Us

    3/5

    Page 3

    Step 4 - Right click on StorageDevicePolicies and select DWORD. Name the value WriteProtect.

    Step 5 - Right click (or double click) on WriteProtect and select Modify. To write protect USB devicesselect 1 as the value. To turn off write protection, change this value to 0.

  • 8/3/2019 Wp.usb Write Protect.en Us

    4/5

    Page 4

    We have created a new key and value in the Registry that will write protect USB devices. You maywant to place this on your examination machine full time. However, if you need to be able to switch backand forth from a write protected state to an non write protected state, it is cumbersome to have to gothrough this procedure each time. To automate this process, create a .REG file to enable you to select

    either on or off.

    To create a write protect switch, right click on the key StorageDevicePolicies we just modified andselect "Export". Name it and you can send a file with the extension of .reg to your Desktop. Name it"USB Write Protect ON".

    Recreate the key with the switch turned off to un-write protect the USB making another .reg file. Youcan activate either .reg file by clicking on it to modify the Registry key.

    Be sure to test and verify this procedure and write protect function. The National Center forForensic Science (NCFS) has a free program available to automate this function. They also have a five

  • 8/3/2019 Wp.usb Write Protect.en Us

    5/5

    Page 5

    step validation process for verification that the program functions properly. This would also work for vali-dation of the process described in this paper.

    References:

    1. Change to Functionality in Microsoft Windows XP Service Pack 2 - Part 7: Other TechnologiesPublished: August 9, 2004 | Updated: September 15, 2004

    By Starr Andersen, Technical Writer; Vincent Abella, Technical Editor

    Microsoft TechNet Article:http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/

    sp2otech.mspx

    2. National Center for Forensic Science (NIJ)

    http://ncfs.ucf.edu/home.html - Reference the Link: NCFS Software Write-block XP

    2005 AccessData Corporation All rights reserved.Some topics and items in this paper are subject to change. This document is for information purposes only. Ac-

    cessData makes no warranties, express or implied, in this document. AccessData, Forensic Toolkit, FTK, FTK

    Imager, Known File Filter, KFF, Password Recovery Toolkit, PRTK, Registry Viewer, Ultimate Toolkit, Li-

    censeManager and WipeDrive are either registered trademarks or trademarks of AccessData Corporation in the


Write to us at: USA: RBC Ministries PO Box 2222 Grand ...web001.rbc.org/pdf/discovery-series/joseph-overcoming-lifes...PO Box 2222 Grand Rapids, MI 49501-2222 Write to us at: ... through

Write to us at: USA: RBC Ministries PO Box 2222 Grand ...web001.rbc.org/pdf/discovery-series/joseph-overcoming-lifes...PO Box 2222 Grand Rapids, MI 49501-2222 Write to us at: ... through

Documents
1 FUNCTIONS - I Chapter 5 Functions help us write more complex programs

1 FUNCTIONS - I Chapter 5 Functions help us write more complex programs

Documents
Do Now: Write three pieces of evidence that told us that the earth was round

Do Now: Write three pieces of evidence that told us that the earth was round

Documents
AXA Rosenberg US Small/Mid Cap Fund Third Quarter 2009 2009 3Q Agg.pdf · Much of the write-offs are now "in the market” Valuation model refinements will help us to capture write

AXA Rosenberg US Small/Mid Cap Fund Third Quarter 2009 2009 3Q Agg.pdf · Much of the write-offs are now "in the market” Valuation model refinements will help us to capture write

Documents
Mudit Jain - WordPress.comG-V C Don't write anything this margin 10 call us 9650617807. 9968079039 wordpressoorr' us. www E mall . 671 VISION IAS TM Donl write anyting this margin

Mudit Jain - WordPress.comG-V C Don't write anything this margin 10 call us 9650617807. 9968079039 wordpressoorr' us. www E mall . 671 VISION IAS TM Donl write anyting this margin

Documents
E Write Blogs Wikis Us Courts 9 408

E Write Blogs Wikis Us Courts 9 408

Technology
Write to us - opalindia.in

Write to us - opalindia.in

Documents
How to write a great research paper Seven simple suggestions€¦ · Writing papers: model 2 Idea Do research Write paper Idea Write paper Do research Forces us to be clear, focused

How to write a great research paper Seven simple suggestions€¦ · Writing papers: model 2 Idea Do research Write paper Idea Write paper Do research Forces us to be clear, focused

Documents
What helps us to write HQ JS?

What helps us to write HQ JS?

Documents
Draw, Write, Now ~ Book 1 Printables · Follow Along with Us... Draw, Write, Now ~ Book 1 Printables from 1+1+1=1 Text © Draw•Write•Now® Book One. Used with permission

Draw, Write, Now ~ Book 1 Printables · Follow Along with Us... Draw, Write, Now ~ Book 1 Printables from 1+1+1=1 Text © Draw•Write•Now® Book One. Used with permission

Documents
s3-us-west-2.amazonaws.com...VISION IAS p U Call us : 8468022022 Visit us : Page 1 of30 Dont write anything margin

s3-us-west-2.amazonaws.com...VISION IAS p U Call us : 8468022022 Visit us : Page 1 of30 Dont write anything margin

Documents
Sample file, please write us with your specific need. IMEX …imexservice.com/wp-content/uploads/2015/05/clutch... · 2015-05-27 · Sample file, please write us with your specific

Sample file, please write us with your specific need. IMEX …imexservice.com/wp-content/uploads/2015/05/clutch... · 2015-05-27 · Sample file, please write us with your specific

Documents
Learn How to Write an Effective About Us Page for Your Business Website

Learn How to Write an Effective About Us Page for Your Business Website

Small Business & Entrepreneurship
Poetic Devices Terminology to help us write and read poetry!

Poetic Devices Terminology to help us write and read poetry!

Documents
How to Apply Write to us Ethics at St Mary’s University

How to Apply Write to us Ethics at St Mary’s University

Documents
Write to us at: USA: Spiritual Living - web001.rbc.orgweb001.rbc.org/pdf/discovery-series/daniel-spiritual-living-in-a... · PO Box 2222 Grand Rapids, MI 49501-2222 Write to us at:

Write to us at: USA: Spiritual Living - web001.rbc.orgweb001.rbc.org/pdf/discovery-series/daniel-spiritual-living-in-a... · PO Box 2222 Grand Rapids, MI 49501-2222 Write to us at:

Documents
Warm up: Write a forecast for today’s weather across the US

Warm up: Write a forecast for today’s weather across the US

Documents
European Pellet Conference 2018 - Bioenergy International · Event Alerts Follow us on Event Organiser - Update us, write to xinyi.shen@bioenergyinternational.com sEptEmBER 26-29

European Pellet Conference 2018 - Bioenergy International · Event Alerts Follow us on Event Organiser - Update us, write to [email protected] sEptEmBER 26-29

Documents
s3-us-west-2.amazonaws.com...VISION IAS INDIAN MEDIA— 9/ (.9fR.vv Dont write anything this margin Call us : 9650617807, 9968029039 Blog : Visit us : IAS am_W To , A Don't write anything

s3-us-west-2.amazonaws.com...VISION IAS INDIAN MEDIA— 9/ (.9fR.vv Dont write anything this margin Call us : 9650617807, 9968029039 Blog : Visit us : IAS am_W To , A Don't write anything

Documents
Speak Out - Indiana University Bloomingtoncpr.indiana.edu/uploads/OC_JF08_Speakout.pdfSpeak Out Write to us We want to hear from you on this issue. Write to us at “Mailbox” in

Speak Out - Indiana University Bloomingtoncpr.indiana.edu/uploads/OC_JF08_Speakout.pdfSpeak Out Write to us We want to hear from you on this issue. Write to us at “Mailbox” in

Documents
Write Research About Us

Write Research About Us

Documents
livelihoods · Let us have freedom, freedom for speech, write, freedom for press. Let us laugh. Let us be healthy. Let us be sensitive. Let us appreciate aesthetics. Let us be aesthetic

livelihoods · Let us have freedom, freedom for speech, write, freedom for press. Let us laugh. Let us be healthy. Let us be sensitive. Let us appreciate aesthetics. Let us be aesthetic

Documents
America As a World Power Chapter 10 Section 4. Quick Write Write how you would resolve a conflict between two friends. Then write how the US would try

America As a World Power Chapter 10 Section 4. Quick Write Write how you would resolve a conflict between two friends. Then write how the US would try

Documents
WeddingPlan Policy Wording · Wedding Gifts ... Photography & Video ... • Email us at specialistclaims@directgroup.co.uk • Write to us at WeddingPlan Insurance, Direct Group Wedding

WeddingPlan Policy Wording · Wedding Gifts ... Photography & Video ... • Email us at [email protected] • Write to us at WeddingPlan Insurance, Direct Group Wedding

Documents
1 Pitch Deck Presentation Template. 2 AGENDA Write here your great subtitle Meet the Team Write a Subtitle here About Us Write a Subtitle here Problems

1 Pitch Deck Presentation Template. 2 AGENDA Write here your great subtitle Meet the Team Write a Subtitle here About Us Write a Subtitle here Problems

Documents
MENU - blackstonesteakhouse.se · Write a review on TripAdvisor! Write a review about your restaurant visit with us on TripAdvisor. blackstonesteakhouse.se Give a gift card to someone

MENU - blackstonesteakhouse.se · Write a review on TripAdvisor! Write a review about your restaurant visit with us on TripAdvisor. blackstonesteakhouse.se Give a gift card to someone

Documents
Starlight What is it? What does it tell us? Write down all notes in RED

Starlight What is it? What does it tell us? Write down all notes in RED

Documents
Alabama House members write US Attorney Genera

Alabama House members write US Attorney Genera

Documents
HSC madness is upon us… let’s learn how to write a killer essay

HSC madness is upon us… let’s learn how to write a killer essay

Documents
Kazakhstan sugar company (usually buyers write us)

Kazakhstan sugar company (usually buyers write us)

Business