?
Solved

Missing C:\Windows\system32 in Path but everything is working

Posted on 2016-11-18
9
Medium Priority
?
49 Views
Last Modified: 2016-11-23
Lately around the office I am seeing that C:\Windows\system32 is missing from the path on my desktops.  I do not even see any symptoms, except when I as an admin try to run "ping, nslookup" or other command line stuff.  I have seen it 3 times now.  It is easy to fix, I just add it.

I have looked and run some virus scans, and nothing appears out of the ordinary.  Does anyone have any thoughts on this?  Should I be concerned?
0
Comment
Question by:loftyworm
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
9 Comments
 
LVL 97

Assisted Solution

by:Experienced Member
Experienced Member earned 1000 total points
ID: 41892931
Open cmd.exe with Run as Administrator and type PATH. It may be there from a command line.

The PATH does not remove entries on it own, so it not there by Command line, the try the following:

1. Run SFC /SCANNOW from an admin command prompt, shut down, start up and test.

2. Run another full virus scan followed by a scan with Malwarebytes.
0
 
LVL 56

Assisted Solution

by:McKnife
McKnife earned 1000 total points
ID: 41892969
The path variable is saved to the registry. So you can easily audit the registry key to see who/what changes it and when.
The location is HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager\Environment
0
 
LVL 11

Author Comment

by:loftyworm
ID: 41893008
I have searched more of my network and found a box that I have not fixed.  I will try the sfc now....
0
NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

 
LVL 11

Accepted Solution

by:
loftyworm earned 0 total points
ID: 41893585
I have more information.  It appears this was a legacy security setting from an earlier time.  

I do find it extremely interesting that windows will run at all, with almost no impact with those variables removed.  Even wonder if it is actually a good idea to leave it that way
0
 
LVL 97

Expert Comment

by:Experienced Member
ID: 41893592
Thanks. It is useful to upgrade legacy software as it usually causes issues. If it is all working, leave it until you can upgrade the software.
0
 
LVL 56

Expert Comment

by:McKnife
ID: 41894083
"It appears this was a legacy security setting from an earlier time" - can you provide details, please?
0
 
LVL 97

Expert Comment

by:Experienced Member
ID: 41894137
I find older software (older versions of new software) can cause problems. I keep things up to date and have few issues as a result.  Anti Virus and VPN are two prime examples.
0
 
LVL 11

Author Comment

by:loftyworm
ID: 41895915
What John says is true, but in this case it was deliberately removed (I believe as a security measure) by the previous admin.
0
 
LVL 11

Author Closing Comment

by:loftyworm
ID: 41898887
It was the solution
0

Featured Post

Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
The well known Cerber ransomware continues to spread this summer through spear phishing email campaigns targeting enterprises. Learn how it easily bypasses traditional defenses - and what you can do to protect your data.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question