User inadvertently set the permissions for the entire HKCR hive to deny for the Everyone and Administrator group
David H. Lipman
of my clients ran into. While troubleshooting a virus issue, the user
inadvertently set the permissions for the entire HKEY_CLASSES_ROOT reg hive to
deny for the Everyone and Administrator group.
If you have a test machine you can try this and it will render the machine
useless because you won’t be able to execute anything. I was wondering if there
is had a tool to fix this or any workarounds possible. Tests though Active
Directory GPO’s have proven possible but this is not an option for the client who
is NOT on a Domain.
Is it possible that something can/may be done in the "Safe Mode with Command
Prompt" mode ?
Thanx in advance !
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
Wat ben jij een onnatuurlijke bengaalse mongolenkut
pituitary gland, and barge operator, wallowed:
> I was wondering if somone can shed some light on this tough
> predicament that one of my clients ran into. While troubleshooting a
> virus issue, the user inadvertently set the permissions for the
> entire HKEY_CLASSES_ROOT reg hive to deny for the Everyone and
> Administrator group.
>
> If you have a test machine you can try this and it will render the
> machine useless because you won't be able to execute anything. I was
> wondering if there is had a tool to fix this or any workarounds
> possible. Tests though Active Directory GPO's have proven possible
> but this is not an option for the client who is NOT on a Domain.
>
> Is it possible that something can/may be done in the "Safe Mode with
> Command Prompt" mode ?
>
> Thanx in advance !
Let's get this straight, it's your client with the problem, not that you
won't get paid because you're a fucking useless dimwit, no?
NetKKKoping still are we, you fucking Nazi sphinctard?
Ramesh, MS-MVP
I created a similar situation in my test system. And none of the
applications ran. Safe Mode Command Prompt did not load either.
However, with BartPE I could revert the permissions for the hive to
defaults. Allowed "Full Control" to Administrators and "Everyone" group, and
is fine. I was thinking about using SubInACL, but that was not needed.
Loading a hive (example):
http://windowsxp.mvps.org/peboot.htm
--
Ramesh, Microsoft MVP
Windows XP Shell/User
Windows XP Troubleshooting
http://www.winhelponline.com
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:%23gybJ1b...@TK2MSFTNGP09.phx.gbl...
Fitz
--
***
NEVER download files from anywhere unless it is from the website of the
developer, manufacturer or some entity that you trust. Developer websites
ALWAYS have the most up to date files that haven't been tampered with by
some third party who is "hosting" (read Leeching or Stealing) those files
without permission. Never open email attachments from people you don't
know. It's called Safe Hex.
***
"Wat ben jij een onnatuurlijke bengaalse mongolenkut"
<wat.ben.jij.een.onnatuurl...@you.tapered-twopenny-halfpenny-duck.net>
wrote in message
news:0e8c60cbb4f94c23...@you.tapered-twopenny-halfpenny-duck.net...
David H. Lipman
| Dave,
|
| I created a similar situation in my test system. And none of the
| applications ran. Safe Mode Command Prompt did not load either.
|
| However, with BartPE I could revert the permissions for the hive to
| defaults. Allowed "Full Control" to Administrators and "Everyone" group, and
| is fine. I was thinking about using SubInACL, but that was not needed.
|
| Loading a hive (example):
| http://windowsxp.mvps.org/peboot.htm
|
| --
| Ramesh, Microsoft MVP
| Windows XP Shell/User
|
| Windows XP Troubleshooting
| http://www.winhelponline.com
|
Thank you Ramesh !
Ramesh, MS-MVP
--
Ramesh, Microsoft MVP
Windows XP Shell/User
Windows XP Troubleshooting
http://www.winhelponline.com
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:%23m7R3Vk...@TK2MSFTNGP14.phx.gbl...
relic
> Sighhhhh. He's BACK. Like chewing gum on a shoe.
>
>
> <wat.ben.jij.een.onnatuurl...@you.tapered-twopenny-halfpenny-duck.net>
> wrote in message
> news:0e8c60cbb4f94c23...@you.tapered-twopenny-halfpenny-duck.net...
>> David H. Lipman, <DLipman~nospam~@Verizon.Net>, the all-embracing,
>> drunk pituitary gland, and barge operator, wallowed:
>>
>>> I was wondering if somone can shed some light on this tough
>>> predicament that one of my clients ran into. While troubleshooting
>>> a virus issue, the user inadvertently set the permissions for the
>>> entire HKEY_CLASSES_ROOT reg hive to deny for the Everyone and
>>> Administrator group.
>>>
>>> If you have a test machine you can try this and it will render the
>>> machine useless because you won't be able to execute anything. I
>>> was wondering if there is had a tool to fix this or any workarounds
>>> possible. Tests though Active Directory GPO's have proven possible
>>> but this is not an option for the client who is NOT on a Domain.
>>>
>>> Is it possible that something can/may be done in the "Safe Mode with
>>> Command Prompt" mode ?
>>>
>>> Thanx in advance !
>>
>> Let's get this straight, it's your client with the problem, not that
>> you won't get paid because you're a fucking useless dimwit, no?
>>
>> NetKKKoping still are we, you fucking Nazi sphinctard?
If you only know how to top-post, trim all the non-microsoft.public groups.
--
They call it PMS because Mad Cow Disease was already taken.