Registry | Load Hive Disabled in REGEDT32

W

Will

Can someone explain to me how is it possible that in HKLM on a Windows 2000
computer the "Load Hive" menu option is disabled? I'm logged in as local
administrator. The box in question has been hacked, so it would not
surprise me if the virus had reset a registry entry. Is there something I
can do to force the Load Hive to become available?
 
D

Dave Patrick

This article may help.

How to Restore the Default NTFS Permissions for Windows 2000
http://support.microsoft.com/?id=266118


Failing that these might help.

How to Perform an In-Place Upgrade of Windows 2000
http://support.microsoft.com/default.aspx?scid=kb;[LN];292175

What an In-Place Windows 2000 Upgrade Changes and What It Does Not Change
http://support.microsoft.com/default.aspx?scid=kb;[LN];306952

Be sure to apply SP4 and these two below to your repair install before
connecting to any network. Internet included. (sasser, msblast)
http://download.microsoft.com/download/E/6/A/E6A04295-D2A8-40D0-A0C5-241BFECD095E/W2KSP4_EN.EXE
http://www.microsoft.com/technet/security/bulletin/MS03-043.mspx
http://www.microsoft.com/technet/security/bulletin/MS03-049.mspx

Then

Rollup 1 for Microsoft Windows 2000 Service Pack 4
http://www.microsoft.com/downloads/...CF-8850-4531-B52B-BF28B324C662&displaylang=en

--

Regards,

Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft Certified Professional
Microsoft MVP [Windows]
http://www.microsoft.com/protect

:
| Can someone explain to me how is it possible that in HKLM on a Windows
2000
| computer the "Load Hive" menu option is disabled? I'm logged in as local
| administrator. The box in question has been hacked, so it would not
| surprise me if the virus had reset a registry entry. Is there something
I
| can do to force the Load Hive to become available?
|
| --
| Will
|
|
 
W

Will

What would default NTFS permissions have to do with the default behavior of
a menu item on REGEDT32?
 
D

Dave Patrick

Dunno but given the unknown damage this is where I'd start and work your way
down.

--

Regards,

Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft Certified Professional
Microsoft MVP [Windows]
http://www.microsoft.com/protect

:
| What would default NTFS permissions have to do with the default behavior
of
| a menu item on REGEDT32?
|
| --
| Will
 
W

Will

Dave Patrick said:
Dunno but given the unknown damage this is where I'd start and work your way
down.
Click to expand...

Well, I appreciate the advice on file system permissions in any case. I
don't think that addresses the question on what causes Load Hive to not
show. As a pure guess, I would imagine Load Hive is looking at some
registry entry or looking for write access to some registry in order to
enable Load Hive.
 
J

John John

Will said:
Well, I appreciate the advice on file system permissions in any case. I
don't think that addresses the question on what causes Load Hive to not
show. As a pure guess, I would imagine Load Hive is looking at some
registry entry or looking for write access to some registry in order to
enable Load Hive.
Click to expand...

It's a permissions issue.

John
 
D

Dave Patrick

Read the summary again. This isn't just file system perms.

--

Regards,

Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft Certified Professional
Microsoft MVP [Windows]
http://www.microsoft.com/protect

:
| Well, I appreciate the advice on file system permissions in any case. I
| don't think that addresses the question on what causes Load Hive to not
| show. As a pure guess, I would imagine Load Hive is looking at some
| registry entry or looking for write access to some registry in order to
| enable Load Hive.
|
| --
| Will
|
|
 
M

Mark V

In said:
Can someone explain to me how is it possible that in HKLM on a
Windows 2000 computer the "Load Hive" menu option is disabled?
Click to expand...

Just to eliminate the possibily have you placed the focus on the
"root" of HKLM at the time?
 
W

Will

Mark V said:
Just to eliminate the possibily have you placed the focus on the
"root" of HKLM at the time?
Click to expand...

It's always good to confirm assumptions. Yes, I had two Windows 2000
machines side by side, and when selecting the root of HKLM on the machine
that was hacked Load Hive doesn't enable. When selection the root of HKLM
on the machine that was not hacked Load Hive does enable (as it should).
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Convert hive file into .reg file? 3
loading a registry hive 6
regedt32 disabled 6
Vista Startup Script problem (loading registry hive issue) 5
Registry hive load and unload - access denied 2
Command line tool for Restricting Registry hive in windows Vista? 1
Loading Hive in W2k server 5
Registry cannot load... 1

Top