Saturday, October 13, 2007

Administrator has disabled Registry editing

Ever had this error message when you had the administrative powers, if so you are troubled with a nifty protection system employed by a virus/trojan that prevents registry editing so that the virus can't be taken out from the startup.

Luckily there is a way around this problem.


Important Note : The following steps involve modifying the Windows registry
of your system. It is generally not advised for ameteurs as an invalid setting can make your system not boot properly. Only attempt this if you know what you are doing. The author shall not be held liable for any loss in the form of data, software or hardware. Also it would be worthwhile to check out making a backup copy of your system registry and
restoring it in case something goes wrong. Please see the information from the
micrososft's site.


First of all you need to scan your system with the latest virus definition of your antivirus software. 
We highly recomend the Avast! antivirus which is completely free for home use. It also provides boot 
time scan so that viruses running in memory can be deleted before they start.

After cleaning your system of all viruses, you need to install a third party windows registry
editing software like Tuneup Utilities which is a trial application.

Now laumch the third party registry editor and either search for the key 'DisableRegistryTools' in HKEY_USERS
or browse to HKEY_USERS -> { S-1-5-21-1390067357-515967899-725345543-500} ->
Software -> Microsoft ->Windows ->CurrentVersion -> Policies ->System.

here { S-1-5-21-1390067357-515967899-725345543-500} could be different for you, it is a
unique string assigned for a user.

Now next to System, if there is an entry named 'DisableRegistryTools', just delete that key and either log off or restart. The problem should be solved.