Main Forum > Tweaking.com Support & Help
ACLs on UsrClass.dat messed up after restore
indrawn:
I updated to Win10 Pro x64 recently. Last night, I used Registry Backup 3.1.0 for a restore for the first time since updating to Win10.
After the restore and reboot, lots of stuff was messed up. I discovered that HKCU\SOFTWARE\Classes wasn't being loaded. After looking into it further, I noticed that the ACLs on the newly-restored UsrClass.dat file under my profile were incorrect. My own user account did not have access to UsrClass.dat, so that hive could not be loaded when I logged in with my account after the registry restore.
I corrected the immediate issue by logging in with another account and manually copying the UsrClass.dat file from the registry backup folder to "C:\Users\UserName\AppData\Local\Microsoft\Windows" (where "UserName" is the ID that had the problem). This resulted in proper ACL setup, and I didn't have any problems.
I tried the restore two more times, and the UsrClass.dat problem happened each time. No other users were affected by this; only mine, the one that ran the restore.
Shane:
That is an odd one. The registry backup grabs the hive files themselves. If you do the fallback backup method then it calls the regsave api to have windows save the registry to the files in the backup.
Then the restore is the regload api to tell windows to load these reg files at next boot. So the restore doesn't touch anything in the backup files.
I am wondering if the reg_save api had trouble with saving it?
I also just released windows repair v3.4.2 where I have redone how the permissions are done, which should fix any permissions problems.
But I am curious to how the acl is messed up in those files.
Try this, open regedit and then click on hkey_local_machine now go to file and load hive. Load the hive from the backup folder C:\Users\UserName\AppData\Local\Microsoft\Windows
Give it a name and then it will be loaded in reg edit, once that is done you can go check the permissions of it there. Once done make sure to unload the hive file.
Let me know what it shows when you check the permissions.
Shane
indrawn:
Sorry but I can't deal with this anymore ... The "this" is Windows 10. I'm washing my hands of it and restoring the Win8.1 image I THANKFULLY created before installing this crapfest. I am writing this issue up to "Yet Another Win10 Issue" along with a BSOD, a Start menu that doesn't work, weird sound/video issues, weird error messages, freezes, and a litany of other life-robbing frustrations.
Thanks and I'm sorry to have taken your time.
Shane:
No problem at all. While 10 has promise, it was rushed, there is no doubt about that. So if 10 doesn't have a perfect environment, then it goes to crap town fast lol
Shane
indrawn:
I went back to Win8.1 and then decided to give Win10 another try... Long story...
Anyway, I have a new install of Win10, just did my first restore with RB 3.2.0, and again I'm having the issue I mentioned in this post.
I followed the steps you mention. I did it for ntuser.dat (which as far as I know has no issue being restored), and UsrClass.dat (which is the one I'm having issues with). Here's what I see for the registry permissions on the respective hives:
ntuser.dat:
ALL APPLICATION PACKAGES: Read
RESTRICTED: Read
SYSTEM: Full Control
My user name: Full Control
Administrators: Full Control
UsrClass.dat:
ALL APPLICATION PACKAGES: Read
RESTRICTED: Read
SYSTEM: Full Control
My user name: Full Control
Administrators: Full Control
For the UsrClass.dat file itself (i.e. the NTFS permissions), the ACLs are:
SYSTEM: Full Control
My user name: Full Control
Administrators: Full Control
I don't see a problem here. :(
Navigation
[0] Message Index
[#] Next page
Go to full version