joakim Posted August 19, 2012 Share Posted August 19, 2012 The issue is that win32 api can't handle names with embedded null characters. That's certainly an issue when it comes to registry keys, because such keys are not deletable by OS shipped registry tools.Here's the more complete description; http://reboot.pro/files/file/232-regkeyfixer/Code for PoC to create invalid keys are attached as CreateInvalidKey.au3Code for the tool to fix these keys are attached as RegKeyFixer.au3Option for recursive search is on the todo list.CreateInvalidKey.au3RegKeyFixer.au3 Link to comment Share on other sites More sharing options...
joakim Posted September 7, 2012 Author Share Posted September 7, 2012 Made some changes to it, like recursive search and modification, as well as including another PoC that will create a different set of registry keys proving to be somewhat impossible to handle: http://www.mediafire.com/download.php?65gcjxvtln291yxLet me know if you figure out how to deal with those tricky long named keys. I certainly did not.. Link to comment Share on other sites More sharing options...
Factfinder Posted February 11, 2014 Share Posted February 11, 2014 (edited) Great job. Edited June 27, 2014 by Factfinder Link to comment Share on other sites More sharing options...
step887 Posted October 2, 2014 Share Posted October 2, 2014 joakim, First off, you do great work, with this and rawcopy. But I ran into an issue attached is empty registry .dat with one key that I can not access. It looks like a key with null char was created and then strip of permissions I ran your tool and it is getting this Startkey: registrymachineakey1key2key3 Invalid keyname in hex: 010000000100 Number of invalid charaters in keyname: 3 Location: registrymachineakey1key2key3*** Error in NtOpenKey 3 : 0xC0000022 -> Access is denied. So reviewing what you wrote, you are trying to open a handle to the invalid keyname, but since there is no permissions on the key, it is failing, I look at adjusting the permissions using Fred (FredAI)'s permission UDF, but he needs stringname or handle to adjust the permissions. so the keyname is invalid and cannot get a handle on the key.. So any ideas? reg.zip Link to comment Share on other sites More sharing options...
joakim Posted October 2, 2014 Author Share Posted October 2, 2014 I doubt that I'll do more with that tool, so what I would suggest is to try running tool from the local system account, or as trustedinstaller. It's a quick workaround that usually gives you access to any registry key. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now