New viruses are being made and released onto the Internet all the time and it’s possible for antivirus software to only start detecting it after a few days. In the duration of staying undetected, the virus could have infected a lot of computers. Some viruses are invisible which can only be detected by using special tools and undetected so that the computer can stay infected as long as possible.
There are some viruses that will go to the extent of disabling tools such as the Windows Task Manager, Registry Editor, Folder Options, Command Prompt and other functions built into Windows to prevent users from checking and fixing the problems. One such virus that can cause the above mentioned problems is the Brontok virus, which will make some changes to the system restrictions in order to hide itself from easy detection and also from easy cleaning.
In the case of a disabled command prompt (cmd.exe), it will still run but will show a message “The command prompt has been disabled by your administrator. Press any key to continue” in the window.
For the Folder Options being disabled to prevent Windows from showing hidden files, the menu will be removed from the Tools menu bar, grayed out in the Organize menu and you won’t find the shortcut icon in Control Panel.
All these restrictions can be easily lifted by making some changes on the registry using the Registry Editor (regedit) but unfortunately it can also be disabled and you will see the error “Registry editing has been disabled by your administrator”.
Besides restrictions, there are many other features that can be affected in Windows by a virus. Another common problem is the virus breaking the .exe file association so you can’t run any programs to fix any problems. Here’s a selection of tools to help restore Task Manager, Regedit, CMD and Folder Options after being disabled by a virus. Do note that the infections need to have been removed before running one of these tools, otherwise the virus will simply disable the setting again. For nasty infections you may have to download and run an antivirus boot CD.
Make sure to right click and “Run as Administrator” for these tools or the fixes won’t apply themselves properly.
1. Re-Enable 2
The Re-Enable tool came about after one of our forum members tangomouse helped another forum member with a problem, and decided to create a tool to make things easier in future. It’s now a popular tool on the internet and can re-enable a disabled Task Manager, Registry Editor, Command Prompt, Folder Options, even System Restore and a few other system functions that are sometimes disabled by virus infections.
By default, all options are enabled and you can simply press Re-Enable to reset everything, or click the button to Uncheck All and tick only what you want. The disable feature will be instantly enabled or if not, a reboot would do the trick. The Tools menu has some other very useful options like unhide hidden drives, repair Explorer.exe startup issues and reset file and folder attributes etc. If you have any bugs or suggestions, they can be left in the raymond.cc Re-enable forum thread. Tangosoft no longer supports a portable version, but it can still be downloaded from Softpedia. Requires .NET Framework 3.5 to run (portable includes the .NET files).
2. Virus Effect Remover
Although it’s stuffed full of advanced options and functions to help with removing the after effects of virus infections and also helping to prevent them in future, Virus Effect Remover can be used to easily reset the common items disabled during an infection like Task Manager, Command Prompt, and the Registry Editor. Some other more advanced features include autorun control, file unlocking, file and folder security permissions, services control and startup items control.
Virus Effect Remover comes as either setup installer or portable versions and to see what has been detected as changed or disabled, look in the information box. The One Click Registry Heal button does what it says and resets everything shown in the information box. The Windows Tools section will first make sure Task Manager, Regedit or MSConfig are enabled, and then launch the respective tool. This is a useful tool to have around because of the wealth of after virus recovery tasks that can be performed from the one program.
3. Disk Heal
If you can get past the Disk Heal GUI which makes things difficult to read in places because of the background, you’ll find it has some useful options for fixing the missing folder options, and re-enabling the Task Manager and Registry Editor. It also has a fix option for when your C drive won’t open in My Computer, and can also restore files and folders that have been intentionally been hidden by a virus.
The program has to be installed but it’s a small price to pay if you need the options, there is no adware or junk offered during install. Launch Disk Heal and go to the Fix tab, then just click the fix button for whichever option you need. If there’s nothing wrong with the default setting you’re trying to fix, the program will tell you and not do anything, or there will be a success popup message if it needed fixing. The Tweak tab has several security, appearance, Internet Explorer and Control Panel tweaking options.
4. FixUp Restrictions
FixUp Restrictions doesn’t just include the ability to enable a few options like Task Manager or Regedit, but has a total of 42 check boxes available to enable, repair or reset an number of different system settings which can be affected by malicious software. Other repair check boxes include desktop icons, hidden/restricted drives, system and Internet Explorer menus, shutdown button and Add/Remove programs.
Like Disk Heal, FixUp Restrictions needs installing but it’s clean and offers nothing during setup. On launching the program it runs an instant scan to see which of its supported options are not their default setting, and only gives you the ability to change those that can be reset. This is useful so you don’t try and change something which doesn’t need it and could end up causing other potential problems. Click Check All to reset everything that needs resetting and then Remove. There is also a basic startup programs manager to add, edit or delete startup items.
5. Regain Power
The Regain Power tool is quite useful because although there aren’t loads of options, the essentials are there to enable several system components after infection, and you can do it from a reasonable size (~3MB) self contained portable executable. A total of 9 options are available including Show folder options and enabling Task Manager, Registry editor, search and the Run dialog.
When you run the tool it should show in the window if any of the options are not at their default settings. Just select what you want to enable or show and click OK, there is not confirmation or reboot prompt for any selected check boxes with an asterisk. Simply reboot if the option still doesn’t work, the options such as enable Regedit should work straight away.
6. 7 Quick Fix 2 / XP Quick Fix Plus
Quick Fix has separate programs for XP and Windows Vista/7 which look a little different but work in the same way. This is more of a general tool and has over 100 fixes, tweaks and repairs for just about every situation, and also has a number of options to re-enable Task Manager, Command Prompt, folder options, Registry Editor, Control Panel etc.
Weirdly, Quick Fix is a standalone portable application but you have to install it and make sure to opt out of the adware, then copy the executable from Program Files to your folder of choice. The enable / disable tab is selected by default and has the options to enable the necessary options disabled by a virus. There is plenty of useful information in the lower window when you hover over a button including whether you need to reboot to apply the change. Just click the selected fix button to reset the function. The icons in the middle of the window let you access the other fixes and tweaks the program has to offer.
7. Malwarebytes Anti-Malware
Most users who are security conscious or have had to remove malware before will know of Malwarebytes Anti-Malware and how effective it can be against many types of infections and spyware. Something else it does during a scan is to check several system areas which are often compromised by malicious software, and if they have been changed, reset them back to the defaults. This also includes when components such as Task Manager, Command Prompt, Regedit and folder options have been disabled during a virus attack.
Simply download and install MBAM, then run it and press the Scan button to perform a quick scan from the Scanner tab. The good thing about using Malwarebytes is it will also pick up other infection issues that antivirus scans may have left behind, and will also fix many other problems that may still be present, not just Regedit or Task Manager being disabled etc. If the scan picks up your disabled programs, just make sure they’re ticked and click Remove to reset to default. A reboot may be required depending on what else is found and removed. Malwarebytes Anti-Malware is a highly valuable tool to have installed anyway, even if you don’t use it for this task.
8. Fixing Task Manager, Regedit, CMD and Folder Options Manually
Although the tools above will do what you want and re-enable the functions that the virus disabled, if you don’t fancy downloading or installing software just to alter what is essentially a few registry settings, you could simply use a small file of a few bytes to fix each individual issue.
Re-enable Regedit – This is a small .inf file from Symantec that was made to enable the Registry Editor and reset the associations of executable file types. Right click and “Save as” to download it, then right click on the file and there should be an option to Install on the context menu. After running this you will be able to run Regedit or execute and import .reg files.
Re-enable Task Manager – Download the .reg file and double click to import into the registry. If Regedit isn’t accessible, use one of the tools above first.
Re-enable Command Prompt – Download the .reg file and import it into your registry.
Re-enable Folder Options – Like the above 2 .reg files, download and import into the registry. Reboot or logoff for this change to take effect.