Blue Banana
Member
- Reaction score
- 3
- Location
- South Africa
How To Do a Manual System Restore on a Corrupted Windows XP Installation
By TechNibble Member Blue Banana
____________________________________
A while ago I had a computer come in with a corrupted system file and would not boot into Windows. When I tried entering the Recovery Console, I got a 0x00000051 STOP error.
This also occurred when I tried reinstalling Windows.
With this guide, you’ll basically be doing a manual system restore.
I’m not sure how far this method can be used to repair other corrupted and missing system configuration files, but for this particular problem it worked great.
I know there are other ways of going about this, like using a bootable Linux disc and such, but this works just as well.
I recommend reading through the whole guide before going ahead with the repair.
Step 1. You will need access to another PC. Take out the HDD with the corrupted windows on it and slave it to the other PC.
Step 2. When you can access the drive, open any folder, then on the Tools menu, click Folder options.
Click the View tab. (For WinXP). If you are running Win7, click Organize, then Folder & Search Options.
Step 3. Under Hidden files and folders, click to select Show hidden files and folders, and then clear the "Hide protected operating system files (Recommended)" check box.
Step 4. Click Yes when the dialog box is displayed that confirms that you want to display these files.
Step 5. Double-click the drive with the damaged installation of Windows XP. Remember to select the correct drive!
Step 6. Go to Windows\system32\config, then delete these files, not the saves:
\windows\system32\config\system
\windows\system32\config\software
\windows\system32\config\Sam
\windows\system32\config\security
\windows\system32\config\default
Step 7. Now open the System Volume Information folder on the same drive. If you can’t access this folder, you’ll need to change its permissions.
This folder contains one or more _restore {GUID} folders such as "_restore{87BD3667-3246-476B-923F-F86E30B3E7F8}"
Step 8. Open a folder that was not created at the current time, you may have to click Details on the View menu to see when these folders were created.
These folders, starting with "RP x" are restore points.
Step 9. Open one of these folders to locate a snapshot sub folder; to make sure you are on track, the following path is an example of a folder path to the snapshot folder:
\System Volume Information\_restore{D86480E3-73EF-47BC-A0EB-A81BE6EE3ED8}\RP1\snapshot
Step 10. In this snapshot folder, copy the following files to the Windows\system32\config
_registry_user_.default
_registry_machine_security
_registry_machine_software
_registry_machine_system
_registry_machine_Sam
Note: These file names may have different cases, eg. _registry_machine_SECURITY
Step 11. Now rename each file. ie remove _registry_user_; registry_machine. etc so you just have:
default
security
software
system
Sam
NOTE: These file names are case sensitive, so make sure you rename them so they are the same as the files you deleted in Step 6.
Step 12. Place the HDD back in the problem PC.
All done!
Let me know what you think and how the process can be improved according to you.
By TechNibble Member Blue Banana
____________________________________
A while ago I had a computer come in with a corrupted system file and would not boot into Windows. When I tried entering the Recovery Console, I got a 0x00000051 STOP error.
This also occurred when I tried reinstalling Windows.
With this guide, you’ll basically be doing a manual system restore.
I’m not sure how far this method can be used to repair other corrupted and missing system configuration files, but for this particular problem it worked great.
I know there are other ways of going about this, like using a bootable Linux disc and such, but this works just as well.
I recommend reading through the whole guide before going ahead with the repair.
Step 1. You will need access to another PC. Take out the HDD with the corrupted windows on it and slave it to the other PC.
Step 2. When you can access the drive, open any folder, then on the Tools menu, click Folder options.
Click the View tab. (For WinXP). If you are running Win7, click Organize, then Folder & Search Options.
Step 3. Under Hidden files and folders, click to select Show hidden files and folders, and then clear the "Hide protected operating system files (Recommended)" check box.
Step 4. Click Yes when the dialog box is displayed that confirms that you want to display these files.
Step 5. Double-click the drive with the damaged installation of Windows XP. Remember to select the correct drive!
Step 6. Go to Windows\system32\config, then delete these files, not the saves:
\windows\system32\config\system
\windows\system32\config\software
\windows\system32\config\Sam
\windows\system32\config\security
\windows\system32\config\default
Step 7. Now open the System Volume Information folder on the same drive. If you can’t access this folder, you’ll need to change its permissions.
This folder contains one or more _restore {GUID} folders such as "_restore{87BD3667-3246-476B-923F-F86E30B3E7F8}"
Step 8. Open a folder that was not created at the current time, you may have to click Details on the View menu to see when these folders were created.
These folders, starting with "RP x" are restore points.
Step 9. Open one of these folders to locate a snapshot sub folder; to make sure you are on track, the following path is an example of a folder path to the snapshot folder:
\System Volume Information\_restore{D86480E3-73EF-47BC-A0EB-A81BE6EE3ED8}\RP1\snapshot
Step 10. In this snapshot folder, copy the following files to the Windows\system32\config
_registry_user_.default
_registry_machine_security
_registry_machine_software
_registry_machine_system
_registry_machine_Sam
Note: These file names may have different cases, eg. _registry_machine_SECURITY
Step 11. Now rename each file. ie remove _registry_user_; registry_machine. etc so you just have:
default
security
software
system
Sam
NOTE: These file names are case sensitive, so make sure you rename them so they are the same as the files you deleted in Step 6.
Step 12. Place the HDD back in the problem PC.
All done!
Let me know what you think and how the process can be improved according to you.
Last edited:
