userinit.exe corrupted
Windows XP Pro XP3
I believe the userinit.exe file on a laptop I'm working on has been corrupted.
Symptom:
When logging in normal mode, after entering credentials, computer logs on then off very quickly (before getting desktop).
What I've done:
Scanned with: Malwarebytes, VundoFix, Combofix, CA Antivirus, Spybot S&D.
Booted to recovery console and did the copy userinit.exe wsaupadater.exe commande (as found in other forums). When I go to registry, to do this step:
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ WindowsNT \ CurrentVersion \ Winlogon
In the right-pane, change the value of Userinit to "C:\WINDOWS\system32\useri
Fortunately, I can boot into safemode to work within Windows.
HJT logfile included for your enjoyment.
hijackthis.log
I believe the userinit.exe file on a laptop I'm working on has been corrupted.
Symptom:
When logging in normal mode, after entering credentials, computer logs on then off very quickly (before getting desktop).
What I've done:
Scanned with: Malwarebytes, VundoFix, Combofix, CA Antivirus, Spybot S&D.
Booted to recovery console and did the copy userinit.exe wsaupadater.exe commande (as found in other forums). When I go to registry, to do this step:
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ WindowsNT \ CurrentVersion \ Winlogon
In the right-pane, change the value of Userinit to "C:\WINDOWS\system32\useri
Fortunately, I can boot into safemode to work within Windows.
HJT logfile included for your enjoyment.
hijackthis.log
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
rename seemed to go fine. I just went to a prompt again after I hit enter.
so you want me to try:
expand d:\i386\userinit.ex_ c:\windows\userinit.exe
correct?
so you want me to try:
expand d:\i386\userinit.ex_ c:\windows\userinit.exe
correct?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Also regarding that HJT line you mentioned. I did remove it - it gave me an odd error that I neglected to write down, but it's gone.
Sorry for the delay, got tied up.....
If youre working now, I think you will be fine....
Did you find those 2 files that were in that entry?
Take those files here.....
Jotti's malware scan 2.99
http://virusscan.jotti.org/
If youre working now, I think you will be fine....
Did you find those 2 files that were in that entry?
Take those files here.....
Jotti's malware scan 2.99
http://virusscan.jotti.org/
ASKER
I'll take a look at that, thanks.
Indeed, I am past that hurdle - looks like this PC might still have some other issues, but that'll be for another question. thanks for your help.
Indeed, I am past that hurdle - looks like this PC might still have some other issues, but that'll be for another question. thanks for your help.
Anytime!
ASKER
Unable to create file userinit.exe
0 file(s) expanded.