can't run regedit or cmd

Posted on 2009-04-18
Last Modified: 2012-05-06
I too cannot run regedit or cmd
Desktop goes blank for a second, then refreshes
Noticed that several programs that normally sit in system tray aren't starting, but can be manually started.  This includes Norton Security.
I've run a boatload of registry cleaners and virus scanners - everything is clean
No policies are enabled
I found a 3rd party regeditor that works.  Using that, I found nothing in the way of
DisableRegistryTools or DisableCMD
Previous post regarding this subject concluded reload the OS - not a good option
Question by:novaguy
    LVL 14

    Accepted Solution

    Try the following:

    1) Run Combofix:
    2) If no luck, try MalwareBytes:
    3) If no luck, try running SFC: Go to Start > Run and type 'Sfc /scannow' --- This will require the XP CD with you
    4) If no luck, Then try repairing the OS.
    LVL 4

    Expert Comment

    I assume you can't run them from" c:\<windir>\system32\" either, correct?
    LVL 1

    Expert Comment

    There's an as-yet unrecognized virus/malware that grabs the "aux" entry under

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

    or in some cases adds an aux2=

    The malware entry will generally be a random file in your \windows directory

    the aux entry should be C:\windows\system32\wdmaud.drv or simply wdmaud.drv

    to gain access to the registry, press ctrl+del, run task manager, kill the process for windows explorer, then use the task manager "run" option to run "regedit" (you'll be able to run cmd at this point too)

    fix the registry entry, make sure you find and delete the malware file too.  You may well experience other issues but at least this should kill the malware.

    Author Closing Comment

    combofix fix did the trick

    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    My purpose is to describe the basic concepts of virtual memory as implemented in a modern Windows-based operating system. I will also describe the problems inherent in older systems and how virtual memory solves them. The dark ages - before virtu…
    Have you ever had a hard drive that you can't boot into, but need to change the registry? Here is the solution! This article guides you through accessing and editing a registry of a non-primary drive. To read registry information on a non-prim…
    Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
    In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now