I am working on an acer laptop (XP) that was infested with viruses and spyware. I installed Norton AV 2006 and it found the virus Infostealer. I had to boot the pc in safemode in order to remove it completely. It was after that, I began to experience the Log on/log off dance and the windows logon screen- yes EVEN in safemode as the Admin.
I used ERD to boot the pc, however can't go back to a restore point because I turned them off prior to cleaning off the virus. I used the registry editor in ERD to check the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\ and the value is already "C:\WINDOWS\System32\userinit.exe,"
All the documentation that I have found seem to suggest that checking the registry would be the panacea to my issue, however I am in need of a plan B.
Edited by TenitaB, 11 July 2006 - 10:06 AM.