Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

After Blazefind cleanup, winlogon32.exe is missing

Started by billyplatt , Feb 08 2010 02:40 PM

  • Please log in to reply

#1
billyplatt
Posted 08 February 2010 - 02:40 PM

billyplatt

    New Member

  • Member
  • Pip
  • 4 posts
After running a windows repair, and after having to re-activate a windows install, I ran panda cloudav which caught and cleaned several infections of blazefind, the computer is now running normally with one oddity.

When running autoruns.exe, it finds the following. Under HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon\userinit, there is an entry for c:\windows\system32\winlogon32.exe, which is reported as missing.

If I try to disable or delete the entry, autoruns warns that Deleting Userinit will prevent users from logging on. Are you sure..?

While this seems like a moot point, since the file is missing, and the computer surely DOES allow users to log on, I was looking for an opinion with whether to do anything, ignore it as a registry quirk, or perhaps blazefind deleted the file and I should consider extracting it from CD?

This is on an XP Home, fully patched SP3 version of the OS.
  • 0

Advertisements

#2
Broni
Posted 08 February 2010 - 04:30 PM

Broni

    Kraków my love :)

  • Member
  • PipPipPipPipPipPipPipPip
  • 12,300 posts
winlogon32.exe is a malicious file.

I suggest that you start a new topic in the Malware Removal and Spyware Removal area.

Before you start a new topic click on this link --> Malware and Spyware Cleaning Guide, Please read before starting a new topic. This will give you a few preparations to make, as well as instruction for posting your OTListIt2 log.

If you are still having problems after being given a clean bill of health from the malware expert, then please return to THIS thread and we will pursue other options to help you solve your current problem(s).
  • 0

#3
billyplatt
Posted 08 February 2010 - 05:17 PM

billyplatt

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
maybe I was unclear, the virus has been removed, I was looking for advice about the registry entry, but I already got it fixed, thanks, though.
  • 0

#4
Broni
Posted 08 February 2010 - 06:07 PM

Broni

    Kraków my love :)

  • Member
  • PipPipPipPipPipPipPipPip
  • 12,300 posts
All I'm saying is, that if the registry refers to some bad file, it may mean, your computer is not totally clean.
  • 0

#5
billyplatt
Posted 08 February 2010 - 08:45 PM

billyplatt

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
I do appreciate the advice, and I appreciate all you guys to to help people! Wish I had some time to help out around here, I know you have your hands full.
  • 0

#6
Broni
Posted 08 February 2010 - 08:49 PM

Broni

    Kraków my love :)

  • Member
  • PipPipPipPipPipPipPipPip
  • 12,300 posts
You're welcome :)
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP