Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Windows Problem

Started by jrad2105 , Jan 04 2006 09:59 PM

  • Please log in to reply

#1
jrad2105
Posted 04 January 2006 - 09:59 PM

jrad2105

    New Member

  • Member
  • Pip
  • 5 posts
When i log in with my user name, i am instantly logged out with out touching anything and I am on a different computer now. How can i fix this problem?
  • 0

Advertisements

#2
Retired Tech
Posted 04 January 2006 - 10:20 PM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Can you boot the PC to safe mode and select the administrator account

Has it been doing this long?
  • 0

#3
jrad2105
Posted 04 January 2006 - 11:08 PM

jrad2105

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
no i cannot i think that i am missing the userinit.exe file??
  • 0

#4
Retired Tech
Posted 04 January 2006 - 11:15 PM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Wsaupdater.exe is spyware that changes Userinit.exe, to Wsaupdater.exe in the registry.

Ad-Aware by Lavasoft removes the Wsaupdater.exe file from the computer, but it cannot change the registry subkey back to Userinit.exe,.

The registry subkey that is changed is

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Value: Userinit
Data: %Windir%\System32\Wsaupdater.exe

Note %windir% represents the location of the System32 folder.

For example, if the location is C:\Windows\System32, the data would be C:\Windows\System32\Wsaupdater.exe.

The data should contain Userinit.exe, instead of Wsaupdater.exe. In the previous example, the data would be C:\Windows\System32\Userinit.exe,.

Note The comma following the file path information is required.

RESOLUTION

Use the Recovery Console to copy Userinit.exe to Wsaupdater.exe to allow logon capability to be restored and to let you manually correct the registry data.

To do this, follow these steps:

Use Recovery Console to copy Userinit.exe to Wsaupdater.exe

1. At the Recovery Console command prompt, type cd system32, and then press ENTER.

2. Type copy userinit.exe wsaupdater.exe, and then press ENTER.

3. Type exit, and then press ENTER.

Modify the registry

1. Click Start, click Run, type regedit, and then click OK.

2. In Registry Editor, expand

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
.

3. In the right pane, right-click userinit, and then click Modify.

4. Replace wsaupdater.exe with userinit.exe, (make sure to include the comma, as shown), and then click OK.

5. Restart your computer.

Delete the Wsaupdater.exe file

1. Log on to the computer by using an account that has administrator-level permissions.

2. Click Start, click Run, type%Windir%\system32, and then click OK.

3. Right-click wsaupdater.exe, click Delete, and then click OK.
  • 0
Back to Windows XP, 2000, 2003, NT · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Windows XP, 2000, 2003, NT

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP