So....
Today I booted up my computer as normal, but found that it got no further than loading my desktop image before giving me an error message:
Data Execution Prevention
To help protect your computer, Windows has closed this program.
Name: Userinit Logon Application
Publisher: Microsoft Corporation
Having scoured google there seems to be a number of possible causes/solutions, none of which seem to have helped my situation.
Several other Microsoft Applications such as Windows Installer and Notepad also give me similar error messages.
I've ran Spybot S&D (nothing), Norton AV (nothing), Malwarebytes, Eusing Free Registry Cleaner and CCleaner.
I don't know if this is relevant information or not but hopefully it could give someone an idea on what is the best remedy for my problem. Although Norton Av picked up nothing on the scan, the popups in the corner occasionally show it has blocked Downloader from C:\Windows\Temp\Vrta8.tmp
Oh yeah, I got the error message when trying to use a restore point aswell.
Heres the Malwarebytes Log. As you can see, the trojan agent is in the same directory as the userinit.exe is based.
Malwarebytes' Anti-Malware 1.31
Database version: 1456
Windows 5.1.2600 Service Pack 2
16/02/2009 17:39:39
mbam-log-2009-02-16 (17-39-39).txt
Scan type: Full Scan (C:\|)
Objects scanned: 271047
Time elapsed: 3 hour(s), 59 minute(s), 39 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\2.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
Today I booted up my computer as normal, but found that it got no further than loading my desktop image before giving me an error message:
Data Execution Prevention
To help protect your computer, Windows has closed this program.
Name: Userinit Logon Application
Publisher: Microsoft Corporation
Having scoured google there seems to be a number of possible causes/solutions, none of which seem to have helped my situation.
Several other Microsoft Applications such as Windows Installer and Notepad also give me similar error messages.
I've ran Spybot S&D (nothing), Norton AV (nothing), Malwarebytes, Eusing Free Registry Cleaner and CCleaner.
I don't know if this is relevant information or not but hopefully it could give someone an idea on what is the best remedy for my problem. Although Norton Av picked up nothing on the scan, the popups in the corner occasionally show it has blocked Downloader from C:\Windows\Temp\Vrta8.tmp
Oh yeah, I got the error message when trying to use a restore point aswell.
Heres the Malwarebytes Log. As you can see, the trojan agent is in the same directory as the userinit.exe is based.
Malwarebytes' Anti-Malware 1.31
Database version: 1456
Windows 5.1.2600 Service Pack 2
16/02/2009 17:39:39
mbam-log-2009-02-16 (17-39-39).txt
Scan type: Full Scan (C:\|)
Objects scanned: 271047
Time elapsed: 3 hour(s), 59 minute(s), 39 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\2.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
