David,
Was the system connected to a domain recently?
Yes, I think so. But, it's safe to have appropriate backups of the registry
(all hives), using ERUNT.
[ERUNT] Registry Backup and Restore for Windows
http://www.larshederer.homepage.t-online.de/erunt/
[ERUNT Download URLs]
http://www.aumha.org/downloads/erunt.zip
http://www.aumha.org/downloads/erunt-setup.exe
[Installing & Using ERUNT]
http://www.winxptutor.com/regback.htm
http://www.silentrunners.org/sr_eruntuse.html
http://www.larshederer.homepage.t-online.de/erunt/erunt.txt
--
Regards,
Ramesh Srinivasan, Microsoft MVP [Windows XP Shell/User]
Windows® XP Troubleshooting
http://www.winhelponline.com
Hi Ramesh,
Thank you for this, however, I am able to logon as the Administrator in
safe mode, I just can't remember what I changed to prohibit logging in
normaly.
I have checked the registry C:\Windows\System32\Userinit.exe, and it
all looks fine.
THe problem is a security setting that will not allow windows to launch
this file.
Looking in 'Local Security Policy' all looks OK here with no
restrictions. None-the-less, I find Policy
{191cd7fa-f240-4a17-8986-94d480a6c8ca} in the 'Event Viewer' as set by
the administrator (me) won't allow userinint.exe to run.
I can also find this policy in the registry, do youthink I should
simply delete the policy folder?
I find this folder in the registry by running regedit in the command
line then my computer > HKEY_LOCAL_MACHINE > software > policies >
Windows > safer > code identifiers > paths >
{191cd7fa-f240-4a17-8986-94d480a6c8ca}.
When I open this registery I see the following:
Name Type Data
(default) REG_SZ (value not set)
Descritpion REG_SZ
ItemData REG_Z EXPAND_SZ
%key_local_machine\software\microsoft\Wind...
SaferFlags REG_DWORD 0x000000000(0)
Should I delete this whole thing of change a value somewhere?
David