There is also a "userinit.exe" process that runs on startup as well. I know its a legit lgoin process, but can be overridden by another userinit.exe file. I have files called userinit.exe in C:/i386, C:/Window/system32, C:/windows/servicepackfiles/i386. Is it okay to have these multiples in these locations (I don't know what the i386 folder is)? There is also a file called "USERINIT.EXE-0743FDA9.pf" in the C:/Windows/prefetch folder.
Edited by sygg13, 11 December 2008 - 08:12 AM.