If it's that rogue that caused this then it's probably related to a registry setting so try the following. You will need a spare CD and a Image file to CD Burner software.Download OTLPE and Boot Off It
- Download OTLPE.iso and burn to a CD using ISO Burner.
A free Image Burning CD download can be found over here
if you do not have one.
Instructions or tutorial on Burning ISO files can be found over here
- Once you have burned the file to a CD take the CD out of your working computer's CD-Rom drive.
- Reboot your infected system using the boot CD you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here
- Your system should now display a REATOGO-X-PE desktop and OTLPE should be loaded successfully.
Once it's loaded press the "start" button (blue windows symbol) at the bottom left corner.
Then press All Programs
> Remote (RunScanner)
The RunScanner should run and the when asked: "Do you wish to load remote user profile(s) for scanning?" Select Yes
Then at the next prompt make sure: Automatically Load All Remaining Users?
and then press Ok
This should then open up the Registry Editor
Navigate to the following key:
<- This key.
Click on the Winlogon
key and then at the right pane, there should be a lot of values, scroll down until you see: userinitRight-click
on the userinit value and select Modify
An "Edit String" box should appear. Under "Value data:" please input: C:\Windows\System32\userinit.exe,
(refer to image below)
Then press OkNote: Make sure the spelling and the comma (,) are there. I have provided a picture of what it should look like below to help you.
Upon completion of that, exit the Registry Editor and reboot the computer and remove the OTLPE disk from the CD-ROM and see if it loads correctly now.
Thanks. Let me know how it goes and we can continue from there.