What is userinit.exe?
userinit.exe is a legitimate file popularly known as Userinit Logon Application. It belongs to
Windows Operating System developed by Microsoft Corporation. It is typically located in C:\Windows\System32. Malware programmers create files with virus scripts and name them after userinit.exe with an intention to spread virus on the internet.
Affected Platform: Windows OS
How to check if your computer is infected with userinit.exe malware?
Keep an eye for the following symptoms to see if your PC is infected with userinit.exe malware:
- Internet connection fluctuates
- userinit.exe takes too much CPU space
- PC slows down significantly
- Browser automatically redirects to some irrelevant websites
- Unsolicited ads and popups starts appearing
- Screen freezes constantly
Take the following steps to diagnose your PC for possible userinit.exe malware attack:
Step 1: Download the award-winning Free Internet Security.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: After network detection is complete, press “Close” button for a scan window.
Step 4: Restart your PC.
Step 5: It will take some time for the Comodo Internet Security to update the antivirus.
Step 6: Proceed with a quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be prompted with an alert screen.
Step 8: Comodo Antivirus will remove the userinit.exe virus from your computer including all other malwares!
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | Microsoft Corporation | Executable | cb7af96fcc6f55b1 32fde4652e4cccc8 91918bec |
545c0ff279b1e6ec bb14105099feab7b |
Virus.Win32. Virut.CE |
No | 6.1.7601.1 7514 (win7sp1_r tm.101119- 1850) |
6.1.7601.1 7514 |
 106.76.145.19/32 |
N/A |
| 2 | Microsoft Corporation | Executable | 2097ad82ab050310 964f0aa3ddbe0ea9 84a8c9b2 |
4d3cc5dcb6070fb0 bfb2d6f9eb7e9027 |
Virus.Win32. Virut.CE |
No | 6.1.7601.1 7514 (win7sp1_r tm.101119- 1850) |
6.1.7601.1 7514 |
 Indonesia |
N/A |
| 3 | Microsoft Corporation | Executable | 7d9ca6094c03c8ae 9ff3fa36f338d280 c650da24 |
d34d870fa487dae4 7a1fbe67fa7c4970 |
Virus.Win32. Virut.CE |
No | 5.1.2600.5 512 (xpsp.0804 13-2113) |
5.1.2600.5 512 |
 Cambodia |
N/A |
| 4 | Microsoft Corporation | Executable | 011a8969fec14fb5 ace903835b4a11d1 f35fc62d |
ab1307533b884c59 5ba4e358f9a5a615 |
Virus.Win32. Virut.CE |
No | 6.1.7600.1 6385 (win7_rtm. 090713-125 5) |
6.1.7600.1 6385 |
 Philippines |
N/A |
Yemen
Ukraine
Egypt
India
Canada
Russian Federation
United Kingdom
South Africa
Iran, Islamic Republic of
Nepal
Portugal
Mexico
Pakistan
Zimbabwe
Thailand
Algeria
Poland| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Non-executable | fa70c6d418f7d8e8 1a989b2bee9c3703 a0ff4854 |
a2d5af29049b0ceb 483f17f1be9a7e5d |
No | N/A | N/A |  United States |
| 2 | Microsoft Corporation | Executable | ddf014669990f7ab 41f0a589d360357e e2ee0f3a |
b0b8f677062301bd 502ec455eb56c98f |
No | 10.0.16299 .15 (WinBuild. 160101.080 0) |
10.0.16299 .15 |
United States |
| 3 | N/A | Non-executable | 23c8d77416ee7e7e 079c30c3f7eeb27c 60c87920 |
17f2f07bde68a78e 96177fb7b673f203 |
No | N/A | N/A | United States |
| 4 | Microsoft Corporation | Executable | 822176286f8647f4 f2025e8187a99785 64cf0675 |
931c63144c40c47e d1706656ca0c1d58 |
No | 10.0.22468 .1000 (WinBuild. 160101.080 0) |
10.0.22468 .1000 |
United States |
