Help needed urgent: Wininit.exe

My system had Parite.B virus, so I downloaded Panda utility to delete it. After running it, it shows this in details window:
Deleting File: C:\Windows\System32\Wininit.exe
Modifying File "C:\Windows\Win.ini", section: "windows"

I checked my system32 folder, and for now wininit.exe is there. its size is 95kb. I am afraid if this file got deleted, I wont be able to log-on to windows again. Same thing has happened to my friend in past where Norton deleted some crucial file in System32 folder, then whole system needed to be reformatted and reinstalled. I cant understand if the file that is still present in my system32 folder will stay or be deleted later as the utility said. what can I do now to protect myself from situation that might arise if this file got deleted??

taylormah said:

My system had Parite.B virus, so I downloaded Panda utility to delete it. After running it, it shows this in details window:
Deleting File: C:\Windows\System32\Wininit.exe
Modifying File "C:\Windows\Win.ini", section: "windows"

I checked my system32 folder, and for now wininit.exe is there. its size is 95kb. I am afraid if this file got deleted, I wont be able to log-on to windows again. Same thing has happened to my friend in past where Norton deleted some crucial file in System32 folder, then whole system needed to be reformatted and reinstalled. I cant understand if the file that is still present in my system32 folder will stay or be deleted later as the utility said. what can I do now to protect myself from situation that might arise if this file got deleted??

Click to expand...

Windows errors related to wininit.exe?

If it's running under Windows Vista, this is a system critical process, as long as it exists in %windir%\system32. Its job is to start some of the core Windows Vista background services


Check to see if it is in the %windir%\system32

Run these scans, and let Kaspersky remove it, then run NOD32 to verify removal (do full scan- check for unwanted software also):

Virus.Win32.Parite.b (Kaspersky Lab) is also known as: Win32.Parite.b (Kaspersky Lab), W32/Pate.b (McAfee), W32.Pinfi (Symantec), Win32.Parite.2 (Doctor Web), W32/Parite-B (Sophos), Win32/Parite.B (RAV), PE_PARITE.A (Trend Micro), W32/Parite (H+BEDV), W32/Parite.B (FRISK), Win32:BackDoor-Servu (ALWIL), Win32/Parite (Grisoft), Backdoor.FtpUServ.A (SOFTWIN), W32/Parite.B (Panda), Win32/Parite.B (Eset)


Scan/Clean Here for removal (let these programs remove all they find:
Best Online Anti-Virus Scanner & Free Virus Scan - Kaspersky Lab
Free ESET Online Antivirus Scanner

Then there are other steps you need to perform to repair any corruption. I will post those seperately.

rive0108 said:

Check to see if it is in the %windir%\system32

Click to expand...

yes it is there. but i m afraid it might get deleted while rebooting.

Perform the scans above-

then,
System Files - SFC Command
Run sfc/scannow under "Administrator:Command Prompt" to check for integrity Violations and repair if possible

How To Make Vista more responsive and faster (checks drive for file attribute errors)

taylormah said:

rive0108 said:

Check to see if it is in the %windir%\system32

Click to expand...

yes it is there. but i m afraid it might get deleted while rebooting.

Click to expand...

If you are worried about data loss, inability to boot then backup the Users Folder under "Computer" (Windows drive)

rive0108 said:

Run these scans, and let Kaspersky remove it, then run NOD32 to verify removal (do full scan- check for unwanted software also):

Virus.Win32.Parite.b (Kaspersky Lab) is also known as: Win32.Parite.b (Kaspersky Lab), W32/Pate.b (McAfee), W32.Pinfi (Symantec), Win32.Parite.2 (Doctor Web), W32/Parite-B (Sophos), Win32/Parite.B (RAV), PE_PARITE.A (Trend Micro), W32/Parite (H+BEDV), W32/Parite.B (FRISK), Win32:BackDoor-Servu (ALWIL), Win32/Parite (Grisoft), Backdoor.FtpUServ.A (SOFTWIN), W32/Parite.B (Panda), Win32/Parite.B (Eset)


Scan/Clean Here for removal (let these programs remove all they find:
Best Online Anti-Virus Scanner & Free Virus Scan - Kaspersky Lab
Free ESET Online Antivirus Scanner

Then there are other steps you need to perform to repair any corruption. I will post those seperately.

Click to expand...

hey rive0108, i have already run onecare, trendmicro and panda activescan. they confirm i have both parite.a and parite.b infections. My problem is it has infected my homework exe files as well as my drivers backup and game dvd rips. its more than 25gb of data that got infcted. Is there a way I could disinfect files without deleting them? I m not running any cleaning tools so far just because I am afraid they will delete those files.

Turn off system restore as these are Memory resident (and will re-install at reboot). Then run the scanners. I posted Above. You MUST disinfect the files-

FYI TrendMicro/Panda are not very good. Onecare is ok, I am a perpetual Beta tester (Free annual renewal subscription, and I get the new releases before subscribers), but I ended up removing it off my computers because when I would run NOD32 online scanner, It always found stufff that Onecare missed. Now ALL my computers run Eset NOD32 4.0.
For futher info on Antivirus perfornance:http://www.vistax64.com/system-security/172321-vista-sp1-antivirus-performance.html

Top Antivirus
*Eset NOD32 4.0
*Avira Premium/Pro
Kaspersky
Norton 2009

*Best Antivirus Products (Certification by AV-Comparatives/Virus Bulletin VB100)

Again, do as I suggest:
turn off system restore.
Then run the online scanner/cleaners in order. Following the Eset NOD32 scan/clean, you will be given an option to download 30 day trial. Download it (check all the boxes for scanner options during setup), and use it to scan and clean your entire network and data external to your computer.

Turn off System Restore

Scan/Clean Here for removal (let these programs remove all they find):
Best Online Anti-Virus Scanner & Free Virus Scan - Kaspersky Lab
Free ESET Online Antivirus Scanner

Run Windows Defender (full Scan of network)
Click Start, In Search Bar, type, defender, click the program at top-under scan (at top), click "Full Scan"

restart, then run installed NOD32, Defender again for full network scan and clean (this may require another reboot and scan to remove/clean objects in Memory)
note- If you need assistance in configuring Scan for network I will walk you through it. NOD32 4 has self-defense to prevent it becoming Infected. This is an apparent problem with Kaspersky. Advise you to create the NOD32 boot disk to clean the system in a pre-Windows enviroment (Eset SysRescue). You will need to install this first:Download details: Automated Installation Kit (AIK) for Windows Vista SP1 and Windows Server 2008

then,
System Files - SFC Command
Run sfc/scannow under "Administrator:Command Prompt" to check for integrity Violations and repair if possible

How To Make Vista more responsive and faster
(Full Defag/checks drive for file attribute errors, repair of Drive marked as "dirty")

taylormah said:

rive0108 said:

Check to see if it is in the %windir%\system32

Click to expand...

yes it is there. but i m afraid it might get deleted while rebooting.

Click to expand...

In the event this occurs- there is a way to "undo" it providing you have not yet turned off System Restore.

Boot into Vista Disk/Recovery partition AND CLICK System Restore (I suggest you do this before the other steps)
Here is how:http://www.vistax64.com/tutorials/194765-system-recovery-options.html

Choose a restore Point as far back as you can, to a point before your were infected/corrupted.