Hi,
I ran Adaware anniversary edition yesterday, and it detected a few issues. These were fixed by Adaware.
When I rebooted the machine, it did not reboot.
I got to the user log on screen and then it tries to log in and then immediately logs off.
Please could you advise how I can get the machine started.
I have googled the problem, and it appears there is some issue with the userinit.exe file.
I have run a Windows repair and also I have used Windows recovery console to reinstal the userinit.exe file from the dllcache
This managed to get teh computer working in safe mode, but still does not boot into normal mode.
Please help.
Thanks
Vardhan
Logfile created: 19/10/2009 19:9:29
Lavasoft Ad-Aware version: 8.0.8
Extended engine version: 8.1
User performing scan: Vardhan
*********************** Definitions database information ***********************
Lavasoft definition file: 149.74
Extended engine definition file: 8.1
******************************** Scan results: *********************************
Scan profile name: Full Scan (ID: full)
Objects scanned: 246180
Objects detected: 4
Type Detected
==========================
Processes.......: 1
Registry entries: 1
Hostfile entries: 0
Files...........: 1
Folders.........: 0
LSPs............: 0
Cookies.........: 1
Browser hijacks.: 0
MRU objects.....: 0
Skipped items:
Description: PrivateDisk Family Name: unknown Clean status: Success Item ID: 0 Family ID: 0
Removed items:
Description: *doubleclick* Family Name: Cookies Clean status: Success Item ID: 408875 Family ID: 0
Description: C:\WINDOWS\system32\userinit.exe Family Name: Win32.Trojan.Small Clean status: Success Item ID: 695926 Family ID: 981
Description: HKLM:Software\Microsoft\Windows NT\CurrentVersion\Winlogon:UserInit Family Name: Win32.Trojan.Small Clean status: Success Item ID: 695926 Family ID: 981
Scan and cleaning complete: Finished correctly after 5307 seconds
*********************************** Settings ***********************************
Scan profile:
ID: full, enabled:1, value: Full Scan
ID: scancriticalareas, enabled:1, value: true
ID: scanrunningapps, enabled:1, value: true
ID: scanregistry, enabled:1, value: true
ID: scanlsp, enabled:1, value: true
ID: scanads, enabled:1, value: true
ID: scanhostsfile, enabled:1, value: true
ID: scanmru, enabled:1, value: true
ID: scanbrowserhijacks, enabled:1, value: true
ID: scantrackingcookies, enabled:1, value: true
ID: closebrowsers, enabled:1, value: false
ID: folderstoscan, enabled:1, value: C:\,D:\
ID: usespywareheuristics, enabled:1, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: filescanningoptions, enabled:1
ID: scanrootkits, enabled:1, value: true
ID: archives, enabled:1, value: true
ID: onlyexecutables, enabled:1, value: false
ID: skiplargerthan, enabled:1, value: 20480
Scan global:
ID: global, enabled:1
ID: addtocontextmenu, enabled:1, value: true
ID: playsoundoninfection, enabled:1, value: false
ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav
Scheduled scan settings:
<Empty>
Update settings:
ID: updates, enabled:1
ID: launchthreatworksafterscan, enabled:1, value: normal, domain: normal,off,silently
ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: schedules, enabled:1, value: true
ID: updatedaily, enabled:1, value: Daily
ID: time, enabled:1, value: Mon Mar 09 14:27:00 2009
ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: false
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
ID: updateweekly, enabled:1, value: Weekly
ID: time, enabled:1, value: Mon Mar 09 14:27:00 2009
ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: true
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
Appearance settings:
ID: appearance, enabled:1
ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
ID: showtrayicon, enabled:1, value: true
ID: language, enabled:1, value: en, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language
Realtime protection settings:
ID: realtime, enabled:1
ID: processprotection, enabled:1, value: true
ID: registryprotection, enabled:0, value: false
ID: networkprotection, enabled:0, value: false
ID: usespywareheuristics, enabled:0, value: false
ID: extendedengine, enabled:0, value: false
ID: useheuristics, enabled:0, value: false
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant
****************************** System information ******************************
Computer name: VARDHANVAIO-SZ
Processor name: Genuine Intel® CPU T2500 @ 2.00GHz
Processor identifier: x86 Family 6 Model 14 Stepping 8
Raw info: processorarchitecture 0, processortype 586, processorlevel 6, processor revision 3592, number of processors 2
Physical memory available: 749953024 bytes
Physical memory total: 2145366016 bytes
Virtual memory available: 2030301184 bytes
Virtual memory total: 2147352576 bytes
Memory load: 65%
Microsoft Windows XP Professional Service Pack 3 (build 2600)
Windows startup mode:
Running processes:
PID: 1088 name: \SystemRoot\System32\smss.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1336 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1360 name: \??\C:\WINDOWS\system32\winlogon.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1404 name: C:\WINDOWS\system32\services.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1416 name: C:\WINDOWS\system32\lsass.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1584 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1632 name: C:\WINDOWS\system32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY
PID: 1672 name: C:\WINDOWS\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1704 name: C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE owner: SYSTEM domain: NT AUTHORITY
PID: 1736 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1908 name: C:\Program Files\Intel\Wireless\Bin\EvtEng.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1948 name: C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe owner: SYSTEM domain: NT AUTHORITY
PID: 320 name: C:\WINDOWS\system32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY
PID: 384 name: C:\WINDOWS\system32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY
PID: 716 name: C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe owner: SYSTEM domain: NT AUTHORITY
PID: 744 name: C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1080 name: C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1244 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1120 name: C:\WINDOWS\system32\spoolsv.exe owner: SYSTEM domain: NT AUTHORITY
PID: 288 name: C:\WINDOWS\System32\SCardSvr.exe owner: LOCAL SERVICE domain: NT AUTHORITY
PID: 464 name: C:\WINDOWS\system32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY
PID: 656 name: C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe owner: SYSTEM domain: NT AUTHORITY
PID: 672 name: C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe owner: SYSTEM domain: NT AUTHORITY
PID: 780 name: C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe owner: SYSTEM domain: NT AUTHORITY
PID: 860 name: C:\WINDOWS\system32\eTSrv.exe owner: SYSTEM domain: NT AUTHORITY
PID: 616 name: C:\WINDOWS\System32\GEARSec.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1532 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1316 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 1544 name: C:\Program Files\Hewlett-Packard\Web Jetadmin 10\bin\HPWJAService.exe owner: NETWORK SERVICE domain: NT AUTHORITY
PID: 3084 name: C:\Program Files\Common Files\Hewlett-Packard\WJA Update Service\HPWJAUpdateService.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3480 name: C:\WINDOWS\system32\inetsrv\inetinfo.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3496 name: C:\Program Files\Java\jre6\bin\jqs.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3516 name: C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3544 name: C:\Program Files\Network Associates\Common Framework\FrameworkService.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3596 name: C:\Program Files\Network Associates\VirusScan\Mcshield.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3620 name: C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3664 name: C:\WINDOWS\system32\java.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3672 name: C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3680 name: c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe owner: NETWORK SERVICE domain: NT AUTHORITY
PID: 3768 name: C:\Program Files\Norton Ghost\Agent\VProSvc.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3904 name: C:\WINDOWS\system32\svchost.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4020 name: C:\WINDOWS\system32\nvsvc32.exe owner: SYSTEM domain: NT AUTHORITY
PID: 4052 name: C:\WINDOWS\Explorer.EXE owner: Vardhan domain: VARDHANVAIO-SZ
PID: 1980 name: C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe owner: SYSTEM domain: NT AUTHORITY
PID: 496 name: C:\Program Files\Apoint\Apoint.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2972 name: C:\WINDOWS\system32\ICO.EXE owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2968 name: C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2136 name: C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2232 name: c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe owner: NETWORK SERVICE domain: NT AUTHORITY
PID: 2272 name: C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2356 name: c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe owner: SYSTEM domain: NT AUTHORITY
PID: 2420 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 2392 name: C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2436 name: C:\Program Files\Apoint\Apntex.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2460 name: C:\Program Files\Sony\VAIO Power Management\SPMgr.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2476 name: C:\Program Files\Sony\ISB Utility\ISBMgr.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2488 name: C:\Program Files\Sony\VAIO Event Service\VESMgr.exe owner: SYSTEM domain: NT AUTHORITY
PID: 2544 name: C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2672 name: C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2676 name: C:\Program Files\BT Auto Backup\VaultClientSRV.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3116 name: C:\Program Files\Common Files\Symantec Shared\ccApp.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3172 name: C:\Program Files\Protector Suite QL\menusw.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3252 name: C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3400 name: C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3436 name: C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe owner: SYSTEM domain: NT AUTHORITY
PID: 3444 name: C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3000 name: C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE owner: Vardhan domain: VARDHANVAIO-SZ
PID: 3884 name: C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4116 name: C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4156 name: C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4216 name: C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe owner: SYSTEM domain: NT AUTHORITY
PID: 4228 name: C:\Program Files\Logitech\SetPoint\LBTWiz.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4372 name: C:\WINDOWS\system32\eTCrtMng.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4420 name: C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4452 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4560 name: C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe owner: SYSTEM domain: NT AUTHORITY
PID: 4568 name: C:\Program Files\Java\jre6\bin\jusched.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4768 name: C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5048 name: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5108 name: C:\Program Files\Skype\Phone\Skype.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5192 name: C:\Program Files\Microsoft ActiveSync\wcescomm.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5232 name: C:\WINDOWS\system32\ctfmon.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5240 name: C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5320 name: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5408 name: C:\PROGRA~1\MICROS~4\rapimgr.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5700 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5736 name: C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5756 name: C:\Program Files\Logitech\SetPoint\SetPoint.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5808 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5824 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5868 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2868 name: C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5628 name: C:\WINDOWS\system32\wbem\unsecapp.exe owner: SYSTEM domain: NT AUTHORITY
PID: 5092 name: C:\WINDOWS\system32\wbem\wmiprvse.exe owner: SYSTEM domain: NT AUTHORITY
PID: 2804 name: C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2828 name: C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 2940 name: C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 4524 name: C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5784 name: C:\WINDOWS\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY
PID: 5968 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 5208 name: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe owner: Vardhan domain: VARDHANVAIO-SZ
PID: 596 name: C:\WINDOWS\System32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY
PID: 7084 name: C:\WINDOWS\System32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY
PID: 2076 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: Vardhan domain: VARDHANVAIO-SZ
Startup items:
Name: PostBootReminder
imagepath: {7849596a-48ea-486e-8937-a2a3009f31a9}
Name: CDBurn
imagepath: {fbeb8a05-beee-4442-804e-409d6c4515e9}
Name: WebCheck
imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Name: SysTray
imagepath: {35CEC8A3-2BE6-11D2-8773-92E220524153}
Name: WPDShServiceObj
imagepath: {AAA288BA-9A4C-45B0-95D7-94D524869DB5}
Name: CTFMON.EXE
imagepath: C:\WINDOWS\system32\CTFMON.EXE
Name: Apoint
imagepath: C:\Program Files\Apoint\Apoint.exe
Name: igfxtray
imagepath: C:\WINDOWS\system32\igfxtray.exe
Name: igfxhkcmd
imagepath: C:\WINDOWS\system32\hkcmd.exe
Name: igfxpers
imagepath: C:\WINDOWS\system32\igfxpers.exe
Name: Mouse Suite 98 Daemon
imagepath: ICO.EXE
Name: IntelZeroConfig
imagepath: "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
Name: IntelWireless
imagepath: "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
Name: EOUApp
imagepath: "C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe"
Name: VAIOCameraUtility
imagepath: "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe"
Name: SonyPowerCfg
imagepath: C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
Name: ISBMgr.exe
imagepath: C:\Program Files\Sony\ISB Utility\ISBMgr.exe
Name: Switcher.exe
imagepath: C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
Name: PDService.exe
imagepath: C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe
Name: ccApp
imagepath: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Name: Biomenu
imagepath: "C:\Program Files\Protector Suite QL\menusw.exe"
Name: TrueImageMonitor.exe
imagepath: C:\Program Files\Acronis\TrueImage\TrueImageMonitor.exe
Name: Acronis Scheduler2 Service
imagepath: "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
Name: SsAAD.exe
imagepath: C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
Name: ShStatEXE
imagepath: "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
Name: McAfeeUpdaterUI
imagepath: "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
Name: Network Associates Error Reporting Service
imagepath: "C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe"
Name: AcronisTimounterMonitor
imagepath: C:\Program Files\Acronis\TrueImage\TimounterMonitor.exe
Name: NvCplDaemon
imagepath: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
Name: Kernel and Hardware Abstraction Layer
imagepath: KHALMNPR.EXE
Name: Bluetooth Connection Assistant
imagepath: LBTWIZ.EXE -silent
Name: QuickTime Task
imagepath: "C:\Program Files\QuickTime\qttask.exe" -atboottime
Name: eTCertManger
imagepath: C:\WINDOWS\system32\eTCrtMng.exe
Name: VAIO Update 4
imagepath: "C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe" /Stationary
Name: Ad-Watch
imagepath: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Name: KernelFaultCheck
imagepath: %systemroot%\system32\dumprep 0 -k
Name: SunJavaUpdateSched
imagepath: "C:\Program Files\Java\jre6\bin\jusched.exe"
Name: BlackBerryAutoUpdate
imagepath: C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
Name:
Name: RoxWatchTray
imagepath: "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
Name: hpqSRMon
imagepath: C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
Name: HP Software Update
imagepath: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
Name: {438755C2-A8BA-11D1-B96B-00A0C90312E1}
imagepath: Browseui preloader
Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
imagepath: Component Categories cache daemon
Name: FlashPlayerUpdate
imagepath: C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe
Name:
location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
imagepath: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Name:
location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk
imagepath: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Name:
imagepath: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
Name:
location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
imagepath: C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Name:
location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk
imagepath: C:\Program Files\Logitech\SetPoint\SetPoint.exe
Bootexecute items:
Name:
imagepath: autocheck autochk *
Name:
imagepath: lsdelete
Running services:
Name: AcrSch2Svc
displayname: Acronis Scheduler2 Service
Name: AdobeActiveFileMonitor4.0
displayname: Adobe Active File Monitor V4
Name: AudioSrv
displayname: Windows Audio
Name: Automatic LiveUpdate Scheduler
displayname: Automatic LiveUpdate Scheduler
Name: BITS
displayname: Background Intelligent Transfer Service
Name: Browser
displayname: Computer Browser
Name: ccEvtMgr
displayname: Symantec Event Manager
Name: ccSetMgr
displayname: Symantec Settings Manager
Name: CryptSvc
displayname: Cryptographic Services
Name: DcomLaunch
displayname: DCOM Server Process Launcher
Name: Dhcp
displayname: DHCP Client
Name: Dnscache
displayname: DNS Client
Name: ETOKSRV
displayname: eToken Notification Service
Name: Eventlog
displayname: Event Log
Name: EventSystem
displayname: COM+ Event System
Name: EvtEng
displayname: Intel® PROSet/Wireless Event Log
Name: FastUserSwitchingCompatibility
displayname: Fast User Switching Compatibility
Name: GEARSecurity
displayname: GEARSecurity
Name: helpsvc
displayname: Help and Support
Name: HidServ
displayname: HID Input Service
Name: hpqcxs08
displayname: hpqcxs08
Name: hpqddsvc
displayname: HP CUE DeviceDiscovery Service
Name: HPSLPSVC
displayname: HP Network Devices Support
Name: HPWJAService
displayname: HPWJA Service
Name: HPWJAUpdateService
displayname: HP WJA Update Service
Name: HTTPFilter
displayname: HTTP SSL
Name: IISADMIN
displayname: IIS Admin
Name: JavaQuickStarterService
displayname: Java Quick Starter
Name: lanmanserver
displayname: Server
Name: lanmanworkstation
displayname: Workstation
Name: Lavasoft Ad-Aware Service
displayname: Lavasoft Ad-Aware Service
Name: LBTServ
displayname: Logitech Bluetooth Service
Name: LinksysUpdater
displayname: Linksys Updater
Name: LmHosts
displayname: TCP/IP NetBIOS Helper
Name: McAfeeFramework
displayname: McAfee Framework Service
Name: McShield
displayname: Network Associates McShield
Name: McTaskManager
displayname: Network Associates Task Manager
Name: MSSQL$HPWJA
displayname: SQL Server (HPWJA)
Name: Net Driver HPZ12
displayname: Net Driver HPZ12
Name: Netman
displayname: Network Connections
Name: Nla
displayname: Network Location Awareness (NLA)
Name: Norton Ghost
displayname: Norton Ghost
Name: NVSvc
displayname: NVIDIA Display Driver Service
Name: PlugPlay
displayname: Plug and Play
Name: Pml Driver HPZ12
displayname: Pml Driver HPZ12
Name: PolicyAgent
displayname: IPSEC Services
Name: ProtectedStorage
displayname: Protected Storage
Name: RasMan
displayname: Remote Access Connection Manager
Name: RegSrvc
displayname: Intel® PROSet/Wireless Registry Service
Name: RpcSs
displayname: Remote Procedure Call (RPC)
Name: S24EventMonitor
displayname: Intel® PROSet/Wireless Service
Name: SamSs
displayname: Security Accounts Manager
Name: SCardSvr
displayname: Smart Card
Name: Schedule
displayname: Task Scheduler
Name: seclogon
displayname: Secondary Logon
Name: SENS
displayname: System Event Notification
Name: SharedAccess
displayname: Windows Firewall/Internet Connection Sharing (ICS)
Name: ShellHWDetection
displayname: Shell Hardware Detection
Name: SMTPSVC
displayname: Simple Mail Transfer Protocol (SMTP)
Name: Spooler
displayname: Print Spooler
Name: SQLBrowser
displayname: SQL Server Browser
Name: SQLWriter
displayname: SQL Server VSS Writer
Name: srservice
displayname: System Restore Service
Name: SSDPSRV
displayname: SSDP Discovery Service
Name: stisvc
displayname: Windows Image Acquisition (WIA)
Name: Symantec Core LC
displayname: Symantec Core LC
Name: TapiSrv
displayname: Telephony
Name: TermService
displayname: Terminal Services
Name: Themes
displayname: Themes
Name: TrkWks
displayname: Distributed Link Tracking Client
Name: VAIO Event Service
displayname: VAIO Event Service
Name: VaultClientSRV
displayname: BT Auto Backup Service
Name: Vcsw
displayname: VAIO Entertainment UPnP Client Adapter
Name: VzCdbSvc
displayname: VAIO Entertainment Database Service
Name: VzFw
displayname: VAIO Entertainment File Import Service
Name: W32Time
displayname: Windows Time
Name: W3SVC
displayname: World Wide Web Publishing
Name: WebClient
displayname: WebClient
Name: winmgmt
displayname: Windows Management Instrumentation
Name: wscsvc
displayname: Security Center
Name: wuauserv
displayname: Automatic Updates
Name: WudfSvc
displayname: Windows Driver Foundation - User-mode Driver Framework
Name: WZCSVC
displayname: Wireless Zero Configuration