Wininit Warning - Custom dynamic link libraries are being loaded

Greetings,

Maybe MG can help me fix this Warning?

Service Control Manager says:

Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. (Event ID 11)

OK, I am the Administrator, but I have no clue how to review libraries.

Can you help me find a fix? The OCD part of me want all Errors (and Warnings) solved and gone.

Some help, please.

You rock.

TIA

 

Download Microsoft Autoruns 13.40, it doesn't need any installation. Create a folder titled Autoruns and unzip to that folder.

• Right click on Autoruns.exe and select 'Run as Administrator', accept the EULA that pops up.
• As it begins to run, hit the Esc key to stop it.
• Select from the menu Options > Filter Options, put a check mark in 'Verify code signatures' and uncheck the other boxes.
• Press the F5 key to refresh and allow Autoruns to run to completion.
• Go to File > Save and save Autoruns.arn to somewhere convenient like your Documents folder.
• Zip the Autoruns.arn file and attach to your next post.

The log should give me a good idea of what's going on for this thread and your other thread 'eectrl failed to load'.

 

-nullptr, Thanks!

I love it when "good ideas" happen

...interesting report. I wish I understood more of it and what to do with many of its findings.

btw - I ran "sfc /scannow" about three times just before this (read somewhere that it can take 'more than once' to find and repair stuff) yet the results were as follows:

...windows resource protection found corrupt files but was unable to fix some of them...
​

Thank you for your expertise..

Carl

 

Open notepad and copy/paste the content of the following code box:

Code:

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\catchme]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\eeCtrl]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

Save as type: All Files (*.*)
File name: RegFix.reg

Double click and allow it to merge with the registry.
If the merge is successful, reboot the computer and check whether any of the problems remain.

Let me know how things go.

 

_nullptr,

Thanks for your help. Here's the update:

Registry code appears to have been added successfully to the registry.
Restarted, then rebooted from full shutdown (in case that makes any difference)
Opened Computer Management>System Tools>Event Viewer> Windows Logs> System – and note the following warnings/errors:

From most recent reboot
Warning - Name resolution for the name wpad.Belkin timed out after none of the configured DNS servers responded. (Event ID 1014)(Source DNS Client Events)

Warning - Custom dynamic link libraries are being loaded for every application.
The system administrator should review the list of libraries to ensure they are related to trusted applications.. (Event ID 11) (Source: Wininit)

Error - The LogMeIn Kernel Information Provider service failed to start due to the following error:
The system cannot find the path specified.. (Event ID 7000) (Source: Service Control Manager)

Error - The Apache2.2 service terminated with service-specific error Incorrect function.. (Event ID 7024)(Source: Service Control Manager)


From Previous Restart
(earlier, after registry addition, yet before the full reboot after power down)

Warning - Custom dynamic link libraries are being loaded for every application.
The system administrator should review the list of libraries to ensure they are related to trusted applications.. (Event ID 11) (Source: Wininit)

Error - The LogMeIn Kernel Information Provider service failed to start due to the following error:
The system cannot find the path specified.. (Event ID 7000) (Source: Service Control Manager)

Error - The ScRegSetValueExW call failed for Start with the following error: Access is denied. (Event ID 7006)(Source Service Control Manager)

Error - The Apache2.2 service terminated with service-specific error Incorrect function.. (Event ID 7024)(Source: Service Control Manager)

Error - The ScRegSetValueExW call failed for Start with the following error: Access is denied. (Event ID 7006)(Source Service Control Manager)

Error - The Apache2.2 service terminated with service-specific error Incorrect function.. (Event ID 7024)



I wonder if my screen saver going nuts is a clue?

Sometimes it seems like my mouse is going nuts. Maybe it’s the graphics card, or something else? Maybe it IS the mouse? I have noticed that sometimes it appears that I am pressing page up and page down alternately as fast as I can...so I (gently) slam my old mouse and it usually stops. Last night, I looked over at the “bubbles” screen saver and instead of drifting around slowly like soap bubbles usually do, they were going wild and jumping all over the place! (No mouse action involved?) Clicking the mouse stopped the crazy bubbles because it stopped the screen saver. Clue?

I wonder if the Apache error is related to some kind of left-over from when I was building my first website, and have Apache “hanging out” on one of my drives?

 

And, for a special treat, here are the results from a new Autoruns scan!

 

To investigate the Wininit warning:

• Open the Event viewer and find one of the Wininit warnings.
• Click on Details > XML View in the centre pane.
• Select and copy any lines between <EventData> and </EventData> and paste them in your reply.

Apache was installed to your D partition at d:\xampp\apache
Is 'D' on the same hard drive as 'C'?
Does Apache appear in your list of installed programs?

Are any of the following still installed:
Bitser
Core Temp
Perfect World Entertainment
VMWare
or any Gigabyte software utilities.
There's also a reference to a BlackBerry Device Driver. Could you look if the following file is present:
C:\Windows\System32\Drivers\RimUsb_AMD64.sys

 

- <EventData>
<Data Name="StringCount">0</Data>
<Data Name="String" />
</EventData>
</Event>

Nope. D (like R) is a different 1 TB drive. C is my teeny 80 GB SSD.

I am not certain which list to look at...some programs are installed directly into folders.

Windows Start Menu>All Programs only shows...
Apache Friends>XAMPP>Uninstall
Apache Friends>XAMPP>XAMPP Control Panel
Apache Friends>XAMPP>XAMPP htdocs folder

Belarc Advisor lists, in Network Map...
IP addy, Device Type: Windows 7, Device Details: Raven [my computer 192.168.?.? name] "(in WORKGROUP)," and Device Roles: Apache Web Server. Print Server, Browse Master.

Years ago, I built my first website and was (if I have these terms right) using my computer as a server to see what I was building. Apache, XAMPP, Dreamweaver were involved but did not get along that great with Wordpress. At one point I copied everything to my D\ drive. One listing is "D:\# my websites\Software\Apache" although the folder there only holds a couple of installer files. There are many more files in other folders. I have long forgotten all the terminology, have abandoned Dreamweaver, hope I never have to see a PHP database or control panel-er-rather. My site is still up and can be managed just fine with FileZilla or some new replacement for that software I just loaded (WinSCP I think).

So, if I "have" apache, I don't think I need it, nor do I need all the related files and programs....I don't think. I probably should make SOME kind of copy of the site.

Bitser - Yes, for opening zipped files.

Core Temp - No, I see a broken shortcut but no program
C:\Windows\System32\Tasks\Core Temp Autostart Carl

Perfect World Entertainment - No. Some broken shortcuts. I see these two:
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
D:\Perfect World Entertainment

VMWare - No, yet I see several entries, AppData, ProgramData...I think they were related to an Android simulator of PCs called "Andy" but I am not sure. I do not think I need it.

Any Gigabyte software utilities - Hmm. I have a Gigabyte MoBo and may have had the Utility DVD in the drive. I was looking into driver and BIOS updates. I got as far as attempting to download some Gigabyte software but something hung and I abandoned the project. Just now I popped the disc into the drive to make a screenshot (attached) of what I was looking at. I hope you can see it.

Also, I believe I have some drivers parked on my machine for a computer I miraculously scrapped together for my mom. I really don't know what I am doing, but it works. I suppose any needed drivers can always be downloaded. I know you asked about Utilities. I just don't know how to tell.

I do know that when I ordered MY machine, it was supposed to have two 1 TB drives in a RAID 0? (RAID 1? mirroring) configuration, yet I did not discover that it was not set up correctly for months, and I was not about to start from scratch again. Not sure if that's relevant.

It is not there...and the Blackberry is LONG gone, too.

Thanks for looking at this....

 

For the Wininit error, follow the procedure in post #4 and copy/paste:

Code:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=dword:00000000

Name it fixappinit.reg
Double click and merge with the registry. Reboot if the merge is successful.
The warning should be gone.

If you're not using Apache, try running the uninstaller.

With Autoruns, unchecking an item will disable it. Right click and select Delete will do the obvious.

You can safely delete the following entries:

Code:

\Core Temp Autostart Carl                 File not found: C:\Program Files\Core Temp\Core Temp.exe
\Norton Security Scan for Carl            File not found: C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe
\{1340491E-EA02-41D7-960E-C9BC8101D4CC}   File not found: D:\Perfect World Entertainment\Perfect World International\patcher\patcher.exe
\{90CF8038-C8E5-49E9-932E-0AB785BC99F9}   File not found: D:\Perfect World Entertainment\Perfect World International\patcher\patcher.exe
\{DA5FB03E-81B0-4C26-9B24-80BEC0AB59E9}   File not found: D:\Perfect World Entertainment\Perfect World International\patcher\patcher.exe
LMIInfo                                   File not found: D:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
gdrv                                      File not found: C:\Windows\gdrv.sys
RimUsb                                    File not found: System32\Drivers\RimUsb_AMD64.sys
vmci                                      File not found: C:\Windows\system32\DRIVERS\vmci.sys
VMnetAdapter                              File not found: system32\DRIVERS\vmnetadapter.sys

I hope all goes well

 

Me, too. LOL.

It takes a certain amount of trust to run registry additions from a "stranger."

With a great deal of your help, we have taken actual steps toward making this world/our environment into the kind of place we want it to be (instead of complaining about things).

Oh, one small thing: I'd like to report that it appears that all the Warnings and Errors must have found something else to do because even a few minutes after the reboot, they. are. ALL. gone.

And just think, I have a new friend!
(Autoruns - lol)

Thank you profoundly.

Now let's see what I can go mess up....lol

Be well,

DrCarl

 

PS - Since you've nothing to do now, care to take a look at THIS one?

My Failure To Awaken thread/problem