Posted 20 November 2009 - 08:49 PM
Here's what I was able to find. The process Windows Logon UI belongs to the software Microsoft Windows Operating System or logonui.exe. Some malware camouflage themselves as logonui.exe, particularly if they are located in c:\windows or c:\windows\system32 folder.
If logonui.exe is located in the folder C:\Windows then the security rating is 72% dangerous. File size is 59,904 bytes. Program has no file description. The program is not visible. File logonui.exe is located in the Windows folder, but it is not a Windows core file. File logonui.exe is not a Windows core file.
If logonui.exe is located in a subfolder of "C:\Program Files" then the security rating is 64% dangerous. File size is 71,168 bytes. The application has no file description. The program is not visible. The application starts when Windows starts (see Registry key: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run). logonui.exe is not a Windows system file. logonui.exe is able to monitor applications.
All of the information I found points to malware. Are you able to log in in safemode?
DJ Digital Gem
I gave up on computers and now I just DJ!