another day another problem. today! REGEDIT run entries disappearing..


  1. jonnyhotchkiss
    Posts : 260
    Windows 7 Ultimate 64bit
       New #1

    another day another problem. today! REGEDIT run entries disappearing..


    Hi guys, something strange (gpedit? malicious entity lurking well hidden somewhere) is messing with my

    [HKLM]Windows\CurrentVersion\Run content:

    Autoruns, msconfig,WhatsInStartup, AdvancedUninstallerPro all report the same content, but, when navigating to the key, the only entry is the one for nusb3mon.exe (installed as advised, not sure what, if anything, it does). At first I thought all entries were being suppressed, but everything else appears to be starting (despite not being visible in regedit?)

    KEYs are visible in most* programs


    and when searching the Reg, they're there (all modified at 2:15 this morning... hmmm)


    but when accessing the reg, they're not visible?


    Normally, I'd uninstall and reinstall Synaptics (which is the only one which isn't starting), but the issue's affecting several registry keys...

    I started documenting the issue, and captured the moment the entries miraculously re-appeared. I tried re-tracing my steps on reboot, after confirming the issue was still there (invisible keys, run entries not running) but can't seem to get the keys to materialise (even after importing the .reg export I made when the keys were momentarily visible, and even that's not working! makes me think there may be a policy in place preventing (machine) Run entries...

    Windows Registry Editor Version 5.00

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="%ProgramFiles%\\Synaptics\\SynTP\\SynTPEnh.exe"
    "RtHDVBg"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVBg64.exe /MAXX3 "
    "HotKeysCmds"="C:\\Windows\\system32\\hkcmd.exe"
    "FreeFallProtection"="C:\\Program Files (x86)\\STMicroelectronics\\AccelerometerP11\\FF_Protection.exe"
    "RTHDVCPL"=":C:\\Program Files\\Realtek\\Audio\\HDA\\RtkNGUI64.exe -s"
    "IgfxTray"=":C:\\Windows\\system32\\igfxtray.exe"


    compared to now, when I export, just in case the entries are there (like everyone else says!) but are... invisible.. NOPE.

    Windows Registry Editor Version 5.00

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NUSB3MON"="\"C:\\Program Files (x86)\\Renesas Electronics\\USB 3.0 Host Controller Driver\\Application\\nusb3mon.exe\""

    So... where to start?!

    (No, I don't know what was done at 2:15)

    Currently manually writing Reg.Strings
      My Computer
    Quote Quote

  3. jonnyhotchkiss
    Posts : 260
    Windows 7 Ultimate 64bit
    Thread Starter
       New #2

    Ok, re the visibility, forgot that I'm running 32 and 64 bit apps...

    I think that most(/all?!) of the programs that jump to the relevent entry in the Registry Editor were launching regedit.exe*32: 32-bit mode (even regjump!)

    By manually launching (Run) regedit.exe and getting to HKLM...Windows\CurrentVersion\Run I see my entries. Think I'll try an absolute path for synaptics (it's the only one failing, and the only one using an environment variable {%programfiles%} ....)

    regedit.exe @ HKLM......Run (NOT regedit.exe*32!)
    Last edited by jonnyhotchkiss; 09 Apr 2014 at 10:02.
      My Computer
    Quote Quote

 

  Related Discussions
Hey guys, I did a little mistake and deleted the registry keys for DirectX 11 for Windows 7. Can you please go to (HKEY_LOCAL_MACHINE -> SOFTWARE -> Microsoft -> DirectX). And tell me the names of each keys and values...etc.. So I can re-create mine. Thanks a lot!
I have an issue with Crucial's Storage Executive software. I made the mistake of first installing it on a usb thumb drive. It is no longer there, but I cannot run their install wizard because it finds a previous installation. I've found 4 *.lnk files, but I am suspicious that there are 'orphan'...
very odd problem with regedit
in Performance & Maintenance

When i run regedit with my windows 7(home premium), i have found very odd entry/file. Path is in regedit:HKEY_LOCAL_MACHINE/ATI technologies/install/South bridge/ATI_AHCI_RAID. (Look picture "ati") This is very unusual because my hardware is: Gigabyte Ep-45-UD3LR motherboard processor Intel...
Regedit problem
in General Discussion

Hi, i have changed something in regedit to try to shutdown quicker, i know i changed a value from 0 to 1, (or the other way round, i can't remember). My problem is now my machine takes over 2 mins to shutdown, whereas before it was like 20 seconds, i know i shouldn't have changed anything but...
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 21:42.
Find Us