View Single Post
  #14  
Old March 2nd, 2019, 03:02 PM
evanandrew3333 evanandrew3333 is offline
Banned
 
Join Date: Feb 2019
Posts: 79
==================== Registry (All) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [2972672 2016-08-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\ DisallowedCertificates: 1916A2AF346D399F50313C393200F14140456616 (U)
HKLM\ DisallowedCertificates: 2A83E9020591A55FC6DDAD3FB102794C52B24E70 (U)
HKLM\ DisallowedCertificates: 2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 (U)
HKLM\ DisallowedCertificates: 305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 (U)
HKLM\ DisallowedCertificates: 367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB (U)
HKLM\ DisallowedCertificates: 3A850044D8A195CD401A680C012CB0A3B5F8DC08 (U)
HKLM\ DisallowedCertificates: 40AA38731BD189F9CDB5B9DC35E2136F38777AF4 (U)
HKLM\ DisallowedCertificates: 43D9BCB568E039D073A74A71D8511F7476089CC3 (U)
HKLM\ DisallowedCertificates: 471C949A8143DB5AD5CDF1C972864A2504FA23C9 (U)
HKLM\ DisallowedCertificates: 51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 (U)
HKLM\ DisallowedCertificates: 5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 (U)
HKLM\ DisallowedCertificates: 61793FCBFA4F9008309BBA5FF12D2CB29CD4151A (U)
HKLM\ DisallowedCertificates: 637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 (U)
HKLM\ DisallowedCertificates: 63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 (U)
HKLM\ DisallowedCertificates: 6431723036FD26DEA502792FA595922493030F97 (U)
HKLM\ DisallowedCertificates: 7D7F4414CCEF168ADF6BF40753B5BECD78375931 (U)
HKLM\ DisallowedCertificates: 80962AE4D6C5B442894E95A13E4A699E07D694CF (U)
HKLM\ DisallowedCertificates: 86E817C81A5CA672FE000F36F878C19518D6F844 (U)
HKLM\ DisallowedCertificates: 8E5BD50D6AE686D65252F843A9D4B96D197730AB (U)
HKLM\ DisallowedCertificates: 9845A431D51959CAF225322B4A4FE9F223CE6D15 (U)
HKLM\ DisallowedCertificates: B533345D06F64516403C00DA03187D3BFEF59156 (U)
HKLM\ DisallowedCertificates: B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 (U)
HKLM\ DisallowedCertificates: C060ED44CBD881BD0EF86C0BA287DDCF8167478C (U)
HKLM\ DisallowedCertificates: CEA586B2CE593EC7D939898337C57814708AB2BE (U)
HKLM\ DisallowedCertificates: D018B62DC518907247DF50925BB09ACF4A5CB3AD (U)
HKLM\ DisallowedCertificates: F8A54E03AADC5692B850496A4C4630FFEAA29D83 (U)
HKLM\ DisallowedCertificates: FA6660A94AB45F6A88C0D7874D89A863D74DEE97 (U)
HKU\S-1-5-19\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1214944576-273379327-1179527443-1000\...\RunOnce: [Application Restart #2] => C:\Program Files\pia_manager\nwjs\pia_nw.exe --disable-gpu --disable-transparency --no-first-run --disable-features=NativeNotifications --disable-background-networking --disable-component-update --us (the data entry has 254 more characters).
HKU\S-1-5-21-1214944576-273379327-1179527443-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKU\S-1-5-21-1214944576-273379327-1179527443-1000\...\MountPoints2: L - L:\MI.exe
HKU\S-1-5-21-1214944576-273379327-1179527443-1000\...\MountPoints2: {ac92db72-709e-11e0-b90d-78acc0ab88c9} - L:\MI.exe
HKU\S-1-5-21-1214944576-273379327-1179527443-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\WLXPGSS.SCR [301936 2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [iCloud] => "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe"
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [166400 2017-08-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [757248 2017-08-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.mrle] => C:\Windows\system32\msrle32.dll [16384 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.msvc] => C:\Windows\system32\msvidc32.dll [38912 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.imaadpcm] => C:\Windows\system32\imaadp32.acm [22016 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msg711] => C:\Windows\system32\msg711.acm [14848 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msgsm610] => C:\Windows\system32\msgsm32.acm [29184 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msadpcm] => C:\Windows\system32\msadp32.acm [24064 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [midimapper] => C:\Windows\system32\midimap.dll [20480 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [wavemapper] => C:\Windows\system32\msacm32.drv [25600 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.UYVY] => C:\Windows\system32\msyuv.dll [25600 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.YUY2] => C:\Windows\system32\msyuv.dll [25600 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.YVYU] => C:\Windows\system32\msyuv.dll [25600 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.IYUV] => C:\Windows\system32\iyuv_32.dll [54272 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\iyuv_32.dll [54272 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.YVU9] => C:\Windows\system32\tsbyuv.dll [14848 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\System32\l3codeca.acm [81408 2009-07-13] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [MSVideo8] => C:\Windows\system32\VfWWDM32.dll [68096 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [wave1] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [255488 2011-05-30] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2011-10-22] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.ffds] => C:\Windows\system32\ff_vfw.dll [92160 2012-02-26] () [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [wave] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [midi] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [mixer] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [aux] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [wave2] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [midi1] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [mixer1] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [aux1] => C:\Windows\system32\wdmaud.drv [217088 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.mrle] => C:\Windows\SysWOW64\msrle32.dll [13312 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.msvc] => C:\Windows\SysWOW64\msvidc32.dll [31744 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.imaadpcm] => C:\Windows\SysWOW64\imaadp32.acm [17920 2009-07-13] (Microsoft Windows -> Microsoft Corporation)