PE_SALITY.AZ

Step 1

Before doing any scans, Windows XP, Windows Vista, and Windows 7 users must disable System Restore to allow full scanning of their computers.

Step 2

Enable Registry Editor, Task Manager, and Folder options

Step 3

Delete this registry key

Important: Editing the Windows Registry incorrectly can lead to irreversible system malfunction. Please do this step only if you know how or you can ask assistance from your system administrator. Else, check this Microsoft article first before modifying your computer's registry.

• In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\policies
  • system

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • Svc

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • -993627007

Step 4

Delete this registry value

Important: Editing the Windows Registry incorrectly can lead to irreversible system malfunction. Please do this step only if you know how or you can ask assistance from your system administrator. Else, check this Microsoft article first before modifying your computer's registry.

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • UacDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • AntiVirusOverride = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • AntiVirusDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • FirewallDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • FirewallOverride = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • UpdatesDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  • UacDisableNotify = "1"

• In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
  • GlobalUserOffline = "0"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system
  • EnableLUA = "0"

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
  • {malware path and file name} = "{malware path and file name}:*:enabled:ipsec"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • 1768776769 = "a5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • -757413758 = "0"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • 1011363011 = "0"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • -1514827516 = "23"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • 253949253 = "12a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • 2022726022 = "{random characters}"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs\-993627007
  • -503464505 = "{random characters}"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_0 = "cc96283a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_0 = "158d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_0 = "136a29"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_0 = "0"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_1 = "ab614218"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_1 = "696d7fbe"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_1 = "686ee68"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_1 = "696d6441"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_2 = "4f5e5db"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_2 = "d2dad5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_2 = "d3d9a2ab"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_2 = "d2dac882"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_3 = "55bb8a91"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_3 = "3c483e3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_3 = "3d4b46ea"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_3 = "3c482cc3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_4 = "34f7f72a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_4 = "a5b5863"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_4 = "a4b6fb2d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_4 = "a5b5914"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_5 = "6c311e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_5 = "f22edae"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_5 = "e219f6c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_5 = "f22f545"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_6 = "cf8257d3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_6 = "7894153"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_6 = "799333af"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_6 = "7895986"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_7 = "a9ef79c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_7 = "e1fda7d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_7 = "efed7ee"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_7 = "e1fdbdc7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_8 = "c637853"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_8 = "4b6b3d54"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_8 = "4a684821"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_8 = "4b6b228"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_9 = "3727ae1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_9 = "b4d89b5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_9 = "b5dbec6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_9 = "b4d88649"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_10 = "e8a393e7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_10 = "1e45f68b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_10 = "1f468a3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_10 = "1e45ea8a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_11 = "3822f85"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_11 = "87b35bec"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_11 = "86b24e2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_11 = "87b34ecb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_12 = "a4f9fbb2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_12 = "f12ab37"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_12 = "f23d925"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_12 = "f12b3c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_13 = "52a12663"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_13 = "5a8ed7d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_13 = "5b8d7d64"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_13 = "5a8e174d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_14 = "7f959b3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_14 = "c3fb6d29"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_14 = "c2f811a7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_14 = "c3fb7b8e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_15 = "7f61eb74"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_15 = "2d68c89b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_15 = "2c6bb5e6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_15 = "2d68dfcf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_16 = "6adea91c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_16 = "96d65147"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_16 = "97d52e39"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_16 = "96d6441"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_17 = "5122c91f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_17 = "438c81"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_17 = "14c278"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_17 = "43a851"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_18 = "77a56dc"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_18 = "69b11bc7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_18 = "68b266bb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_18 = "69b1c92"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_19 = "d56eb358"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_19 = "d31e6992"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_19 = "d21d1afa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_19 = "d31e7d3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_20 = "bb74ad43"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_20 = "3c8bcea3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_20 = "3d88bf3d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_20 = "3c8bd514"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_21 = "9e5f1eb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_21 = "a5f91d2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_21 = "a4fa537c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_21 = "a5f93955"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_22 = "761b4f89"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_22 = "f66844d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_22 = "e65f7bf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_22 = "f669d96"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_23 = "57f4da3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_23 = "78d41747"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_23 = "79d76bfe"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_23 = "78d41d7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_24 = "83cf5b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_24 = "e2417ee7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_24 = "e342c31"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_24 = "e2416618"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_25 = "b5a4c4c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_25 = "4baed3cc"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_25 = "4aada7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_25 = "4baeca59"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_26 = "4c636427"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_26 = "b51cdb7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_26 = "b41f44b3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_26 = "b51c2e9a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_27 = "3779e85"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_27 = "1e898b82"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_27 = "1f8af8f2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_27 = "1e8992db"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_28 = "678a8927"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_28 = "87f6e9ca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_28 = "86f59d35"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_28 = "87f6f71c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_29 = "63df6e1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_29 = "f164424c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_29 = "f673174"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_29 = "f1645b5d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_30 = "391a32a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_30 = "5ad1a31d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_30 = "5bd2d5b7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_30 = "5ad1bf9e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_31 = "a1282aa3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_31 = "c43f3e58"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_31 = "c53c49f6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_31 = "c43f23df"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_32 = "7f944b5b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_32 = "2dacac6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_32 = "2cafe29"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_32 = "2dac882"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_33 = "8fa7a55c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_33 = "9719f17e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_33 = "961a8648"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_33 = "9719ec61"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_34 = "163531c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_34 = "8748eb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_34 = "1843a8b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_34 = "875a2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_35 = "c185d37"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_35 = "69f49756"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_35 = "68f7deca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_35 = "69f4b4e3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_36 = "49ea7bec"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_36 = "d362f17"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_36 = "d26173d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_36 = "d3621924"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_37 = "de87eaf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_37 = "3ccf628a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_37 = "3dcc174c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_37 = "3ccf7d65"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_38 = "67ea818"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_38 = "a63cfad9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_38 = "a73f8b8f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_38 = "a63ce1a6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_39 = "2558a8b3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_39 = "faa53aa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_39 = "ea92fce"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_39 = "faa45e7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_40 = "b565d875"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_40 = "7917b45f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_40 = "7814c1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_40 = "7917aa28"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_41 = "d1b95936"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_41 = "e2852a4a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_41 = "e386644"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_41 = "e285e69"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_42 = "f8dbaaf3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_42 = "4bf26ce9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_42 = "4af11883"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_42 = "4bf272aa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_43 = "4bc799a1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_43 = "b55fccb9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_43 = "b45cbcc2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_43 = "b55fd6eb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_44 = "fa939969"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_44 = "1ecd237f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_44 = "1fce515"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_44 = "1ecd3b2c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_45 = "c2f681b4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_45 = "883a87e5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_45 = "8939f544"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_45 = "883a9f6d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_46 = "a4becbd4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_46 = "f1a81cb7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_46 = "fab6987"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_46 = "f1a83ae"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_47 = "67da1947"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_47 = "5b157568"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_47 = "5a16dc6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_47 = "5b1567ef"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_48 = "ee89e8c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_48 = "c482ec72"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_48 = "c581a619"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_48 = "c482cc3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_49 = "f1bd9eb2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_49 = "2df2556"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_49 = "2cf35a58"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_49 = "2df371"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_50 = "a5f2166e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_50 = "975d838d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_50 = "965efe9b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_50 = "975d94b2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_51 = "4b6a3e8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_51 = "cada86"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_51 = "1c992da"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_51 = "caf8f3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_52 = "663cf477"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_52 = "6a384792"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_52 = "6b3b371d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_52 = "6a385d34"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_53 = "995a3b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_53 = "d3a5df18"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_53 = "d2a6ab5c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_53 = "d3a5c175"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_54 = "4d8da4a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_54 = "3d133c6d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_54 = "3c14f9f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_54 = "3d1325b6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_55 = "74b31c3f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_55 = "a68913a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_55 = "a783e3de"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_55 = "a6889f7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_56 = "8df14c16"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_56 = "fedce6f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_56 = "eee8411"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_56 = "fedee38"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_57 = "cc337b3b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_57 = "795b4924"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_57 = "7858385"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_57 = "795b5279"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_58 = "5f61d97"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_58 = "e2c89597"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_58 = "e3cbdc93"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_58 = "e2c8b6ba"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_59 = "125e6af"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_59 = "4c3624"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_59 = "4d357d2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_59 = "4c361afb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_60 = "1454946"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_60 = "b5a35db"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_60 = "b4a1515"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_60 = "b5a37f3c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_61 = "ab961841"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_61 = "1f1f442"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_61 = "1e138954"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_61 = "1f1e37d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_62 = "2d4e8a4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_62 = "887e646d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_62 = "897d2d97"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_62 = "887e47be"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_63 = "5899ab41"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_63 = "f1ebb718"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_63 = "fe8c1d6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_63 = "f1ebabff"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_64 = "8aaa86f2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_64 = "5b5987b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_64 = "5a5a7a69"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_64 = "5b5914"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_65 = "ee1ad1d8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_65 = "c4c66d46"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_65 = "c5c51ea8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_65 = "c4c67481"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_66 = "ce7f9b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_66 = "2e33ce9d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_66 = "2f3b2eb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_66 = "2e33d8c2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_67 = "4ceec83d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_67 = "97a12147"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_67 = "96a2572a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_67 = "97a13d3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_68 = "78d6ed8d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_68 = "1eb4e9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_68 = "dcb6d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_68 = "1ea144"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_69 = "6fb74c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_69 = "6a7c12a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_69 = "6b7f6fac"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_69 = "6a7c585"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_70 = "8276ddd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_70 = "d3e97331"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_70 = "d2ea3ef"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_70 = "d3e969c6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_71 = "d192ed29"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_71 = "3d56d23f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_71 = "3c55a42e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_71 = "3d56ce7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_72 = "fdc7af12"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_72 = "a6c42e2d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_72 = "a7c75861"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_72 = "a6c43248"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_73 = "43999fe9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_73 = "131866"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_73 = "1132fca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_73 = "1319689"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_74 = "fcccb53"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_74 = "799ed94a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_74 = "789d9e3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_74 = "799efaca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_75 = "a1467852"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_75 = "e3c4a61"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_75 = "e2f3522"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_75 = "e3c5fb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_76 = "8b369a6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_76 = "4c79dfff"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_76 = "4d7aa965"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_76 = "4c79c34c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_77 = "35a2ebf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_77 = "b5e75b9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_77 = "b4e44da4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_77 = "b5e7278d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_78 = "85d68b9d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_78 = "1f54923"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_78 = "1e57e1e7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_78 = "1f548bce"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_79 = "c52fedc5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_79 = "88c1d1ea"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_79 = "89c29a26"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_79 = "88c1ff"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_80 = "61c2aee"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_80 = "f22f4d61"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_80 = "f32c3e79"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_80 = "f22f545"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_81 = "78135127"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_81 = "5b9cad6c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_81 = "5a9fd2b8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_81 = "5b9cb891"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_82 = "8d274a8d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_82 = "c5a9d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_82 = "c4976fb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_82 = "c5a1cd2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_83 = "35c2cf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_83 = "2e779684"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_83 = "2f74eb3a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_83 = "2e778113"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_84 = "6a3dd7ef"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_84 = "97e4fb4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_84 = "96e78f7d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_84 = "97e4e554"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_85 = "1755c5c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_85 = "152697a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_85 = "5123bc"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_85 = "1524995"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_86 = "1e357868"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_86 = "6abfb44c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_86 = "6bbcc7ff"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_86 = "6abfadd6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_87 = "fe95baa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_87 = "d42d8b1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_87 = "d52e783e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_87 = "d42d1217"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_88 = "af9c3393"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_88 = "3d9a6cb3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_88 = "3c991c71"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_88 = "3d9a7658"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_89 = "bdfb962b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_89 = "a77c254"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_89 = "a64bb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_89 = "a77da99"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_90 = "3f95ce84"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_90 = "17526c2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_90 = "117654f3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_90 = "1753eda"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_91 = "36293742"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_91 = "79e23b8c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_91 = "78e1c932"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_91 = "79e2a31b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_92 = "fabc5611"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_92 = "e351867"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_92 = "e2536d75"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_92 = "e3575c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_93 = "2f28acf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_93 = "4cbd75f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_93 = "4dbe1b4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_93 = "4cbd6b9d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_94 = "c9219881"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_94 = "b62aecd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_94 = "b729a5f7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_94 = "b62acfde"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_95 = "c5fd4e21"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_95 = "1f9892e6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_95 = "1e9b5e36"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_95 = "1f98341f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_96 = "2d7247d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_96 = "8958d9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_96 = "886f249"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_96 = "895986"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_97 = "f1c7acdd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_97 = "f272e2ac"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_97 = "f3719688"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_97 = "f272fca1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_98 = "9f9e2a5f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_98 = "5be78b5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_98 = "5ae3acb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_98 = "5be6e2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_99 = "89d6727e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_99 = "c54ddf4f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_99 = "c44eafa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_99 = "c54dc523"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_100 = "2be8353d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_100 = "2ebb3c4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_100 = "2fb8434d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_100 = "2ebb2964"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_101 = "2ac4f4e8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_101 = "982894ca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_101 = "992be78c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_101 = "98288da5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_102 = "e8fe5885"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_102 = "195ee69"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_102 = "969bcf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_102 = "195f1e6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_103 = "aa12bf69"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_103 = "6b34a42"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_103 = "6a3ce"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_103 = "6b35627"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_104 = "9d434136"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_104 = "d47a64c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_104 = "d573d41"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_104 = "d47ba68"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_105 = "2ff6f67d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_105 = "3dde847e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_105 = "3cdd748"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_105 = "3dde1ea9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_106 = "5d51c8a7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_106 = "a74ba6d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_106 = "a648e8c3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_106 = "a74b82ea"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_107 = "af149564"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_107 = "1b8fc91"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_107 = "11bb8d2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_107 = "1b8e72b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_108 = "fb6d2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_108 = "7a2656bb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_108 = "7b252145"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_108 = "7a264b6c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_109 = "a9eb2ddb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_109 = "e393b8f9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_109 = "e29c584"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_109 = "e393afad"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_110 = "9e2ac15"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_110 = "4d13c3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_110 = "4c279c7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_110 = "4d113ee"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_111 = "bcebb791"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_111 = "b66e5aac"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_111 = "b76d126"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_111 = "b66e782f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_112 = "c4c472d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_112 = "1fdbc2e3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_112 = "1ed8b659"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_112 = "1fdbdc7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_113 = "e28a1bb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_113 = "89495d36"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_113 = "884a2a98"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_113 = "89494b1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_114 = "363434e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_114 = "f2b6b198"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_114 = "f3b5cedb"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_114 = "f2b6a4f2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_115 = "6e3a48f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_115 = "5c2416a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_115 = "5d27631a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_115 = "5c24933"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_116 = "d61fc3a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_116 = "c5917ab"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_116 = "c49275d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_116 = "c5916d74"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_117 = "f6f1b3f9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_117 = "2efeceb6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_117 = "2ffdbb9c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_117 = "2efed1b5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_118 = "1c6fc93e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_118 = "986c281d"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_118 = "996f5fdf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_118 = "986c35f6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_119 = "e95e6a69"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_119 = "1d9845a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_119 = "daf1e"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_119 = "1d99a37"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_120 = "be7ab4c6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_120 = "6b46e747"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_120 = "6a459451"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_120 = "6b46fe78"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_121 = "964286e2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_121 = "d4b47fb2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_121 = "d5b789"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_121 = "d4b462b9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_122 = "f8c1ab2f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_122 = "3e21df95"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_122 = "3f22acd3"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_122 = "3e21c6fa"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_123 = "6d6b4ef"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_123 = "a78f31e4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_123 = "a68c4112"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_123 = "a78f2b3b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_124 = "bb6841c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_124 = "1fc97ab"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_124 = "11ffe555"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_124 = "1fc8f7c"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_125 = "f94d89f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_125 = "7a69ea6"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_125 = "7b6a9994"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_125 = "7a69f3bd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_126 = "cf9f9ab"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_126 = "e3d77234"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_126 = "e2d43dd7"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_126 = "e3d757fe"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_127 = "a1d98984"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_127 = "4d4499f5"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_127 = "4c47d616"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_127 = "4d44bc3f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_128 = "d6551dd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_128 = "b6b23ad"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_128 = "b7b14aa9"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_128 = "b6b228"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_129 = "e7c7cf"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_129 = "21f9fb4"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_129 = "211ceee8"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_129 = "21f84c1"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_130 = "35cd49ca"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_130 = "898cf7f"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_130 = "888f832b"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_130 = "898ce92"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_131 = "274f9a6a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_131 = "f2fa6ec"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_131 = "f3f9276a"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_131 = "f2fa4d43"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A1_132 = "b3d166dd"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A2_132 = "5c67a7f2"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A3_132 = "5d64dbad"

• In HKEY_CURRENT_USER\Software\Aasppapmmxkvs
  • A4_132 = "5c67b184"

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
  • %Windows%\Explorer.EXE = "%Windows%\Explorer.EXE:*:Enabled:ipsec"

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
  • %User Temp%\winmrlfff.exe = "%User Temp%\winmrlfff.exe:*:Enabled:ipsec"

Step 5

Restore these modified registry values

Important:Editing the Windows Registry incorrectly can lead to irreversible system malfunction. Please do this only if you know how to or you can seek your system administrator's help. You may also check out this Microsoft article first before modifying your computer's registry.

• In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
  • From: Hidden = "2"
    To: Hidden = ""2""

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • AntiVirusOverride = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • AntiVirusDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • FirewallDisableNotify = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • FirewallOverride = "1"

• In HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  • UpdatesDisableNotify = "1"

Step 6

Search and delete these components

• %System%\drivers\grpmn.sys
• %User Temp%\windjhoyu.exe
• %User Temp%\winmrlfff.exe
• %System Root%\a894
• D:\ad28
• E:\b12f
• F:\b546
• G:\b95d
• H:\bd64
• I:\c16b
• J:\c582
• K:\c989
• L:\ce0e
• M:\d215
• N:\d63b
• O:\da33
• P:\de4a
• Q:\e290
• R:\e6a6
• S:\eabd
• T:\ef22
• U:\f339
• V:\f750
• W:\fbc5
• X:\ffdc
• Y:\103e3
• Z:\10809
• MICROSOFT TERMINAL SERVICES\116de
• MICROSOFT WINDOWS NETWORK\11b43
• WORKGROUP\12a37
• \BRIAN-108E9A4A3\12efa
• %User Temp%\winoduul.exe

Step 7

Scan your computer with your Trend Micro product to clean files detected as PE_SALITY.AZ. If the detected files have already been cleaned, deleted, or quarantined by your Trend Micro product, no further step is required. You may opt to simply delete the quarantined files. Please check this Knowledge Base page for more information.

Step 8

Restore this file from backup only Microsoft-related files will be restored. If this malware/grayware also deleted files related to programs that are not from Microsoft, please reinstall those programs on you computer again.

• %User Temp%\winoduul.exe

Step 9

Restore these deleted registry keys/values from backup

*Note: Only Microsoft-related keys/values will be restored. If the malware/grayware also deleted registry keys/values related to programs that are not from Microsoft, please reinstall those programs on your computer.

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • AppMgmt

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Base

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Boot Bus Extender

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Boot file system

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • CryptSvc

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • DcomLaunch

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • dmadmin

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • dmboot.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • dmio.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • dmload.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • dmserver

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • EventLog

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • File system

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Filter

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • HelpSvc

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Netlogon

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • PCI Configuration

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • PlugPlay

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • PNP Filter

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • Primary disk

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • RpcSs

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • SCSI Class

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • sermouse.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • sr.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • SRService

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • System Bus Extender

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • vga.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • vgasave.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • WinMgmt

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {36FC9E60-C465-11CF-8056-444553540000}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E965-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E967-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E969-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E96A-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E96B-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E96F-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E977-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E97B-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E97D-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {4D36E980-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {71A27CDD-812A-11D0-BEC7-08002BE2092F}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Minimal
  • {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot
  • Minimal

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • AFD

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • AppMgmt

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Base

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Boot Bus Extender

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Boot file system

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Browser

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • CryptSvc

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • DcomLaunch

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Dhcp

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • dmadmin

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • dmboot.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • dmio.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • dmload.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • dmserver

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • DnsCache

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • EventLog

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • File system

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Filter

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • HelpSvc

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • ip6fw.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • ipnat.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • LanmanServer

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • LanmanWorkstation

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • LmHosts

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Messenger

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NDIS

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NDIS Wrapper

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Ndisuio

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetBIOS

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetBIOSGroup

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetBT

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetDDEGroup

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Netlogon

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetMan

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot
  • Network

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NetworkProvider

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • NtLmSsp

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • PCI Configuration

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • PlugPlay

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • PNP Filter

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • PNP_TDI

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Primary disk

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • rdpcdd.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • rdpdd.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • rdpwd.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • rdsessmgr

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • RpcSs

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • SCSI Class

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • sermouse.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • SharedAccess

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • sr.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • SRService

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Streams Drivers

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • System Bus Extender

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • Tcpip

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • TDI

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • tdpipe.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • tdtcp.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • termservice

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • vga.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • vgasave.sys

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • WinMgmt

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • WZCSVC

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {36FC9E60-C465-11CF-8056-444553540000}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E965-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E967-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E969-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E96A-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E96B-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E96F-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E972-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E973-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E974-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E975-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E977-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E97B-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E97D-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {4D36E980-E325-11CE-BFC1-08002BE10318}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {71A27CDD-812A-11D0-BEC7-08002BE2092F}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot\Network
  • {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}

• In HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\SafeBoot
  • Network