查杀新变种3448的办法 及 查杀后不能进入安全模式的修复办法

查杀新变种3448的办法 及 查杀后不能进入安全模式的修复办法 /`{]D6WQaP  
`GBU`nc  
+*bTBqh:  
<h_aZ3\6  
最近两天来新变种3448爆发，病毒特征：不能安装360安全卫士。 S20}M}v.1  
~L`j._w  
修复工具：1、System Repair Engineer（SREng）的扫描报告； Pp+W?+:>  
2、unlocker 用于删除病毒文件。 spAdw5hp  
VM+d7F}|@  
_Qz5"  
在 System Repair Engineer（SREng）的扫描报告中查找病毒文件的办法： T`Eg>%  
n_}:W^  
在“正在运行的进程”下面查找注入到进程的dll文件：以★嘎嘎★的报告为例（比较典型）  %K-H  
Y5 A3$0^  
[PID: 532][C:\WINDOWS\system32\k6s.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] "9T`,=  
[C:\WINDOWS\system32\drivers\nmprt.sys] [N/A, N/A] 8fMnZ^
Z3  
[C:\WINDOWS\system32\rdzl7.dll] [N/A, N/A] j5&*3q~  
RgDA  
这个进程和附带的两个文件就是病毒。一般nmprt.sys是昨天发现的共有名称，但今天的报告中发现了随机名字的sys文件。但这3个病毒文件的存放路径是固定的。 }lT@{RsX  
exe文件的名字和位数不固定，特征是包含数字。 pkgQLOQ  
dll文件是5位包含数字的随机名字。 ^T$  U  
这个exe进程下可能还寄生其他的dll文件，最典型的就是cnnic的dll文件。本文不讨论cnnic. 3WnMnXXv  
dll文件的特征是同时注入到其他进程下，几乎每个进程都有他们的踪迹：比如C:\WINDOWS\Explorer.EXE进程、rundll32.exe、ctfmon.exe下肯定有。 SCi[Ut|p  
06 D0  
快速判定以上病毒文件的办法是用百度搜索一下文件名字，一般不会有搜索结果的定是病毒无疑。 bZixMrm9  
D3"l'LiJ  
删除病毒文件不用到安全模式（也进不去），用unlocker即可删除。一次删除不了请重新安装unlocker或重起，多试几次就删掉了。 Oukv@-@=g  
具体下载地址和教程：http://btbaicai.com/read-htm-tid-661.html Ep@nr|x  
Pm$&>'6
)3  
#%Vnf &>$P  
删除病毒文件后的后遗症是不能进安全模式，原因是病毒文件吧关键的安全模式需要加载的注册表项删除了，请下载以下文件解压后双击，导入注册表即可。 51<nF  
请把下面内容另存为任意reg文件，然后双击导入注册表即可. *b=QHD  
@))F[Xc  
5ithK1QqJ  
 's3
g  
Windows Registry Editor Version 5.00 b,)v68d$T  
QO Iojem0  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot] F=<PuK  
"AlternateShell"="cmd.exe" %i6C"u=g  
XA(0X2j  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal] iUGO6u%  
wsQXb@?eW[  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt] &sFVU2  
@="Service" M7'MY2  
G2;gqvKu  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base] I&+`:%  
@="Driver Group" ' sp`1  
%Ub^tsd  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender] \3[;L~  
@="Driver Group" yjm  
AY="VL
r  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system] }#Y?Wr  
@="Driver Group" h}"NB-uw  
LO^2In:qE  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc] , I}i jXHM  
@="Service" ?X, qljX|  
~/]NQyj%{  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch] Rn'R.$x1M  
@="Service" `com\jU  
+[R7;U|Lx+  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmadmin] ZVks9  
@="Service" *$aN0[9*/  
\F6-^$  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmboot.sys] %Cg6cb  
@="Driver" F7/(RSC2  

#Ian3j  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmio.sys] +(k}  
@="Driver" dpqe}o[  
<P?NY/v  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmload.sys] Kl6Hz?8N>  
@="Driver" !GR*[?dp  
VTKro%;G'  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dmserver] 68t 0Fw   
@="Service" Y-"y|nTp  
+!d9#_5D  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog] /xBn $R+  
@="Service" M>k =Fut  
c#I^p\>T  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system] }=|]O=66  
@="Driver Group" v@bY1rDi  
LbZ'0y)]z  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter] 0 y-j  
@="Driver Group" w1C+3"]RQ^  
$43-qFv+E  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc] /cu]MW  
@="Service" K*pA2L:  
4n|M_05ib  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
CnF=,'R]  
@="Service" 6tt<7bF  
18gj2>%"Y  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration] GApo=vuxo  
@="Driver Group"  "  
*I-x@}h7V  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay] 2z9{y/2Z  
@="Service" G0~y'f2Ye  
i@!kc|~u  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter] ;KJi4)ZoW  
@="Driver Group" }mVl?z!^|
 
gI*<w)B*B  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk] _EjSM<  
@="Driver Group" Z|sqxk/_l  
cUd$$.&A  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs] 7@SISKHu  
@="Service" +a,ne  
m$5)   
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class] aWR>knr  
@="Driver Group" 68CU`uV\  
U+Ce?Wo  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys] w]*Nn^  
@="Driver" yV]J{=~n  
H%VD2uT  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys] O_-qJQi\  
@="FSFilter System Recovery" `fvQ^;tu  
IT]stQE  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SRService] )S-"*x   
@="Service" Mumq-h1i  
}/*y<[x  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender] *27mWah  
@="Driver Group" k?6 n\B  
_}pf{'p7  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys] q5G`%=8Fa  
@="Driver" ;]~
uYr>  
M9NP|^[s  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys] l
a
s 1S  
@="Driver" \hus )  
Mf!j=l[  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt] I _]EWcmLl  
@="Service" 4 *5=|.9  
Ce7 i/gz  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}] QYer"o8?Gb  
@="Universal Serial Bus controllers" q_>yx\81/  
t+-R:  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}] Do *|clu<  
@="CD-ROM Drive" myoSzqJl  
~RP-VH~.  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}] [ x no3  
@="DiskDrive" v:kJ*q  
Zt#](Dd  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}] mmITtW1%j  
@="Standard floppy disk controller" v tA7c&  
@4<Zz  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}] h~^e?X~  
@="Hdc" W[i+bD  
Im|iy.q
  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}] Ld_xnzOR.y  
@="Keyboard" +~]4i8Sk  
kM1Aw|bq  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}] # k2sG4  
@="Mouse" t.xrSQU?  
te7#@XYrC  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}] q;I Z0!!  
@="PCMCIA Adapters" I9CvitV)q  
? {1 -+nb  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}] dF<[jI3  
@="SCSIAdapter" eoE>xkC  
rP9^}.Q  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}] 0T)BNm^f
 
@="System" (Y!Z:IF`r,  
YI2/rtmf  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}] LnT71 ezkE  
@="Floppy disk drive" t`Dsx({E~  
]j bq)[Af  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] m
j;9=  
@="Volume" b<CXpO  
 5a'?MJT  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] [?'MOt3;s?  
@="Human Interface Devices" {I|TADO-8  
c_Hxfn  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network]
Ak`1A_r{1  
s
`6o}{s_  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AFD] b ^1!9k|  
@="Service" g9zCW|,/R  
Qd4G;"JF9  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppMgmt] wt4\BN@  
@="Service" P ^R(&/  
x)NdD-fJ  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Base] C"pq0$  
@="Driver Group" m6aYO o5  
7{Njol"  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot Bus Extender] E"umS3zD+  
@="Driver Group" <|XZv#C  
8^EW:`u/-  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot file system] Xn":U_  
@="Driver Group" }r#)OU  
>ObpScU  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Browser] /{K6  
@="Service" v<(q_U_)  
w|2|>  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CryptSvc] D H$8p  
@="Service" mX%'[  
V2&_suKD  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DcomLaunch] [G0hGl*  
@="Service" i_[_ye  
4h}68y1  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Dhcp] Kf_A Z  
@="Service" \;F>fd;  
.8VrK^  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dmadmin] 3&zL'uO  
@="Service" @9?@V&V  
1)F?k  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dmboot.sys] 7a*dMv"+  
@="Driver" Lj$BCm8  
wv`uWT`  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dmio.sys] {z>Y@mhB  
@="Driver" hw[CZ2_  
H8G?z
3u  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dmload.sys] EE@O`q
  
@="Driver" mBAW 7jH  
`H<h3gyx  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dmserver] @]_e(  
@="Service" 02 <TDa/  

;ax,yi)  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DnsCache]  3Llh7)5  
@="Service" $|GA  
qA0POg  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventLog] CnH? ,bmy_  
@="Service" 3ZM
_R3D%  
!38GBD  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\File system] ib[G4H%L  
@="Driver Group" \"'dUU!lc  
S-hS%t?s '  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Filter] _/? &^~A  
@="Driver Group" }V>E~2rP  
}=sDV<"S  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HelpSvc] v "`Zo  
@="Service" k :`wAKa  
~7cQaf*$g  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ip6fw.sys] QM:4aG+Yp  
@="Driver" f$.vbC+<  
848*)!U^6L  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ipnat.sys] OK?pk'  
@="Driver" i;3ER9  
L4X**4KB$  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanServer] |E|XsC8  
@="Service" !1r_!"  
JfM=Ms9X  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanWorkstation] .J'o ^HZw  
@="Service" bmD`<B20  
, Eay$;`  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LmHosts] VEWbaV:uf  
@="Service" `_ysl+PZ  
>W:2S^o>  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Messenger] _W('0:7:  
@="Service"
Qa'gL  
ku^g^fdpfA  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS] v TMVI  
@="Driver Group" m:k,'UI%  
gjS>#`/  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS Wrapper] +U}Q  
@="Driver Group" 1s"cR&^K  
l0->0]1  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ndisuio] cqs`/\U?  
@="Service" :F%tj>fQ  
v>zdni^[  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOS] % Hkj+l}!  
@="Service" %B@tu.|PZ  
CS<.6*y  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOSGroup] -~+$9^}  
@="Driver Group" tG$XDm'  
V+xN/_  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBT] VF`p+z"4=S  
@="Service" 4"[O  
1^MbT~aFS  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetDDEGroup] cCsvxV/$|  
@="Driver Group" &oHAD RX  
eI]/i"o  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Netlogon] "p*?Kl%PC  
@="Service" {2?60KR%"  
G|H) Z `  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetMan] ,>~??JDG;Z  
@="Service" RQP.w4  
,:kK8  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Network] 'XrxlDz[  
@="Driver Group" WVimKj=E
 
PfHva}GK  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetworkProvider] Y\bz!=o  
@="Driver Group" J4bH>-  
b!vgD-fy  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NtLmSsp] z&h NeD_!  
@="Service" #3)b;MZ  
b&_YnW  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCI Configuration] @B5O,\  
@="Driver Group" vcp+t2b  
o}x]r,K_  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PlugPlay] GC^4?53  
@="Service" 60h#I.b  
pW?QqBbjS  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP Filter] #H?X~a&+  
@="Driver Group" M!(<f)b  
q4TB2d'  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP_TDI] X\>,7CKTjT  
@="Driver Group" }'@e8-%y  
(y*"!+[_#r  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Primary disk] !{B,#   
@="Driver Group" 4j@:jOYr  
3EKCK(l3a  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdpcdd.sys] -Vj`udGP  
@="Driver" +mV_p)vTd\  
Z@KPGd@  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdpdd.sys] $w$$a~(  
@="Driver" -
;XRo  
k|o#!l!|O  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdpwd.sys] zeW~yJ9As  
@="Driver" ?7Lxv?v\  
?1Qo|@rCB  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdsessmgr] b3a@.Jl:  
@="Service" <uA@,cxuw!  
%pJ,gX8  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\RpcSs] onK!I@|"   
@="Service" {wKO+we0  
r?< X.[\$  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCSI Class] !t&e0^rm26  
@="Driver Group"
T5@2   
dk}f#Y&x?
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sermouse.sys] 9>D^DAI  
@="Driver" &F7nm'B[G  
UWB<v  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SharedAccess] ~S7Zjr-  
@="Service" aF40tXyH  
l$PY=. F  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sr.sys] ~,1
; l%  
@="FSFilter System Recovery" Th,a{^  
h1tDYN>  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SRService] {ECp8;BI  
@="Service" XN>c8h)V;  
EF` Ff  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Streams Drivers] 4'YFHaTl>  
@="Driver Group" bBRbg1^p  
k@_=R\K  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\System Bus Extender] ;!QV~ C  
@="Driver Group" yB_xOL|>  
w@c:2fK  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Tcpip] AiK5<jM<[  
@="Service" 8K+2|l'@ 9  
$a*,G#j5  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TDI] )<{7wAQ  
@="Driver Group" R
".),|  
-rPa}y0'  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tdpipe.sys] (X|?g|N  
@="Driver"
$\8BB5  
;P)T%5:=qi  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tdtcp.sys] \/.(tdro  
@="Driver" \3B!7W9  
{%;*jKr|+  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\termservice] -o*'f6#  
@="Service" F O1]&~K  
O ~`nF  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vga.sys] uF"QSy  
@="Driver" +b8PS  
K\h(Bb  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vgasave.sys] LQPk,lGT  
@="Driver" ;cK~'%K  
RTRNi&4l  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinMgmt] Z.AN# 9OB  
@="Service" K&w80  
{4[m01y_  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WZCSVC] =
54$k^(|\  
@="Service" ,g5JmJ>  
x7(x{HE@  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{36FC9E60-C465-11CF-8056-444553540000}] mbo&KVL'e  
@="Universal Serial Bus controllers" _5;]plr%6  
"{LmPV/o~a  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E965-E325-11CE-BFC1-08002BE10318}] }UGsY"+  
@="CD-ROM Drive" vR"]B<iy  
F~E[Y!,T  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E967-E325-11CE-BFC1-08002BE10318}] )I4[M!)?B  
@="DiskDrive" Pt[?47CrA  
(tIy\f#  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E969-E325-11CE-BFC1-08002BE10318}] =b=
t  
@="Standard floppy disk controller" ;V>+J<)Um  
#@JG\FS0h&  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96A-E325-11CE-BFC1-08002BE10318}] 2E4v:l4  
@="Hdc" STtZXz  
&/^7k<(U  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96B-E325-11CE-BFC1-08002BE10318}] Yo"U&aG  
@="Keyboard" M_B';J`FDH  
8`b8,<  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96F-E325-11CE-BFC1-08002BE10318}] Hf<7dcF%N  
@="Mouse" >$z-5U7P{  
sb_5:7C[Hx  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}] jXF5;({"  
@="Net" yb+h~K|i  
]tUQK0Br+D  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E973-E325-11CE-BFC1-08002BE10318}] Gh9Fa
M  
@="NetClient" lHF?P(U  
jV>p.iHv  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E974-E325-11CE-BFC1-08002BE10318}] )e9l5A  
@="NetService" 3nt|ixp  
+Ck~:  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E975-E325-11CE-BFC1-08002BE10318}] .5[W.sa  
@="NetTrans" {/QKl_  
g\U'3IHqBV  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E977-E325-11CE-BFC1-08002BE10318}] W<lai  
@="PCMCIA Adapters" ?t&xD  
unsPeGk  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97B-E325-11CE-BFC1-08002BE10318}] U.W%L`  
@="SCSIAdapter" #g9(OYSj  
=u>Gn8  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97D-E325-11CE-BFC1-08002BE10318}] KwXbSXX  
@="System" \c_[p#P  
v
fA~Joz  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E980-E325-11CE-BFC1-08002BE10318}] 8NiG4)  
@="Floppy disk drive" ?9-u 69  
k5ZOI'Ha&S  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] >wqXp~j*  
@="Volume" *PA.p)gFXe  
s A )veH {  
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] ^ar <
  
@="Human Interface Devices" ?@^)!kg