魔盾安全分析报告
| 分析类型 | 开始时间 | 结束时间 | 持续时间 | 分析引擎版本 |
|---|---|---|---|---|
| FILE | 2018-03-24 08:10:58 | 2018-03-24 08:13:44 | 166 秒 | 1.4-Maldun |
| 虚拟机机器名 | 标签 | 虚拟机管理 | 开机时间 | 关机时间 |
|---|---|---|---|---|
| win7-sp1-x64-shaapp01-1 | win7-sp1-x64-shaapp01-1 | KVM | 2018-03-24 08:10:58 | 2018-03-24 08:13:21 |
| 魔盾分数 |
|---|
10.0Ultrasurf |
文件详细信息
| 文件名 | u1704.zip |
|---|---|
| 文件大小 | 3096761 字节 |
| 文件类型 | Zip archive data, at least v2.0 to extract |
| CRC32 | 934EC716 |
| MD5 | bd2e76db83e70abba369ff2a9635ad67 |
| SHA1 | 5033198473c3e426260a7149d094580c8905650e |
| SHA256 | 5146f2c8964d0426db75ce01186436ac1283761ad53e97f572597d2caddf830b |
| SHA512 | 85926536dee8b31255e06484b7d2bb647490f0dea823e2d236f97eaa6ffdb3f21a458add967f1a4c02e1677c5cd5347f5d13c642764e4eb4e28a94d46e91a96c |
| Ssdeep | 49152:mfhaeUXFQJrhlLHBIK2ufUkCeMkti+oNqEdSJCiQ4nGWiSbKISSIUDgYBAr+T7et:mfhl8OlNIl6UveMsLESJCt4GWiQKIHI5 |
| PEiD | 无匹配 |
| Yara | 无Yara规则匹配 |
| VirusTotal |
VirusTotal链接 VirusTotal扫描时间: 2018-03-23 21:51:37 扫描结果: 17/61 |
特征
投放了一个或多个文件
file: c:\users\test\appdata\local\microsoft\feeds cache\index.dat
创建RWX内存
开始系统监听127.0.0.1:0, 127.0.0.1:9666
尝试修改代理设置
投放出一个二进制文件并执行它
binary: C:\Users\test\AppData\Local\Temp\utmp\u.exe
魔盾wping.org IP地址信誉系统
Greylist: 104.16.124.168
Greylist: 104.16.177.45
Greylist: 104.16.60.188
Greylist: 104.20.252.23
Greylist: 104.20.37.31
Greylist: 52.85.148.42
尝试断开连接或更改Cuckoo监控的Windows功能
unhook: function_name: CreateWindowExW, type: modification
文件已被至少十个VirusTotal上的反病毒引擎检测为病毒
MicroWorld-eScan: Application.Agent.BNR
BitDefender: Application.Agent.BNR
ESET-NOD32: a variant of Win32/UltraReach.AG potentially unsafe
ClamAV: Win.Malware.Agent-6410010-0
GData: Win32.Trojan.Agent.Q6EI6K
Kaspersky: not-a-virus:RiskTool.Win32.UltraSurf.mu
NANO-Antivirus: Riskware.Win32.UltraSurf.euxlee
Comodo: ApplicUnwnt
F-Secure: Application.Agent.BNR
VIPRE: UltraSurf (fs) (not malicious)
Emsisoft: Application.Agent.BNR (B)
Jiangmin: RiskTool.UltraSurf.e
Antiy-AVL: RiskWare[RiskTool]/Win32.AGeneric
Arcabit: Application.Agent.BNR
ZoneAlarm: not-a-virus:RiskTool.Win32.UltraSurf.mu
Yandex: Riskware.Agent!
Fortinet: Riskware/UltraSurf
运行截图
网络分析
访问主机记录
| 直接访问 | IP地址 | 国家名 |
|---|---|---|
| 是 | 104.16.124.168 | United States |
| 是 | 104.16.177.45 | United States |
| 是 | 104.16.40.37 | United States |
| 是 | 104.16.60.188 | United States |
| 是 | 104.20.252.23 | United States |
| 是 | 104.20.37.31 | United States |
| 是 | 104.20.77.223 | United States |
| 是 | 104.20.85.233 | United States |
| 否 | 117.18.232.200 | Asia/Pacific Region |
| 否 | 151.101.188.249 | United States |
| 否 | 151.101.196.249 | United States |
| 否 | 151.101.52.129 | United States |
| 否 | 151.101.65.57 | United States |
| 否 | 151.101.65.6 | United States |
| 否 | 52.85.148.129 | United States |
| 否 | 52.85.148.42 | United States |
| 否 | 52.85.148.62 | United States |
| 否 | 52.85.148.82 | United States |
域名解析
| 域名 | 响应 |
|---|---|
| d0.awsstatic.com | A 52.85.148.82 |
| a0.awsstatic.com | A 52.85.148.42 |
| ecnads1.msn.com |
CNAME cs9.wpc.v0cdn.net
CNAME msnads.vo.msecnd.net A 117.18.232.200 |
| prod.fastly.net | A 151.101.52.129 |
| fastly.com |
A 151.101.129.57
A 151.101.65.57 A 151.101.193.57 A 151.101.1.57 |
| iecvlist.microsoft.com | CNAME ie9comview.vo.msecnd.net |
| a.ssl.fastly.net |
A 151.101.188.249
A 151.101.196.249 |
| www.vo.msecnd.net | |
| ajax.aspnetcdn.com | CNAME mscomajax.vo.msecnd.net |
| ajax.microsoft.com | |
| a1.awsstatic.com | A 52.85.148.129 |
| do.skype.com |
CNAME skype-do.ec.azureedge.net
CNAME skype-do.azureedge.net |
| d1.awsstatic.com | A 52.85.148.62 |
| fastly.net |
A 151.101.129.6
A 151.101.1.6 A 151.101.65.6 A 151.101.193.6 |
TCP连接
| IP地址 | 端口 |
|---|---|
| 104.16.124.168 | 443 |
UDP连接
| IP地址 | 端口 |
|---|---|
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
| 192.168.122.1 | 53 |
静态分析
投放文件
{FC0BDB72-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {FC0BDB72-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 393fa4758202ad0d98c1c17702c64435 |
| SHA1 | c6af2301ca76a0125ef749f6986afaebc9a3746f |
| SHA256 | 70d72e95019c46ae1ea357a4676647c8755f20a6f4947b488de4ee7ff8e25f02 |
| SHA512 | 8780f27e23c0b4c66fc4ed16b805128f61d14c5b3d04a98dccf519ef1b1ccdd5eee8cd4cf77f71d4b4287ec1e4bc65c314becd20fe9d0234d5e3c155cc62f0b8 |
| Ssdeep | 12:rl0YmGFbblZrEgm8GL7KFdrEgm8Gz7qPNlCgrNl26ao:r9bjG8tG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{0BB539E1-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {0BB539E1-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 29c6e3a7963e1f5176fd858766ff850c |
| SHA1 | 02152378e205351a758e6ddf3b8558182b8c4fe0 |
| SHA256 | 9bc6c5c569a45fbd50f3c85ecec4ee7129642ea83dffd4ac66440137543a0fb7 |
| SHA512 | 5f901bdd4caddb89c134db1b0d278f32e7ee75212bac5093755619d18bf9056153ec591e374d6fe015846c727495530cdbda7eea925f64654e15671597f2a41d |
| Ssdeep | 12:rl0YmGF2/ZrEgm8GL7KFFjrEgm8Gz7qPNlCgrNl26ao:rAG81jG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{188560A2-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {188560A2-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | e80f6695cdc066aadb5a946b4220fc97 |
| SHA1 | f037f65e569afc33dd193b3e3bdc1f9f701a82bd |
| SHA256 | 08fae1617f8fa2d5022e909f533a5ba95ff7f3fc582dfe9e2090ac5c419d2c38 |
| SHA512 | caa3ec7565d99071289feb5259ef67c8442dfa412c16c506fd5727a9e70c3ca69633ef894bda1b2f04ecd9b62e44c58996d42c4f85fa8b35be1c3ec3eadfcfbf |
| Ssdeep | 12:rl0YmGFXZrEgm8GL7KFTjrEgm8Gz7qPNlCgrNl26ao:rzG8nG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{279EFA63-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {279EFA63-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | b28a604b6de0bd956f1ba15555d483a6 |
| SHA1 | 5c6324b6ca2e0e05efefbbee44191464e6c2d008 |
| SHA256 | e19718e85453b5b2aba44b5a722cf66c32e2d666a83905cd863dfeaee957ef3f |
| SHA512 | dbd5074a06f290ce5fbb6f441d1c71b304833a662a02ca4c152479300e26274c5f89c522af5c37b1626f6092b82247bc580687c56b4a13112bd6b2ff1c9a5880 |
| Ssdeep | 12:rl0YmGFE/ZrEgm8GL7KForEgm8Gz7qPNlCgrNl26ao:r6hG84G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{1203A2F0-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {1203A2F0-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 7378fe04f9086c8415d80c7ddc88309e |
| SHA1 | d9cee8982b3de9bd8352071ae82bbd6abb313f7f |
| SHA256 | 462680fbbca844d1a0c0b1658f9f7f7421ed4de18848a96aec24d957a5311eff |
| SHA512 | 0f9e986ac4934aebfa1c8dbb3eca727309b26dd9a4a9544e6b8f874ed2e14c755f46a3df3927275ac7be9d0bbfe2c04f6a80d4dfc9283033c6c72a53e2494afb |
| Ssdeep | 12:rl0YmGFsZrEgm8GL7KFbrEgm8Gz7qPNlCgrNl26ao:r2G8rG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{F4F3C194-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {F4F3C194-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 8ade733aea24caef53af643dd1a51cf8 |
| SHA1 | e6fd0d1d3656ea44380bf402a230d1c3a03905b3 |
| SHA256 | a1ab6164d485f4b963924aac0066648332a469bc463e7462cf6fd4a67dc00b7c |
| SHA512 | 199134c1006b5b2824bbff7afb9d40d1d83edefc87cac8d786be4f9c998396c84f091f4f5512bc6d5eab5727c39a759724927ad87241fd76e563b4b0f6e2c118 |
| Ssdeep | 12:rl0YmGFaZrEgm8GL7KFFrEgm8Gz7qPNlCgrNl26ao:r0G81G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
index.dat
| 文件名 | index.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 32768 bytes |
| 文件类型 | Internet Explorer cache file version Ver 5.2 |
| MD5 | 0c3190e11d8ce20df9063db4f013bc76 |
| SHA1 | dcad76f872d5d723a74dec45f045994ee71f0368 |
| SHA256 | 36a60543a5c4d7c103e7be7a2a22f322e316b2490725241e6f6080ef2b237e9e |
| SHA512 | 43701a1c8d89312d8ac495dbd0cfbb24463b8dbd683a360bbc2cefa220c8f09b1be94486709e02897098811fd0b6abcece97b928e9fe518391756d2fef48ad9a |
| Ssdeep | 96:qx3mQd+kxzkCfJC4m8Mnom8SWd9V5Gnh8MnBo6o913aORplQNY23y544KlzSbnzt:s3mQd+kxzBl/n9kKKORplgzy6c |
| VirusTotal | 搜索相关分析 |
{38666B30-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {38666B30-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 9368f166b4c745573d187dae249ffa4a |
| SHA1 | 2317ed3a45541b3c5f8a4cd10593fa52bcbc4cf4 |
| SHA256 | d75f128b208ddf8da547bd5124e181923b71258d1fbcf481f4f8b51310f5fd25 |
| SHA512 | dab7a9d78ae94bf101b5d1dc155fb4547cc8c2005e390da07004ad815179e791156b24ee243a6825518717e30687dd39711977629d5827839da2bc8ae4f7c429 |
| Ssdeep | 12:rl0YmGFxOZrEgm8GL7KFx1rEgm8Gz7qPNlCgrNl26ao:rXOG8B1G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{2FC87C71-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {2FC87C71-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | adc4f261cc58c985fa3b09ee34943119 |
| SHA1 | 2a176e5038e007bf4d54df6cf70cd406fd826705 |
| SHA256 | fa34e93fffb9fc17be3220830370ac94c1454ea4606e681dcb1a433cf09f4daf |
| SHA512 | b01325823c0c0e5d3fb15c199fc66a85c992ecd70d1a0d18755ad729d7cb487ee20bfa4ac48bee9961387aa85137ccc78a03b73d321e6b71490c117519317e54 |
| Ssdeep | 12:rl0YmGFsZrEgm8GL7KFbrEgm8Gz7qPNlCgrNl26ao:rGG8LG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{279EFA61-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {279EFA61-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 418a685608586ff1f9a69ca516bdb851 |
| SHA1 | 4ef446b3911d741909ae5329e17d86420df5c3aa |
| SHA256 | ac55dc3ae9e91c8d6635dc4ade6b0f234a239c94c1d879e316c0b5f79aeedc13 |
| SHA512 | 508a7845a0539d3b5b18ebbe0f01fc7deffb9b345023e394a98b176da45266a6d65843ff72e059e9936712e3d2e179fac6aec7c4650efcf5a9557a6d8f1f8032 |
| Ssdeep | 12:rl0YmGFjZrEgm8GL7KFH2rEgm8Gz7qPNlCgrNl26ao:rPG8GG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{188560A1-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {188560A1-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 4d79182690dc0e72d493182448581142 |
| SHA1 | 1af94b69d31e42cc66b49080a2d068e620e07e07 |
| SHA256 | 6d894e7c68f92f2efb4c9348ee9a3a74480141859d9288092fd9fe7da9215c02 |
| SHA512 | 434fa0ad6e722b83224445c3fe6053d624cf237949be59319c52f07bf14268487b60ad06483c662f5c23b15e40a613196026d5d35b04e1cadabbde598173c54a |
| Ssdeep | 12:rl0YmGFHZrEgm8GL7KFmjrEgm8Gz7qPNlCgrNl26ao:rrG8iG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{03AD8FE1-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {03AD8FE1-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 1a5c885be799170798d33ab07db6eb09 |
| SHA1 | 59f737e729d416cbeac447ffe96d6975d708f770 |
| SHA256 | 946e5c0bbca423e438f9519940bc7de5688fe78073aad0d3f282cdcbbe098ea6 |
| SHA512 | 3833867ca899ba43908cde6c7a6a5f524c6cd0c5d2e2ba1cd7e106428f3d1a3c1a6d5b8c4634d34cd3654964e74eef26881dc1e844edd2b409a4b4e860e325fa |
| Ssdeep | 12:rl0YmGFA/lZrEgm8GL7KF8hrEgm8Gz7qPNlCgrNl26ao:r+G8wG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{1203A2F2-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {1203A2F2-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | bf4e3ca53cda6c5b482ed0878d4d09b2 |
| SHA1 | 280cb882daca6805025cf614f5f577bdce2e14a4 |
| SHA256 | 005431b0a082e883bdfe3ad92c8c978d4261a0280a55b9032f1c20c5138ee4fb |
| SHA512 | 617dca1f016fa47b6650efb04b4a10e39f0cf1e5ab8982d83f2bdf6f4d9067a76367468b1d350727dd1ae24d6d36ba91bada347b94b97986232a7cf8a85ab037 |
| Ssdeep | 12:rl0YmGFitZrEgm8GL7KFlrEgm8Gz7qPNlCgrNl26ao:r4G81G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
index.dat
| 文件名 | index.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 245760 bytes |
| 文件类型 | Internet Explorer cache file version Ver 5.2 |
| MD5 | ad348456dd783652183d0e0134f6f52d |
| SHA1 | d6674e0d1bc857b9db1e9544bcd4caecfa165828 |
| SHA256 | dee2c04b458a7a4e3f560b9aa1fdd779e3f5bd85d5bd61c79bd58e1d3a1349f6 |
| SHA512 | 9c46c14693b9237cb33ed3a447407ef1273a4c72b71de43b49cc4f2d02738fcec99d02b0df2c2a63877d235526bb0995f5e56d10f46b606667a18efae510e92d |
| Ssdeep | 3072:hMUyC4fbEMHeTbVNYSOKFP33/TxxQ0UjXV:7wfnHeTbVNYfKFP33/ |
| VirusTotal | 搜索相关分析 |
{2FC87C70-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {2FC87C70-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 06360de559c13faece3f9d8c9a7578c7 |
| SHA1 | 1febdf9b9884112846d8569c3cfa102a45a64ec1 |
| SHA256 | 763ba0f9a7942df4cc7267473e01853f4c315ad4a29d3f71e74777b5c67b5c1d |
| SHA512 | 6e5222ef8cb0ae752181a1ba3d80294b5b7bbcc9a53953103e514974226db238090c8a1e4da83d57bd1d8af8074d7d5c1cf35b8814770071c2a0025602403e08 |
| Ssdeep | 12:rl0YmGFcnZrEgm8GL7KFcSrEgm8Gz7qPNlCgrNl26ao:riZG8sSG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{03AD8FE0-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {03AD8FE0-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | fe9079d940599d71f7cfde766ca96047 |
| SHA1 | 826e727a7f79ef654d7376fafb326b659a4b56df |
| SHA256 | 313132bc5ad142d2742e4fbb4946c46df6bea53b0e3e06b3b182d5bde942e043 |
| SHA512 | cbb9cddf12acfa5246945d94959e6a61d1a6883cf8c2a08b29946eb37011182c46d8ccc646069cd612d676bb97081ce190d272bedffd4c254477c2ee9d466c42 |
| Ssdeep | 12:rl0YmGF3BZrEgm8GL7KFSwW7rEgm8Gz7qPNlCgrNl26ao:r5G8JSG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
index.dat
| 文件名 | index.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 49152 bytes |
| 文件类型 | Internet Explorer cache file version Ver 5.2 |
| MD5 | 857c9fece35bc24772965af3c6950146 |
| SHA1 | 34589305537d3bfe816143869b83465d77fe4281 |
| SHA256 | 5b002207458e75f2032911d3ade90fb72af811ccd3c9e5306c5cd3ad62cb306f |
| SHA512 | d82dd0b8153ad5dd3254f45f2f818675f8940df774f01cad6de35f3f9ac7f1b8b9e7cadb12e206ee9d5c844cdf7b2976a2ec29f724bf4bea6e5cd15c51722e15 |
| Ssdeep | 96:qlz4YvHtz0T+n18+94WTS1vVBfWlW84GvnLGvnbSWicoya64cQkYQkjWCLn9N91O:uz4Vsormvqvbyett |
| VirusTotal | 搜索相关分析 |
Xnhfzsuwpp5p9e3f
| 文件名 | Xnhfzsuwpp5p9e3f |
|---|---|
| 相关文件 |
|
| 文件大小 | 74 bytes |
| 文件类型 | data |
| MD5 | 658126a9b1a9a7ddc8d67e1724b03f5b |
| SHA1 | 2baf9a47abf25de84a54aa09e01304acfd9fc8ae |
| SHA256 | ed0d1330872dad4df1803672778d24360a42477cadfcbf449a022ff0cb75fb7c |
| SHA512 | 05657e06d2c76d3662dea7e4acf55c23fae42ebab8b009744e89a7f81e4fe089e71c274106b627e248a18dc82a179cce7eb93482101606f354ea7181f85f23ba |
| Ssdeep | 3:27/I5fjw/i2VabGMlu06nexSl6MaJ:UIRH09EuDEMw |
| VirusTotal | 搜索相关分析 |
{2FC87C72-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {2FC87C72-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 877dd3f92e904401decc9da1ddb615a5 |
| SHA1 | 14dc409be16efa9909db87c85d3f28a8250ad037 |
| SHA256 | 0bb7791c7bbdfae679d12067b92b015da57cf0505000d2c551880b65ec069ee3 |
| SHA512 | 4e431ad4667969154347efd2357b80f495edabe0f84a4b733f23ac5247fb05948048212e42b506cfdbd69a5cb0701ebd48169e7f48a21d3482a98ba67fff4618 |
| Ssdeep | 12:rl0YmGFn0ZrEgm8GL7KFa4rEgm8Gz7qPNlCgrNl26ao:rxIG8q4G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{F4F3C198-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {F4F3C198-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 3959117a94ff288cbe42278a8485dee0 |
| SHA1 | 3566b1462386c469796e2348e705c4685cfbc9a2 |
| SHA256 | 044bd772bac535c5d19620a3b5ff6b19fdf24159099043cf66ad69fdd65b8682 |
| SHA512 | 0f1f0a932049aa168bfb55fb877f496a2be159bb56a24867e117868b5afb677725bc9c6939939bf5c1cd0d579ab6b1ad3e5d51d133d222961bf2948ba3030119 |
| Ssdeep | 12:rl0YmGFelZrEgm8GL7KForEgm8Gz7qPNlCgrNl26ao:rsjG84G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{F4F3C197-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {F4F3C197-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | fa2551cd893ef51bf318f5ebbb09f773 |
| SHA1 | 91457f5ee2aeaa2e89ff64a2468bf89d54a925dc |
| SHA256 | 214509befe12bd04c2947291bda38aa7243cee7e0bbabe89b3b46b6d2f756af8 |
| SHA512 | 3e18a6c47f377ff4ddcdbe8f96360e63f5ff7b07748ab927826def832eb070fe0725ff8071efc414a875af57e147f1883a1e4fc74c260c407b51372ff922ecfa |
| Ssdeep | 12:rl0YmGFTVtZrEgm8GL7KFcrEgm8Gz7qPNlCgrNl26ao:rhV7G8MG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
RecoveryStore.{F4F3C193-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | RecoveryStore.{F4F3C193-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 13824 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | f0ebf2887140965b6c08d5041f62a164 |
| SHA1 | 865d0880f62d9151015357a87a6b41b9f4f25a63 |
| SHA256 | 005dff6d2e0bb4078816bec5c82b0c0d9e582c35e3c8632717d0ed4452b5728a |
| SHA512 | 1985999974aad032b864368753db319823435d6200562701fc271121402500db15f6d1aaab9cc2fbbf3ecd5fb267f15a75712279bcb9a0be32d317db8a06cb73 |
| Ssdeep | 96:Ft7D9/51eauiQrHOLmVOLx1E1Mf4h0Y5QjQh2r+RkojuOh0b0h0HK62ATQatQjHj:Ft9/bduiQaLm0Lx1EtjgJY |
| VirusTotal | 搜索相关分析 |
{188560A0-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {188560A0-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | bfe32c62fc0ba44a25a0239cc6674156 |
| SHA1 | 492cd78c466e560360d4286b6eef8795fb8d64ac |
| SHA256 | 1305dfda052284887fa4db31f6f615a37318d7b11e50fbe92f3be31fbb1d6a25 |
| SHA512 | 62da4ec2035d834d28456829c0cbdb1429e85f155fb0b001601430c005f15565f51fe593f7012eea694aa43e5165c697a0849706c3580cbd09a9ff0660e6ab16 |
| Ssdeep | 12:rl0YmGFn/ZrEgm8GL7KFejrEgm8Gz7qPNlCgrNl26ao:rthG8aG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
Tilaxhmjcq9d7m2q
| 文件名 | Tilaxhmjcq9d7m2q |
|---|---|
| 相关文件 |
|
| 文件大小 | 48 bytes |
| 文件类型 | data |
| MD5 | d0e1d32c69ad8e2619847ba8965edc4a |
| SHA1 | 726719718ff57c095c93a683d48b33f7da258eb0 |
| SHA256 | 35953ab80aef5de6f13e9e546a2748e328cb346f18e646c8e686dadb760d3545 |
| SHA512 | 89254a5f2fcfcaf11b5ffb18dd900ee24179a96bc76aa29ec47ab00dea1c3b53345a5b6d23bdf590c414ee0f68e04413a5165f2869e48b5c7c77d9995f1657fa |
| Ssdeep | 3:27/I9jqeBNvd1VWOLf:UIpqeB3+Af |
| VirusTotal | 搜索相关分析 |
{FC0BDB70-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {FC0BDB70-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | ace91aa03ad0d6d22d637c44251eecf8 |
| SHA1 | b1823ffca3a632a99eabbcd8b43b200e16a33900 |
| SHA256 | d02f84f19829f6a5b90a4468bba4ebc49138b1044ca81957ac1986f2ed3a88d1 |
| SHA512 | 54ce698153e2ce8503db747ff3c147cad9eea28ea4b791112ff76d2ccf2e479605d70928d5b92b046c5df3317ff8b365bdf11d0abdfcbad2a3f11b34e745b594 |
| Ssdeep | 12:rl0YmGFnA6lZrEgm8GL7KFnALhrEgm8Gz7qPNlCgrNl26ao:rhdjG83SG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{FC0BDB73-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {FC0BDB73-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | a9cd68f3d4799d491dfb1a3d41016d19 |
| SHA1 | f48158c68d19783ebde24554d72cc3a70a5b06cc |
| SHA256 | 13f1349c0bf0a82c30a7ad710a913a50217446af8046bdaae460978a5f5f35f2 |
| SHA512 | e396cbfde1d0bbc961cb6f710b23294ad95952041fef94b6582c424e17ba0956fe5461db7d47268f17d1506fe49db7ef699a0e5cce79b065bf74f9eed8025cc0 |
| Ssdeep | 12:rl0YmGFKBZrEgm8GL7KFnH0rEgm8Gz7qPNlCgrNl26ao:rcfG830G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{1203A2F3-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {1203A2F3-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | b97e90a0da94a5d2009882fa1dba64ff |
| SHA1 | 08864783feaab677b51a5d29521d3c2b9510fb0c |
| SHA256 | 59081e0494f2888524bb7aac2bcbf75cf743ff6bf9ecfd7e2eebe33d585e22b6 |
| SHA512 | 4b0fe15c83a95311a106ce9b246e0b782a13436775da943b447bde69c697e204676cf6f501aea16ed12bd4e6e8943a6904ae7213616af91ec18652bfe375a6c1 |
| Ssdeep | 12:rl0YmGFmQZrEgm8GL7KFiEGorEgm8Gz7qPNlCgrNl26ao:rlG8SEPG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{03AD8FE4-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {03AD8FE4-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 96a262d26b43556d7c29d91475288671 |
| SHA1 | f6db8d5ca5de2ffee49d4f4e7eb809a6a1118db2 |
| SHA256 | 1850da7d1a75cf5a289862a47c63a112cc0e761ec9044492cd1eed0c80d40cfc |
| SHA512 | 62dcfacdfcac760c831276a3b1072006b887310c159db97079c2aa451801256ef37e19c1ad7578d1e925049af929431c76e629acd425e847058807fa37324a45 |
| Ssdeep | 12:rl0YmGFOA6lZrEgm8GL7KFyrEgm8Gz7qPNlCgrNl26ao:rfOG8CG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
Thdpadztec8e4n2n
| 文件名 | Thdpadztec8e4n2n |
|---|---|
| 相关文件 |
|
| 文件大小 | 28 bytes |
| 文件类型 | data |
| MD5 | 1af32a0158f9fa7bfef1a95af4ad69ac |
| SHA1 | b1f5718be07a223e087c5747640ad25837109142 |
| SHA256 | fc903c3f692acdb3a2654a0b6b83160ac371aed03d337d21409ba56eda6c2c96 |
| SHA512 | 3f5a7848a20cdaa12188fa2af12ea5e122251e715688a669ad49b6245e7d47eb8ef73873624174dc05cf38b7c13d46fe366a45baebbe4cbb53bc5ce369fa2d27 |
| Ssdeep | 3:27/I4ZFLzn:UI4Zxzn |
| VirusTotal | 搜索相关分析 |
{03AD8FE3-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {03AD8FE3-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 713ea2c0fd87561c1791585f400ac070 |
| SHA1 | 277384e1fa96ed5ff01e92ac66d153d479cf897a |
| SHA256 | d7e9c8f8df608296222e8b7ccdddac99aad9ce6bc37721f3325f5d7066d74184 |
| SHA512 | 195a0f8ce747992a1df5ed9cd85cb7ba8e6d690e0b6cd943c13c2470dbfda26697190f0723b95abbf34dc2ca987254cab45b34cef50778580819e43a6b7c58d6 |
| Ssdeep | 12:rl0YmGFrlZrEgm8GL7KFhb1rEgm8Gz7qPNlCgrNl26ao:rpG8F1G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{F4F3C196-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {F4F3C196-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 8872f875f6afaacf08449badbcc708d2 |
| SHA1 | 824037b6099bc6e8f4e449f3d256096e191b0a87 |
| SHA256 | de4bed98fe43f8b460c7528e4e1e8ab3d2475537e03639f3db4e0d898549f8c7 |
| SHA512 | 6b56fddb423417ccb5dc837d4e9b143fcb6969a39083a419c5e135aa8f04fcdfafcba459c25c31c89dbd097dcc367d5b0cea2636059840a7f806a6423df2e89b |
| Ssdeep | 12:rl0YmGFPOZrEgm8GL7KFprEgm8Gz7qPNlCgrNl26ao:r5OG85G8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
PUTTY.RND
| 文件名 | PUTTY.RND |
|---|---|
| 相关文件 |
|
| 文件大小 | 600 bytes |
| 文件类型 | data |
| MD5 | 31c40dae60c5f62156240f5dcd8e1cdf |
| SHA1 | 2b283d081131b763f7b7138838fabdf93a347c3d |
| SHA256 | 59b425072db0c5814ab0d1c6cc8a853ba83d6bbe95e29bc0e6c660767666e43b |
| SHA512 | 710172149eba7dd321920298165e772a1413ad226ed9d50412c9f730428ca231128c18fb986f2d6a8f4494de6ae78e56ed19408cb2cf194ecc3ff340699d9c67 |
| Ssdeep | 12:mgPBude3G8SImbt5FsY06wCPqLWZBk8zjXLUi4sNFCcyQZK:mGuA3Qt5RdwCPq6Tk8zjXLUi4CC |
| VirusTotal | 搜索相关分析 |
u.exe
| 文件名 | u.exe |
|---|---|
| 相关文件 |
|
| 文件大小 | 1986872 bytes |
| 文件类型 | PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed |
| MD5 | 6e8821da6bbaaac5784fad0b0dde63c3 |
| SHA1 | 91097748489d0a43a1ac92f0f79d62e9aea12bfe |
| SHA256 | a20ffe5b0337a16afc6e27dab51cd7f424cea31de8ac3def8cac3e93168eb518 |
| SHA512 | d283a5867bcbaffd23d889c09e2e832d75af3761143c0d5f9c7b4233aa2216831fc5c52a5afe3bc303eeb2498a4565d963c6308997d54dfe830bc2bb2be2c470 |
| Ssdeep | 49152:+9oHvAV5plC+yXCob8AXNM4sxdO9ovsqG1M6A6DGZ9:+bpC5X5o/cysq1D9 |
| VirusTotal | 搜索相关分析 |
{1F9B6F11-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {1F9B6F11-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | ea7af50e3922886dd446a8c033de43bd |
| SHA1 | 0401ac99cc05523f59d13b2d911dac39abcab194 |
| SHA256 | e523a1e883afa969b5ae13cb5853e27b2acd74307d035ae60649fd23b708da94 |
| SHA512 | da6319ca0f342b2a1b1033a0284554479fbef86eb56ae3818faa2ed7a2657f12a0249ab60021666c090527a9a684a7b2bc60131b17b8a30f130c4f70d1e1f960 |
| Ssdeep | 12:rl0YmGF0ZrEgm8GL7KFarEgm8Gz7qPNlCgrNl26ao:r2G8KG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{0BB539E0-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {0BB539E0-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 0eba1e2904c0e2419722c708edb57436 |
| SHA1 | ab4968dff7004541e15a2ec31da4786f10185733 |
| SHA256 | 68df9012415acc1c6045d4040ab592bebb13161c8b77f7c44902863e17c54104 |
| SHA512 | 5c08ae41e51e5008cb9347f8352671e657039f36fc5538494512402ef52119495448a60066d26569c9758f18eab517762f4a11c037e00de2e942d115ec2f945e |
| Ssdeep | 12:rl0YmGF5ZrEgm8GL7KFIjrEgm8Gz7qPNlCgrNl26ao:rBG84jG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{0BB539E2-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {0BB539E2-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 1c2f812b4c4e8dea7c35dbcc3097982a |
| SHA1 | 3441951977cc486a32da9a0019ca58da131d7625 |
| SHA256 | f687b355f7a5b0e6dc7266cd74503efdbd1a28d829169eb1df500f025153ea07 |
| SHA512 | 41956843008ab272b10c2f7b09ecd5d35000fa52f695e43d4d0d06e1fed8b0b65f2af2c6555f16eab14439a1131f125ac60000e0676a07fef4f9272e4ae04c5f |
| Ssdeep | 12:rl0YmGF2XZrEgm8GL7KFy2jrEgm8Gz7qPNlCgrNl26ao:rMG8i2jG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
index.dat
| 文件名 | index.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 65536 bytes |
| 文件类型 | Internet Explorer cache file version Ver 5.2 |
| MD5 | 191d3d20f356bf520a7d1ed07b1bc08b |
| SHA1 | bdba37ad96d8801e8d2c9e30e68afaf3822b0e4a |
| SHA256 | d2eae7eeb07f08972ec78e59eaf73b6cfa48e92121748f61a394a28e33e36788 |
| SHA512 | e59e12389609981d7dc7644043cd817fd4f5727e43d38fe83dd097fd7185f88e02cce56ee77ff5236610a1aed92d9ae389039385c2a71d30a4d8aeafbc378dda |
| Ssdeep | 384:wEEG/+oBMgfh3+EIOTcxi8kB+JuE1uPFykblh2F/0mjv3Bw2LI/u1sVdvM2zLOY4:wEEG/+xo |
| VirusTotal | 搜索相关分析 |
index.dat
| 文件名 | index.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 32768 bytes |
| 文件类型 | Internet Explorer cache file version Ver 5.2 |
| MD5 | 0aee387ca0a52dcdd8f8a29ea76edb42 |
| SHA1 | 5df81547dcadb2a7b8bc689da8e1383ba1a84cb9 |
| SHA256 | c31bc37e102b70a472837d530ec80bdaea28b0fefda3e9aa8c8cda98c4200c4e |
| SHA512 | 101bdb7178e031b1fbd78d595d778d06174749246cdcb70eb4b92af534910e30e0627147260ec319bccecf7a105c814b6b32c077a777fb5e90bd1459c78dcdf9 |
| Ssdeep | 12:qjtSaFpbZli3zIoYDPO7em4GZj03W/cKYDPOCG5A30WUsOXQDG9YRm4GZ5:qj4avEIoYTCebGZ7ZYTlEJ0oQQ4bGZ |
| VirusTotal | 搜索相关分析 |
{279EFA60-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {279EFA60-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 5a2aadd4820609fa182dc913d0491b39 |
| SHA1 | 897b8e6270311f0010d685de34586af621c901d9 |
| SHA256 | 89bacad9eaa74355f8f7b72db9c86a307e3600c9b6fd8e12ec9a2971b82d20b7 |
| SHA512 | c0e0a7380447ce41627bf2f034842e770fe5e8ad325da9830cec122181cad6939f9b1c4adc8ccf5201860d37cae21af98ba244a2a76fa701c7712ece20ec2aea |
| Ssdeep | 12:rl0YmGFtZrEgm8GL7KFxrEgm8Gz7qPNlCgrNl26ao:rdG8hG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{FC0BDB74-D0AB-11E7-A1F8-525400F9C664}.dat
| 文件名 | {FC0BDB74-D0AB-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | 0d374843215a7d0bbfb2cb9d4145aa13 |
| SHA1 | d32cf74251029d4013ffd9b8d9966849e6315abf |
| SHA256 | ff9efcbdf030f993107d9bdaac642930eb03628c0cb36ed69dd4dbf3ed212ae2 |
| SHA512 | 6ea5c2ce993fcfa0c78e6357689c5b7be02082200fe483f6d45237fd5bb71dec98c4de534802311486e9fdce003c93f3f9274157d148c520e8f18a356cb5e9a9 |
| Ssdeep | 12:rl0YmGF6cZrEgm8GL7KFeW7rEgm8Gz7qPNlCgrNl26ao:rrG8uSG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
{1F9B6F10-D0AC-11E7-A1F8-525400F9C664}.dat
| 文件名 | {1F9B6F10-D0AC-11E7-A1F8-525400F9C664}.dat |
|---|---|
| 相关文件 |
|
| 文件大小 | 4096 bytes |
| 文件类型 | Composite Document File V2 Document, Cannot read section info |
| MD5 | c9081bcab36377837ea4c68fb27db032 |
| SHA1 | 87d4814df3433b81f580b565344c1de7776c37c8 |
| SHA256 | d2169091ba2a9d0dfa4743636d0f20759b3a8c581ca7d82229fe46583ba51152 |
| SHA512 | 589de4e2cee5da3d0556314174266c780b5ed7b892c87361188be3f8eed4cda08da91ec5713cf7ba1e7b13155d9dfcdfca69328d52b11c57a81f641da0fcc18a |
| Ssdeep | 12:rl0YmGFLZrEgm8GL7KFYrEgm8Gz7qPNlCgrNl26ao:rDG8oG8JNlLrNlIo |
| VirusTotal | 搜索相关分析 |
行为分析
互斥量(Mutexes)
- Local\MSCTF.Asm.MutexDefault1
- Local\_!MSFTHISTORY!_
- Local\c:!users!test!appdata!local!microsoft!windows!temporary internet files!content.ie5!
- Local\c:!users!test!appdata!roaming!microsoft!windows!cookies!
- Local\c:!users!test!appdata!local!microsoft!windows!history!history.ie5!
- Local\WininetStartupMutex
- Local\WininetConnectionMutex
- Local\WininetProxyRegistryMutex
- Local\!BrowserEmulation!SharedMemory!Mutex
- Local\ZoneAttributeCacheCounterMutex
- Local\ZonesCacheCounterMutex
- Local\ZonesLockedCacheCounterMutex
- Local\!IETld!Mutex
- ConnHashTable<2528>_HashTable_Mutex
- Local\ZonesCounterMutex
- Local\c:!users!test!appdata!local!microsoft!feeds cache!
- Local\!IECompat!Mutex
- Local\c:!users!test!appdata!roaming!microsoft!windows!iecompatcache!
- Groove:PathMutex:huJZ0a1oPtB4yGzDQW9lw0niEfg=
- Groove.Mutex.WebServices.Status
- Groove.Mutex.SystemServices.Lock
- Groove:PathMutex:v1n9odwmzLTGaaFW7PZysBRMqq8=
执行的命令
- C:\Users\test\AppData\Local\Temp\utmp\u.exe -L="127.0.0.1:9666" -CID="1a7a7b45", -ProgPath="C:\Users\test\AppData\Local\Temp\\" -TmpPath="C:\Users\test\AppData\Local\Temp\utmp\\" -ConnMode=0 -C="CN" -version="1704100"
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?wzoiujphtwhrdmszowtsjthmmjjhpcicgmiavbvhiabufpgxwsinnaibmojlgoneuvnkarlfvvgtjervfekrsbbjfwnazzpvjwxsihrmjyijubhfencltedkgvlpfxgpjwqzrbonmjrmzeruixyzmjwoehaapsudtiuqfvujhckaxcqhizzbuiosascjsjwshmeryflemelaeaehfwxqxpdelamfegahnxsqinncqqvqmhiqdwbcgqvqzskqvxoihweqgnyrpenkhjqktodevtwprjfhrmowbpufhzbvqnbzqrubkxdecysgldjdogxrqbwxllayactktrgfnunqdxgkebpvbsuhfnycznkufxrpgeiufnyjplmpggvrcsoprpqxrfbfmdtkjhkorkoningvgaklyfqtsytwzmmztlchkesqckxzqgeabqqnicclnnlhkrbtlruywiqjvwcnyiiwisulzfozrqtxvkysyffxlfztvsfvqximafi
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?dmpkkazifkgmahgqubzprevaaxnisfmwqrpqkzbrwhqrogubhieznhmvsiaylutfcfayfcbhomuelnsqapirhbaflzpedmvreorfkjjklkvhexjxrxuiozaiulprlqyjxqwzbdkhwtuoucukfpebasvtphkcsxawdyyqetyueahmohenkbmlmsbyzbyhgpfmnttxdwapmnrnklxpfsgustrgebxkhnbhbozafegbnnxznumhhfcofifbhovvfftkyhapwtqvppemramvaameomxvlnqwgghnomxraysudbjnycbztoqqsmodnpecjvnweegktwmiofaqrzsvigzgiribaiqaemjjpwirywtvbsqlvinaomhnezogimuuaozboetwlsjrvgpioeqedcqhzumairbszoxbilkjknlsfbjnmlrlwfsnxljfnngtpcvrbgljzawwmfaxgxdgoqnjnzpqwuhnhcplcpcebzglbbelqfmqmebflsmjzmqssqoxsvcmyptvrqxqzuvhnqosqlyssxovcnkcaxmszopsoylamyjjdwqedlhprnyddvubkduvycgolbknieibxavtsosdkaurgubcmqpdoifpttteudgbzjaymdjvccpdfvjtirzsaemlhaofdhzleahthgtzbxxjdnumyqesvqxvgikucjplufdwcsshmmwlhqrqpxediskyxlmytwzwynzunyzwdyghguhhtpngmnjsvbddnusfbvnsxagqcrvvjuchbblgiasvmsumgkiwtjvszvzxugzn
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?hbbqnxwplromdpjbbhqyomcbxvcskyfgypsjamyqqmkkrvzpafazejeotcrrhdktbxffastaqhlcluurpofnvpzskhalmrizkmitytbsqxvnzwlfcjnmlxfvjoipjqezfenwzjkxokbunlwuyqfnpouohqxtmeqcjubzpjlyhnnttdpicieaoaxjrdbohzzmrwxtjbqucmxnlqirqmriwuijltqlktvwuvphsftqfjsarfuuhggpnoumgcttfxqevbfcglbvhsgpzrgycgzlcuzvykdbazdhkzvbttyjxvmorkyxdjmpqubvfheeirapbnsuojwzrmyibbixnixmiqfbbxsbckxrdslouxycgzkiuymrzjrsooxajdzslgqkvmfcmvxhptxbvrjnhnorqpkkvjqubyiluurtaclisonuxehegoueyvkctlmscbstguzcmskjpwskgrstqerjtqboejmppxcexkxouoswprjziqllqjwldseybftabrkjbstumjjhbjfucidvhlrjkqvzmzeexjuoqyhkoejbaybzrbemfiwcjvigmrwapuhzssyjsouknaisraatvqojgcpakoighkifooxbujkbygtehgwjzfufaalqydrxvbvhpdfzokttzkjymdumgqevwlzcocptpvipubqrpqnzllxrkhmllzqtagpcrwazxczdnaqhszrgjossukehvcfedvfyqhvnfgdwfgmbkqevvdkvtabdwrtkuiahqvmxrhwwejfcnjwrqstljugcoemnqbgvsobtnoqmhfairsvwxphlnedbkfcmnexeiwvoapsgdyjxzjursgpanksxbeiwfxqsgeuizaeagcorufjigqcdsgfssajthqtsjssnjjzrjclbxkcgplodtwbzrrfbmgskunskaewwoakcgtvdiwplgyczpiwbjrifzwlnynahaflzl
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?hwudomwvseunekuhnpawpoocmwkqyoxrlprfdminwzrathypkyjhocmgxkjiyejyohugxffxdwrvtbfuovrvomvqsfoidwokpesllxtkhkgnfwnkxeisovhpucckzfpqdurqhhkufcurutczwbaollqpezaalpbknfexsyyzlwtmpduudvmqonwufkcddzwccblfboewlhextadrrnivfsatrihkisqasdpvjeczbyzjvzxjgdvsneqyzizbdcokkkshtlmkvcgajzwivuqmphkaszkwpgjrcjwbbjocuhdmqovsbnysyyubjgexxlbqjyducssbffilbdsmisodnmkfrjnmydxhprveedmlplqipfgkhmsaneazfailhytgzfztylmbiioaletnmgncjienmejcglxiudljuzwhpdqnkyopkubdkghlduduwflbzjejbvxuhwhftidujejjlkbsvwlgwdhtfodeybplbohgrnnhohxkqzffitpjbodtqrkiyxndelioxisgkwyhetmkhubdqydzfqnlipagcscudzrrwcmyaakrjrlyebiwheyfslmnmopbcicnncefdhtahddxyusqpgllbvpdoddprrwslsmcocqjcvahhmyvnebbexsknurazcxifcjtssidzvzvzbtmjjezcdbkzfrrrrjwjnztcajnloinbqytvubascpgnxkuiwuysunpgyonesepbcuezvchffwogntfbzqdmljujlrtzmjbfnvssooeotlgenkpwyijebjuccoljnjxcoykmahxkukvmsfcgtxsxfvnuwdsprgqbqmwqygkcqhkyvpnrgvfptvowrghyrlnmbbgilnluumc
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?btmnyqaentxnpxxzpwtbxhqqugocakywhmfxdjjcrknhhahzpnkzdobvtbbnxllppaqhtreizegfdrvslrwxuaxutpbgpbngbpzknvdmfqnivfugretixpmsrcbgoegodmtbvduzzfgnbqxctfvyoglwmkdlryvstdjlkuixxrrzeqecokngmtinqbzmkoqgvjxorqhmrcgaxmtcfpdtkzjkwvnzrchriazpadwvbxjnheiihjplddfpzmgobizhdxlrxlfrpphgbynfowsdjoqnbchnlyqwpyctlqcndaryxyvjqyhzyrdjhcamjafjyzrcbukoyzrvpbugsxtyhykkrsdqtfojeootypvmnutyytckjyyqpytfosubollgyuhbukcbvpwihmtgezusparlfyeqczfqhdkgnllxaqsenryvzmvfdesfiktvfdgutgirhrcnurdhqaqqusbycpogqodlhahknidietcxqgyhepdmfxnkgfgbjazapwadufbculhlhrxjzqxbcrdmwwroafcsulzuajbjzzfngdzptnelvotbjsmywhaoufzmoyocfedofembccfxaknfjghgshtkjhomnisucbxkufwudruhpccftmwdesqdnzqhvqdxwepibnyrlbroypeyjxxsucxlxioqbtcqrmwyescgduvbanpbweguozcvfjdnevdnvj
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?mrrgfyelmsqvevthvrgrorgdcohvyyqrnaugbwxhutgyozyxvkrjkqgxzuouooduugdjnverebkhtrfovnywagfsewxeqqjgowwltgjnwxdwjvfffqfqjgvmgtfgarezhkkukpotryvruspkdvshudunkymcqatpeddjsjclyudynxjfrpwcirnpcsnjivuwbxccazpjqdpuuiuzesdwnkwfvfgsaekxvbrsbzikeyxbuqkumkodcuurvdjkvosrvcdtywpfiqvrmbtrimgfzzyzmjvnssqesiclmkpqxmapnirijnlblncqrowtoegoximtyowblwuaaiqzjhhpwqmvhprgvtcjodvnnlpvxecmsdctodwhncxgsewvkgeeupzwhzmqheppmadekegwpnchkfwronjlovcwnraqombcwrewnagkwufdacdpqsvytaqlclxyfyeftvdmwotlfmpsubdzrcbycgkwrogaayykdvjvnbfe
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?rayebfpabhybulbajyleybwihzjuglwezmdaiziykiaucxpkskuwezgiyewuvqrtdrcgzohiavllgtwldilocwlyekuwqnemjexsyffwmnumjfapyjiesquaocdibbolvprobfzgqhrepmkplvstmjagoqtzkdfwfuvhcxytoalrvgtltwexkyetoashfwbdegtpdjszysbmnwlfcgjxkftjvhhjxdfsrhqyiirvryohruqvumvxqqbxjofzhyohxkfalqeytmefwtbrekymwtyogjtojoxofkidveoaetrzcivgmlidltvyhmpkbrdvkgthxgvzbztobsauvdphagnxeqvweucdtdjcadunrpspwofmthdrdzchutuoyrkgtvhcewsesiqkfwtfmqxlqicqdwfthfofhpbfkptfgsywijprbjiowsqbxjvzgznvthoisjybkwrfaljcqzrsxiqgnoqnbzdhdbpvgkriokgpvklkjdanpjuqrsedevtyjclgnzdjqzbnihothkchnukpxidjisocqzohhkjsgzweznzkcqpwtgpukwpfzigibjysmidrlbefwzdbikqebuivacknogrbszcncmqijcktguafwzgbqerbzjipdryhxfrkorhhifrudidglufhefjoaflniggtmvoqbkgrejtaojthdwqbacvzhjhoqysxqcrdfxrofcxudxsoeapjcktuzerazmvdcejmuluhevegsrivetpyguqwdluvzrtghcfxwiatsmujstezxjtxnpmnmzlvbisusvvfaizceroapnfqtrvcbgwrwkmgczxoicfpputuubskpzjpcdsprfdeontojxnsoiktrzizarcgryremcnhbpdoxkfxwlcztdjmcqntpzhcpoaunscrparzbkrkbohdyoduemivprvzfcchfbabcmgxgrjbwbnmbribpbnuougpceobztjomeqtbogpfbesockqctmmrlwiptlfcruq
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?nepardagpudtuvqezcwhjvwkqbomqbcdpdfoqrukeqdzufybhohmxtehgtbiwahzzykqsquouzebqerzynpruxybhrrtfohhdquqtrijajtpimnciyxsrxqvpovvrwketifetdbsrlfibvamwsmxatbhwgjxkcolklkybeobzwksslyngetahksmtrvuxhfkswwdfbvqemjvbvqxkcrpwhsjdivyorjttuhrsufvinhjczlyvdiljewwgqtdjbqdiggrsmruwcosddbyjwsyzvaweozvncedjvucvffgkplfhdovqcamxhihpxysykrbwqmgsmonwbpbewaoscvdnabhddjfiavkyvabfujzjbiykjmfsnrnvbatrkjwsqkstvktmnifkcbrzpsbfspicltjqsybcnvlyfjwwenfzviwxjcfplkcozvzegzihtxtpgwpcfrosospzddtylmmpsdffcmhnzqsupisbrvlcqakgzndjyrgqpxfsqccukpkmijipuuirdehvinsywczzvconskhldvvzmwnkhoklybuyqumhkyleupocskycnwaanbkifilmxnefiocxrqnsjamszlxokdfnannncdgfxhvblywsztdashovjdxzvmbaxvagrvtzhuiqcdraurwuzljmhpyjucvgtpkrgvccatkekqlwpswqhbjrsksjnehjzuhochnsfinijpaeirokxmsqciffjebxyyevpssrapzyugoemdwglrewzkjjrjgvlmklswnyouwmbeoxugvnvqwnvjupoyfh
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?hworzphmeubqgmmbcfwmhlkerbwyqpptehnracftffiqbypxpcuowjlfiuuxfdgcgitwbavprrqdrjxgjhsxwfgepcpywhpxfiwjgvvziitsczitjkofjnokcmxzexdmxxejzrnuvthduafrsvdhbzldnfkiihlutqtdtydbxhntukjtruzhmtkcinfpgnxgoabgzkdtowpemqadjzaejelxzpgjfgfzdxidetfbwlztjmmwuwpwxfowrncpbbzezaflspntgmbfmtdfclgknyoyvdhznytbmpfrezoidxabqfmbylclbgjordnguuffgzmzzlfbgmvcxxmtnkzeatzmshnmwdhqcwqgjhfxsjqqvvdgvjlaprtntynzadmbpxssdhkxxhdwerfjtnvygegnaslfzytgvfgdvbqcjismkrqequzdxkcwcoicpqxavocchhozdloyjnhwsiyrtfhbluabjrcgisxmcxprmtopgahzsiovzazxkpbceupwikdjewieskeagcvffdrunvktcvkqupmdsgqqzqwhwucbwfklxzoxybdmfaxwetnlshhvnvacpjigqutedvtvdbhoqrpgcppfzvgrrdpznlradbzcplybsbkxqtgoprsxkdmccwsrdltznsxbqtmqqlsmlmcokxyapbtpzokbaxwqdbeyztjeurxrmdskxmdvxfvxqvtzymbrmvwjqjbuebcvfmodfvexpahxjdxixkqueqlpsnbelkmldbzgteuhzixunsuccyssumdafksawebqbothpotjjeygrjtimeuoqypkawsrtvxrvvstftzofkcefugugszoreyesqpqvcemyebyctcazznauddxj
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?qhmcflwdivgjltofxvbuentbacqryjkveqnbnuhmphuclvbvqzhjjrqipmtawfczylwxxkzleydjlkcmyjogzgaecgvzqzmxdtltousiomwarwuqmofykkqfndiybljzitqghbmhbpqrgevbtpphmsehrdwvztmraxfgmlnyoqrmyhmvrdkkkvcyuiyyawzakcaqtlrjzuzjbosyozczpuvimyndvkqhirwmitydsnxavstkwpaudqconkkbiiiguxoqssxwujkaefkosmzlyoriaapkgbmulxhujunufhvpnevymxiiqzlbycztlkhvotvsfitlureyvffecvozpotmrivvdugxhgcappnrvmdivgjkkhjcxxdvplbkrnxgcyhvikngofmtrgvwiqpeyhceinsefksignhxqmciuhlvxqeqnbbbymtatdqvefqpvegrdtnhrzgnwlxgqjwpdyqhavfjipwopanqwyxnfmmgqootqemoxcyufoctxahvtcfqtlvtrviklvbdjzmkzpedpzrfwfldrpifgvbfyidqmkjepohnihebndurrvqxjzlenyxoxcjmxcaukxdhwnoalnzocimrawvevjeleglajdypzdvbjhnkfwlecsdlyfadntfjdhvioqtxrtiaykypclbpiahtcadydecdsuiksskgohsqpimpwwrpriyviaqbdpxjlstqqhneuqraqoqlzsonfjywcaaihylcjcegctldzcaufjsrrcpvqkbilvkvwqmtyxwytplakcksltqwxrstaoeztsqsejsusaxxpzodossajotrmimcnwkhexhprqjgzxoruckarjxkjlqegwvyixigpbuywowtmtguvpjxjgvlhqppnocbymqytwbhacszbvpsctuyayozrmzihamvgykzkvgtxlrfyucxprkzuchfwslnrxjorxzjkkjkhbzzejatvsokoslkhbzxzhirzkuijcmhjfeeuhnikbqkbvweo
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?jrnxleyyezmurgtapotpvmuhzzxdkisziozvbuitpceksiympvdfvknpalewwqfzmuseomsocvxnsfresualqrmewbotkeymylagwosqtaetuiotrwqhtflfmtkxaxnxznwwcevaijthsxbayditswoyoyvhqmwajiedcootbjxobictzzyazucgfmjnrsuytmciuczapwqnyuylikfefllmcksvkblggxzqjauhejcbneiqzspmfqtzhnnknfdwwvpulrmdwbsxrkjzwyqcfrwwftaybxnjklmtudbvyhoswhbmcoheeztoowtyjrdvffvrcsdilmgplzafyfawpxfqfkupewdrdzmpocgsrazjlwreljhkujaictuwmdwrelsedfvvsyqqospqphjvsjexwakstgjaxjzvujhbftpfzxltuzysytybunwmivozjljrbkaqipovhdndtamycdwoeaqpsrhtljdxqwmnhflbsjzuximvviclrbcpygilejjkmpzaqxuuondzpaiiumhzgaffupbtudjdgkucadarlwxppkhopjniqjrltwaktoctgjdfytojpzlrznqoytyktuwf
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?xsvppcfvhktepjqhuaiilqoieexwarwjseleposbxzvweccpsinrthglrogpaotgkuznlwrdopmmdjmapwuztzlowgfraniwlsubalwtmjrhrriajhcqvbqudfykotqrasfxawklxsakkzgzaieafpjhooxcifznnxoilqjnbwoirnezysjukyemabhjroeeowypccikjqgksiwadrzwgrrfnmxlxveslnrchxyiubkuzdcltinftxzvdmqomttnpuoaquvjziklnbalqiqbphushpypfvhavmopyfsreqztkwfcmgkhfkwezecqdphlnovythwgkzuqegcnqxgjyrhouoxmqgdmpiczyzrenggkibyqzoydsmgjqwzyevfzgtmdzmeltfshsxvnlmpzrylhpfnjrpjqshknqvksbxydipckatqjyfilawtcvrkvhcqlusrfhoqmlndzvavzppbthipvzeswaqiqnomgnxhujmisudinwhv
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?dfhzxxoeanwkngtyqmscjwbxwjntuwlnuzzwkyueczjngrhkbuntrxyxpufffiveonqcbfxlgcrqfoyritausahazcskrjipvlxtibzohmpakcjihrzsyjnpagkmcqqjgfrfzgfvhnowhffrqzmfvqmjbwiusgchbykakzluzyesumpztkqltuyyqmjlrvopqrjgbwenzbofjdgxypygtdinbmqdlzbwukcrnhbxrbuyxybtyeiblclamgcsfcvqlhlvejljpwndaofwnqaimpnsdjiyhrwgavxvyajutunkyrrwsdtxnubuuutfurrvmedwtogypgvufcdwszfzamcohpiblcbttwvldszlbwcwzlgtzvnbzlpzqgqyusaftopsqjkkfujzcivrbxmzufbhabtqxlsysmixkecuidlcqerhabzijlenhxqjzwqcuzcxxakbqbwfrvzsqqhplpuogjezytsmdxexperwbctahpiopsjablwuunsoponpxcalmvaalfcovdtsznyvziiwflhkeocffvuejownqgomxyodtguhonllbltamsuhrqshuecykgfwmhernjyrcoanxjthxwkolxgbvviwfrslnjkixfbwfhcfmahkxeuqbpnsiddxejigxjbbteynnkeccfozmpbhhksyhcokxpnjtkcvrkywofdqsgyoifnopmkqfdqglvoxztcxtmafxggvmtacuunezyxdpvevucjpalkhfczxqvvmsfzwcqtexwmchmzjpmjfqgtzuqwxgpfqweecvqgainqlsmijadgnwcyrwzgnghvkugodgzfkgwapircikyvsuplimkhuymunomzovnloocpudzatljpftudibjqbuehlickjuefkpfdvnjcecuvnjfhrdogqsbpolxupnidolqzzmqldjkslpcwmcrwqcghvpjyvekocuyjayaegdxsdzthjlyfsvskftuwlusxmhtchytehajkdcspxlemgemsiqvwubwfoetwwogsyeniqumhpymebjyoptaafgptvclwebjtltbxvgqxt
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?hglzvkwcynllkhhxxgseftdtffizndknahbfpbsppticostrodzjahntcyyrubosaxmwyypbbaziqkgwpuefiryujbwhpcbptuhcvejfpkjyuhrbagvcpgbroehyeqeqiljgsjaxpnntsjffsnvyejwwinujhlzytdjvmdjhorhxejxhfseogbsgqlarckcichyvlgnokxkiefaxrvrnrrkqouiozpcopwxvnguxrdcvsdzjgkapxbbokctythbnqxieohzfdpbrbexsaqadsbyxxiueqmqithkscfeyriuqvezxmzyookywmigvtiavobzghtjlhtmlgjargbiewtkrhulpzgoxocdhpurlkeknmscqjxvovdzxrtwdyizjxyjpdpxicvdobqswwrtghynlixxuweslbzolxawpawntlzjthfpxtijxohywirozegzyzlfwcbstktahiwdcxtlnzxkmtjlqyihqhfokaidkjgqytjwtflryfzmxjgeftogbfhneztkvqqgueojxhsitmgsxftwjhommhopcmkonzcpvkbxdxithyypmtjkgemjsdbemlxcoxzfpwoflqssueonvhcrgliucxhvrruvmwrnlsdhlcfxqoonxpyipoiikwvjrgwicakwozigpmdpdfyrfxtaouaisagvkywxzxrbrbngulaypyzkcxjflambwhtcydedgsghqysxcbhpcrzhcekgoajbmhksynaklzxlfydsvosvqeivfokjfqsyeexgdkxnucdchzqceyhbnklbsobmlprtawoivurifgizzzgizlnangahqddegyuwmdetupqqmjelwfkxnhixkahonpwcytkksmrfukvszhuialspbacnuptqeelixrxoxwzflrcogwdztesgllwondglmuzweindwfvgihzdvoxtpxnviiyvqmbkvhqrealeekuh
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?owhgtjqefymoncppsrfguqcpubzchxkcaleanhewiythpnlyfpzmytvcqgxwpibbxgpxcekojxgnobildkwzlqkcjolqofvpmalbshnhgflrtcczsturvpcpiubzxfsiqkrzrpzvoobrgxxobkbualdhwlacsuxssupcusgsqwcvungwnbgceuyhnjemuznocysmdtunepngoevszvviheoyqcachfwwuhoznxzzgkcjlybsotzdkxgowoireopgcpponqgqtsqgkeyuxppnogxxkxwjtngqhezzkxciddddsqxlpmzwynnnhtqcrcllvycqvlbsbgcfmwcnrnrkkoxkuicvjxqcgysedyoqtirsukqyxeqslvpfcensgqlqqqvflmhejnjgbnfbsogfsvjlhpmxnwxwfxmmpcsruoqpwbwboeurojtsgwjjczelquxxkptvjxxeurzmlmgaayjimgzeefpkpntsdsmuubeiuovawqnogabsskgbdbrctppqbwtbrtnkfssbgfnarfbcnyqaskgwpnpdplyahvoleawdpakivqvsamzzzamygvzlkzeasuhkdvvcaysacgozqbjbtqduhsovrxrrxtggfrluhdodhvwjoapcppzlhjjlnkodbotyqrookoquhkzuzahsthlqfsotgwknfuptuayjcsthrklvxjeomfkauqeabgvxkgyfwmkconxesnshfnhwwzarmkfqqpbftmqabqgppgdhoiqakemcqembioratvzijslxipoyedjsbkhitylhytuioaeuldamovbtqhqmpdpjyruffrquxicauvqefkcrbkoplmmuunasvwlvftrnewadxehpzcoqjsyjjfyvyfnldmizcoraqqqbikzpynoojhnxkpsglfqezhqkkwbbainhllhjkostotqnnhooewmdeddegmrisozuyzfruumxrctdxblsymftznzthvojtcfgusyfmucmhxnpxrrfurfvaickaakgrveldwfgpnokyclrmhwyzvwjwjpfgfxzcfyoyfaksnlfpjhiefy
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?chptetqybrlnfikrinfveoqvzpuvmwheyqzxjpammxsmsatnpaiuemebimgvqnomcysneswhdvxymrggutakwpxzkxsbxholnzvskmfindfpvojbmnknlgwbgalmsyzyrkdywenytjwairlujklearzuzlvjvhawhhofiusesnokifektlgjtvmlywikbqyoupkaixumeticksrfjdctvrczqnvpvturoytmtburbhujeagyeiidlrhllssnzepqmwdfscypwxmaqpdtyeoabbpeniggazapphkamomyeeduvxvjilwhyyrjrnvbtayrtjcrvodpdapeajmjlxjdhbrdsunnipcujgeecmircrktyzajpzszyyzmsidrqnrqachgkbrvmrvdfcmqzoocowyfqlbeeyxsciicbbkqzmjphlkenmjaqxyknjhvesmpoydfqljomyeoeoguwoxkujilzrqtuxdodsmervivylwbwtjyxmiwyeujvkaorhlwloiznxnmpmvrnwml
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?fxrhqjxvjqgakaswquqjczxxvnyxelnzuxtzngjjihlxjrhrhlhfsmrjrsizyetxxtgnpqnaejuftnmpfhonjpehjbarklwrfagladeddmsbkjimyemdidfbfcjfzwjhclwxhdakmzomohzdafopjnrmkadplhdmoiysktoijcfgjzmugmafjvexurodwwmhensbnhhghruchjdhspbouzpkvilzzzhtiksvnrnhdbrvcgwpgtpxbnbtjbdhjpixoxjuyslnyspvodhnmwuxwgflcqvpczivavhgyfvkllvrsskrwxxchhyxuakebrnpxuyadpstkgwrezszrkvwqgzglvmfwbyibswjcsyjudreaepsftieybjyuuphrwqtg
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?zlnblhvjpbrvfgxsenwutbiccmhrppqwhmnzztqzdycmqivbhxxxuhooujnhttfzcnllzxaamvyahfeqlzeihkdbqaguredxblhzojtqldonlusrfdhcdrmuigiilinuupxiebcgtdbllqlhlqgvxrdbohwuushsdqdwjebwdtbnyuwlxidvrtgjddtvzhzlijppmitnygdaxfgrwwksfycojbjjjaoihfppzulffqnswlmgjnpatjmkowrjpgfzvtpcxjnx
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?vbadbejshexxjiphzpwfcisxaupnjqbeflqbpbqpttbqftycomemftxfftsrmrqnscdfpjrqkaaatrcdbfgiyrtkwurwqqcmbvvxdbivzwuwhcrcjwavkdhanqwvtszdzxsyooslisqlcdhjhmocizhdbglsopwacuketexudkcdxlotwcttizslmqljlocstlgxfcrglutruujwhkeudjewrvwvvqhbbqaufpiqkttzofwsjnlynvhhvebextcjvmzlsnoxlurhbfosuerdrjqdojsgwhzrwiiqbxzbvdnswcfmbbsgvbqodukyjhoonqdcsgxwtrdarkanyaitplzmqwrarcxgrnghcopwghnntwhbnuzsntiecitwntotksrisudbzxtvxrccfejkceful
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?zhzpeegggyuanitjqyjdvpzojjgjrkmxsyuerhoacufzgucsuamjckgwnrtzggwttcdehmkwzusjzecmkjwdxttqpmuzqlgtzihoekicjjmazonbdfgwroilrmaovhdnindgwuiegsftwmqathkymsmpsekmkwlveqsfaznjaaesacdqsxdcgnzhkkpgpnkfraeqtwxjfymiztqthboupoumfjxeecbtjcpjpoajbtapgbhooilhoqigiiksmdfxeppymapcogwppkzxxfqyabnvdxcmoehsqdutmvdzkuaqkyeexciznnoxgyzmyetwddwqibafhpxroaeqelyzlaaagbvreltjlimgijvijmwqqrelexseoybcjmzhxcvvkpjrkpglecikmidnqanckmshhsovhxzehtefjfqfaqzfucnagdmoomumlbpxwrpivehdiuywyhhooptspxgidnpblswywzivertdhxohdqafsfycxvxehnjecdtcisfeocykoynofqwaadmdoilugyvdqaltlpzcquznqwexwrjikfxrzzmyzbmcterslpynohfgbdyavchmkyqhmrufitthuugxinxscsucvodksbsyerwrgcthtmmczcrjwfnvyklfijxhlkepsjsbnvgjfulcoqakmcyujeyajlhuuiutjlblziqtmaynofvzynmryfunflcduelaarzprluypuiwstzymbkiddkugbabeoggfwcefpsmgdpct
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?ldwdrzyyucnxvgrkngdwyrzwwagggopzfaagvuqljeoimcqyegvujeendcqdbofwjfuvklehekzslxxgfnvsyjxegmxwmtbwttdjdbqizwxblgyzilmfzdhfrpwbfohjrlwyffdsmjymkkfuvvitaesxwqiteycrrbqzzkcylbqrecptnudvwtcwembunufdeufksrhiiqyarhvbayetirhqhchdrnmhlprqhanhlptunwuaxdmsszjsjmfrcdmtxjnvwlxgktrpegzesecoiqxaxzigitqrankandxljurrmaorvhicatysisuqqeezzchrggkoomsypltbhjgegjamimgzlzzjmxctqjveysiobftuksqvbbpllwvrhbgtxudqeramwsiswpdhiukvuizhztvnsmnutqmftposnjftamuyhhmmrenlxulkcubwirzngugjvctxjngcozmegmxdtrhufokjiqujkbqpmoxdctdmgdwnwbvijvyenmfpnxviuvgunosngxbanokehgkjkjjymnrecouwdkbsogurpuwazayolyhayumoqucasbtoypotdvhzzigiqkmbfyyxmjqqzslrdrtsndsxjnwxryfopmystftvhjkyheqbnyveehcvrjqvtixftcjltrnoudu
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?ylquoaylmfjrkyfkbwhjuezbvkamjdzfcxwqwtyoahgbyhqhhpvfmaufukwxvkvmrmurgvlxmiaulximqujzhrkjrmjuzncfkkznvwysppyyfxinqdeozxhkeliowsenpskahd
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?nepyhbugmeznweglzwngypgllzqbmektzynjzhosxpkdqyhyxjvtjabyzfbjjkpizevsnhrsjeaqexpvuhbeaskgqesdpfcgqszgtcrelzalrqoyndpmvgpqdpeppzxaxrpgqxufglcqnsesavhwjovinzpnsulqrwtwnthzdfsbpzmhgpdmyqfuocmrekwsjbjwwegrskoimvawyjxavvzrwfxisgftyvmyzoelqsiuvejnviglncgtfiaervqppgeznpepahqgxoeyaumbrcslfulpgoufmpupyfykreeayrnskpmqowdtxqzuoxjbczlexmgecocqnnqboehzisfzjwmkoirxkizvrcshwmlyyaxauahcqiooyxrddkysbdmwjrawycxztoedjvepaveavbllionmcjtmijtfhwbwnduobozzroijfvsxerezgubgdnmqkssdpbkiswndxowzjeqfdfukadghxwlozygsbsuvbbobpxjpoytbqugkyffxqvnffolbxdnptnvdwjawvevbiyokxiqanummzaanktfnixixcsxuqjriidglosjybgmnomwmaxubcqlwjielsnyjtryookkbnxpkxwluszkxmrkwyjnrxwmoeecaixvfuxfsuboastqqolnnjzslnvexucryzagyzcblgoxgwigydqimxocutykgzdovafbxbxtitaoljljmbsuzxipwixkciedrirdpxuyzexnigobwiapdcsfxqsmxaoxewfkeyhpovxmuvulgebikhpwxjkchkwcmizjymxoexxhfuqljhvkkxusfuxwptswcjghoillpnwiraevrkpxcxdjdtsfywujuccwghdatitcyphmraifaeexvdczoutr
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?dygtsxpiqxnurtpqefhsidktsfebvbjjpqcsqnqghcrnixukzbfpoemftrxddlfofjnjbviyneolibbxnvbgnhxlvclfcwfvigzqkcfavytisytphzxdiqpbnpyfyvenrmidbktsqgbcnlyebszebpupkbyzqfwjrlqrnmsexbpioehendpifcideifgmxacguzsrjwudmfoilffkuiyslssuinlvldrvnmgdbixblgwcawphnqnvyhzlzzouttskjbyuliuinmfcjadrnaryqzwmtndvdkjrztysmxrkgehribkvasksetdgipilbfcptnmiijqahkfwmrateblghzyeqbxwpnwrcfncjjtdvlxuypttpnruxzpjvhudgoqqbdcnmrpwwohyzasbeddtmtrthltwlxilalvespvyrpuwbaxylnlljnbtidmmrikquzoiyxxqelglfkyctstyzxfdmehcabylkobsfextkggreuqrhyrlbkxvvskfscnrioaadifjqnmpyyftkonmiwagyeyswzmiblrzkgszxqsztchnyilvwsonoaqxbiaxqnsdjhaldsdggqfdhvfsdfpm
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?fasclvbgtnyrvcytmdtagzsgfwurmujeshkryohzfcqkumtsbdpbabsarylqormqhftxyioioeokogqavqccogtmjwgqxiujovshaptomzqolufepohmivmfhsajnnmvezjeoiswixdzhaqaphfwayoudmyisjtkuntampoeejwxavauoezhrrcddjyodqwsqcrxctnkfhedklhtwfttzjxfryhxnmuxqmqaowcxuhyyawqcxosqxinxxpauqwgbyuxsukiojuruovjcsiuraatfldeavgzecsbyygmanyiauogzfrihgyimcjojirdunwdjeejykqfasgzkjusvklvpzqzbnnngrbexwdjynqrpcsqovthbkptyqasfoiblgvzifdjigiduebedbggjjoldkyystptsavsxlivnapajqvakyeczbwmpjucbfeopxdotsxnmgtxdqqhrrdkvohzpfcwcujxohfmcewgfxermwifhrumfgtzghjhjflgukatdpxpdorhztiffrjzvdakmvvoessrkmouvtyuohosrvpsdvaqvywremkwqoynhlpqyaklzpttcwexjkuojmnvfuemtnwypeqemdurjsbebqnzamjpqvpjliorzfejxjawiiudedaktfdgthrzduvmpwnmarttsxvzezaldsfkqhcphvfqbpktbybjdsfxyfvmuyrgbgcbjoaurydwoagdiyybqsygmiqaqfhijetszzwghodspptsvqzsrurbwfosvwwvdmltmmudxnmaosytqswaseansqazvvtxnxmxrrwoqpudnddepoxuyyoazexanewdalhqwswoxgusyeosflhdmyvdptvaqtlttlcvyvzqvhsgeqjbqjwjfwniugerdpvmotluuumxuacczzfbyoayfmjaghcwakdaqqtskdnjinzxlrnatwcbccpvohcjzwaecresjemnpkdctuntwfagrklnlcyquzpjwrolxcblrrtmgalqdjakfjadlnqcjzdwdtwklldnmfnpwtrmdedoefkxigiaomzoklydeqxelxlgqpgwbacjxeniuicyjsmmpkwvmynpdrsdcxfywapyfuakclfnooxpzkhsiz
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?uxdweaudvaguccdhftqzkqrdkkeampmwcarqaatxrbrmdycfxpgwsjoxydamvfyndxlmtgcvcoqvhkzgrnlrvsdxnjoborddxslvgrdxhxhcdgftmmdkcyizkmsjvmzovcmvvekzaodbgiujkqgjulxaowmozqlyagrsnufmrqxmzwbjcqybbfkmbjiugchpuazdjjsxjgpqrtwxvgdietvrwdyigvvngljymhtezfqvlwxlihywjqignekfmtaqchnfbvuptqaudmpiyclbwlycecpztyflzrszisianzslwlhwoobswahbaifujjhztcegofzmccyihjyxprpcskadsbmacbtzbobvjagdcwheznvqsrhhjumugugadznrwaxaxvknsksvzwgtcaxrycdmgjlksfrhpdwbdkdfjyydarjpfuhmpjrtzqvsallyjoabazjbijmbpgdmifdzddcddeohtlwrshdgzcbculetwngwqvyqluchzwkqzviftqyorsqjuxjzagqwosyfmpimjouzsdnsesbykimvzedsrhpobmgzoiyrbfigujdaouniupgyfgliecrwzqcq
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?saudpmkpfewxhzddsuyofkapdmksaquozrkjrwairbtwplotzihclfxataaovsdpqafjuegoyuuntgtmvbdasbbzxyarvhyzcpdzfjnqdrybcdwhonetcchjxkdfgqfoqyuwvyohbaxteifyhucbezhbcqtcfmjfmbkuzlfkrfgjbapnilewvnwqhegxktccpiehivdfpcsxprozbgytkibzgkyelpbxhfegshsacnabvyozdbjoohuxmsvyjsmftdqdmbothsdqryrjjaxrcadoxoezpsjsbfghhlzmnbfolprxpkvlbmyoemuvqlwusoucgkxzjytvaugyisdwlonphkjtrhpzhgoacnooicleuekeumkszgakziqfqyhutdiqsdujrwvvifdlszoeberojpvotolilsyarumcsbdzvhchckkxqrhjyeyovwvjluuehoasuhnmzilbrzwrwtqxhjnjwbwduvbjllfysuvqbwlmgbjglquazxewregoauhmzjebnfdmnzrubujyfcvnklrvbbhbakazyknrmlhgcpnphxybbutgvrhqhezdchayoyavcnfjkinhwpmhhlgvuaioqsytvytzgxgbspcbegkxforaljgfbcrnumsmyqrktdmxidkwnrndstdbbijavurhkrgfxvcqpqasrrhngfixcvwvskwxjrazqlqtdgvmxkjgdhnmgiuyykdvbxflqhspqattmskirhtbpxmgernlbgkzdjqnjrcapikgxvfcuiylzzwxxrdscqrxzwntyqrwudpksnkasqcjnbjbprwtazqsdkcxuwdvelmvevrncphkdzizftyroynprnzpmqpiumsmuyckdupkqsxfiznsmqawyrasnghrccgvpppzgoatsbmdjmuwxjhnegupgjzbuhcaejgmuthvnzvvbrdnkpycsmgtyynknqfsbyxdhwy
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?oplsdzkiuhyyhsjsawuwveuwiyzjibiaclxdmtcpipiztvejrsepgznhpakcrgtavujjmndwxbbcbqzujajiottkkfryywtwuqpssgvxzjvrpsqrbvrgasepquoyixzcfntomwisxfgcsfyhyrizhlaecwpiwqqtixyitjxhfaiyhthflbqfkdpsvcegdcwxsjdhqrftcdhudvbqolmiuiutieulyvkmsimuofgiertcxkigkcqfgrjrcpjrbqdrslymzxpasyxyeakrtvzoaqxndstmpsshkclixluelcnpjipzpwirpimpixcuvnekbiznedjjtxvteevoburtampccieyianilncccumdvbveczjqgumagoooccbvtquiftiwurhobkbaxebntcbvsbdhxqfzmzvopmnjqwwrmbuwhptdbjmxnkhaglycggyulbvhduhuivbnbtwwyuifwlahuxgofjyjyqtiumglyvocatilpznhqyfatymwyxezlppzwadujxokmulpxhhecfeowaerhlxuqdmvaffocopwnqhjfporgokibqqjpxkpvjlyxbukgghfsxvbcfckdjlixgqsfyrwpbdcqdkqkycgxcvnbvtzwsbkeuuyeueeaktdymhcljoqjcdwdkhnofcstketzmofjfjasghwdvdbbbmefzuemagsfjyuufvtfiufoghzjvyhiigtmeyywvqzyxdqetphhqncrzguaphfzsdmgkeugawenmvfrjmnwxmacxundchfdndocisfvrznuusxtcatemcgwoeqrvppzqglvjflphxceaclrolegcdyulmplcvylstlcdqujpzzpdxdqwxiitryiviaeehmuhtoemmaykrtwjlnszhxrycfjdkweiowauiyclyphcprktgslrxqhzkdlsgawelqgavuplomzxvhkmwoehxsdtyohqegybwygtelxflibgiztglzcxzlsngipxzquoqlwnbhtfjzxsidlsuybinnjqhukkxdjjvnovqwugzhyzsyberqqftjbgqb
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?rorgzdbgdwctazgelylvgsfpladxcrgbtnrcjlqzdjfvqjfgiysngtlqodypmghiniqycwtzzehhhpsfumsioenacteiytoummfckvccmutzneatusrviqnualrgepwvolwwrkxdyyxqsclganvozwlwznhonatbqtfterewemtahyngkssxtfaucheqcmjrlisqsokoipxqzbupfomxpzcrcukeahmwggxfjadxrarwbhmdvwxwvqigxhlaeymkgnnwhzezdrgabtbwnwtquxhogfheolwxwyiklnszjbdzoizuucvsxndlnmjriedjrmzvbftxkrorxcjlrnbuamkjzwxyzxvgxigdmudtctykvhfinamoybwwctpwnlbifcculwdsudtylkpmlvlxxmhovepldnxtgadhrnmpccbmxidrmhftgkudluplyydbdlpzjucpxfwrkgntphpbzcrbsmzzxujohgdqaligpjpxetpzilhbdwsuhfjtpxjsxuvspsawtvmqghbdgusnfjtekderbcsyoiwdkvcjgvetiohpbpzuqgwumjmgroaxnecgulilcrxidbijnmiqbwnffijswcehmiqwwjqxnaybmlcyrdcvrvkikveqcwdounuwjpkrulbdxoxxchrynxfxoiieikhfxaslobljdgmwodzqyxlszboiyiskmqyqjfqmylbdpeiywjwfwssgukwmlpzzviadpvyaeyrafuqmlyuokadalgfidrrfcmlhawpiqggucuwbadveuqyidkqjzusgbxeimlllzhuztwrjahopxxaidfgpdbhfvqoycfjlzwvdjttuiaovcxqsklxsssewgczwwahw
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?myjxzmhzaixyclvvbeitsfcqqpufewxzzdwjlmupbjoxqgqhvfmxizdtujzbgflmhlcgphxfzxtillwdwsbzpdchyopiwnupbbrcgacdgrtbgidrengseyywrfcpqgqroonutozzwbjdvlbaofbgjrruddyqtjzmgsomrtiwiohqxvxrtjyndhmtpbxfoowecyimldzisxrtbbvibnonpaghyljpdylqrjzlvhqhtgouumjzpqwzmglqhbacfwsxkpkzycduhsottihwtpgurgeapufdwaddiohljlsrtuavpzdceaxgcbzbcbwybxamgqtdhgobcyywtknniflbypnmvaqbaojqjxfnjlduningqahjglsjxroycocfatchoxziqamulnribcjzfjwjsmrmuesgchnnucbsntmiwqgiybveaitcvwrqrakahxuklgbuumbyxysemfgespdrrujoqrhectwuuxhqyjzjifyxkawhfesnvrshgicmjalhkpqgfcnbcugyrdgeytyz
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://wujieliulan.com/wujie.htm?agxkfadqrjkgqtbrjuschmoabbidwrwxwtdpcqmxhlfnczczddomlktbnziffqgmlqyhefcoswwgpyhsbewggaacoboqijwupwwomjxajckrkhqvqscyfdfehefccpowzrlwinsbfxsnmwjcmeopdmtincnyzhoiwmfsjqoxlxqywbvpcsqravkmwcauwnzabmywccrdlgkmpkmaynwsqqeedpwmipzbhtciqyb
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:79873
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:79874
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:79876
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:79878
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:79880
- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:2528 CREDAT:14400
创建的服务
无信息
启动的服务
无信息
进程
cmd.exe PID: 1668, 上一级进程 PID: 300
u1704.exe PID: 1656, 上一级进程 PID: 1668
u.exe PID: 2192, 上一级进程 PID: 1656
iexplore.exe PID: 2528, 上一级进程 PID: 1656
iexplore.exe PID: 2616, 上一级进程 PID: 2528
iexplore.exe PID: 2840, 上一级进程 PID: 1656
iexplore.exe PID: 2900, 上一级进程 PID: 2528
iexplore.exe PID: 3064, 上一级进程 PID: 1656
iexplore.exe PID: 2164, 上一级进程 PID: 1656
iexplore.exe PID: 2224, 上一级进程 PID: 1656
iexplore.exe PID: 2376, 上一级进程 PID: 1656
iexplore.exe PID: 2440, 上一级进程 PID: 2528
iexplore.exe PID: 2920, 上一级进程 PID: 1656
iexplore.exe PID: 3056, 上一级进程 PID: 1656
iexplore.exe PID: 2160, 上一级进程 PID: 1656
iexplore.exe PID: 2404, 上一级进程 PID: 1656
iexplore.exe PID: 2468, 上一级进程 PID: 1656
iexplore.exe PID: 2876, 上一级进程 PID: 2528
iexplore.exe PID: 2632, 上一级进程 PID: 1656
iexplore.exe PID: 2872, 上一级进程 PID: 1656
iexplore.exe PID: 2992, 上一级进程 PID: 1656
iexplore.exe PID: 1172, 上一级进程 PID: 1656
iexplore.exe PID: 2492, 上一级进程 PID: 1656
iexplore.exe PID: 1144, 上一级进程 PID: 1656
iexplore.exe PID: 2968, 上一级进程 PID: 2528
iexplore.exe PID: 1324, 上一级进程 PID: 1656
iexplore.exe PID: 2372, 上一级进程 PID: 1656
iexplore.exe PID: 1180, 上一级进程 PID: 1656
iexplore.exe PID: 280, 上一级进程 PID: 1656
iexplore.exe PID: 1540, 上一级进程 PID: 1656
iexplore.exe PID: 1316, 上一级进程 PID: 1656
iexplore.exe PID: 588, 上一级进程 PID: 1656
iexplore.exe PID: 3160, 上一级进程 PID: 1656
iexplore.exe PID: 3400, 上一级进程 PID: 1656
iexplore.exe PID: 3476, 上一级进程 PID: 1656
iexplore.exe PID: 3536, 上一级进程 PID: 2528
iexplore.exe PID: 3700, 上一级进程 PID: 1656
iexplore.exe PID: 3780, 上一级进程 PID: 1656
iexplore.exe PID: 3856, 上一级进程 PID: 1656
iexplore.exe PID: 3944, 上一级进程 PID: 1656
访问的文件
- C:\Windows\System32\tzres.dll
- C:\Windows\Globalization\Sorting\sortdefault.nls
- C:\
- \Device\Netbios
- C:\Users\test\AppData\Local\Temp\3fa8
- C:\Users\test\AppData\Local\Temp\utmp\
- C:\Users\test\AppData\Local\Temp\u.ini
- C:\Users\test\AppData\Local\Temp\utmp\Tqudqfmcqw0v6q7x
- C:\Users\test\AppData\Local\Temp\utmp\Xnhfzsuwpp5p9e3f
- C:\Users\test\AppData\Local\Temp\utmp\Tilaxhmjcq9d7m2q
- C:\Users\test\AppData\Local\Temp\utmp\Thdpadztec8e4n2n
- C:\Windows\SysWOW64\wininet.dll
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies
- C:\Users\test\AppData\Local\Microsoft\Windows\History
- C:\Users\test\AppData\Local\Microsoft\Windows\History\desktop.ini
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- C:\Users\test\AppData\Local\Temp\dnsapi.DLL
- C:\Windows\System32\dnsapi.dll
- C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk
- C:\ProgramData\Microsoft\Network\Connections\Pbk\*.pbk
- C:\Windows\System32\ras\*.pbk
- C:\Users\test\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
- C:\Users\test\AppData\Roaming\Microsoft\Network\Connections\Pbk\*.pbk
- C:\Users\test\AppData\Local\Temp\utmp\Jgggmgsiiw4w5u9h
- \Device\NamedPipe\
- C:\Users\test\AppData\Local\Temp\utmp\u.exe
- C:\Windows\Fonts\staticcache.dat
- C:\Windows\*
- C:\Users\test\PUTTY.RND
- \Device\KsecDD
- C:\Windows\System32\WSHTCPIP.DLL
- C:\Windows\System32\wship6.dll
- C:\Windows\System32\wshqos.dll
- C:\Users\test\AppData\Local\Temp\utmp\wifpttubguwe
- C:\Users\test\AppData\Local\Temp\utmp\wifpttubguwe\*
- C:\Windows\SysWOW64\en-US\KERNELBASE.dll.mui
- C:\Program Files (x86)\Internet Explorer\dnsapi.DLL
- C:\Program Files (x86)\Internet Explorer\iphlpapi.DLL
- C:\Windows\System32\IPHLPAPI.DLL
- C:\Program Files (x86)\Internet Explorer\WINNSI.DLL
- C:\Windows\System32\winnsi.dll
- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
- C:\Sessions\1\BaseNamedObjects\
- C:\Sessions\1\BaseNamedObjects\Isolation Signal Registry (F4F3C191-D0AB-11E7-A1F8-525400F9C664, 0)
- C:\Users\test\Desktop
- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
- C:\Program Files (x86)\Common Files\Adobe
- C:\Program Files (x86)\Common Files\Adobe\Acrobat
- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX
- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
- C:\Program Files (x86)
- C:\Program Files (x86)\Microsoft Office
- C:\Program Files (x86)\Microsoft Office\Office14
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
- C:\Program Files (x86)\Java
- C:\Program Files (x86)\Java\jre1.8.0_121\bin
- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\
- C:\Users\test\AppData\Local\Microsoft\Windows
- C:\Users\test\AppData\Local\Microsoft\Windows\
- C:\Users\test\AppData\Local\Microsoft
- C:\Users\test\AppData\Local\Microsoft\
- C:\Users\test\AppData\Local
- C:\Users\test\AppData\Local\
- C:\Users\test\AppData
- C:\Users\test\AppData\
- C:\Users\test
- C:\Users\test\
- C:\Users
- C:\Users\
- C:
- \??\MountPointManager
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\Low
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\Low\
- C:\Users\test\AppData\Roaming\Microsoft\Windows
- C:\Users\test\AppData\Roaming\Microsoft\Windows\
- C:\Users\test\AppData\Roaming\Microsoft
- C:\Users\test\AppData\Roaming\Microsoft\
- C:\Users\test\AppData\Roaming
- C:\Users\test\AppData\Roaming\
- C:\Users\test\AppData\Local\Microsoft\Windows\History\Low
- C:\Users\test\AppData\Local\Microsoft\Windows\History\Low\
- C:\Users\test\AppData\Local\Microsoft\Windows\History\
- C:\Users\test\Favorites
- C:\Users\test\Favorites\
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\PrivacIE
- C:\Users\test\AppData\Roaming\Microsoft\Windows\PrivacIE\Low
- C:\Users\test\AppData\Roaming\Microsoft\Windows\PrivacIE\Low\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\PrivacIE\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\Low
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\Low\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IETldCache
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IETldCache\Low
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IETldCache\Low\
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IETldCache\
- C:\Users\test\AppData\Local\Temp\Low
- C:\Users\test\AppData\Local\Temp\Low\
- C:\Users\test\AppData\Local\Temp
- C:\Users\test\AppData\Local\Temp\
- C:\Windows\SysWOW64\shell32.dll
- \??\Nsi
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F4F3C193-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
- C:\Users\test\AppData\Local\Temp\~DFB27AF5DD4D712ABB.TMP
- C:\Windows\System32\url.dll
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C194-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF95E5B306BD363675.TMP
- C:\Windows\SysWOW64\ieframe.dll
- C:\Windows\SysWOW64\stdole2.tlb
- C:\Users\test\AppData\Local\Microsoft\Windows\Caches
- C:\Users\test\AppData\Local\Microsoft\Windows\Caches\cversions.1.db
- C:\Users\test\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000036.db
- C:\Users\desktop.ini
- C:\Users\test\Favorites\desktop.ini
- C:\Users\test\Desktop\desktop.ini
- C:\Windows\SysWOW64\propsys.dll
- C:\Windows\sysnative\propsys.dll
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\frameiconcache.dat
- C:\Program Files (x86)\Internet Explorer\url.dll
- C:\Users\test\Desktop\url.dll
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C196-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF347AB2255707FAC4.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C197-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFE62ACCD95E67E8E6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C198-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF03F2F4260EB28CE0.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB70-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF87B8F82631542B87.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB72-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFA584F6A6D36ED5BA.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB73-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFDF025FEE8D5E4468.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB74-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFFFAFBD5E000F38A5.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEA5E85E9A9AC1C67.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF09FD4AC076AE626A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF85B148323C431470.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE4-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFC4F932883F708040.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCB8642F2275A2199.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF3B119B58CEAA3CE8.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF84C8547EDC48A221.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF32A3D8339E18281A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF05336FD9CA404578.TMP
- C:\Program Files (x86)\Internet Explorer\iexplore.exe.Local\
- C:\Windows\winsxs\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_zh-cn_b7a33d2d3f47b7fb
- C:\Windows\winsxs\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_zh-cn_b7a33d2d3f47b7fb\comctl32.dll.mui
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF5F7C015981FD6009.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF9D56A2A190F892CF.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD9F605A131E42CC6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF18C59F16C4960420.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F10-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEFC774815AC4780F.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F11-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCA015637ABBDE10D.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA60-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF79342551D524D6F1.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA61-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF594D7043AFE404FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA63-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF91119980109B76E2.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C70-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFAC497D173875702C.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C71-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF74DCDD4DAAA5BAD6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C72-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD36D8953365533FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{38666B30-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF6C38F9C9AB787503.TMP
- C:\Program Files (x86)\Internet Explorer\IEShims.dll
- C:\Users\test\AppData\Local\Microsoft\Feeds Cache\
- C:\Users\test\AppData\Local\Microsoft\Feeds Cache\index.dat
- C:\Users\test\AppData\Local\Microsoft\Feeds Cache\desktop.ini
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\index.dat
- C:\Windows\AppPatch\sysmain.sdb
- C:\Program Files (x86)\Microsoft Office\Office14\
- C:\Program Files (x86)\Microsoft Office\Office14\*.*
- C:\Users\test\AppData\Local\microsoft\Office\Groove\User\GFSConfig.xml
- C:\Users\test\AppData\Local\microsoft\Office\Groove\User\UnreadMarks.xml
- C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\msvcr100.dll
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\deploy.dll
- C:\Program Files (x86)\Java\jre1.8.0_121\lib\plugin.jar
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\javaws.exe
- C:\Users\test\AppData\Local\Temp\JavaDeployReg.log
- C:\Program Files (x86)\Java\jre1.8.0_121
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\java.exe
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\client\jvm.dll
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\server\jvm.dll
读取的文件
- C:\Windows\System32\tzres.dll
- C:\Windows\Globalization\Sorting\sortdefault.nls
- \Device\Netbios
- C:\Users\test\AppData\Local\Temp\u.ini
- C:\Users\test\AppData\Local\Temp\utmp\Tqudqfmcqw0v6q7x
- C:\Users\test\AppData\Local\Temp\utmp\Xnhfzsuwpp5p9e3f
- C:\Users\test\AppData\Local\Temp\utmp\Tilaxhmjcq9d7m2q
- C:\Users\test\AppData\Local\Temp\utmp\Thdpadztec8e4n2n
- C:\Windows\SysWOW64\wininet.dll
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- C:\Windows\System32\dnsapi.dll
- \Device\NamedPipe\
- C:\Users\test\AppData\Local\Temp\utmp\u.exe
- C:\Windows\Fonts\staticcache.dat
- C:\Users\test\PUTTY.RND
- \Device\KsecDD
- C:\Windows\System32\WSHTCPIP.DLL
- C:\Windows\System32\wship6.dll
- C:\Windows\System32\wshqos.dll
- C:\Users\test\AppData\Local\Temp\utmp\wifpttubguwe
- C:\Windows\SysWOW64\en-US\KERNELBASE.dll.mui
- C:\Windows\System32\IPHLPAPI.DLL
- C:\Windows\System32\winnsi.dll
- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
- C:\Sessions\1\BaseNamedObjects\Isolation Signal Registry (F4F3C191-D0AB-11E7-A1F8-525400F9C664, 0)
- C:\Windows\SysWOW64\shell32.dll
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F4F3C193-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
- C:\Users\test\AppData\Local\Temp\~DFB27AF5DD4D712ABB.TMP
- C:\Windows\System32\url.dll
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C194-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF95E5B306BD363675.TMP
- C:\Windows\SysWOW64\ieframe.dll
- C:\Windows\SysWOW64\stdole2.tlb
- C:\
- C:\Users\test\AppData\Local\Microsoft\Windows\Caches\cversions.1.db
- C:\Users\test\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000036.db
- C:\Users\desktop.ini
- C:\Users
- C:\Users\test
- C:\Users\test\Favorites\desktop.ini
- C:\Users\test\Desktop\desktop.ini
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\frameiconcache.dat
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C196-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF347AB2255707FAC4.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C197-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFE62ACCD95E67E8E6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C198-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF03F2F4260EB28CE0.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB70-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF87B8F82631542B87.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB72-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFA584F6A6D36ED5BA.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB73-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFDF025FEE8D5E4468.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB74-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFFFAFBD5E000F38A5.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEA5E85E9A9AC1C67.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF09FD4AC076AE626A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF85B148323C431470.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE4-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFC4F932883F708040.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCB8642F2275A2199.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF3B119B58CEAA3CE8.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF84C8547EDC48A221.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF32A3D8339E18281A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF05336FD9CA404578.TMP
- C:\Windows\winsxs\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_zh-cn_b7a33d2d3f47b7fb\comctl32.dll.mui
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF5F7C015981FD6009.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF9D56A2A190F892CF.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD9F605A131E42CC6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF18C59F16C4960420.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F10-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEFC774815AC4780F.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F11-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCA015637ABBDE10D.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA60-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF79342551D524D6F1.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA61-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF594D7043AFE404FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA63-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF91119980109B76E2.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C70-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFAC497D173875702C.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C71-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF74DCDD4DAAA5BAD6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C72-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD36D8953365533FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{38666B30-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF6C38F9C9AB787503.TMP
- C:\Program Files (x86)\Internet Explorer\IEShims.dll
- C:\Users\test\AppData\Local\Microsoft\Feeds Cache\index.dat
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\index.dat
- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
- C:\Windows\AppPatch\sysmain.sdb
- C:\Program Files (x86)\Microsoft Office\Office14\
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\msvcr100.dll
- C:\Program Files (x86)\Java\jre1.8.0_121\bin\deploy.dll
- C:\Users\test\AppData\Local\Temp\JavaDeployReg.log
修改的文件
- \Device\Netbios
- C:\Users\test\AppData\Local\Temp\3fa8
- C:\Users\test\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- C:\Users\test\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- C:\Users\test\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- C:\Users\test\AppData\Local\Temp\utmp\Xnhfzsuwpp5p9e3f
- C:\Users\test\AppData\Local\Temp\utmp\Tilaxhmjcq9d7m2q
- C:\Users\test\AppData\Local\Temp\utmp\Thdpadztec8e4n2n
- C:\Users\test\AppData\Local\Temp\utmp\u.exe
- C:\Users\test\PUTTY.RND
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F4F3C193-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFB27AF5DD4D712ABB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C194-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF95E5B306BD363675.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C196-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF347AB2255707FAC4.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C197-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFE62ACCD95E67E8E6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F4F3C198-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF03F2F4260EB28CE0.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB70-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF87B8F82631542B87.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB72-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFA584F6A6D36ED5BA.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB73-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFDF025FEE8D5E4468.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FC0BDB74-D0AB-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFFFAFBD5E000F38A5.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEA5E85E9A9AC1C67.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF09FD4AC076AE626A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF85B148323C431470.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{03AD8FE4-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFC4F932883F708040.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCB8642F2275A2199.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF3B119B58CEAA3CE8.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0BB539E2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF84C8547EDC48A221.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF32A3D8339E18281A.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF05336FD9CA404578.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1203A2F3-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF5F7C015981FD6009.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A0-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF9D56A2A190F892CF.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A1-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD9F605A131E42CC6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{188560A2-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF18C59F16C4960420.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F10-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFEFC774815AC4780F.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F9B6F11-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFCA015637ABBDE10D.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA60-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF79342551D524D6F1.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA61-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF594D7043AFE404FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{279EFA63-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF91119980109B76E2.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C70-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFAC497D173875702C.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C71-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF74DCDD4DAAA5BAD6.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2FC87C72-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DFD36D8953365533FB.TMP
- C:\Users\test\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{38666B30-D0AC-11E7-A1F8-525400F9C664}.dat
- C:\Users\test\AppData\Local\Temp\~DF6C38F9C9AB787503.TMP
- C:\Users\test\AppData\Local\Microsoft\Feeds Cache\index.dat
- C:\Users\test\AppData\Roaming\Microsoft\Windows\IECompatCache\index.dat
- C:\Users\test\AppData\Local\Temp\JavaDeployReg.log
删除的文件
- C:\Users\test\AppData\Local\Temp\3fa8
- C:\Users\test\AppData\Local\Temp\utmp\Jgggmgsiiw4w5u9h
- C:\Users\test\AppData\Local\Temp\utmp\wifpttubguwe
注册表键
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Windows Error Reporting\WMR
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\Windows Error Reporting\WMR\Disable
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Locale
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Locale\Alternate Sorts
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\Language Groups
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\Locale\00000804
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\Language Groups\a
- HKEY_CURRENT_USER
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\Compatibility\u1704.exe
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\CustomLocale
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\CustomLocale\en-US
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Nls\ExtendedLocale
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\ExtendedLocale\en-US
- HKEY_CLASSES_ROOT\Applications\iexplore.exe\shell\open\command
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\iexplore.exe\shell\open\command\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\FontSubstitutes
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\FontSubstitutes\\xe5\xae\x8b\xe4\xbd\x93
- HKEY_LOCAL_MACHINE\Software\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\LanguageProfile\0x00000000\{0001bea3-ed56-483d-a2e2-aeae25577436}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\LanguageProfile\0x00000000\{0001bea3-ed56-483d-a2e2-aeae25577436}\Enable
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{03B5835F-F03C-411B-9CE2-AA23E1171E36}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{07EB03D6-B001-41DF-9192-BF9B841EE71F}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{3697C5FA-60DD-4B56-92D4-74A569205C16}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{3FC47A08-E5C9-4BCA-A2C7-BC9A282AED14}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{78CB5B0E-26ED-4FCC-854C-77E8F3D1AA80}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{81D4E9C9-1D3B-41BC-9E6C-4B40BF79E35E}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{8613E14C-D0C0-4161-AC0F-1DD2563286BC}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{A028AE76-01B1-46C2-99C4-ACD9858AE02F}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{AE6BE008-07FB-400D-8BEB-337A64F7051F}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{C1EE01F2-B3B6-4A6A-9DDD-E988C088EC82}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{DCBD6FA8-032F-11D3-B5B1-00C04FC324A1}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{F25E9F57-2FC8-4EB3-A41A-CCE5F08541E6}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{F89E9E58-BD2F-4008-9AC2-0F816C09F4EE}\Category\Category\{534C48C1-0607-4098-A521-4FC899C73E90}
- HKEY_CURRENT_USER\Keyboard Layout\Toggle
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Language Hotkey
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Hotkey
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Layout Hotkey
- HKEY_CURRENT_USER\Software\Microsoft\CTF\DirectSwitchHotkeys
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\CTF\EnableAnchorContext
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\PopupMgr
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\SideBySide
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\FromCacheTimeout
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_LOCAL_MACHINE\Software\Policies
- HKEY_CURRENT_USER\Software\Policies
- HKEY_CURRENT_USER\Software
- HKEY_LOCAL_MACHINE\Software
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CertificateRevocation
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableKeepAlive
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisablePassport
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\IdnEnabled
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CacheMode
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableNegotiate
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableBasicOverClearChannel
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\FeatureControl
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\Feature_ClientAuthCertFilter
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\Feature_ClientAuthCertFilter
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ClientAuthBuiltInUI
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SyncMode5
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\SessionStartTimeDefaultDeltaSecs
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Signature
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheOptions
- HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableAutoProxyResultCache
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\DisplayScriptDownloadFailureUI
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\MBCSServername
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\MBCSAPIforCrack
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\RETRY_HEADERONLYPOST_ONCONNECTIONRESET
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\RETRY_HEADERONLYPOST_ONCONNECTIONRESET
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BUFFERBREAKING_818408
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BUFFERBREAKING_818408
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SKIP_POST_RETRY_ON_INTERNETWRITEFILE_KB895954
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_SKIP_POST_RETRY_ON_INTERNETWRITEFILE_KB895954
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UTF8ServerNameRes
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableWorkerThreadHibernation
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DisableWorkerThreadHibernation
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableReadRange
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SocketSendBufferLength
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SocketReceiveBufferLength
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\KeepAliveTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxHttpRedirects
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerServer
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPer1_0Server
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPer1_0Server
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerProxy
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ServerInfoTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectRetries
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectRetries
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SendTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\SendTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ReceiveTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ReceiveTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableNTLMPreAuth
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ScavengeCacheLowerBound
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CertCacheNoValidate
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLifeTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FIX_CHUNKED_PROXY_SCRIPT_DOWNLOAD_KB843289
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_FIX_CHUNKED_PROXY_SCRIPT_DOWNLOAD_KB843289
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_CNAME_FOR_SPN_KB911149
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_USE_CNAME_FOR_SPN_KB911149
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_NOTIFY_UNVERIFIED_SPN_KB2385266
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_NOTIFY_UNVERIFIED_SPN_KB2385266
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_COMPAT_USE_CONNECTION_BASED_NEGOTIATE_AUTH_KB2151543
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_COMPAT_USE_CONNECTION_BASED_NEGOTIATE_AUTH_KB2151543
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_LONG_INTERNATIONAL_FILENAMES
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ALLOW_LONG_INTERNATIONAL_FILENAMES
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\HttpDefaultExpiryTimeSecs
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\FtpDefaultExpiryTimeSecs
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PERMIT_CACHE_FOR_AUTHENTICATED_FTP_KB910274
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_PERMIT_CACHE_FOR_AUTHENTICATED_FTP_KB910274
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\u1704.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\*
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISALLOW_NULL_IN_RESPONSE_HEADERS
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISALLOW_NULL_IN_RESPONSE_HEADERS
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DIGEST_NO_EXTRAS_IN_URI
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DIGEST_NO_EXTRAS_IN_URI
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ENABLE_PASSPORT_SESSION_STORE_KB948608
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_EXCLUDE_INVALID_CLIENT_CERT_KB929477
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_EXCLUDE_INVALID_CLIENT_CERT_KB929477
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_UTF8_FOR_BASIC_AUTH_KB967545
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_USE_UTF8_FOR_BASIC_AUTH_KB967545
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableCachingOfSSLPages
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\PerUserCookies
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\LeashLegacyCookies
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DialupUseLanSettings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DialupUseLanSettings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SendExtraCRLF
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WpadSearchAllDomains
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BypassHTTPNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\BypassHTTPNoCacheCheck
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BypassSSLNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\BypassSSLNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttpTrace
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\NoCheckAutodialOverRide
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\NoCheckAutodialOverRide
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_KEYS_ON_UNLOAD_KB975619
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_RELEASE_KEYS_ON_UNLOAD_KB975619
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITY_FLAG_IGNORE_REVOCATION_KB2275828
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_SECURITY_FLAG_IGNORE_REVOCATION_KB2275828
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DontUseDNSLoadBalancing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DontUseDNSLoadBalancing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ShareCredsWithWinHttp
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MimeExclusionListForCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\HeaderExclusionListForCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheEnabled
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheEntries
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPost
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnAlwaysOnPost
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnZoneCrossing
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnBadCertRecving
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AlwaysDrainOnRedirect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnHTTPSToHTTPRedirect
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\LSA\AccessProviders
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Lsa\AccessProviders\MartaExtension
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\TcpAutotuning
- HKEY_CURRENT_USER\Software\Microsoft\windows\CurrentVersion\Internet Settings\Wpad
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\WpadOverride
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableAutodial
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\NoNetAutodial
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\GlobalUserOffline
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BadProxyExpiresTime
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RETURN_FAILED_CONNECT_CONTENT_KB942615
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_RETURN_FAILED_CONNECT_CONTENT_KB942615
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DisableBranchCache
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData
- HKEY_LOCAL_MACHINE\Software\Microsoft\SQMClient\Windows\DisabledProcesses\
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledProcesses\8259A5C3
- HKEY_LOCAL_MACHINE\Software\Microsoft\SQMClient\Windows\DisabledSessions\
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledSessions\MachineThrottling
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledSessions\GlobalSession
- HKEY_USERS\S-1-5-21-2280033686-3172497658-3481507381-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2280033686-3172497658-3481507381-1000
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2280033686-3172497658-3481507381-1000\ProfileImagePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxySettingsPerUser
- HKEY_USERS\S-1-5-21-2280033686-3172497658-3481507381-1000
- HKEY_LOCAL_MACHINE\System\Setup
- HKEY_LOCAL_MACHINE\SYSTEM\Setup\SystemSetupInProgress
- HKEY_CURRENT_USER\Software\Microsoft\windows\CurrentVersion\Internet Settings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MigrateProxy
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyOverride
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
- HKEY_CURRENT_USER\Software\Microsoft\windows\CurrentVersion\Internet Settings\Connections
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\DefaultConnectionSettings
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\MediaPlayer\Preferences
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseHTTP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseTCP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseUDP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseMulticast
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseCustomUDPPort
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\CustomUDPPort
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyBypass
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyStyle
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyPort
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyExclude
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyName
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\CurrentLevel
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Isolation
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Safety\ActiveXFiltering
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\FontLink\SystemLink
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\DataStore_V1.0
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\DataStore_V1.0\Disable
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\DataStore_V1.0\DataFilePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane1
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane2
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane4
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane5
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane6
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane7
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane8
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane9
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane10
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane11
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane12
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane13
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane14
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane15
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane16
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane1
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane2
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane4
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane5
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane6
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane7
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane8
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane9
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane10
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane11
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane12
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane13
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane14
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane15
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane16
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Microsoft Sans Serif
- HKEY_CURRENT_USER\Software\Microsoft\CTF\LayoutIcon\0804\00000804
- HKEY_CURRENT_USER\Software\SimonTatham\PuTTY
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\DEPOff
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLESAFESEARCHPATH_KB963027
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ENABLESAFESEARCHPATH_KB963027
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Low Rights
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Low Rights
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Low Rights\ProtectedModeOffForAllZones
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ProtectedModeOffForAllZones
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Main
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\TabProcGrowth
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\TabProcGrowth
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\LuaOffLoRIEOn
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Setup
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Setup\HaveCreatedQuickLaunchItems
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\iexplore.exe
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FrameTabWindow
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FrameTabWindow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FrameMerging
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FrameMerging
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SessionMerging
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\SessionMerging
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\AdminTabProcs
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\AdminTabProcs
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\HangResistance
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\HangResistance
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Safety\PrivacIE
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Safety\PrivacIE
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Safety\PrivacIE\DisableToolbars
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Safety\PrivacIE
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\DetourDialogs
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\New Windows
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SQM
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SQM\ServerFreezeOnUpload
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SQM
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SQMClient\Windows
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SQMClient\Windows\CEIPEnable
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\ClearableListData
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\UnattendLoaded
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\TLDUpdates
- HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\Extensions
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\Extensions\RemoteRpcDll
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BFE
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbars\Restrictions
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbars\Restrictions
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\Flags
- HKEY_CURRENT_USER\Software\Classes
- HKEY_CURRENT_USER\Software\Classes\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\TreatAs
- HKEY_CLASSES_ROOT\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
- HKEY_CURRENT_USER\Software\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\TreatAs
- HKEY_CLASSES_ROOT\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
- HKEY_CURRENT_USER\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\TreatAs
- HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{B4F3A835-0E21-4959-BA22-42B3008E02FF}
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}
- HKEY_CURRENT_USER\Software\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\TreatAs
- HKEY_CLASSES_ROOT\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{DBC80044-A445-435B-BC74-9C25C1C588A9}
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}
- HKEY_CURRENT_USER\Software\Classes\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\TreatAs
- HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\InProcServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar
- HKEY_CURRENT_USER\Software\AppDataLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\LowCache
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IntelliForms
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\PageSetup
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Passport\LowDAMap
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\LowRegistry
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Zoom
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\LowMic
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_POLICIES_ZONEMAP_IF_ESC_ENABLED_KB918915
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_IGNORE_POLICIES_ZONEMAP_IF_ESC_ENABLED_KB918915
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_UNC_SAVEDFILECHECK
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_UNC_SAVEDFILECHECK\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_UNC_SAVEDFILECHECK\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Flags
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Flags
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Flags
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\iexplore.exe
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\3
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_CURRENT_USER\Software\Microsoft\windows\CurrentVersion\Internet Settings\Zones
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\SecuritySafe
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE\*
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_REVERSE_SOLIDUS_IN_USERINFO_KB932562
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ALLOW_REVERSE_SOLIDUS_IN_USERINFO_KB932562
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_IETLDLIST_FOR_DOMAIN_DETERMINATION
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_USE_IETLDLIST_FOR_DOMAIN_DETERMINATION
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldDllVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldDllVersionHigh
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldVersionHigh
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellCompatibility\Applications\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups
- HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HasNavigationEnum
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\NonEnum
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{871C5380-42A0-1069-A2EA-08002B30309D}
- HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InProcServer32\LoadWithoutCOM
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SafeBoot\Option
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager\AppCompatibility
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\AppCompat
- HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{871c5380-42a0-1069-a2ea-08002b30309d}\InProcServer32
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached\{871C5380-42A0-1069-A2EA-08002B30309D} {000214E6-0000-0000-C000-000000000046} 0xFFFF
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellCompatibility\Objects\{871C5380-42A0-1069-A2EA-08002B30309D}
- HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\EnableConsoleTracing
- HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iexplore_RASAPI32
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\EnableFileTracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\FileTracingMask
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\EnableConsoleTracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\ConsoleTracingMask
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\MaxFileSize
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\FileDirectory
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledProcesses\74DD1FC8
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness
- HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\WinSock2\Parameters
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\WinSock_Registry_Version
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\AutodialDLL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Min_Width
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Min_Height
- HKEY_LOCAL_MACHINE\Software\Microsoft\DirectUI
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\AdminActive
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F4F3C193-D0AB-11E7-A1F8-525400F9C664}
- HKEY_CURRENT_USER\Software\Classes\AppID\iexplore.exe
- HKEY_LOCAL_MACHINE\Software\Microsoft\OLE\AppCompat
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\AppCompat\RaiseDefaultAuthnLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\DefaultAccessPermission
- HKEY_CURRENT_USER\Software\Classes\Interface\{00000134-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\COM3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\COM3\GipActivityBypass
- HKEY_CURRENT_USER\Software\Classes\Interface\{1AC7516E-E6BB-4A69-B63F-E841904DC5A6}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1AC7516E-E6BB-4A69-B63F-E841904DC5A6}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1AC7516E-E6BB-4A69-B63F-E841904DC5A6}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocHandler
- HKEY_CURRENT_USER\Software\Classes\Interface\{7673B35E-907A-449D-A49F-E5CE47F0B0B2}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{7673B35E-907A-449D-A49F-E5CE47F0B0B2}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{7673B35E-907A-449D-A49F-E5CE47F0B0B2}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\TabbedBrowsing
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\Groups
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\TabbedBrowsing
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\WindowsSearch
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\WindowsSearch\EnabledScopes
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Feeds
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Feeds
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows Search
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows Search\CurrentVersion
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Placement
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\IE8RunOnceLastShown
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Toolbar\WebBrowser
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Position
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FullScreen
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\IEAK
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\IEAK
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\CommandBar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\SmallIcons
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\ShowLeftAddressToolbar
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\CommandBar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\ShowCompatibilityViewButton
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\UseIE7AutoComplete
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONES_CHECK_ZONEMAP_POLICY_KB941001
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ZONES_CHECK_ZONEMAP_POLICY_KB941001
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\alipay.com
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\alisoft.com
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\taobao.com
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchControlWidth
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigrated
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedInstalled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedDefaultName
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedDefaultURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\provider
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Deleted
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\URL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\DisplayName
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ShowSearchSuggestions
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ShowSearchSuggestions
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\SearchScopes
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\ShowSearchSuggestionsGlobal
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ShowSearchSuggestionsGlobal
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSON
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSON
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSONFallback
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSONFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURLFallback
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconPath
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Codepage
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Codepage
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SortIndex
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\Enabled
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Toolbar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Locked
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\TextOption
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\CommandBarEnabled
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\LinksBar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\Enabled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\FavBandRow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ActivityMeterTimerInterval
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ActivityMeterDisable
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\QuickTabsThreshold
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksExplorer
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\LinksExplorer
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ThumbnailBehavior
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Height
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\Compatibility\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\KnownClasses
- HKEY_CURRENT_USER\Software\Classes\CLSID\{0002DF01-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\ProgID\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\InprocHandler
- HKEY_CURRENT_USER\Software\Classes\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\InprocHandler
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\IEDevTools
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IEDevTools
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\IEDevTools
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Url History
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Url History
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Url History\DaysToKeep
- HKEY_CURRENT_USER\Software\Classes\Interface\{9EC704BA-E1D4-45C5-9B59-BFAE07D9F04E}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9EC704BA-E1D4-45C5-9B59-BFAE07D9F04E}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9EC704BA-E1D4-45C5-9B59-BFAE07D9F04E}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Interface\{B40C43F1-F039-44D2-AEB7-87F5AF8ABC3D}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B40C43F1-F039-44D2-AEB7-87F5AF8ABC3D}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B40C43F1-F039-44D2-AEB7-87F5AF8ABC3D}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Interface\{D358F4E1-0465-4965-9DD5-CAE303D2C345}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D358F4E1-0465-4965-9DD5-CAE303D2C345}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D358F4E1-0465-4965-9DD5-CAE303D2C345}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Interface\{F704B7E0-4760-46FF-BBDB-7439E0A2A814}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F704B7E0-4760-46FF-BBDB-7439E0A2A814}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F704B7E0-4760-46FF-BBDB-7439E0A2A814}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\SecurityService
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\SecurityService\DefaultAuthLevel
- HKEY_CURRENT_USER\Software\Classes\Interface\{00020400-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00020400-0000-0000-C000-000000000046}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00020400-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\CLSID\{00020420-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00020420-0000-0000-C000-000000000046}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocHandler
- HKEY_CURRENT_USER\Software\Classes\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\CLSID\{00020424-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00020424-0000-0000-C000-000000000046}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocHandler
- HKEY_CURRENT_USER\Software\Classes\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\ProxyStubClsid32
- HKEY_CURRENT_USER\Software\Classes\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\Forward
- HKEY_CURRENT_USER\Software\Classes\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\TypeLib
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\TypeLib\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\TypeLib\Version
- HKEY_CURRENT_USER\Software\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}\1.1
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}\1.1\0
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}\1.1\0\win32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}\1.1\0\win32\(Default)
- HKEY_CURRENT_USER\Software\Classes\TypeLib
- HKEY_CURRENT_USER\Software\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\UDTAlignmentPolicy
- HKEY_CURRENT_USER\Software\Classes\Interface\{48A98A1F-5CDD-47EE-9286-DB04A3EB7CE1}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{48A98A1F-5CDD-47EE-9286-DB04A3EB7CE1}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{48A98A1F-5CDD-47EE-9286-DB04A3EB7CE1}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Interface\{6D5140C1-7436-11CE-8034-00AA006009FA}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6D5140C1-7436-11CE-8034-00AA006009FA}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6D5140C1-7436-11CE-8034-00AA006009FA}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Interface\{B722BCCB-4E68-101B-A2BC-00AA00404770}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B722BCCB-4E68-101B-A2BC-00AA00404770}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B722BCCB-4E68-101B-A2BC-00AA00404770}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\OleAut
- HKEY_CLASSES_ROOT\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HasNavigationEnum
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{20D04FE0-3AEA-1069-A2D8-08002B30309D}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a4-1bd9-11e5-9838-806e6f6e6963}\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a4-1bd9-11e5-9838-806e6f6e6963}\Data
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a4-1bd9-11e5-9838-806e6f6e6963}\Generation
- HKEY_CLASSES_ROOT\Drive\shellex\FolderExtensions
- HKEY_CLASSES_ROOT\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}\DriveMask
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Explorer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a3-1bd9-11e5-9838-806e6f6e6963}\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a3-1bd9-11e5-9838-806e6f6e6963}\Data
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a3-1bd9-11e5-9838-806e6f6e6963}\Generation
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSimpleStartMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSimpleStartMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Hidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowCompColor
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideFileExt
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\DontPrettyPath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowInfoTip
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideIcons
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\MapNetDrvBtn
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\WebView
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Filter
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\SeparateProcess
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\NoNetCrawling
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\AutoCheckSelect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\IconsOnly
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowTypeOverlay
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Shell\RegisteredApplications\UrlAssociations\Directory\OpenWithProgids
- HKEY_CURRENT_USER\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\Directory
- HKEY_CLASSES_ROOT\Directory
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\CurVer
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\ShellEx\IconHandler
- HKEY_CLASSES_ROOT\Folder
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx\IconHandler
- HKEY_CLASSES_ROOT\AllFilesystemObjects
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\ShellEx\IconHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\Clsid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\Clsid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\Clsid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\AlwaysShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\NeverShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\NeverShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\NeverShowExt
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderDescriptions
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PropertyBag
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\KnownFolders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\PropertyBag
- HKEY_CLASSES_ROOT\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HasNavigationEnum
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{59031A47-3F72-44A7-89C5-5595FE6B30EE}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\App Paths\iexplore.exe
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\IEXPLORE.EXE\DontUseDesktopChangeRouter
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Use FormSuggest
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\QuickTabsLastUsed
- HKEY_CURRENT_USER\Control Panel\Desktop
- HKEY_CURRENT_USER\Control Panel\Desktop\SmoothScroll
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\EnableBalloonTips
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ListviewAlphaSelect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ListviewShadow
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\TurnOffSPIAnimations
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\TurnOffSPIAnimations
- HKEY_CURRENT_USER\Software\Classes\Interface\{02BA3B52-0547-11D1-B833-00C04FC9B31F}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{02BA3B52-0547-11D1-B833-00C04FC9B31F}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{02BA3B52-0547-11D1-B833-00C04FC9B31F}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Classes\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\Progid
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocHandler
- HKEY_CURRENT_USER\Software\Classes\Interface\{66A9CB08-4802-11D2-A561-00A0C92DBFE8}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{66A9CB08-4802-11D2-A561-00A0C92DBFE8}\ProxyStubClsid32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{66A9CB08-4802-11D2-A561-00A0C92DBFE8}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\SideBySide\AssemblyStorageRoots
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\AcRedir
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\TabShutdownDelay
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\TabShutdownDelay
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PropertyBag
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Favorites
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PropertyBag
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Desktop
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PropertyBag
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PropertyBag
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\Extensions\NdrOleExtDLL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\EnablePreBinding
- HKEY_LOCAL_MACHINE\Software\Microsoft\Feeds
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Feeds\UrlCacheVersion
- HKEY_CLASSES_ROOT\PROTOCOLS\Name-Space Handler\
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_FAILED_CONNECT_CONTENT_KB942615
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_SHOW_FAILED_CONNECT_CONTENT_KB942615
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MIME_HANDLING
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MIME_HANDLING\iexplore.exe
- HKEY_CLASSES_ROOT\PROTOCOLS\Name-Space Handler\http\
- HKEY_CLASSES_ROOT\PROTOCOLS\Name-Space Handler\*\
- HKEY_LOCAL_MACHINE\Software\Microsoft\Ole
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\MaximumAllowedAllocationSize
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\Feature_Enable_Compat_Logging
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\Feature_Enable_Compat_Logging
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Compatible
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Compatible
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Version
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Version
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\UA Tokens
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Pre Platform
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Pre Platform
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Pre Platform
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Platform
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Platform
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\iexplore.exe
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\*
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER\*
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER\*
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\UrlMon Settings
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableUTF8
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\International
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\International\AcceptLanguage
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\AllSitesCompatibilityMode
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\BrowserEmulation
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IntranetCompatibilityMode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\MSCompatibilityMode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFileMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFileMenu
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Restrictions\NoFavorites
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Restrictions\NoHelpMenu
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window Title
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A10
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\StatusBarWeb
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Enable Browser Extensions
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoBandCustomize
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoBandCustomize
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Layout
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\AlwaysShowMenus
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Marlett
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ADDON_MANAGEMENT
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ADDON_MANAGEMENT\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ADDON_MANAGEMENT\*
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ext
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Ext
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\Version
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Blocked
- HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{72853161-30c5-4d22-b7f9-0bbc1d38a37e}\InProcServer32
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom\GROOVEEX.DLL
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Time
- HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{761497bb-d6f0-462c-b6eb-d4daf1d92d43}\InProcServer32
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Groove
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion
- HKEY_LOCAL_MACHINE\Software\Microsoft\Office\14.0\Groove\InstallRoot
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom\ssv.dll
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\14.0\Groove\InstallRoot\Path
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Time
- HKEY_CURRENT_USER\SOFTWARE\JavaSoft\DeploymentProperties\pending
- HKEY_CURRENT_USER\SOFTWARE\JavaSoft\DeploymentProperties
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.suppression.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.timestamp.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.webjava.enabled
- HKEY_LOCAL_MACHINE\SOFTWARE
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in\11.121.2
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in\11.121.2\UseNewJavaPlugin
- HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{b4f3a835-0e21-4959-ba22-42b3008e02ff}\InProcServer32
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom\URLREDIR.DLL
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Time
- HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{dbc80044-a445-435b-bc74-9c25c1c588a9}\InProcServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Custom\jp2ssv.dll
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Time
- HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in
- HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\11.121.2
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in\11.121.2\JavaHome
- HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\11.121.2
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Web Start\11.121.2\Home
- HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\InProcServer32
- HKEY_CLASSES_ROOT\CLSID
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\TreatAs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\TreatAs\(Default)
- HKEY_CURRENT_USER\Software\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}
- HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
- HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment
- HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.8.0_121
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Runtime Environment\1.8.0_121\JavaHome
- HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32\(Default)
- HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32\(Default)
- HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Suggested Sites
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Suggested Sites
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Suggested Sites\Enabled
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\OpenDirectlyInApp
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Security
- HKEY_CURRENT_USER\Software\Microsoft\Security
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{7b8a2d94-0ac9-11d1-896c-00c04fb6bfc4}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}\InsecureQI
- HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Common
- HKEY_CURRENT_USER\Software\Microsoft\Office\Common\AllowConsecutiveSlashesInUrlPathComponent
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\Server Cache
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\OptimisticBHO
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\Server Cache\
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IEDDE_REGISTER_PROTOCOL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_IEDDE_REGISTER_PROTOCOL
- HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Safety\PrivacIE
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Safety\PrivacIE\DisableInPrivateBlocking
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Safety\PrivacIE
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_READ_ZONE_STRINGS_FROM_REGISTRY
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_READ_ZONE_STRINGS_FROM_REGISTRY
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\CurrentLevel
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\CurrentLevel
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\CurrentLevel
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\RecommendedLevel
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\CurrentLevel
- HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\MediaTypeClass
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Accepted Documents
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Ratings
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ratings\Key
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\No3DBorder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\No3DBorder
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\TabbedBrowsing
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\TravelLog
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\TravelLog
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\MenuUserExpanded
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\BrowserEmulation
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe
- HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\GRE_Initialize
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles
读取的注册表键
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\Windows Error Reporting\WMR\Disable
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\Locale\00000804
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\Language Groups\a
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\CustomLocale\en-US
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Nls\ExtendedLocale\en-US
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\iexplore.exe\shell\open\command\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\FontSubstitutes\\xe5\xae\x8b\xe4\xbd\x93
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\LanguageProfile\0x00000000\{0001bea3-ed56-483d-a2e2-aeae25577436}\Enable
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Language Hotkey
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Hotkey
- HKEY_CURRENT_USER\Keyboard Layout\Toggle\Layout Hotkey
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\CTF\EnableAnchorContext
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\PopupMgr
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\FromCacheTimeout
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CertificateRevocation
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableKeepAlive
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisablePassport
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\IdnEnabled
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CacheMode
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttp1_1
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableNegotiate
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableBasicOverClearChannel
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\Feature_ClientAuthCertFilter
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\Feature_ClientAuthCertFilter
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ClientAuthBuiltInUI
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SyncMode5
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\SessionStartTimeDefaultDeltaSecs
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Signature
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Content\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Cookies\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\PerUserItem
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\PerUserItem
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\History\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\DOMStore\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\feedplat\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\iecompat\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\ietld\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012017090320170904\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\PrivacIE:\CacheOptions
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheRepair
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CachePath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CachePrefix
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\UserData\CacheOptions
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableAutoProxyResultCache
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\DisplayScriptDownloadFailureUI
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\MBCSServername
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\MBCSAPIforCrack
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UTF8ServerNameRes
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableWorkerThreadHibernation
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DisableWorkerThreadHibernation
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableReadRange
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SocketSendBufferLength
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SocketReceiveBufferLength
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\KeepAliveTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxHttpRedirects
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerServer
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPer1_0Server
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPer1_0Server
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerProxy
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ServerInfoTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectRetries
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ConnectRetries
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SendTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\SendTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ReceiveTimeOut
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ReceiveTimeOut
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableNTLMPreAuth
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ScavengeCacheLowerBound
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CertCacheNoValidate
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLifeTime
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\ScavengeCacheFileLimit
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\HttpDefaultExpiryTimeSecs
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\FtpDefaultExpiryTimeSecs
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\u1704.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\*
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DisableCachingOfSSLPages
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\PerUserCookies
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\LeashLegacyCookies
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DialupUseLanSettings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DialupUseLanSettings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\SendExtraCRLF
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WpadSearchAllDomains
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BypassHTTPNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\BypassHTTPNoCacheCheck
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BypassSSLNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\BypassSSLNoCacheCheck
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\EnableHttpTrace
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\NoCheckAutodialOverRide
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\NoCheckAutodialOverRide
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DontUseDNSLoadBalancing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DontUseDNSLoadBalancing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ShareCredsWithWinHttp
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MimeExclusionListForCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\HeaderExclusionListForCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheEnabled
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheEntries
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\DnsCacheTimeout
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPost
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnAlwaysOnPost
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnZoneCrossing
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnBadCertRecving
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AlwaysDrainOnRedirect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnHTTPSToHTTPRedirect
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Lsa\AccessProviders\MartaExtension
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\TcpAutotuning
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\WpadOverride
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableAutodial
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\NoNetAutodial
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\GlobalUserOffline
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\BadProxyExpiresTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\DisableBranchCache
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\ProgramData
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledProcesses\8259A5C3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledSessions\MachineThrottling
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledSessions\GlobalSession
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\AppData
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2280033686-3172497658-3481507381-1000\ProfileImagePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ProxySettingsPerUser
- HKEY_LOCAL_MACHINE\SYSTEM\Setup\SystemSetupInProgress
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MigrateProxy
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyOverride
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\DefaultConnectionSettings
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseHTTP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseTCP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseUDP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseMulticast
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseCustomUDPPort
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\CustomUDPPort
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyBypass
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyStyle
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyPort
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyExclude
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyName
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\CurrentLevel
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Isolation
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\DataStore_V1.0\Disable
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\DataStore_V1.0\DataFilePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane1
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane2
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane4
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane5
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane6
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane7
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane8
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane9
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane10
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane11
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane12
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane13
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane14
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane15
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\Plane16
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane1
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane2
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane3
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane4
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane5
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane6
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane7
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane8
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane9
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane10
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane11
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane12
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane13
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane14
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane15
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\LanguagePack\SurrogateFallback\SimSun\Plane16
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\DEPOff
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Low Rights\ProtectedModeOffForAllZones
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ProtectedModeOffForAllZones
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\TabProcGrowth
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\TabProcGrowth
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\LuaOffLoRIEOn
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Setup\HaveCreatedQuickLaunchItems
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK\iexplore.exe
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FrameTabWindow
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FrameTabWindow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FrameMerging
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FrameMerging
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SessionMerging
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\SessionMerging
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\AdminTabProcs
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\AdminTabProcs
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\HangResistance
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\HangResistance
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Safety\PrivacIE\DisableToolbars
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\DetourDialogs
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SQM\ServerFreezeOnUpload
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SQMClient\Windows\CEIPEnable
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\UnattendLoaded
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\TLDUpdates
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\Extensions\RemoteRpcDll
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\InProcServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}\Flags
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9}\InProcServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}\VerCache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\LoadTime
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_UNC_SAVEDFILECHECK\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_UNC_SAVEDFILECHECK\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Flags
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Security\DisableFixSecuritySettings
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\CreateUriCacheSize
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnablePunycode
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE\*
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldDllVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldDllVersionHigh
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\IETld\IETldVersionHigh
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesMyComputer
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPropertiesRecycleBin
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoControlPanel
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetIcon
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoCommonGroups
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\HasNavigationEnum
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{871C5380-42A0-1069-A2EA-08002B30309D}
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InProcServer32\LoadWithoutCOM
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached\{871C5380-42A0-1069-A2EA-08002B30309D} {000214E6-0000-0000-C000-000000000046} 0xFFFF
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\EnableConsoleTracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\EnableFileTracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\FileTracingMask
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\EnableConsoleTracing
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\ConsoleTracingMask
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\MaxFileSize
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Tracing\iexplore_RASAPI32\FileDirectory
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQMClient\Windows\DisabledProcesses\74DD1FC8
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\WinSock_Registry_Version
- HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\AutodialDLL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Min_Width
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Min_Height
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\AppCompat\RaiseDefaultAuthnLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\DefaultAccessPermission
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00000134-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\COM3\GipActivityBypass
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1AC7516E-E6BB-4A69-B63F-E841904DC5A6}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InProcServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{7673B35E-907A-449D-A49F-E5CE47F0B0B2}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\Groups
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\WindowsSearch\EnabledScopes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows Search\CurrentVersion
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Placement
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\IE8RunOnceLastShown
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Position
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FullScreen
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\SmallIcons
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\ShowLeftAddressToolbar
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\ShowCompatibilityViewButton
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\UseIE7AutoComplete
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchControlWidth
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigrated
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedInstalled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedDefaultName
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchMigratedDefaultURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\provider
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Deleted
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\URL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\DisplayName
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ShowSearchSuggestions
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ShowSearchSuggestions
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\ShowSearchSuggestionsGlobal
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ShowSearchSuggestionsGlobal
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSON
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSON
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSONFallback
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL_JSONFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SuggestionsURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURLFallback
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\PreviewURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURL
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconURLFallback
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconPath
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Codepage
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\Codepage
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\SortIndex
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\Enabled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Locked
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\TextOption
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\CommandBarEnabled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\LinksBar\Enabled
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\CommandBar\FavBandRow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ActivityMeterTimerInterval
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ActivityMeterDisable
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\QuickTabsThreshold
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\ThumbnailBehavior
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Height
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\ProgID\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0002DF01-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Url History\DaysToKeep
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9EC704BA-E1D4-45C5-9B59-BFAE07D9F04E}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B40C43F1-F039-44D2-AEB7-87F5AF8ABC3D}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D358F4E1-0465-4965-9DD5-CAE303D2C345}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F704B7E0-4760-46FF-BBDB-7439E0A2A814}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\SecurityService\DefaultAuthLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{00020400-0000-0000-C000-000000000046}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\TypeLib\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{D30C1661-CDAF-11D0-8A3E-00C04FC9E26E}\TypeLib\Version
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{EAB22AC0-30C1-11CF-A7EB-0000C05BAE0B}\1.1\0\win32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{00020430-0000-0000-C000-000000000046}\2.0\0\win32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\UDTAlignmentPolicy
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{48A98A1F-5CDD-47EE-9286-DB04A3EB7CE1}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6D5140C1-7436-11CE-8034-00AA006009FA}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{B722BCCB-4E68-101B-A2BC-00AA00404770}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{20D04FE0-3AEA-1069-A2D8-08002B30309D}\ShellFolder\HasNavigationEnum
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{20D04FE0-3AEA-1069-A2D8-08002B30309D}
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a4-1bd9-11e5-9838-806e6f6e6963}\Data
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a4-1bd9-11e5-9838-806e6f6e6963}\Generation
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\FolderExtensions\{fbeb8a05-beee-4442-804e-409d6c4515e9}\DriveMask
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a3-1bd9-11e5-9838-806e6f6e6963}\Data
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\CPC\Volume\{372941a3-1bd9-11e5-9838-806e6f6e6963}\Generation
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DontShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\ClassicShell
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\SeparateProcess
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoNetCrawling
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSimpleStartMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSimpleStartMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Hidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowCompColor
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideFileExt
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\DontPrettyPath
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowInfoTip
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\HideIcons
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\MapNetDrvBtn
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\WebView
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Filter
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\SeparateProcess
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\NoNetCrawling
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\AutoCheckSelect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\IconsOnly
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowTypeOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\DocObject
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\BrowseInPlace
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\IsShortcut
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\AlwaysShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\NeverShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\NeverShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AllFilesystemObjects\NeverShowExt
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}\InitFolderHandler
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\{1B3EA5DC-B587-4786-B4EF-BD1DC332AEAE}
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{F3CE0F7C-4901-4ACC-8648-D5D44B04EF8F}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\CallForAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\RestrictedAttributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsFORDISPLAY
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideFolderVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\UseDropHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsFORPARSING
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsParseDisplayName
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\QueryForOverlay
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\MapNetDriveVerbs
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\QueryForInfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideInWebView
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HideOnDesktopPerUser
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsAliasedNotifications
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\WantsUniversalDelegate
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\NoFileFolderJunction
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\PinToNameSpaceTree
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{59031A47-3F72-44A7-89C5-5595FE6B30EE}\ShellFolder\HasNavigationEnum
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\NonEnum\{59031A47-3F72-44A7-89C5-5595FE6B30EE}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\IEXPLORE.EXE\DontUseDesktopChangeRouter
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Use FormSuggest
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing\QuickTabsLastUsed
- HKEY_CURRENT_USER\Control Panel\Desktop\SmoothScroll
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\EnableBalloonTips
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ListviewAlphaSelect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ListviewShadow
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\TurnOffSPIAnimations
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\TurnOffSPIAnimations
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{02BA3B52-0547-11D1-B833-00C04FC9B31F}\ProxyStubClsid32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\InprocServer32
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InProcServer32\ThreadingModel
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{66A9CB08-4802-11D2-A561-00A0C92DBFE8}\ProxyStubClsid32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\AcRedir
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\TabShutdownDelay
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\TabShutdownDelay
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{1777F761-68AD-4D8A-87BD-30B759FA33DD}\InitFolderHandler
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Favorites
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\InitFolderHandler
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Desktop
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{3EB685DB-65F9-4CF6-A03A-E3EF65729F3D}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Category
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Name
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParentFolder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Description
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\RelativePath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\ParsingName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InfoTip
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalizedName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Security
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResource
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\StreamResourceType
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\LocalRedirectOnly
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Roamable
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PreCreate
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Stream
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\PublishExpandedPath
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\Attributes
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\FolderTypeID
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FolderDescriptions\{5E6C858F-0E22-4760-9AFE-EA3317B67173}\InitFolderHandler
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Rpc\Extensions\NdrOleExtDLL
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\EnablePreBinding
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Feeds\UrlCacheVersion
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MIME_HANDLING\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OLE\MaximumAllowedAllocationSize
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Compatible
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Compatible
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Version
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Version
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Platform
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Platform
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\iexplore.exe
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER\*
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableUTF8
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\International\AcceptLanguage
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\AllSitesCompatibilityMode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IntranetCompatibilityMode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\MSCompatibilityMode
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION\*
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFileMenu
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFileMenu
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Restrictions\NoFavorites
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Restrictions\NoHelpMenu
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window Title
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A10
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\StatusBarWeb
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Enable Browser Extensions
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoBandCustomize
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoBandCustomize
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ITBar7Layout
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\AlwaysShowMenus
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ADDON_MANAGEMENT\iexplore.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ADDON_MANAGEMENT\*
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\Version
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Blocked
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\Cache
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Count
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\14.0\Groove\InstallRoot\Path
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Count
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.suppression.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.expiration.decision.timestamp.11.121.2
- HKEY_CURRENT_USER\Software\JavaSoft\DeploymentProperties\deployment.webjava.enabled
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in\11.121.2\UseNewJavaPlugin
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Count
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\InProcServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Count
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Plug-in\11.121.2\JavaHome
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Web Start\11.121.2\Home
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\TreatAs\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\JavaSoft\Java Runtime Environment\1.8.0_121\JavaHome
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBA}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBB}\InprocServer32\(Default)
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0018-0000-0121-ABCDEFFEDCBC}\InprocServer32\(Default)
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Suggested Sites\Enabled
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\OpenDirectlyInApp
- HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}\InsecureQI
- HKEY_CURRENT_USER\Software\Microsoft\Office\Common\AllowConsecutiveSlashesInUrlPathComponent
- HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\Internet\OptimisticBHO
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Safety\PrivacIE\DisableInPrivateBlocking
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\CurrentLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\CurrentLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\CurrentLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\Icon
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\MinLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\RecommendedLevel
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\CurrentLevel
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ratings\Key
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\No3DBorder
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\No3DBorder
- HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\UrlEncoding
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\MenuUserExpanded
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles
修改的注册表键
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseHTTP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseTCP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseUDP
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\UseMulticast
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyBypass
- HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Preferences\ProxySettings\HTTP\ProxyStyle
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\CurrentLevel
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Isolation
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPer1_0Server
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\MaxConnectionsPerServer
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\SecuritySafe
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyOverride
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F4F3C193-D0AB-11E7-A1F8-525400F9C664}
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FullScreen
- HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Window_Placement
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\iexplore\Blocked
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\iexplore\LoadTime
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Type
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Count
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\Time
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}\iexplore\LoadTime
删除的注册表键
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyOverride
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass
- HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName
- HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName
API解析
- kernel32.dll.SetLastError
- kernel32.dll.GetSystemTimeAdjustment
- kernel32.dll.GetSystemTime
- kernel32.dll.GetProcessTimes
- kernel32.dll.GetThreadTimes
- kernel32.dll.GetCurrentThread
- kernel32.dll.GetEnvironmentVariableA
- kernel32.dll.GlobalFree
- kernel32.dll.GlobalHandle
- kernel32.dll.DeviceIoControl
- kernel32.dll.CreateEventW
- kernel32.dll.WideCharToMultiByte
- kernel32.dll.ReleaseMutex
- kernel32.dll.InterlockedIncrement
- kernel32.dll.InterlockedDecrement
- kernel32.dll.GlobalDeleteAtom
- kernel32.dll.GlobalFindAtomA
- kernel32.dll.GlobalAddAtomA
- kernel32.dll.lstrcmpiA
- kernel32.dll.GlobalGetAtomNameA
- kernel32.dll.lstrcatA
- kernel32.dll.MulDiv
- kernel32.dll.LocalFree
- kernel32.dll.SetThreadPriority
- kernel32.dll.SuspendThread
- kernel32.dll.lstrcmpA
- kernel32.dll.FileTimeToSystemTime
- kernel32.dll.FileTimeToLocalFileTime
- kernel32.dll.LocalAlloc
- kernel32.dll.TlsAlloc
- kernel32.dll.TlsFree
- kernel32.dll.GlobalReAlloc
- kernel32.dll.TlsSetValue
- kernel32.dll.LocalReAlloc
- kernel32.dll.TlsGetValue
- kernel32.dll.GlobalFlags
- kernel32.dll.GetProcessVersion
- kernel32.dll.GetCPInfo
- kernel32.dll.FlushConsoleInputBuffer
- kernel32.dll.GetCurrentDirectoryA
- kernel32.dll.SetFilePointer
- kernel32.dll.FlushFileBuffers
- kernel32.dll.SetEndOfFile
- kernel32.dll.GetFullPathNameA
- kernel32.dll.SetErrorMode
- kernel32.dll.RtlUnwind
- kernel32.dll.GetSystemTimeAsFileTime
- kernel32.dll.GetTimeZoneInformation
- kernel32.dll.GetLocalTime
- kernel32.dll.HeapReAlloc
- kernel32.dll.ExitProcess
- kernel32.dll.GetStartupInfoA
- kernel32.dll.GetCommandLineA
- kernel32.dll.SetConsoleCtrlHandler
- kernel32.dll.ReadConsoleInputA
- kernel32.dll.SetConsoleMode
- kernel32.dll.GetConsoleMode
- kernel32.dll.RaiseException
- kernel32.dll.CreateThread
- kernel32.dll.ExitThread
- kernel32.dll.HeapSize
- kernel32.dll.SetStdHandle
- kernel32.dll.HeapDestroy
- kernel32.dll.HeapCreate
- kernel32.dll.VirtualFree
- kernel32.dll.VirtualAlloc
- kernel32.dll.IsBadWritePtr
- kernel32.dll.SetHandleCount
- kernel32.dll.LCMapStringA
- kernel32.dll.LCMapStringW
- kernel32.dll.UnhandledExceptionFilter
- kernel32.dll.FreeEnvironmentStringsA
- kernel32.dll.FreeEnvironmentStringsW
- kernel32.dll.GetEnvironmentStrings
- kernel32.dll.GetEnvironmentStringsW
- kernel32.dll.GetStringTypeA
- kernel32.dll.GetStringTypeW
- kernel32.dll.GetDriveTypeA
- kernel32.dll.CreateFileW
- kernel32.dll.CompareStringA
- kernel32.dll.CompareStringW
- kernel32.dll.SetEnvironmentVariableA
- kernel32.dll.InterlockedExchange
- kernel32.dll.LoadLibraryA
- kernel32.dll.FreeLibrary
- kernel32.dll.QueryPerformanceCounter
- kernel32.dll.GlobalMemoryStatus
- kernel32.dll.MultiByteToWideChar
- kernel32.dll.GetStdHandle
- kernel32.dll.GetFileType
- kernel32.dll.GetModuleHandleA
- kernel32.dll.GetProcAddress
- kernel32.dll.GetTickCount
- kernel32.dll.GetTempPathA
- kernel32.dll.GetFileAttributesA
- kernel32.dll.CreateDirectoryA
- kernel32.dll.GetVolumeInformationA
- kernel32.dll.FindFirstFileA
- kernel32.dll.SetFileAttributesA
- kernel32.dll.FindNextFileA
- kernel32.dll.FindClose
- kernel32.dll.RemoveDirectoryA
- kernel32.dll.GetPrivateProfileIntA
- kernel32.dll.GetPrivateProfileStringA
- kernel32.dll.GetProcessHeap
- kernel32.dll.HeapAlloc
- kernel32.dll.HeapFree
- kernel32.dll.DeleteFileA
- kernel32.dll.WritePrivateProfileStringA
- kernel32.dll.SetEvent
- kernel32.dll.DeleteCriticalSection
- kernel32.dll.EnterCriticalSection
- kernel32.dll.LeaveCriticalSection
- kernel32.dll.ResetEvent
- kernel32.dll.ResumeThread
- kernel32.dll.WinExec
- kernel32.dll.OpenProcess
- kernel32.dll.InitializeCriticalSection
- kernel32.dll.CreateJobObjectA
- kernel32.dll.CreateProcessA
- kernel32.dll.SetInformationJobObject
- kernel32.dll.AssignProcessToJobObject
- kernel32.dll.CreatePipe
- kernel32.dll.SetHandleInformation
- kernel32.dll.ReadFile
- kernel32.dll.WaitForSingleObject
- kernel32.dll.TerminateProcess
- kernel32.dll.CreateEventA
- kernel32.dll.GetLastError
- kernel32.dll.SetUnhandledExceptionFilter
- kernel32.dll.GetWindowsDirectoryA
- kernel32.dll.GetVersion
- kernel32.dll.Sleep
- kernel32.dll.GetACP
- kernel32.dll.SetThreadLocale
- kernel32.dll.GetModuleFileNameA
- kernel32.dll.lstrlenA
- kernel32.dll.CreateFileA
- kernel32.dll.WriteFile
- kernel32.dll.GetCurrentThreadId
- kernel32.dll.GetCurrentProcessId
- kernel32.dll.GetCurrentProcess
- kernel32.dll.lstrcpyA
- kernel32.dll.GetVersionExA
- kernel32.dll.IsBadReadPtr
- kernel32.dll.IsBadCodePtr
- kernel32.dll.lstrcpynA
- kernel32.dll.CloseHandle
- kernel32.dll.GlobalAlloc
- kernel32.dll.GlobalLock
- kernel32.dll.GlobalUnlock
- kernel32.dll.FindResourceA
- kernel32.dll.LoadResource
- kernel32.dll.LockResource
- kernel32.dll.SizeofResource
- kernel32.dll.GetOEMCP
- advapi32.dll.CryptReleaseContext
- advapi32.dll.CryptAcquireContextW
- advapi32.dll.RegCloseKey
- advapi32.dll.CryptGenRandom
- advapi32.dll.RegQueryValueExA
- advapi32.dll.RegOpenKeyExA
- advapi32.dll.RegSetValueExA
- advapi32.dll.RegCreateKeyA
- advapi32.dll.RegDeleteKeyA
- advapi32.dll.RegOpenKeyA
- advapi32.dll.RegDeleteValueA
- advapi32.dll.RegCreateKeyExA
- advapi32.dll.DeregisterEventSource
- advapi32.dll.ReportEventA
- advapi32.dll.RegisterEventSourceA
- advapi32.dll.RegEnumKeyA
- advapi32.dll.CloseServiceHandle
- advapi32.dll.CreateServiceA
- advapi32.dll.OpenSCManagerW
- advapi32.dll.OpenServiceA
- advapi32.dll.StartServiceW
- advapi32.dll.QueryServiceStatus
- advapi32.dll.ControlService
- advapi32.dll.RegQueryValueExW
- advapi32.dll.RegOpenKeyExW
- advapi32.dll.RegEnumKeyW
- comctl32.dll.#17
- comctl32.dll._TrackMouseEvent
- gdi32.dll.SetTextColor
- gdi32.dll.DeleteDC
- gdi32.dll.BitBlt
- gdi32.dll.CreateCompatibleDC
- gdi32.dll.CreateCompatibleBitmap
- gdi32.dll.GetStockObject
- gdi32.dll.DeleteObject
- gdi32.dll.SetBkColor
- gdi32.dll.SelectObject
- gdi32.dll.CreateBitmap
- gdi32.dll.SetPixel
- gdi32.dll.GetPixel
- gdi32.dll.GetObjectA
- gdi32.dll.CreateDIBitmap
- gdi32.dll.CreateHalftonePalette
- gdi32.dll.SetMapMode
- gdi32.dll.GetMapMode
- gdi32.dll.DPtoLP
- gdi32.dll.GetDeviceCaps
- gdi32.dll.GetClipBox
- gdi32.dll.SaveDC
- gdi32.dll.RestoreDC
- gdi32.dll.SelectPalette
- gdi32.dll.SetBkMode
- gdi32.dll.SetViewportOrgEx
- gdi32.dll.OffsetViewportOrgEx
- gdi32.dll.SetViewportExtEx
- gdi32.dll.ScaleViewportExtEx
- gdi32.dll.SetWindowExtEx
- gdi32.dll.ScaleWindowExtEx
- gdi32.dll.MoveToEx
- gdi32.dll.LineTo
- gdi32.dll.GetDIBColorTable
- gdi32.dll.CreatePen
- gdi32.dll.CreatePalette
- gdi32.dll.CreateSolidBrush
- gdi32.dll.PtVisible
- gdi32.dll.RectVisible
- gdi32.dll.TextOutA
- gdi32.dll.ExtTextOutA
- gdi32.dll.Escape
- gdi32.dll.RealizePalette
- iphlpapi.dll.GetAdaptersInfo
- iphlpapi.dll.SendARP
- iphlpapi.dll.GetIpForwardTable
- iphlpapi.dll.GetPerAdapterInfo
- netapi32.dll.Netbios
- ole32.dll.CoInitialize
- ole32.dll.CoUninitialize
- ole32.dll.CoCreateInstance
- shell32.dll.ShellExecuteA
- shell32.dll.Shell_NotifyIconA
- shell32.dll.ShellExecuteExA
- user32.dll.DestroyWindow
- user32.dll.DefWindowProcA
- user32.dll.GetKeyState
- user32.dll.GetDlgCtrlID
- user32.dll.GetWindowTextA
- user32.dll.GetWindowTextLengthA
- user32.dll.GetDlgItem
- user32.dll.TrackPopupMenu
- user32.dll.GetMenuItemCount
- user32.dll.GetMenu
- user32.dll.RegisterClassA
- user32.dll.GetClassInfoA
- user32.dll.WinHelpA
- user32.dll.GetTopWindow
- user32.dll.ScreenToClient
- user32.dll.AdjustWindowRectEx
- user32.dll.SetFocus
- user32.dll.SetActiveWindow
- user32.dll.GetFocus
- user32.dll.DispatchMessageA
- user32.dll.PeekMessageA
- user32.dll.MapWindowPoints
- user32.dll.SendDlgItemMessageA
- user32.dll.UpdateWindow
- user32.dll.IsDialogMessageA
- user32.dll.SetWindowTextA
- user32.dll.MoveWindow
- user32.dll.ShowWindow
- user32.dll.IsWindowEnabled
- user32.dll.EnableMenuItem
- user32.dll.CheckMenuItem
- user32.dll.SetMenuItemBitmaps
- user32.dll.ModifyMenuA
- user32.dll.GetMenuState
- user32.dll.LoadBitmapA
- user32.dll.GetMenuCheckMarkDimensions
- user32.dll.BeginPaint
- user32.dll.EndPaint
- user32.dll.TabbedTextOutA
- user32.dll.DrawTextA
- user32.dll.GrayStringA
- user32.dll.LoadStringA
- user32.dll.CreateDialogIndirectParamA
- user32.dll.EndDialog
- user32.dll.ValidateRect
- user32.dll.TranslateMessage
- user32.dll.GetMessageA
- user32.dll.PostQuitMessage
- user32.dll.GetClassNameA
- user32.dll.PtInRect
- user32.dll.GetSysColorBrush
- user32.dll.CreateWindowExA
- user32.dll.SetWindowsHookExA
- user32.dll.CallNextHookEx
- user32.dll.GetClassLongA
- user32.dll.SetPropA
- user32.dll.UnhookWindowsHookEx
- user32.dll.GetPropA
- user32.dll.CallWindowProcA
- user32.dll.RemovePropA
- user32.dll.GetMessageTime
- user32.dll.GetMessagePos
- user32.dll.GetLastActivePopup
- user32.dll.GetWindow
- user32.dll.SetWindowLongA
- user32.dll.SetWindowPos
- user32.dll.SystemParametersInfoA
- user32.dll.GetWindowPlacement
- user32.dll.UnregisterClassA
- user32.dll.GetCapture
- user32.dll.GetClipboardOwner
- user32.dll.GetQueueStatus
- user32.dll.GetProcessWindowStation
- user32.dll.GetUserObjectInformationW
- user32.dll.UnregisterHotKey
- user32.dll.FindWindowA
- user32.dll.GetWindowThreadProcessId
- user32.dll.FindWindowExA
- user32.dll.IsIconic
- user32.dll.GetSystemMetrics
- user32.dll.DrawIcon
- user32.dll.RegisterHotKey
- user32.dll.LoadIconA
- user32.dll.PostThreadMessageA
- user32.dll.SetMenuDefaultItem
- user32.dll.SetForegroundWindow
- user32.dll.GetMenuItemID
- user32.dll.RegisterWindowMessageA
- user32.dll.GetCursorPos
- user32.dll.IsWindowVisible
- user32.dll.KillTimer
- user32.dll.GetDesktopWindow
- user32.dll.LoadCursorA
- user32.dll.IsWindow
- user32.dll.AttachThreadInput
- user32.dll.MessageBoxA
- user32.dll.wsprintfA
- user32.dll.SetTimer
- user32.dll.OpenClipboard
- user32.dll.EmptyClipboard
- user32.dll.CloseClipboard
- user32.dll.EnableWindow
- user32.dll.FrameRect
- user32.dll.LoadMenuA
- user32.dll.LoadImageA
- user32.dll.GetIconInfo
- user32.dll.CreateIconIndirect
- user32.dll.GetDC
- user32.dll.ReleaseDC
- user32.dll.GetSysColor
- user32.dll.FillRect
- user32.dll.DrawStateA
- user32.dll.OffsetRect
- user32.dll.GetClientRect
- user32.dll.InflateRect
- user32.dll.DrawFocusRect
- user32.dll.GetWindowRect
- user32.dll.GetSubMenu
- user32.dll.TrackPopupMenuEx
- user32.dll.PostMessageA
- user32.dll.ClientToScreen
- user32.dll.WindowFromPoint
- user32.dll.GetActiveWindow
- user32.dll.InvalidateRect
- user32.dll.SetCursor
- user32.dll.GetParent
- user32.dll.GetNextDlgTabItem
- user32.dll.SendMessageA
- user32.dll.GetWindowLongA
- user32.dll.DestroyIcon
- user32.dll.DestroyCursor
- user32.dll.DestroyMenu
- user32.dll.SetClipboardData
- user32.dll.CopyRect
- user32.dll.GetForegroundWindow
- wininet.dll.InternetCanonicalizeUrlA
- wininet.dll.InternetCrackUrlA
- wininet.dll.FindCloseUrlCache
- wininet.dll.DeleteUrlCacheEntry
- wininet.dll.FindNextUrlCacheEntryA
- wininet.dll.FindFirstUrlCacheEntryA
- wininet.dll.InternetGetConnectedStateEx
- wininet.dll.InternetSetOptionA
- wininet.dll.InternetQueryOptionA
- wininet.dll.HttpAddRequestHeadersA
- wininet.dll.InternetOpenA
- wininet.dll.InternetConnectA
- wininet.dll.HttpOpenRequestA
- wininet.dll.HttpSendRequestA
- wininet.dll.HttpQueryInfoA
- wininet.dll.InternetReadFile
- wininet.dll.InternetCloseHandle
- winmm.dll.PlaySoundA
- winspool.drv.DocumentPropertiesA
- winspool.drv.OpenPrinterA
- winspool.drv.ClosePrinter
- ws2_32.dll.#55
- ws2_32.dll.#12
- ws2_32.dll.#116
- ws2_32.dll.#8
- ws2_32.dll.#9
- ws2_32.dll.#111
- ws2_32.dll.#23
- ws2_32.dll.WSACloseEvent
- ws2_32.dll.#112
- ws2_32.dll.#6
- ws2_32.dll.#3
- ws2_32.dll.WSAEventSelect
- ws2_32.dll.WSACreateEvent
- ws2_32.dll.#20
- ws2_32.dll.#17
- ws2_32.dll.#19
- ws2_32.dll.#10
- ws2_32.dll.#21
- ws2_32.dll.#52
- ws2_32.dll.#151
- ws2_32.dll.#18
- ws2_32.dll.#16
- ws2_32.dll.#14
- ws2_32.dll.#15
- ws2_32.dll.#115
- ws2_32.dll.#4
- ws2_32.dll.#2
- ws2_32.dll.#22
- ws2_32.dll.#13
- ws2_32.dll.#1
- ws2_32.dll.#11
- wsock32.dll.#7
- kernel32.dll.IsProcessorFeaturePresent
- kernel32.dll.SortGetHandle
- kernel32.dll.SortCloseHandle
- netbios.dll.Netbios
- comctl32.dll.InitCommonControlsEx
- ole32.dll.CoInitializeEx
- cryptbase.dll.SystemFunction036
- ole32.dll.CoRegisterInitializeSpy
- ole32.dll.CoRevokeInitializeSpy
- advapi32.dll.EventActivityIdControl
- advapi32.dll.EventWriteTransfer
- kernel32.dll.InitializeSRWLock
- kernel32.dll.AcquireSRWLockExclusive
- kernel32.dll.AcquireSRWLockShared
- kernel32.dll.ReleaseSRWLockExclusive
- kernel32.dll.ReleaseSRWLockShared
- kernel32.dll.SetFileInformationByHandle
- shell32.dll.SHGetFolderPathW
- kernel32.dll.GetModuleHandleW
- advapi32.dll.AddMandatoryAce
- ntmarta.dll.GetMartaExtensionInterface
- ws2_32.dll.accept
- ws2_32.dll.bind
- ws2_32.dll.closesocket
- ws2_32.dll.connect
- ws2_32.dll.getpeername
- ws2_32.dll.getsockname
- ws2_32.dll.getsockopt
- ws2_32.dll.ntohl
- ws2_32.dll.htonl
- ws2_32.dll.htons
- ws2_32.dll.inet_addr
- ws2_32.dll.inet_ntoa
- ws2_32.dll.ioctlsocket
- ws2_32.dll.listen
- ws2_32.dll.ntohs
- ws2_32.dll.recv
- ws2_32.dll.recvfrom
- ws2_32.dll.select
- ws2_32.dll.send
- ws2_32.dll.sendto
- ws2_32.dll.setsockopt
- ws2_32.dll.shutdown
- ws2_32.dll.socket
- ws2_32.dll.gethostbyname
- ws2_32.dll.gethostname
- ws2_32.dll.WSAIoctl
- ws2_32.dll.WSAGetLastError
- ws2_32.dll.WSASetLastError
- ws2_32.dll.WSAStartup
- ws2_32.dll.WSACleanup
- ws2_32.dll.__WSAFDIsSet
- ws2_32.dll.getaddrinfo
- ws2_32.dll.freeaddrinfo
- ws2_32.dll.getnameinfo
- ws2_32.dll.WSALookupServiceBeginW
- ws2_32.dll.WSALookupServiceNextW
- ws2_32.dll.WSALookupServiceEnd
- ws2_32.dll.WSANSPIoctl
- ws2_32.dll.WSAStringToAddressA
- ws2_32.dll.WSAStringToAddressW
- ws2_32.dll.WSAAddressToStringA
- dnsapi.dll.DnsGetProxyInformation
- dnsapi.dll.DnsFreeProxyName
- iphlpapi.dll.GetIpForwardTable2
- iphlpapi.dll.FreeMibTable
- iphlpapi.dll.GetIfEntry2
- iphlpapi.dll.ConvertInterfaceGuidToLuid
- iphlpapi.dll.ResolveIpNetEntry2
- iphlpapi.dll.GetIpNetEntry2
- shlwapi.dll.#260
- rasapi32.dll.RasEnumEntriesW
- rasapi32.dll.RasConnectionNotificationW
- rtutils.dll.TraceRegisterExA
- rtutils.dll.TracePrintfExA
- sechost.dll.ConvertSidToStringSidW
- profapi.dll.#104
- shlwapi.dll.PathCanonicalizeW
- shlwapi.dll.PathRemoveFileSpecW
- shlwapi.dll.PathFindFileNameW
- sechost.dll.NotifyServiceStatusChangeA
- sensapi.dll.IsNetworkAlive
- rpcrt4.dll.RpcBindingFromStringBindingW
- rpcrt4.dll.RpcBindingSetAuthInfoExW
- rpcrt4.dll.NdrClientCall2
- user32.dll.MonitorFromWindow
- user32.dll.MonitorFromRect
- user32.dll.MonitorFromPoint
- user32.dll.EnumDisplayMonitors
- user32.dll.GetMonitorInfoA
- gdi32.dll.GetLayout
- gdi32.dll.GdiRealizationInfo
- gdi32.dll.FontIsLinked
- advapi32.dll.RegQueryInfoKeyW
- gdi32.dll.GetTextFaceAliasW
- advapi32.dll.RegEnumValueW
- advapi32.dll.RegEnumKeyExW
- gdi32.dll.GetTextExtentExPointWPri
- gdi32.dll.GetFontAssocStatus
- gdi32.dll.GdiIsMetaPrintDC
- oleaut32.dll.SysAllocString
- oleaut32.dll.SysStringLen
- oleaut32.dll.SysFreeString
- user32.dll.TrackMouseEvent
- kernel32.dll.WriteConsoleW
- kernel32.dll.SwitchToThread
- kernel32.dll.SetWaitableTimer
- kernel32.dll.SetProcessPriorityBoost
- kernel32.dll.LoadLibraryW
- kernel32.dll.GetSystemInfo
- kernel32.dll.GetQueuedCompletionStatus
- kernel32.dll.GetProcessAffinityMask
- kernel32.dll.DuplicateHandle
- kernel32.dll.CreateIoCompletionPort
- kernel32.dll.AddVectoredExceptionHandler
- winmm.dll.timeEndPeriod
- winmm.dll.timeBeginPeriod
- ws2_32.dll.WSAGetOverlappedResult
- kernel32.dll.AddVectoredContinueHandler
- kernel32.dll.GetQueuedCompletionStatusEx
- kernel32.dll.LoadLibraryExW
- advapi32.dll.SystemFunction036
- ntdll.dll.NtWaitForSingleObject
- cryptbase.dll.SystemFunction001
- cryptbase.dll.SystemFunction002
- cryptbase.dll.SystemFunction003
- cryptbase.dll.SystemFunction004
- cryptbase.dll.SystemFunction005
- cryptbase.dll.SystemFunction028
- cryptbase.dll.SystemFunction029
- cryptbase.dll.SystemFunction034
- cryptbase.dll.SystemFunction040
- cryptbase.dll.SystemFunction041
- kernel32.dll.CancelIoEx
- kernel32.dll.SetFileCompletionNotificationModes
- ws2_32.dll.WSAEnumProtocolsW
- kernel32.dll.GetCommandLineW
- kernel32.dll.GetEnvironmentVariableW
- cryptsp.dll.CryptAcquireContextW
- cryptsp.dll.CryptGenRandom
- mswsock.dll.AcceptEx
- kernel32.dll.FindFirstFileW
- kernel32.dll.FormatMessageW
- kernel32.dll.DeleteFileW
- kernel32.dll.RemoveDirectoryW
- ws2_32.dll.WSASend
- ws2_32.dll.WSARecv
- ws2_32.dll.GetAddrInfoW
- ws2_32.dll.FreeAddrInfoW
- mswsock.dll.GetAcceptExSockaddrs
- advapi32.dll.EventWrite
- advapi32.dll.EventRegister
- advapi32.dll.EventUnregister
- kernel32.dll.SetProcessDEPPolicy
- user32.dll.SetProcessDPIAware
- shell32.dll.SetCurrentProcessExplicitAppUserModelID
- user32.dll.GetShellWindow
- ieframe.dll.#250
- wininet.dll.InternetQueryOptionW
- comctl32.dll.PropertySheetW
- comctl32.dll.PropertySheetA
- comdlg32.dll.PageSetupDlgW
- comdlg32.dll.PrintDlgW
- urlmon.dll.#101
- kernel32.dll.WerRegisterMemoryBlock
- kernel32.dll.WerUnregisterMemoryBlock
- urlmon.dll.#400
- advapi32.dll.TraceMessage
- advapi32.dll.TraceMessageVa
- kernel32.dll.IsWow64Process
- sqmapi.dll.SqmGetSession
- sqmapi.dll.SqmEndSession
- sqmapi.dll.SqmStartSession
- sqmapi.dll.SqmStartUpload
- sqmapi.dll.SqmWaitForUploadComplete
- sqmapi.dll.SqmSet
- sqmapi.dll.SqmSetBool
- sqmapi.dll.SqmSetBits
- sqmapi.dll.SqmSetString
- sqmapi.dll.SqmIncrement
- sqmapi.dll.SqmSetIfMax
- sqmapi.dll.SqmSetIfMin
- sqmapi.dll.SqmAddToAverage
- sqmapi.dll.SqmAddToStreamDWord
- sqmapi.dll.SqmAddToStreamString
- sqmapi.dll.SqmSetAppId
- sqmapi.dll.SqmSetAppVersion
- sqmapi.dll.SqmSetMachineId
- sqmapi.dll.SqmSetUserId
- sqmapi.dll.SqmCreateNewId
- sqmapi.dll.SqmReadSharedMachineId
- sqmapi.dll.SqmReadSharedUserId
- sqmapi.dll.SqmWriteSharedMachineId
- sqmapi.dll.SqmWriteSharedUserId
- sqmapi.dll.SqmIsWindowsOptedIn
- urlmon.dll.#442
- user32.dll.RegisterWindowMessageW
- rpcrt4.dll.UuidCreateSequential
- rpcrt4.dll.RpcServerUseProtseqW
- rpcrt4.dll.RpcServerRegisterIfEx
- rpcrtremote.dll.I_RpcExtInitializeExtensionPoint
- rpcrt4.dll.RpcServerInqBindings
- rpcrt4.dll.RpcEpRegisterW
- rpcrt4.dll.RpcServerListen
- ntdll.dll.NtQuerySystemInformation
- user32.dll.RegisterClassExW
- user32.dll.CreateWindowExW
- user32.dll.DefWindowProcW
- user32.dll.SetWindowLongW
- urlmon.dll.#416
- kernel32.dll.RegisterApplicationRestart
- shell32.dll.#165
- urlmon.dll.CoInternetCreateZoneManager
- urlmon.dll.CreateUri
- version.dll.GetFileVersionInfoSizeW
- version.dll.GetFileVersionInfoW
- version.dll.VerQueryValueW
- ole32.dll.CoTaskMemAlloc
- ole32.dll.CoGetMalloc
- ole32.dll.CoGetApartmentType
- ole32.dll.CoTaskMemFree
- comctl32.dll.#236
- oleaut32.dll.#6
- comctl32.dll.#320
- comctl32.dll.#324
- comctl32.dll.#323
- apphelp.dll.ApphelpCheckShellObject
- urlmon.dll.#111
- user32.dll.AllowSetForegroundWindow
- wininet.dll.InternetInitializeAutoProxyDll
- nlaapi.dll.NSPStartup
- iphlpapi.dll.GetAdapterIndex
- rasadhlp.dll.WSAttemptAutodialAddr
- rasadhlp.dll.WSAttemptAutodialName
- rasadhlp.dll.WSNoteSuccessfulHostentLookup
- user32.dll.PostThreadMessageW
- comctl32.dll.LoadIconWithScaleDown
- ieui.dll.InitGadgets
- sechost.dll.LookupAccountNameLocalW
- advapi32.dll.LookupAccountSidW
- sechost.dll.LookupAccountSidLocalW
- cryptsp.dll.CryptReleaseContext
- ieproxy.dll.DllGetClassObject
- ieproxy.dll.DllCanUnloadNow
- ole32.dll.CoGetClassObject
- ole32.dll.CoGetMarshalSizeMax
- ole32.dll.CoMarshalInterface
- ole32.dll.CoUnmarshalInterface
- ole32.dll.StringFromIID
- ole32.dll.CoGetPSClsid
- ole32.dll.CoReleaseMarshalData
- ole32.dll.DcomChannelSetHResult
- user32.dll.MsgWaitForMultipleObjectsEx
- uxtheme.dll.OpenThemeData
- comctl32.dll.#410
- comctl32.dll.#413
- uxtheme.dll.IsAppThemed
- comctl32.dll.ImageList_LoadImageW
- comctl32.dll.ImageList_GetIconSize
- uxtheme.dll.IsCompositionActive
- uxtheme.dll.SetWindowTheme
- comctl32.dll.ImageList_Create
- comctl32.dll.ImageList_ReplaceIcon
- oleaut32.dll.#10
- comctl32.dll.ImageList_AddMasked
- oleaut32.dll.#2
- imm32.dll.ImmIsIME
- urlmon.dll.CoInternetCreateSecurityManager
- msctf.dll.SetInputScopes2
- oleaut32.dll.#500
- uxtheme.dll.EnableThemeDialogTexture
- urlmon.dll.#408
- uxtheme.dll.IsThemeActive
- ieui.dll.CreateGadget
- ieui.dll.SetGadgetMessageFilter
- ieui.dll.SetGadgetStyle
- ieui.dll.SetGadgetRootInfo
- xmllite.dll.CreateXmlReader
- xmllite.dll.CreateXmlReaderInputWithEncodingName
- ieui.dll.FindStdColor
- ieui.dll.InvalidateGadget
- ieui.dll.SetGadgetParent
- ieui.dll.GetGadgetTicket
- ieui.dll.SetGadgetRect
- uxtheme.dll.DrawThemeParentBackground
- comctl32.dll.ImageList_Draw
- uxtheme.dll.BufferedPaintInit
- uxtheme.dll.BufferedPaintRenderAnimation
- uxtheme.dll.BeginBufferedAnimation
- uxtheme.dll.EndBufferedAnimation
- uxtheme.dll.BeginBufferedPaint
- uxtheme.dll.EndBufferedPaint
- shell32.dll.SHGetInstanceExplorer
- wininet.dll.InternetSetOptionW
- user32.dll.PostMessageW
- user32.dll.PeekMessageW
- user32.dll.DispatchMessageW
- rpcrt4.dll.RpcBindingToStringBindingW
- rpcrt4.dll.RpcStringBindingParseW
- rpcrt4.dll.RpcStringFreeW
- rpcrt4.dll.I_RpcBindingInqLocalClientPID
- rpcrt4.dll.RpcServerInqCallAttributesW
- rpcrt4.dll.RpcImpersonateClient
- rpcrt4.dll.RpcRevertToSelf
- rpcrt4.dll.NdrServerCall2
- rpcrt4.dll.RpcBindingInqObject
- ieui.dll.PeekMessageExW
- ole32.dll.RegisterDragDrop
- msimg32.dll.GradientFill
- ieui.dll.WaitMessageEx
- rpcrt4.dll.RpcStringBindingComposeW
- user32.dll.GetWindowLongW
- user32.dll.SendMessageW
- rpcrt4.dll.RpcBindingFree
- oleaut32.dll.#9
- oleaut32.dll.DllGetClassObject
- oleaut32.dll.DllCanUnloadNow
- sxs.dll.SxsOleAut32MapIIDToProxyStubCLSID
- advapi32.dll.RegQueryValueW
- sxs.dll.SxsOleAut32MapIIDToTLBPath
- advapi32.dll.RegOpenKeyW
- sxs.dll.SxsOleAut32MapConfiguredClsidToReferenceClsid
- sxs.dll.SxsOleAut32RedirectTypeLibrary
- mlang.dll.#112
- wininet.dll.GetUrlCacheEntryInfoA
- ole32.dll.CreateBindCtx
- comctl32.dll.#328
- comctl32.dll.#334
- setupapi.dll.CM_Get_Device_Interface_List_Size_ExW
- setupapi.dll.CM_Get_Device_Interface_List_ExW
- comctl32.dll.#332
- advapi32.dll.InitializeSecurityDescriptor
- advapi32.dll.SetEntriesInAclW
- advapi32.dll.SetSecurityDescriptorDacl
- advapi32.dll.IsTextUnicode
- comctl32.dll.#338
- comctl32.dll.#386
- comctl32.dll.#339
- shell32.dll.#102
- propsys.dll.PSCreateMemoryPropertyStore
- propsys.dll.PSPropertyBag_WriteStr
- ole32.dll.PropVariantClear
- propsys.dll.PSPropertyBag_WriteGUID
- propsys.dll.PSPropertyBag_ReadGUID
- propsys.dll.PSStringFromPropertyKey
- propsys.dll.PSGetPropertyDescription
- propsys.dll.PropVariantToString
- propsys.dll.InitPropVariantFromStringAsVector
- propsys.dll.PSCoerceToCanonicalValue
- usp10.dll.ScriptIsComplex
- urlmon.dll.#420
- comctl32.dll.ImageList_Read
- comctl32.dll.ImageList_GetImageCount
- comctl32.dll.HIMAGELIST_QueryInterface
- comctl32.dll.ImageList_Remove
- urlmon.dll.#441
- urlmon.dll.#395
- urlmon.dll.#351
- wininet.dll.GetUrlCacheEntryInfoExW
- normaliz.dll.IdnToAscii
- wininet.dll.GetUrlCacheEntryInfoExA
- urlmon.dll.#423
- actxprxy.dll.DllGetClassObject
- actxprxy.dll.DllCanUnloadNow
- ieui.dll.FindGadgetFromPoint
- ieui.dll.DUserSendEvent
- ieui.dll.GetGadgetRect
- ieframe.dll.#251
- kernel32.dll.WerSetFlags
- ieshims.dll.IEShims_Initialize
- kernel32.dll.VirtualProtect
- user32.dll.SetWindowsHookExW
- kernel32.dll.CreateProcessW
- advapi32.dll.RegQueryValueA
- ntdll.dll.LdrRegisterDllNotification
- advapi32.dll.OpenThreadToken
- ole32.dll.NdrOleInitializeExtension
- shell32.dll.SHChangeNotifyRegisterThread
- comctl32.dll.#4
- ieshims.dll.IEShims_SetRedirectRegistryForThread
- wininet.dll.GetUrlCacheEntryInfoW
- urlmon.dll.CreateURLMonikerEx
- urlmon.dll.CreateAsyncBindCtxEx
- urlmon.dll.RegisterBindStatusCallback
- urlmon.dll.UrlMkGetSessionOption
- mlang.dll.#121
- urlmon.dll.#444
- urlmon.dll.#445
- urlmon.dll.CoInternetIsFeatureEnabledForUrl
- comctl32.dll.ImageList_Destroy
- comctl32.dll.ImageList_Add
- urlmon.dll.#104
- kernel32.dll.InterlockedPushEntrySList
- kernel32.dll.InterlockedPopEntrySList
- user32.dll.MsgWaitForMultipleObjects
- user32.dll.IsWindowUnicode
- user32.dll.GetMessageW
- kernel32.dll.FlsAlloc
- kernel32.dll.FlsGetValue
- kernel32.dll.FlsSetValue
- kernel32.dll.FlsFree
- deploy.dll.getLatestInstalledVersion
- advapi32.dll.RegEnumKeyExA
- shlwapi.dll.PathFileExistsA
- comctl32.dll.#8
- urlmon.dll.RevokeBindStatusCallback
- urlmon.dll.CreateFormatEnumerator
- urlmon.dll.CreateIUriBuilder
- urlmon.dll.IntlPercentEncodeNormalize
- user32.dll.ChangeWindowMessageFilter
- dwmapi.dll.DwmSetWindowAttribute
- imm32.dll.ImmGetContext