!This program cannot be run in DOS mode.
`.rdata
@.data
.pdata
@.rsrc
@.reloc
UWATAUAWH
D9l$DA
t{D9l$@H
u$D9l$Hu
D9l$Lt
A_A]A\_]
9 wwfD9!t
umfD9!t
[ UVWATAUAVAWH
t$HcG<
H;|80u
pA_A^A]A\_^]
l$ VWATH
UVWATAUAVAWH
`A_A^A]A\_^]
WATAUH
u*9Q<|%
L$ SUVWH
fA9(tnH
USVWATAUAVAWH
HA_A^A]A\_^[]
WATAVH
A^A\_
p WATAUH
A]A\_
fD9!u=H
WATAUAVAWH
A_A^A]A\_
>.u.H;
8*t fD
UVWATAUAVAWH
A_A^A]A\_^][
SVWATAUAVH
A^A]A\_^[]
UWATAUAVH
fD;t$@
A^A]A\_]
LcA<E3
iexplore.pdb
SetProcessDPIAware
SetProcessDEPPolicy
SetSearchPathMode
SetCurrentProcessExplicitAppUserModelID
IEFRAME.dll
MLANG.dll
iertutil.dll
urlmon.dll
ole32.dll
SHELL32.dll
SHLWAPI.dll
ntdll.dll
msvcrt.dll
USER32.dll
KERNEL32.dll
ADVAPI32.dll
EventWrite
GetTraceEnableFlags
RegQueryValueExW
EventUnregister
GetTraceLoggerHandle
TraceEvent
UnregisterTraceGuids
RegOpenKeyExW
EventRegister
GetTraceEnableLevel
RegCloseKey
RegisterTraceGuidsW
TerminateProcess
CreateFileW
lstrlenW
VerifyVersionInfoW
GetProcAddress
LocalAlloc
IsWow64Process
HeapSetInformation
GetFileTime
DeleteCriticalSection
CloseHandle
GetWindowsDirectoryW
LocalFree
InitializeCriticalSection
LoadLibraryW
GetModuleHandleW
GetCurrentProcess
VerSetConditionMask
SetDllDirectoryW
CreateProcessW
SetErrorMode
GetCommandLineW
RaiseException
LoadLibraryA
VirtualAlloc
GetLastError
GetSystemDefaultLCID
GetUserDefaultLCID
EnterCriticalSection
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetVersionExA
ExpandEnvironmentStringsW
FreeLibrary
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentDirectoryW
IsWindowEnabled
LoadStringW
CharNextW
SendMessageTimeoutW
GetWindowThreadProcessId
FindWindowExW
AllowSetForegroundWindow
IsWindowVisible
MessageBoxW
rand_s
memset
??3@YAXPEAX@Z
??2@YAPEAX_K@Z
wcschr
iswalpha
_vsnwprintf
iswspace
_onexit
__dllonexit
_unlock
?terminate@@YAXXZ
__set_app_type
_fmode
_commode
__setusermatherr
_amsg_exit
_initterm
_wcmdln
_cexit
_XcptFilter
__C_specific_handler
__wgetmainargs
wcsncmp
memcpy
RtlVirtualUnwind
RtlCaptureContext
RtlLookupFunctionEntry
SHGetValueW
SHRegGetValueW
SHSetValueW
UrlApplySchemeW
PathIsURLW
UrlCanonicalizeW
StrStrW
PathFindFileNameW
UrlCreateFromPathW
CommandLineToArgvW
CoUninitialize
CoInitialize
Service Pack 1
L]5MrI
;BDDNRRGE;
=DNbfjnnjojutrR;
nnqqqqqzqqqojiUR:
hpzzzz
zzzqqiiPE
I?(((()((( ((
+?@(IJ
0-ZZW$
'fhimmmhf+%
}G/-4X
DE4/4////////---
DF443333130
4CEHH90
$DkynC&
.ENNNG.
x\3.N,:
\q=AP\
!#4VBc9
/[z`X[
fC|_t@;1
[n?rhf
u!Ug4X}
a.ry.v
Z5&s&7
;X;y'+
L$XzKH
b[P,kG
(xk0ql
b}k!kB
T:E6m2A
3$zBPs
4wNOu{
6wi g"
M>8Hcp
gdMkS7
'?tBRp
\zq5%`
l.igM4
@&0&_g
3w2!_a|
~bMkd`!
VEX M$
lRwSjH4_?
L(}^$A>#
g Sk?eY
AFR#@.2#$
qYFnrm
kwE*PPB_
Q Gt.9
q1"hifge],
Rp$RCJ
c4Z'Ej[ 5"
@$/t"T
<"dzNZ
f?[I/f
(2Wt[9pd
C?&f{fp
0;j x|
*B 8W] P
Lb m6X
\-0XH1*
By}H&C'
UJ_Pbp
5]1LrT
;Ye/(u&
l>(UuSI
e&V"%JA
Fy_Bc=
!U@d5cZ
?h :81
kW)/Z0
pC{yu5
IDAT9#
%JVzI5)
?1%SGf
P2}_nA
*#k*~#
K\|7_i
$eO&iK
1F$A"w
`X"8|N
1Ywfcp
"HMtcX
pIDAT7
1Igjzu
['/FWL
IWL=Eevm
eZzjU fj
V9fB0,
wwwwwwwwwwwwwwwx
wwwwwwwwwwww
wwwwwwwwwwx
wwwwwwwwx
wwwwwwwx
wwwwwx
wwwwww
FHIMMMHF
0DMU\]]]]\QNH
^^]\NF
^^^\PF
Y9" 7B
"B^^]PE
xh.JW^
.97777"7" " " !
*9988777777
ynf$79:C
||wxxx
:DKWWKFB$
)/NSKC"
,2HSK
3....+))+
/8U[SA
+DKKKF-#
w\3+M*7
8888888888888
RRRRRRRRR
GRRRRR
RUSQQQQQ
8888888888
m066^$
EQ 6'0
$JA 3*b
^H)'I2g
@ Sjb?
H>O-jb*
W*,[5H
?fMz?k
saPz?i
t:LLLp
Ou5}?Y7
D,/V%~
U J Qn^
FU*l?`
;p+3KK
02rWed
`4Wn8q
>4F7C)
14FF@E
w?2wz7
_wRB?Q
DNnh<t)
1&lk66
Mj&@:_
48r;"
K:vd~PF
4?%)cH
bqnA%>g
/y&6N51
{]A}(N44
)4{d.l
x;O?rha
W1U!F@<0
kxD6 N
F)bn)K#
lX:p"r
u)DF(%
ET) X }A,-
)i3&Wr
68*RZa
]GLTQ}
}}5"n
V9^=2(
wwxwwwxwxxp
2111111111111111111110
1Y444V444VVVSVSVSSSSS1
1YYYYVVVVVSVSTTSSSSSS1
1YYYVVVSVSVTRNNNTTSSS1
VVVVVTTTSS1
VRNNNTTTTS1
211111YY
VVVVVTVSTT1
1YYVV1YY
VVVVVTTTTT1
1YYYW1YY
VRNNNV
1YYYY1YY ####%# VVVVVT
1YYYY1YY+$$+%%%%VRNNNT
1YYYY1YY7=6,,,,$VVVVUW
1YYYY1YY7IGDA==7VRNNNV((VS1
1YYYY1YY7LKIHEB=WVVVVW-'VV1
1YYYY1YY9GEAA=77YRNNNW:.VT1
1YYYY1YYYYYYYYYYYYYYWWWVVV0
1YYYY1OOOOOOOOOOOOOONONNNN1
1YYYY0QQQRQQQRQQQRQQ
1YYYYM111111111111111111112
1YYYYYYYYYYYYYYYYWWVV1
1YYYYYYYYYYYYYYYYYVVT1
1YYYYYYYYYYYYYYYYYWVW1
1OOOOOOOOOOOOOOOONPPP1
/QQQRQQQRQQQRQQ
3111111111111111111112
wwwwwwwwwwp
wwwwwwwwwwp
wwwwwwwwwwp
wwwwwwwwww
wwwwwwwwwx
wwwwwwwww
wwwwwwww
wwwwwwx
wwwwwwww
wwwwwwwwx
wwwwwwww
uuuttrrrrrrrrz
KNJF3&
);IQJ1+
''''##'
888777777
9OSJD-
f\Us':AP
p`YT+(
qc^^ih]i
}}}}}}}}|||||||||
(++++++
7DDF)YYYY
OS=NLLLH
+++++++***
|gl|ep
df||tg
Z2`_Ot
Y4SROO5H
]4kSTTLKK+-
]bolSTQML=<;-)s
/eokSSUQVL=E;9);
/cpokSTQVVV<E9,F
ZdpnkSTTVQL<<C,w
Z\ojhkSTMMM<=C&
Y.hilkRROMLK=C,
[[f4h6PRTKIL:;&
}s(-RihiPROKI:<&
,LIKOIL:)
//////////////
-[TGC>=[
-][GGC=[
-``[GGC[
-agggeD[0
N';aaa][LEC1'T
N';]aa`[C4'W
N*;]a`G3'W
# O,;[J;'W
P,;;%W
N''T
wfV~td
4/-6888
n@?Ju5!
}=)G}=(
>(B}=(-}=(o|<(
xwwwxww
~~~~{{{yt
~~~~{~{yttn
t{{{{{{tttp
t{{{yytttQ2
ptytytnc
y{{tnj
hjjnjL
t{{{{{tnjhSSE
n{{{{{yyyyn[
%!NPj{{{{{{{{td/
!Jht~{{{{{p[3
?Kmt~sm]G
???n*+*+
tpt&mfh
988r+++,
ploEwoq
=;<0wwx
;;<wnmj
,--SHGG
wwwwwwww
px||dlvv
pxvd|x
*g}DL3^
dEJJJD_
%ip=?GJG^=
e%<???=o
/%=2=2[
bTT@7
jVUU@@7
VVVUN@@
XWVONc}
fef|yxz
ihimzy{
jijFmkm
wwwwwwwwwwwww
ZWWYVPPPMMMN[o
{liihhmn
h&+-dd^#
#-de^'
%!-ae^'
+#_g^#
q ^g^!
:8887 g_
z;=??<5b-
x>CCA@9G+J
wBDrDC@M#
rsusEt
244444444444444444444442
01111111111111111111111
AAAAAAAAAAAAAAAAAyyyyyyyyyyyyyyAAy/0.*+,1<gipdyAGzhf
(>?q=zGGzbo
nsr@2zGGzcxm
tRljCzII}kh;
D}GI}a" !
E}II}-$%#'TuSM
O}IK}P98:[_^`w]\Q}KK} ZWZZXXXVVZ
}KK}}}}}}}}}}}}}}KKKKRKKKRKKKRKKKK
wwwwwwwwwwp
;{{{{{{0
;33;33;0N
!!!
!!!!!!!
7sw7sw
.((%$
..('$$$
..(((($$
3...((((%
3....(.''$
3.2...((((%
33.2....(,'
55323222...
wwwwww
8888888888888
RRRRRRRRR
GRRRRR
RUSQQQQQ
8888888888
wwwwwwwwwwwwwwwx
wwwwwwwwwwww
wwwwwwwwwwx
wwwwwwwwx
wwwwww
FHIMMMHF
0DMU\]]]]\QNH
^^]\NF
^^^\PF
Y9" 7B
"B^^]PE
xh.JW^
.97777"7" " " !
*9988777777
ynf$79:C
||wxxx
:DKWWKFB$
)/NSKC"
,2HSK
3....+))+
/8U[SA
8888888888888
RRRRRRRRR
GRRRRR
RUSQQQQQ
8888888888
V9^=2(
xwwwxww
~~~~{{{yt
~~~~{~{yttn
t{{{{{{tttp
t{{{yytttQ2
ptytytnc
y{{tnj
hjjnjL
t{{{{{tnjhSSE
n{{{{{yyyyn[
%!NPj{{{{{{{{td/
!Jht~{{{{{p[3
?Kmt~sm]G
A@>>7%
37>>7$
771/00
(7A@@>'
???n*+*+
tpt&mfh
988r+++,
ploEwoq
=;<0wwx
;;<wnmj
,--SHGG
XY[]Boqr
TWZTTWZT
{u}WYZ
GJNSsmh
wwwwwwwwwwx
wwwwwwwwx
wwwwww
HMLKFFFFFFc
,37AAA52+#
H^]NMLKKJJIF
H[a_^]NMLKKJF
bba_^]NNLKF
dbba`^^]]F
eeHHHHHHc
(?D=1
onh||i|
@@@@@@@@@@@@@
V%%(((
K51ddd
dW9/+=
@@@@@@@@@@
wwwwwwwwwwx
wwwwwwwwx
wwwwww
HMLKFFFFFFc
,37AAA52+#
H^]NMLKKJJIF
H[a_^]NMLKKJF
bba_^]NNLKF
dbba`^^]]F
eeHHHHHHc
(?D=1
onh||i|
@@@@@@@@@@@@@
V%%(((
K51ddd
dW9/+=
@@@@@@@@@@
wwwwwwwwwwx
wwwwwwwwx
wwwwww
HMLKFFFFFFc
,37AAA52+#
H^]NMLKKJJIF
H[a_^]NMLKKJF
bba_^]NNLKF
dbba`^^]]F
eeHHHHHHc
(?D=1
onh||i|
@@@@@@@@@@@@@
V%%(((
K51ddd
dW9/+=
@@@@@@@@@@
pdvggp
c#b&*|||
|v&""c&
g"&#&6vl|v
tr&2bvfd|||l
gl||deg
gn|vlpl~nw
IQRRMS
TGEtwzyqz
wwrhmmy|
____gmx>N
\__aac
\__gahss
+???NNX
_aaelm
**(%)444?HNN
]_gmmqq
(%&'00443445?
J-"0'''''030433H
.)3?664'''''0&//3
Y&&"$*(88+)+BCVVVB64'''%!
32;;=C
WCVB64''!
WWCV6''#odd
WWV6&(
@JMMU"/
:<OSSQ
I?VX^m3)
R_as/%%!
cdfge|z/Z>;&
3s337p
333333
:GUUUP-x:
_PURUUUU
zsttcUPC
cQL:-$%%
QGPPQUUc
ttsc_UP
_PG:-%%-
ULQRUccs
txuscUU
_PLG:**:
_PPUUUcs
xzxtpps
cPJ>:-*Gx`*>
Fsccspc
3P_ptxP
00.,,,4(
000.,,9(
0020..9(
003200;(
\/48718
ggh,bbcxggh
dddKffgK
jjk,eef
mnn,hhi
rss,jkk
uvv,opp
rqokzzz
yyz,rss
}~~,vvw
wwwwwwwwww
C71/48
{T|}U?
'Kn)yvDstbW
:20/48
<71/48
lihhil
33p3337330
7wwwwp
'GG9G'
_*%GSSehhZ??>>?B>
tbmooookooknRRR/.-M
~t7bbbb77777.7-...-R
}t{}~~~zzo777kkxx
'#$!
nnnnnnnnnn
(#'(+(''''!'!
nnnnnnnnnn
Tnnnnnnnnnj
jjjnnpp
nnnnnnnnnn
njejnnp
nnnnnnnnnn
enefjjn
nnnnnnnnnn
fjjefjj
nnnnnnnnnn
fjjjbej
pnnnnnnnnn
[jejfbe
Tnnpnnnnnnn
X[jenab
pnnnnnnnnn
XX\jb_`
npnnnnnnnn
XWX_b\_
pnpnnnnnnn
WWWXXZ\
pnnpnnnnnn
XWWWXXZ
pnnpnpnnnn
Tppnpnnnpnn
FFFBFB?B?333201
pnpnpnnnpn
-FFFFBFBBBB???008
ppnpnppnnp
pnppnnpnnn
ppnppnppnp
appppppppppppppppnppnpnp
_ppppppppppppppnppnpnpnp
_ppppppppppppppppppnppn_
_pppppppppppppppnppp_[RQ
_pppppppppppppppppONNNNR
apppppppppppppppppXnneRK
_ppppppppppppppppp[pf[L
_ppppppppppppppppp[eXL
appppppppppppppppjRXL
_ppppppppppppppppaRM
_a_a_a_a_a_a_a___[N
GGHI3)
<GHIM4)
<HMGI5
MHMM7)
<MHMI8*
<MMIM8
:MMMMMJMMMCC9
9IIMMMMMM9999
@MMHMIMMM@H9E
:MIMMMMIMB9E
@:@:::@@@9M
GuVgeeVeUWUW
Qw`[L+W
:fZ30L
}6Ju[`|
HhA)ux
z~qB 2
0g^34QU
r+K+}q
;r"?@p
7WP!?|
IDAT /
G=/QVD
Oj1E /
333~kO
e'>EQ1
YLD|y1
]{_ [Z
;BDDNRRGE;
=DNbfjnnjojutrR;
nnqqqqqzqqqojiUR:
hpzzzz
zzzqqiiPE
I?(((()((( ((
+?@(IJ
0-ZZW$
'fhimmmhf+%
}G/-4X
DE4/4////////---
DF443333130
4CEHH90
$DkynC&
.ENNNG.
x\3.N,:
\q=AP\
!#4VBc9
/[z`X[
fC|_t@;1
[n?rhf
u!Ug4X}
a.ry.v
Z5&s&7
;X;y'+
L$XzKH
b[P,kG
(xk0ql
b}k!kB
T:E6m2A
3$zBPs
4wNOu{
6wi g"
M>8Hcp
gdMkS7
'?tBRp
\zq5%`
l.igM4
@&0&_g
3w2!_a|
~bMkd`!
VEX M$
lRwSjH4_?
L(}^$A>#
g Sk?eY
AFR#@.2#$
qYFnrm
kwE*PPB_
Q Gt.9
q1"hifge],
Rp$RCJ
c4Z'Ej[ 5"
@$/t"T
<"dzNZ
f?[I/f
(2Wt[9pd
C?&f{fp
0;j x|
*B 8W] P
Lb m6X
\-0XH1*
By}H&C'
UJ_Pbp
5]1LrT
;Ye/(u&
l>(UuSI
e&V"%JA
Fy_Bc=
!U@d5cZ
?h :81
kW)/Z0
pC{yu5
IDAT9#
%JVzI5)
?1%SGf
P2}_nA
*#k*~#
K\|7_i
$eO&iK
1F$A"w
`X"8|N
1Ywfcp
"HMtcX
pIDAT7
1Igjzu
['/FWL
IWL=Eevm
eZzjU fj
V9fB0,
wwwwwwwwwwwwwwwx
wwwwwwwwwwww
wwwwwwwwwwx
wwwwwwwwx
wwwwwwwx
wwwwwx
wwwwww
FHIMMMHF
0DMU\]]]]\QNH
^^]\NF
^^^\PF
Y9" 7B
"B^^]PE
xh.JW^
.97777"7" " " !
*9988777777
ynf$79:C
||wxxx
:DKWWKFB$
)/NSKC"
,2HSK
3....+))+
/8U[SA
+DKKKF-#
w\3+M*7
8888888888888
RRRRRRRRR
GRRRRR
RUSQQQQQ
8888888888
m066^$
EQ 6'0
$JA 3*b
^H)'I2g
@ Sjb?
H>O-jb*
W*,[5H
?fMz?k
saPz?i
t:LLLp
Ou5}?Y7
D,/V%~
U J Qn^
FU*l?`
;p+3KK
02rWed
`4Wn8q
>4F7C)
14FF@E
w?2wz7
_wRB?Q
DNnh<t)
1&lk66
Mj&@:_
48r;"
K:vd~PF
4?%)cH
bqnA%>g
/y&6N51
{]A}(N44
)4{d.l
x;O?rha
W1U!F@<0
kxD6 N
F)bn)K#
lX:p"r
u)DF(%
ET) X }A,-
)i3&Wr
68*RZa
]GLTQ}
}}5"n
V9^=2(
;BDDNRRGE;
=DNbfjnnjojutrR;
nnqqqqqzqqqojiUR:
hpzzzz
zzzqqiiPE
I?(((()((( ((
+?@(IJ
0-ZZW$
'fhimmmhf+%
}G/-4X
DE4/4////////---
DF443333130
4CEHH90
$DkynC&
.ENNNG.
x\3.N,:
\q=AP\
!#4VBc9
/[z`X[
fC|_t@;1
[n?rhf
u!Ug4X}
a.ry.v
Z5&s&7
;X;y'+
L$XzKH
b[P,kG
(xk0ql
b}k!kB
T:E6m2A
3$zBPs
4wNOu{
6wi g"
M>8Hcp
gdMkS7
'?tBRp
\zq5%`
l.igM4
@&0&_g
3w2!_a|
~bMkd`!
VEX M$
lRwSjH4_?
L(}^$A>#
g Sk?eY
AFR#@.2#$
qYFnrm
kwE*PPB_
Q Gt.9
q1"hifge],
Rp$RCJ
c4Z'Ej[ 5"
@$/t"T
<"dzNZ
f?[I/f
(2Wt[9pd
C?&f{fp
0;j x|
*B 8W] P
Lb m6X
\-0XH1*
By}H&C'
UJ_Pbp
5]1LrT
;Ye/(u&
l>(UuSI
e&V"%JA
Fy_Bc=
!U@d5cZ
?h :81
kW)/Z0
pC{yu5
IDAT9#
%JVzI5)
?1%SGf
P2}_nA
*#k*~#
K\|7_i
$eO&iK
1F$A"w
`X"8|N
1Ywfcp
"HMtcX
pIDAT7
1Igjzu
['/FWL
IWL=Eevm
eZzjU fj
V9fB0,
wwwwwwwwwwwwwwwx
wwwwwwwwwwww
wwwwwwwwwwx
wwwwwwwwx
wwwwwwwx
wwwwwx
wwwwww
FHIMMMHF
0DMU\]]]]\QNH
^^]\NF
^^^\PF
Y9" 7B
"B^^]PE
xh.JW^
.97777"7" " " !
*9988777777
ynf$79:C
||wxxx
:DKWWKFB$
)/NSKC"
,2HSK
3....+))+
/8U[SA
+DKKKF-#
w\3+M*7
8888888888888
RRRRRRRRR
GRRRRR
RUSQQQQQ
8888888888
m066^$
EQ 6'0
$JA 3*b
^H)'I2g
@ Sjb?
H>O-jb*
W*,[5H
?fMz?k
saPz?i
t:LLLp
Ou5}?Y7
D,/V%~
U J Qn^
FU*l?`
;p+3KK
02rWed
`4Wn8q
>4F7C)
14FF@E
w?2wz7
_wRB?Q
DNnh<t)
1&lk66
Mj&@:_
48r;"
K:vd~PF
4?%)cH
bqnA%>g
/y&6N51
{]A}(N44
)4{d.l
x;O?rha
W1U!F@<0
kxD6 N
F)bn)K#
lX:p"r
u)DF(%
ET) X }A,-
)i3&Wr
68*RZa
]GLTQ}
}}5"n
V9^=2(
Microsoft.InternetExplorer.64Bit
Microsoft.InternetExplorer.Default
SCODEF:
-newtab
{28fb17e0-d393-439d-9a21-9474a070473a}
-nowait
-ResetDestinationList
xfire.exe
wlmail.exe
winamp.exe
waol.exe
sidebar.exe
psocdesigner.exe
np.exe
netscape.exe
netcaptor.exe
neoplanet.exe
msn.exe
mshtmpad.exe
mshta.exe
mmc.exe
loader42.exe
infopath.exe
iexplore.exe
iepreview.exe
groove.exe
explorer.exe
dreamweaver.exe
devenv.exe
contribute.exe
aol.exe
user32.dll
Security_HKLM_only
Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl
Software\Microsoft\Internet Explorer\Main\FeatureControl
FEATURE_ENABLESAFESEARCHPATH_KB963027
Kernel32.DLL
CREDAT:
HaveCreatedQuickLaunchItems
Software\Microsoft\Internet Explorer\Setup
TerminateOnShutdown
Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe
Software\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}
StubPath
-ShowQLIcon
"%s" %s
IEFrame
\AppPatch\sysmain.sdb
-extoff go.microsoft.com/fwlink/?LinkId=106323
kernel32.dll
{SUB_RFC1766}
{SUB_CLSID}
{SUB_CLCID}
{SUB_OLCID}
{SUB_OVER}
{SUB_OS}
{SUB_PVER}
{SUB_PRD}
DShell32.dll
about:home
about:blank
StartPageCache
Software\Microsoft\Internet Explorer\Main
::$DATA
{00000000-0000-0000-0000-000000000000}
\\?\Volume
shell:%s
AcceptLanguage
Software\Microsoft\Internet Explorer\International
%#04lx
WEVT_TEMPLATE
Application
EventData
Application
AddonName
Publisher
Version
Application
AddonName
Publisher
Version
win:Start
win:Stop
win:Informational
Enable
Disable
Microsoft-PerfTrack-IEFRAME/Diagnostic
EventData
Object
Object
EventData
Object
Object
EventData
Object
Object
EventData
Object
OldTID
Object
OldTID
EventData
Object
NewTID
Object
NewTID
win:Info
win:Start
win:Stop
win:Informational
TabSwitch
TabCreate
FavoritesSwitchView
FeedsSwitchView
HistorySwitchView
HistoryByDateSwitchView
HistoryBySiteSwitchView
HistoryByMostVisSwitchView
HistoryByOrderSwitchView
HistorySearchSwitchView
FavCenterOpen
FavCenterClose
MenuExpand
MenuShrink
MenuItemPop
QuickPickSwitch
QuickPickShow
QuickPickHide
ShowTabListMenu
Browseui_Tabs_CloseTab_Perftrack
Browseui_CBrowserFrame_CreateInstance_Perftrack
CreateHTMLPreview_Perftrack
FavoritesBar_PopulateFeedsMenu_Perftrack
CreateThumbnail_Perftrack
Imaging_CreateWebPagePreview_Perftrack
Find_FindHits_Perftrack
Find_HighlightHits_Perftrack
Search_SuggestionsProcessing_Perftrack
Search_ImageProcessing_Perftrack
UnifiedListView_Typed_Perftrack
UnifiedListView_Dropdown_Perftrack
UnifiedListView_Displayed_Perftrack
UnifiedListView_Cancelled_Perftrack
UnifiedListView_Displayed_Complete_Perftrack
UnifiedListView_Query_History_Perftrack
UnifiedListView_Query_Favorites_Perftrack
UnifiedListView_Query_Feeds_Perftrack
Print_Dialog_Perftrack
Tab_Fast_Shutdown_Perftrack
Frame_Fast_Shutdown_Perftrack
Browseui_Tabs_Tearoff_ShowVisual
Browseui_Tabs_Tearoff_NewWindow
Browseui_Tabs_Tearoff_BetweenWindows
Browseui_Tabs_NavToDroppedLink
Browseui_Tabs_Move
Browseui_Tabs_Tearoff_Complete_TabProc
Find_FindFirstHit_Perftrack
Find_MatchAndHighlightHits_Perftrack
defunct
win:ResponseTime
Microsoft-PerfTrack-MSHTML/Diagnostic
EventData
Object
Object
win:Start
win:Stop
win:Informational
Navigation
Redirect
win:ResponseTime
Microsoft-IEFRAME/Diagnostic
EventData
Message
Message
EventData
EventData
EventData
EventData
EventData
ProcessId
MessageCount
ProcessId
MessageCount
EventData
QueryID
QueryID
EventData
ThreadID
ThreadID
EventData
QueryID
QueryID
EventData
PopulateOptions
PopulateOptions
EventData
LinkCount
LinkCount
EventData
Status
Status
EventData
ContextName
ContextName
EventData
OnCloseButton
OnCloseButton
EventData
TimeElapsed
TimeElapsed
win:Info
win:Start
win:Stop
Frame_URLEntered
Window_Minimized
Window_Maximized
BrowserThreadProc_StartFrame
BrowserThreadProc_Return
BackNaviagation_Requested
BrowserThreadProc_Next
BrowserThreadProc_Prior
LeftButtonAction
Shdocvw_BaseBrowser_Navigate
Shdocvw_BaseBrowser_DocumentComplete
Browseui_FeedViewer_PreviewStream
Shdocvw_Feed_Search
Browseui_Tabs_AddTabButton
Browseui_Tabs_AddTabAPI
Browseui_Tabs_TabReadyForNavigate
Browseui_Tabs_CloseTab
Browseui_Tabs_SwitchTabs
Browseui_Tabs_CloseOtherTabs
Browseui_CBrowserFrame_Close
Browseui_CSearchTagsMgr_ProcessSearchTag
Shdocvw_PanningTool_ScrollElementBy
Shdocvw_PanningTool_GetPanningProperties
Imaging_CreateWebPagePreview
Imaging_SendIconicThumbnail
Imaging_SendIconicLivePreviewBitmap
HistoryBrokerStartup
HistoryBrokerShutdown
AddToHistory
QueryHistory
EnumHistoryRecords
LegacyHistoryAdd
LegacyHistoryQuery
LegacyHistoryEnum
CreateThumbnail
ScaleThumbnail
CompressThumbnail
GenerateThumbnail
CtrlLeftButtonAction
ExtensionCreate
ExtensionSetSite
ExtensionShowDW
ExtensionCloseDW
ExtensionSetSiteNull
ExtensionRelease
WinMain
LCIE_ForeignProcessMessageQueueDequeueAll
LCIE_ForeignProcessMessageQueueEnqueue
OnlineHistoryAdd
OnlineHistoryCollectData
OnlineHistoryDelete
OnlineHistoryClear
Browseui_CBrowserFrame_CreateInstance
Frame_OnCreate
Frame_CommandBarCreate
Frame_CommandBandCreate
Frame_TabBandCreate
Frame_FavBandCreate
Frame_LinksBandCreate
Frame_NavBarCreate
Frame_TravelBandCreate
Frame_AddressBandCreate
Frame_SearchBandCreate
Frame_LoadFrameState
Frame_Show
Browseui_Tabs_WaitMessage
DataModel_Query
DataModel_Provider_Query
DataModel_Provider_WorkerThread
DataModel_Provider_CreateDataList
UnifiedListView_Populate
UnifiedListView_GroupPopulated
UnifiedListView_DefaultAction
UnifiedListView_SwitchMode
WS_ExecuteQuery
Tab_ShellBrowserOnCreate
Tab_InitializeBrowserState
Tab_NavigateToPidl
Menuband_PopulateShellFolderToolbar
CreateHTMLPreview
CreateHTMLPreview_ShowWindow
FavoritesBar_PopulateFeedsMenu
FavoritesBar_PopulateLinksMonitor
FavoritesBar_WriteLinksCache
Find_ActivateBar
Find_FindHits
Find_HighlightHits
Find_HighlightHitsStatus
Find_ChangeSelectedHit
Find_DeactivateBar
Search_SuggestionsDownload
Search_SuggestionsProcessing
Search_ImageProcessing
Browseui_Tabs_DropOnFavorites
Browseui_Favs_ItemsChanged
Addressbar_InlineAutocomplete
NewTabPage_Show
IE_API_Timer
Window_Resized
Window_Restored
DLM_DownloadWindow_Show
DLM_DownloadWindow_Hide
FirstRunDialog_Show
Browseui_CBrowserFrame_OnClose
Shdocvw_BaseBrowser_FireEvent_BeforeNavigate
Shdocvw_BaseBrowser_FireEvent_DocumentComplete
Shdocvw_BaseBrowser_FireEvent_DownloadBegin
Shdocvw_BaseBrowser_FireEvent_DownloadComplete
Shdocvw_BaseBrowser_FireEvent_NavigateComplete
Shdocvw_BaseBrowser_FireEvent_NavigateError
Shdocvw_BaseBrowser_FireEvent_NewWindow
Shdocvw_BaseBrowser_FireEvent_Quit
Shdocvw_BaseBrowser_FireEvent_WindowStateChanged
Shdocvw_BaseBrowser_FireEvent_NewWindow2
Shdocvw_BaseBrowser_FireEvent_NewWindow3
DLM_Security_Malware
DLM_Security_AntiVirus
DLM_Security_WVT
DLM_Security_Hash
DLM_Security_AppRep
DLM_DownloadBar_Show
DLM_DownloadBar_Close
Frame_MinIETabBandCreate
Frame_ControlBandCreate
Frame_TabBandMove
IdleTask_Execution_Time
DLM_Resume_Time
Find_FindFirstHit
Find_MatchAndHighlightHits
primarynav
subsystem
extended
verbose
mshtml
wininet
jscript
controlpanel
stoptraq
pageloadbreakdown
VS_VERSION_INFO
StringFileInfo
040904B0
CompanyName
Microsoft Corporation
FileDescription
Internet Explorer
FileVersion
9.00.8112.16684 (win7_ie9_GDR(builder).150722-1411)
InternalName
iexplore
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
IEXPLORE.EXE
ProductName
Windows
Internet Explorer
ProductVersion
9.00.8112.16684
0c0904E4
CompanyName
Microsoft Corporation
FileDescription
Internet Explorer
FileVersion
9.00.8112.16684
InternalName
iexplore
LegalCopyright
Microsoft Corporation. All rights reserved.
OriginalFilename
IEXPLORE.EXE
ProductName
Windows
Internet Explorer
ProductVersion
9.00.8112.16684
VarFileInfo
Translation
WEVT_TEMPLATE