Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
66s -
max time network
125s -
platform
windows10_x64 -
resource
win10 -
submitted
09/07/2020, 17:19
Static task
static1
Behavioral task
behavioral1
Sample
700a1s0ssssd7da.exe
Resource
win7v200430
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
700a1s0ssssd7da.exe
Resource
win10
windows10_x64
0 signatures
0 seconds
General
-
Target
700a1s0ssssd7da.exe
-
Size
717KB
-
MD5
3dcb42c5e7545c629c30d501feb908d5
-
SHA1
9633e564b46262cc03cdd29dc1a7aec468c0757e
-
SHA256
24ca9e85cfc0b4303facfe25f920917937ed7d5cca7938362417599d8444e159
-
SHA512
62d7cc702fdbdd11931a652fdb59aaf65cea32eb2ce29029abdfa44eb3c47a4c8b13703b808a68d836b897f6371dcfa3afe3ec3c396f482397ebee99cd99baf2
Score
10/10
Malware Config
Extracted
Path
C:\Boot\bg-BG\Read_Me.txt
Ransom Note
Attention!
All your files, documents, photos, databases and other important files are encrypted
The only method of recovering files is to purchase an unique decryptor. Only we can give you this decryptor and only we can recover your files.
The server with your decryptor is in a closed network TOR. You can get there by the following ways:
----------------------------------------------------------------------------------------
1. Download Tor browser - https://www.torproject.org/
2. Install Tor browser
3. Open Tor Browser
4. Open link in TOR browser: http://7rzpyw3hflwe2c7h.onion/?ZACEFHIK
5. Follow the instructions on this page
----------------------------------------------------------------------------------------
On our page you will see instructions on payment and get the opportunity to decrypt 1 file for free.
Alternate communication channel here: http://helpqvrg3cc5mvb3.onion/
URLs
http://7rzpyw3hflwe2c7h.onion/?ZACEFHIK
http://helpqvrg3cc5mvb3.onion/
Signatures
-
Modifies Installed Components in the registry 2 TTPs 1 IoCs
description ioc Process Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000\Software\Microsoft\Active Setup\Installed Components explorer.exe -
Suspicious use of WriteProcessMemory 12 IoCs
description pid Process procid_target PID 976 wrote to memory of 3900 976 700a1s0ssssd7da.exe 67 PID 976 wrote to memory of 3900 976 700a1s0ssssd7da.exe 67 PID 976 wrote to memory of 3900 976 700a1s0ssssd7da.exe 67 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 PID 976 wrote to memory of 3928 976 700a1s0ssssd7da.exe 68 -
Suspicious use of FindShellTrayWindow 5 IoCs
pid Process 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe -
Suspicious use of SendNotifyMessage 9 IoCs
pid Process 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe 3952 explorer.exe -
Enumerates connected drives 3 TTPs
-
Drops desktop.ini file(s) 3 IoCs
description ioc Process File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Desktop.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\desktop.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\DataServices\DESKTOP.INI 700a1s0ssssd7da.exe -
Modifies registry class 7 IoCs
description ioc Process Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance explorer.exe Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\Local Settings explorer.exe Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell explorer.exe Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU explorer.exe Set value (data) \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02 explorer.exe Set value (data) \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff explorer.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance explorer.exe -
Modifies control panel 3 IoCs
description ioc Process Set value (int) \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000\Control Panel\Desktop\TranscodedImageCount = "1" explorer.exe Set value (int) \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000\Control Panel\Desktop\LastUpdated = "4294967295" explorer.exe Key created \REGISTRY\USER\S-1-5-21-2066881839-3229799743-3576549721-1000\Control Panel\Desktop explorer.exe -
Suspicious use of AdjustPrivilegeToken 11 IoCs
description pid Process Token: SeDebugPrivilege 976 700a1s0ssssd7da.exe Token: SeShutdownPrivilege 3952 explorer.exe Token: SeCreatePagefilePrivilege 3952 explorer.exe Token: SeShutdownPrivilege 3952 explorer.exe Token: SeCreatePagefilePrivilege 3952 explorer.exe Token: SeShutdownPrivilege 3952 explorer.exe Token: SeCreatePagefilePrivilege 3952 explorer.exe Token: SeShutdownPrivilege 3952 explorer.exe Token: SeCreatePagefilePrivilege 3952 explorer.exe Token: SeShutdownPrivilege 3952 explorer.exe Token: SeCreatePagefilePrivilege 3952 explorer.exe -
Suspicious behavior: EnumeratesProcesses 5468 IoCs
pid Process 976 700a1s0ssssd7da.exe 976 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe 3928 700a1s0ssssd7da.exe -
Suspicious use of SetThreadContext 1 IoCs
description pid Process procid_target PID 976 set thread context of 3928 976 700a1s0ssssd7da.exe 68 -
Drops file in Program Files directory 9720 IoCs
description ioc Process File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\microsoft.system.package.metadata\Autogen\JSByteCodeCache_32 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TEXTCONV\WPFT632.CNV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.proofing.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\IVY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\LanguageModel\chstic.dgml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.DocumentServices.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000042\index.win32.bundle 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sq\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEEXCL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\platform.ini 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\FSTOCK.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\et.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-util-lookup.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_concat_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknav\osknavbase.xml 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\psfontj2d.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\en-US\wmpnscfg.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-60_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-80_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.nb-no.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.News\Assets\News_icon-up.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Other-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\asl-v20.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Badges\NewCollection.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\gui\libskins2_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\en-US.Calendar.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\locale\jfluid-server_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\SymSrv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Buttons\Solve\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.swt.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.preferences_3.5.200.v20140224-1527.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_MAKC2R-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeUpdateSchedule.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-loaders.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Perfect\ribbon_1.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsptb.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN048.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\microsoft.system.package.metadata\Autogen\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\204.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-process-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Lightning bolt.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\SkypeSrv\SKYPESERVER.TLB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\qipcap64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\THIRDPARTYLICENSEREADME.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\AppVFileSystemMetadata.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\msmgdsrv_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\jquery-ui-1.8.13.custom.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-core-xstate-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\images\cursors\win32_CopyNoDrop32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\POWERMAPCLASSIFICATION.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipshe.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientVolumeLicense_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\BooleanIntersect.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Oval.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\en-GB.Calendar.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019DemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\images\cursors\win32_MoveDrop32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jabswitch.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\OpenSSL64.DllA\libcrypto-1_1-x64.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\modules\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\include\jdwpTransport.h 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.OAuth.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\Microsoft.AppV.Modernizer.Common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubAppList.scale-125_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireMedTile.scale-100.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\javacpl.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fontconfig.properties.src 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProCO365R_Subscription-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN044.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\MSCOMCTL.OCX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPTSFrame.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-utilities.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OSFPROXY.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\te\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpEvMsg.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Square71x71Logo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_ko.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Menu\Menu-press.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpSvc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknumpad.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0115-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WindowsBase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ecf.filetransfer_5.0.0.v20140827-1444.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTest-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubBadgeLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Menu\Menu_back-over.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jsoundds.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ps\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubWideTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\JavaAccessBridge-64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.batik.css_1.7.0.v201011041433.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\images\cursors\win32_LinkNoDrop32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessPipcR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProO365R_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\msolap.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-48_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7zG.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription5-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LivePersonaCard\TPN.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSZIP.DIC 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Animation\coin-partcles-landing.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\management\snmp.acl.template 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-netbeans-core-execution.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\resources. 20a37ca.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\MOFL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUEPRNT\BLUEPRNT.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\lv\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\ribbon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART15.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\ktab.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Calibri Light-Constantia.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libvnc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_cone.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedSmallTile.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.2.24002.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\DESIGNER\MSADDNDR.OLB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\Logo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL089.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\libvlccore.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubStoreLogo.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\GRINTL32.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\tzdb.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Trial2-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\msmgdsrv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInRefocus.contrast-high_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-80_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-256_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\cs-CZ\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\mobile\en-US\doc_offline_getconnected.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\hive.xsl 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\osfFPA\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\IETAG.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\th\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\wabimp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jps.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\177.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\DocumentFormat.OpenXml.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\LICENSE 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\nl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\mfc140u.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\vi\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsLargeTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\bin\dtplugin\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial5-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OSFUI.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.AnalysisServices.Excel.BackEnd.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmediadirs_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\images\OfficeHubLogo_310x310.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\fonts\LucidaTypewriterRegular.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libalphamask_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MSASCui.exe 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Fonts\BhaiMDL2.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.jobs_3.6.0.v20140424-0053.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.ssl_1.0.0.v20140827-1444.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Portal\1033\PortalConnect.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-32_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\concrt140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\security\trusted.libraries 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\AppvIsvSubsystems32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART2.BDR 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft.NET\ADOMD.NET\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Source Engine\OSE.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_SplashScreen.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\images\cursors\win32_LinkDrop32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql70.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libvpx_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msader15.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\10px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-20_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Back\Back-over.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_output\libwgl_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\msjet.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\control\liboldrc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosLargeTile.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\cmm\GRAY.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSSP7FR.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\as90.xsl 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\fur\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-uihandler.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\adcvbs.inc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libchain_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-256_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\kaa.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOARIANEXT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OPTINPS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\IRIS\IRIS.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.Design.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zh_TW\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\FilterModule.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\new-trigger-wiz.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-api-caching_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusMSDNR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\bg\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Wordcnvr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Filters\msgfilt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\settle.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Peacock.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\AugLoop\third-party-notices.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\modules\sandbox.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosSmallTile.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\OneDriveSetup.x-none.msi.16_OneDriveSetup.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\29.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\CoinsFlyToBar_D.wav 700a1s0ssssd7da.exe File created C:\Program Files\Java\jre1.8.0_66\lib\security\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\my\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\sd\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppList.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\MusicStoreLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsfra.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogo.contrast-white_scale-80.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libvhs_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\StickySelection.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-40.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\io.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msador15.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\w2k_lsa_auth.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\proofing.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Routing.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraSplashScreen.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ShapeCollector.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.batik.util_1.7.0.v201011041433.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_KMS_Automation-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosLargeTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\55.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVScripting.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\PowerPivotExcelClientAddIn.tlb 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GOTHIC.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GOTHICBI.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\msdaps.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-spi-actions.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription1-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN092.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Selected_Medium.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Audio\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\msdaremr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\PlatformCapabilities\WordCapabilities.json 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ml\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SyncFusion.Shared.Windows.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-80_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-netbeans-modules-uihandler.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Interop.MSDASC.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.contrast-white_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-stdio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Framework.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.SqlServer.Configuration.SString.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OIMG.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\6px.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_~_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-selector-api.jar 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\management\jmxremote.access 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\nbexec.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_zh_CN.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Templates\1033\GettingStarted16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\SIGNUP\install.ins 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.eclipse.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Corbel.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription5-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOUC.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-stdio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-72_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\EssentialReport.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\mfc140u.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\CSS7DATA000A.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\RedAndBlackReport.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\browser\features\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmono_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jar.exe 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ka\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppPackageMedTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Office16\1033\getofficecarousel.dcp 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-time-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\decora_sse.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msvcr120.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\lv\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\wsdetect.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\fxplugins.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerConstraints.exsd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\CLVWINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\NIRMALAB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RMNSQUE\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IO.Log.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSmallTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msado20.tlb 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\NewScene.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\0.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppPackageSplashScreen.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\pop3.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PROTTPLN.XLS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Library\EUROTOOL.XLAM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\WXPNSE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\DEEPBLUE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\_Resources\1.rsrc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.oracle.jmc.executable.win32.win32.x86_64_5.5.0 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\mk\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEDAO.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Smokey Glass.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jdwp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\cacerts.pem 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOICONS.EXE 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\feature.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial1-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\SystemX86\msvcp140_1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-20_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msvcr120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\zip.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\msvcp110.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-002C-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\Office16\OSPPREARM.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\accuweather.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\images\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\particles.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\tl\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalDemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\libcurl64.dlla.manifest 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Photo Viewer\PhotoViewer.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\html\cpyr.htm 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOSTYLE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\CalibriLI.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Excel.SPClient.Interfaces.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft.NET\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\Movie-TVStoreLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\plugin2\msvcr100.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-api-annotations-common.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\osmuxmui.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-filesystem-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\MedTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubSplashScreen.scale-200_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\XMLOffKeys\Keys_OffVer16.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\gold_Badge_Earned.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\plugin.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_EnterpriseSub_Bypass30-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessDemoR_BypassTrial365-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_MAKC2R-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Exchange.WebServices.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Source Engine\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\core\locale\core_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.bmp 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\nashorn.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvmstat.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fonts\LucidaTypewriterBold.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN096.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libedgedetection_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Selected_Hollow.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsrom.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.targetsize-16_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Configuration\card_security_terms_dict.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinToolbars.v11.1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\NAMECONTROLPROXY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W1.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata_2.2.0.v20131211-1531.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-options.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Cultures\OFFICE.ODF 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\be\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\pencilbox.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\index.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\surfaceHub\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\es-ES.PhoneNumber.SMS.model 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSHY7ES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\liveleak.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderLargeTile.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppList.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\directionalnavigation-1.0.0.0.js 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACETXT.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskmenu\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\PlaneCutKeepBottom.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\156.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\PROOF\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\pa\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\mso20imm.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\fre\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-black\SmallTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppPackageBadgeLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-96.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-core-processthreads-l1-1-1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdXC2RVL_MAKC2R-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\NavColumn_Black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Donut.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\packager.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\StoreSmallTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerEvaluators.exsd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-editor-mimelookup-impl.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Web Server Extensions\16\BIN\FPWEC.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp2.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\klist.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\ms\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL096.XML 700a1s0ssssd7da.exe File created C:\Program Files\Windows NT\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.targetsize-24.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Office.Excel.DataModel.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-black\LargeTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OMML2MML.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\HeartbeatConfig.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\wabmig.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubSmallTile.scale-200_contrast-high.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.DCF.DCF.x-none.msi.16.x-none.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Configuration\configuration.sqlite 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubStoreLogo.scale-200_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-72_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\XLMACRO.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TRANSLAT\ENFR\MSB1ENFR.ITS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\VEN2232.OLB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libdemuxdump_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director_2.3.100.v20140224-1921.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientOSub2019_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogo.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\BOOKOS.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\.lastModified 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\FPA_f2\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\PlaneCut.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Registry.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBlue.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription1-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Unlock.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Upsell\Default\MSCasualGames.zip 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\upe.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Controls\EndOfLife\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\13.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-io_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\hwrusalm.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdXC2RVL_MAKC2R-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft Help\MS.GRAPH.16.1033.hxn 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-string-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosAppList.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\FileIcons\FileLogoExtensions.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\gstreamer-lite.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\difficultyStar.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\MSOINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\StopwatchMedTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-white\LargeTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\82.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\time-span-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\ads_casualgames_300x250.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProDemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libsdp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-black\WideTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\images\OfficeHubLogo_44x44.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProCO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\FBIBLIO.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019DemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\zh-cn.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOIDRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpCmdRun.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Resources\cursorXBOX_normal.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\1px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Offihub_Base_PriInfo.pri.xml 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\da-DK\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.help_2.0.102.v20141007-2301\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.DirectoryServices.AccountManagement.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSmallTile.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\xjc.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-core-processthreads-l1-1-1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-runtime-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusMSDNR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\7-Zip\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\Microsoft.Tools.Office.C2R.Packager.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\offsym.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACETXT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libaribcam_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\SmallLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\32.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-dialogs.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\3RDPARTY 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-util-enumerations.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiling.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\mcxml\x-none\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.contrast-black_scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-time-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_neutral_~_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\office.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial5-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.wink.small.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\config\Modules\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL087.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\DcfMsoWrapper.x86.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\Common.FileUtils.Resources.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\OSFROAMINGPROXY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_gloss-wave_35_f6a828_500x100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProMSDNR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-core-kit_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Cultures\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.forms.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\fi\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL078.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\173.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.commons.codec_1.6.0.v201305230611.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\wab.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7-zip.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019MSDNR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019XC2RVL_KMS_ClientC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN082.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\en-US\wmlaunch.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\MedTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jre1.8.0_66\lib\jfr\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-text.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\splash.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL111.XML 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ro\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\SystemX86\vccorlib140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Utilities.v3.5.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\eu\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\en-US\oledb32r.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jdwp.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\VBA\VBA7.1\1033\VBE7INTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\plugin-container.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderAppList.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\setNetworkServerCP.bat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\ru\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-ui_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\Common AppData\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019VL_MAK_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\doclib.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-core-ui.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\ext\cldrdata.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msoev.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\System\ole db\xmlrw.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\AccessCompare.rdlc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\MapsSplashScreen.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\msvcr120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jvm.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\msjet.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\PlaneCutMove.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.es-es.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.common.16.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\161.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\1423496937509.profile.gz 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.common_3.6.200.v20130402-1505.jar 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\include\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.core.di.extensions_0.12.0.v20140417-2033.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdXC2RVL_MAKC2R-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\comments.win32.bundle 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageStoreLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\awards_base.jpg 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\lv-LV\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\DSMESSAGES.XML 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\maintenanceservice_installer.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfps_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\39.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\gl.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\DBGHELP.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradfun_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\Weather_TileSmallSquare.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp6-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\StoreLargeTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\XMLOffKeys\Keys_OffVer11.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-uihandler_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core-multiview.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libwall_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderLargeTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.databinding.observable_1.4.1.v20140210-1835.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorSmallTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Advertising\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\th\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\linessimple.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\flavormap.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Beihai.Common.Diagnostics.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\VISUALIZATIONCHART.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\Excel.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Personal2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SPRING\PREVIEW.GIF 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\co\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ne\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\skins\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019MSDNR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\toc.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\WPFEXTENSIONS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TEXTCONV\MSCONV97.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-96_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\jfr\profile.jfc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\SmallTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\mobile\en-GB\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\en-us\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.wink.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\SAMPLES\SOLVSAMP.XLS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-coredump.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dt_socket.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PerfBoost.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.sad.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\ext\locale\updater_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ADAL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\BooleanSubtract.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\194.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\EngineWinRT.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\mr\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\javaw.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\id\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Hollow.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\31.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\ClientEventLogMessages.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\deployJava1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\rcypaper.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubWideTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\ProjectionSpheric.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\24.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogo.contrast-black_scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msth8FR.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\msolap.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\en-US\sqloledb.rll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp4.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\informix.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_TileMediumSquare.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppPackageSplashScreen.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-snaptracer_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsMedTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\8.jpg 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\si\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\mashupcompression.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.OData.Core.NetFX35.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotionblur_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-api.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-sampler.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\GB.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogo.contrast-black_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_10_p010_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.configuration_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Glossy.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-20_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\artifacts.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Popups\Upsell\dont_ask_button.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\VBAJET32.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.emf.common_2.10.1.v20140901-1043.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MsoAriaCApiWrapper.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-40_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireWideTile.scale-100.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javadoc.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\startNetworkServer 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019XC2RVL_MAKC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Cyrl-RS\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpAsDesc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInCinemagraph.contrast-white_scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.sad.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msadox28.tlb 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail3-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019DemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientLangPack_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nb\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3_0.12.0.v20140227-2118.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProCO365R_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\cardview-flag-dark.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_Subscription-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN081.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\oregres.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Square71x71Logo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-40_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\en-US\sqlxmlx.rll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.browser.jdp.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp4-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\PROFILE\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\System\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Calibri-Cambria.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\12.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\HowToPlay\Pyramid\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jaas_nt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derby.war 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-util-enumerations_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Client.Excel.Themes.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javapackager.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-process-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.security.win32.x86_64_1.0.100.v20130327-1442.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardMSDNR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\COMPASS\COMPASS.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\browser\features\[email protected] 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\_Resources\0.rsrc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\profilerinterface.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\keytool.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-heap-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\POWERPNT_F_COL.HXK 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Container.NetFX45.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ExpenseReport.xltx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\DocumentFormat.OpenXml.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.rcp.product_5.5.0.165303\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\en-US\shellext.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmotiondetect_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\lib\amd64\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-netbeans-modules-queries.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\updater.exe 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.2.24002.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Animation\star-bursting-187x170.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\i640.hash 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusEDUR_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\pkeyconfig-office-client15.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipssrb.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-16_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\http\dialogs\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsAppList.contrast-white_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\DailyChallenges\Icons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\SpreadsheetIQ.ExcelServices.Resources.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.natives.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dcpr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ReviewRouting_Review.xsn 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\nssckbi.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Solid.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\images\en-US\windows-main-08294e1b-0ad7-4937-9616-fcbc42ff7ff1.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Advertising\bootstrap.js 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Cyrl-BA\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\NETWORK\NETWORK.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-api-annotations-common_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ARCTIC\ARCTIC.INF 700a1s0ssssd7da.exe File created C:\Program Files\Mozilla Firefox\defaults\pref\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\wmpconfig.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-core-output2.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msth8ES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-core-processthreads-l1-1-1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\StoreSmallTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Group.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\alert_obj.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.commons.logging_1.1.1.v201101211721.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\locale\jfluid-server_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019VL_MAK_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.ProviderShared.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogo.contrast-white_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\OrangeCircles.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_cylinder.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\8.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-utilities.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Trial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-synch-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\Defendericon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\199.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-charts.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProMSDNR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\Classic.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSO99LRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppPackageStoreLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\security\local_policy.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Arial-Times New Roman.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-javahelp.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-jmx.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL012.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\wsimport.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_LogoSmall.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\db2v0801.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\api-ms-win-core-file-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Data.ConnectionUI.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\MapsWideTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\AppxMetadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\fontmanager.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows NT\Accessories\WordpadFilter.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\FlickAnimation.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\classlist 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-coredump_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\sql90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\sr-spc.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Portal\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\dcpr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-root-bridge-test.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Mso50win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhds_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-60_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-36_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\correct.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN086.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\Office Word 2003 Look.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-keyring-fallback.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.OData.Edm.NetFX35.V7.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\4-Point Star_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\THIRDPARTYLICENSEREADME.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUEPRNT\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFSYMT.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\sa-jdi.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libinflate_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\grmarble.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-white\AppPackageLargeTile.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\ads_casualgames_728x90.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\security\trusted.libraries 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.help.webapp.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\sql2000.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-string-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.surprise.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\HandPrints.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\Hx.HxT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\msmdlocal_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_120.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PREVIEWTEMPLATE2.POTX 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\sv-SE\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ORGCHART.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubMedTile.scale-200_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\StickySelection.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7z.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\CLICK.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\index.win32.bundle 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\manifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\PlaneCutMove.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\9.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-services.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedSplash.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\w2k_lsa_auth.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-time-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ta.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.components.ui.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\keychain.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedSplash.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\oledb32r.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyclient.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.databinding.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\km\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gl\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\Movie-TVStoreLogo.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Awards\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\RibbonHit_A.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ja-JP\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\CASHREG.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Top Shadow.eftx 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUEPRNT\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\1033\STINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\reader\filename.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\content-types.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\en-us\oregres.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring-impl.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OART.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RIPPLE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SATIN\SATIN.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\modules\common.luac 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.News\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Back\Back-up.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification.ja_5.5.0.165303.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\HowToPlay\FreeCell\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OMICAUT.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LAYERS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Century Gothic.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-applemenu.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RADIAL\RADIAL.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\te\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\PlaneCutKeepTop.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javah.exe 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\zu\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ne.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\boxed-delete.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\olh.htm 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\LISTS\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-36.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\MicrosoftLogo.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.sv-se.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\management.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\GRAPH_COL.HXT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\parchmnt.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\InkDiv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_chromecast_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\AppList.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ApothecaryResume.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.officemui.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\setEmbeddedCP 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubLargeTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\sbicuin53_64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\182.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-core-localization-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\mso50win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-snaptracer.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\weather_2_travel.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\release-config.json 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-spi-quicksearch.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dt_shmem.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PPT_WHATSNEW.XML 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-white\SmallTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_sphere.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\RedistList\FrameworkList.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SplashScreen.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Internet Explorer\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.contrast-black_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libcrystalhd_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-24_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim1.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-host-views.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTest2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.WindowsAzure.StorageClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libkaraoke_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Smooth.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_TileMediumSquare.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\19.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_ViewOnly_ZeroGrace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\EntityDataHandler.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOCR.DLL 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.core_0.10.100.v20140424-2042.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp3-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\fr\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinGrid.v8.1.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nn\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedSplash.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\AppVStreamMap.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\.eclipseproduct 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STRTEDGE\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\audio_filter\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\npt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fonts\LucidaSansRegular.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\System\ole db\xmlrwbin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\asl-v20.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\license.html 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\ext\locale\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_copy_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\delete.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\AppVPackaging.dll.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\word2013bw.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\EXCELPLUGINCORE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LEVEL\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\fue_2_1.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsid.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpProvider.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\en-US\msoeres.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\BadgeLogo1.targetsize-24.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Trial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessRuntimeR_PrepidBypass-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdXC2RVL_KMS_ClientC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSGR8ES.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\setNetworkClientCP.bat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-attach.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\server\classes.jsa 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RIPPLE\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\MICROSOFT.DATA.RECOMMENDATION.CLIENT.CORE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-sendopts.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\ca\msipc.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA6\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\COMPASS\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubAppList.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-print.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteFreeR_Bypass-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProXC2RVL_MAKC2R-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\mcxml\fr-fr\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\INDUST\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\en-US\ProtectionManagement.mfl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.osgi.services.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Icon_Quality.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\LargeLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.Tile.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\WXPNSE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\GRPHFLT\PICTIM32.FLT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEODEXL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Data.ConnectionUI.Dialog.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TEXTCONV\RECOVR32.CNV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsSmallTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.garbagecollector_1.0.200.v20131115-1210.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-core-multiview.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ORGCHART.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\DESIGNER\MSADDNDR.OLB 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\traintrackstraight.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.diagnostic.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\DW\DW20.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentDemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.HostIntegration.Connectors.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosMedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\SplashScreen.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageWideTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL082.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\modules\host.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_smem_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageSplashScreen.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\DirectDB.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProO365R_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOADFPS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\StoreLogo.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-templates.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_output\libmmdevice_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jmc.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\AppVIsvSubsystems32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\gu\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\packetizer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdXC2RVL_MAKC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\management\jmxremote.password.template 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-swing-plaf.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Reference Assemblies\Microsoft\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.core_5.5.0.165303\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.SqlServer.Configuration.SString.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\WATERMAR\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Microsoft.Office.Interop.Access.dao.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\DbgHelp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\5px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.swt.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\xmlrw_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\OSFPROXY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-20.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-masterfs.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Calibri.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\HeroHelp\Scenario3.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\256x256.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\en-US\wmpnssci.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\Ungroup.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-00E2-0000-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OCSCLIENTWIN32.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\dcf.x-none.msi.16.x-none.boot.tree.dat 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\access\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libmod_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\StoreLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppPackageSplashScreen.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.batik.util.gui_1.7.0.v200903091627.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-core-timezone-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART10.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\FPA_f2\FA000000002 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000008\FA000000008 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\NisWfp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libshm_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses\c2rpridslicensefiles_auto.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\TelemetryLog.xltx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\WideLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-swing-tabcontrol.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerWideTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-stdio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\No Symbol_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\162.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.pt-br.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\BHOINTL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_18_b81900_40x40.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-netbeans-modules-print.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSO40UIRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-utility-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\zh-CN\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessPipcR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\69.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EDGE\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\osmmui.msi.16.en-us.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ps_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\move.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jfr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\release 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\AugLoop\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-filesystem-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\buttons.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\jquery.jstree.js 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\EssentialResume.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msgr8en.dub 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\images\OfficeIcon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\AppvIsvSubsystems64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdXC2RVL_KMS_ClientC2R-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\1033\NATIVESHIM.RESOURCES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\skins\skin.catalog 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeAppList.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jsoundds.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\Document Parts\1033\16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN095.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\UIAutomationTypes.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\librtp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libmpg123_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender Advanced Threat Protection\SenseCncPS.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\dtplugin\npdeployJava1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\vcruntime140.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-GB\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-30_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.help.webapp_3.6.300.v20140407-1855.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.osmmui.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\Microsoft.Office.Tools.Common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\oregres.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\services_discovery\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmagnify_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\jconsole.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\MSOINTL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Windows Mail\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\MessagingApplication.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Client.Excel.Extensions.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\et\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Photo Viewer\en-US\PhotoViewer.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\WINWORD_F_COL.HXK 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.AnalysisServices.Common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\WideTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Buttons\FullScreen\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\WWINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\dcf.x-none.msi.16.x-none.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\orcl7.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\cs.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\resources.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql70.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Peacock.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\VGX\VGX.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp5-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Data.Recommendation.Client.Picasso.Sampler.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUECALM\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInRefocus.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\send.white.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\LanguageModel\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireSmallTile.scale-125.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Awards\challenge\Came_To_Play_.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\WATERMAR\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\com.jrockit.mc.rjmx.descriptorProvider.exsd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-execution_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\eclipse.inf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\meta-index 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\fi\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\SplashScreen.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator_2.0.0.v20131217-1203.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\PackageManifests\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\QUAD\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\ECLIPSE_.SF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\imap.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\flavormap.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial4-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RInt.16.msi 700a1s0ssssd7da.exe File created C:\Program Files\Windows Defender\Offline\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Configuration\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\Default.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows NT\TableTextService\en-US\TableTextService.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\7px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\cldrdata.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPBluTSFrame.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiling.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\de-DE.Messaging.config 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\symbols\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.surprise.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVPolicy.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription5-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PPTICO.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msth8EN.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-US\doc_offline_getconnected.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-queries.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\COPYRIGHT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\LISTS\1033\PHONE.XML 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\deployed\jdk16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\VISUALIZATIONCONTROL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-36_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench3.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Csi.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\he\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup-impl_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\PowerPivot.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-20_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_winxp_olv.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\as90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\QUAD\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STRTEDGE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\ProjectionCylindric.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Animation\unlocking-animation-187x169.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\en-US\msdasqlr.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\cy\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-time-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\xul.dll.sig 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bg\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\split.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\browser\crashreporter-override.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerMedTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BOLDSTRI\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.DynamicData.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_TileMediumSquare.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription3-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_MAKC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Resources\1033\msmdsrvi.rll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial5-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\jfxswt.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogo.contrast-white_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\Keywords.HxK 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libtcp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ProtectionManagement_Uninstall.mof 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvmstat_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019DemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\uk\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\officemui.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\api-ms-win-core-timezone-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEEXCH.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ia\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-masterfs.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedWideTile.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\es-ES.PhoneNumber.SMS.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\168.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Cultures\OFFICE.ODF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\application.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\libvlc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogoSmall.contrast-white_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\TellMeExcel.nrr 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CASCADE\CASCADE.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\EmbossContour.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\JAWTAccessBridge-64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-openide-util-enumerations.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\C2R64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-64.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\kab.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL010.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\luac.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Contrast\contrast-white\BuilderLogo.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\collection_base.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\ipcsecproc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\APPLAUSE.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsMedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_TileMediumSquare.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Square44x44Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\messages_sv.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.greychartplugin_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\GRAPH_COL.HXC 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-60_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\loc\AppXManifestLoc.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\file_obj.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTest3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL058.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\201.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-javahelp.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\AccessRuntime2019_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Document.XmlSerializers.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SpreadsheetIQ.Diagram.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\187.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.Reporting.Common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MsMpLics.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosAppList.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\WideLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-explorer.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp6.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\mobile\en-US\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\sr-Latn-RS\tipresx.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ach\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MsoRes.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.RSA 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\IRIS\IRIS.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_window.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Audio-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\40.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\ExtExport.exe 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\VISSHE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\HelpIcon_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Perfect\ribbon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.OData.Core.NetFX35.V7.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-96_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.hu-hu.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLENDS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\IMCONTACT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-private-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-xstate-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageSmallTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\VERSION.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-compat_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\XLLEX.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\NavColumn_Black\Icon_Materials.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\offsymxb.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\OpenSSL64.DllA\libssl-1_1-x64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\el\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\contrast-white\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppPackageBadgeLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kk\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\Windows Media Player\Media Renderer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\FileIcons\FileLogoExtensions.targetsize-40.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\GRAPH_K_COL.HXK 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-60.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\jawt.lib 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\McePerfCtr.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\en-US\msdaprsr.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\34.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msth8FR.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msowerrelief.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\NETWORK\THMBNAIL.PNG 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\as_IN\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditRichCapture.contrast-high_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Scale.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jp2native.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-conio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Services.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\28.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\SQLiteWrapper.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Hud\NumberGrid.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOSYNC.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\rmid.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_es.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\PIXEL\PIXEL.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.el-gr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderLargeTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\holoLens\en-US\doc_offline_wifi.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\security\java.policy 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\deployed\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\fr-FR.Messaging.config 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-editor-mimelookup-impl.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL016.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.lucene.core_3.5.0.v20120725-1805.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditRichCapture.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\_Resources\0.rsrc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\setNetworkServerCP 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-convert-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial3-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\VBA\VBA7.1\VBEUIRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\base_ca.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.jetty.security_8.1.14.v20131031.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\JAWTAccessBridge-64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ku.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\paperbag.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\offsymsb.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_MAK_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIntegration.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_PrepidBypass-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\1033\Bibliography\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ClassicPhotoAlbum.potx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libsapi_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-application_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-core-kit.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\MTEXTRA.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx.ja_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-black_scale-140.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\rsod\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\msvcp120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\MusicStoreLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\lock.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\javafx-src.zip 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msoianetutil.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Tec.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libsatip_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\Autogen\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.configuration_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-stil.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\XboxControl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-api-visual.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-options.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\ja\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common Programs\Microsoft Office Tools\Office Upload Center.lnk 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\fr\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\179.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskpred\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_KMS_Automation-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ms\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-actions_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\CameraIcon_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\SplashScreen.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui_3.106.0.v20140812-1751.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-windows_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\c2rpridslicensefiles_auto.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL086.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\153.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Calendar\corrupt.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\msaddsr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ja.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EXPTOOWS.XLA 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OsfTaskengine.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libadaptive_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\fy.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL022.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedLargeTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-GB\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\EXP_XPS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-netbeans-lib-uihandler.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\install.log 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-convert-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\SpreadsheetCompare_f_col.hxk 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\fre\StartMenu_Win10.mp4 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\NavColumn_Black\Icon_Finish.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GamePlayAssets\Spider\ResPacks\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Portal\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libudp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\en-US\WMPMediaSharing.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubMedTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\osfFPA\addins.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\SplashScreen.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\GameOverPopUp_D.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\msvcr100.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\adal.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\canvas.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Orange Circles.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sl\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Icon_Printer Settings.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\SQLite3Wrapper.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_zh_CN.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019XC2RVL_MAKC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\PowerPivotExcelClientAddIn.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogoSmall.contrast-black_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_cube.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.flightrecorder_5.5.0.165303\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-settings.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Document Themes 16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription4-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\powerpointmui.msi.16_powerpointmui.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\_Resources\0.rsrc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.jface.databinding.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\THANKS.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\msdatl3.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Office.Interop.Excel.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Conversion.v3.5.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\Logo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-96_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\javafx-mx.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProMSDNR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_SubTest-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\EXCELPLUGINSHELL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL110.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-execution_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\nn\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\es\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\avtransport.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\82.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientARMRefer_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-ui.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CANYON\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-40_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL120.XML 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TEXTCONV\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\custom.lua 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\LargeLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-coredump.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\PROOF\MSWDS_EN.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\officemui.msi.16_PostCommon.Office.MUI.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msix.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\SymSrv.yes 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_LogoSmall.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\OpenSSL64.DllA\ssleay32.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUECALM\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp3-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RMNSQUE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinChart.v11.1.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Cultures\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.console_5.5.0.165303\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditRichCapture.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\XboxControl\Internet_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusE5R_Subscription-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common Programs\Microsoft Office Tools\Office Language Preferences.lnk 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.Proof.Culture.msi.16.es-es.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVClient.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\ADALPREVIOUS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\hy\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription2-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-swing-tabcontrol_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EADOCUMENTAPPROVAL_INIT.XSN 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\Images\playbutton.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.ui_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\mlib_image.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\security\java.security 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.metadata.repository.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\SmallLogo.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\cmm\GRAY.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\plugin.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription5-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\vi\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-process-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\_Resources\0.rsrc 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\_Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\EXPSRV.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jjs.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\sbicudt53_64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\AppvIsvSubsystems32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libmft_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Popups\SilverBadgeEarned.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Retail2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.SqlServer.Types.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEERR.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\control\libnetsync_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\nbexec64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0018-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Office Setup Controller\Office.en-us\BRANDING.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\fa\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\3DViewer.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\java-rmi.exe 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Templates\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\WATER\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TRANSLAT\FREN\MSB1FREN.ITS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Abstractions.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\en-US\MsMpResL.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\images\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-48_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\WORDICON.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\officemui.msi.16_AppXManifestLoc.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\WideLogo.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\63.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Menu\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\DC_HolderUnearned.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\NIRMALA.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CAPSULES\THMBNAIL.PNG 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\sr-Latn-RS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Folder-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\AppxBundleManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Subscription-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\powerpoint.x-none.msi.16.x-none.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.ru-ru.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Banded Edge.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\LivePersonaCard\images\default\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditMoment.contrast-high_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.smile.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\java_crw_demo.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msoasb.exe.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\GRPHFLT\MS.WPG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_LogoSmall.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Advertising\bootstrap.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\uz.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\msotelemetryintl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedAppList.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\MSO.ACL 700a1s0ssssd7da.exe File created C:\Program Files\Windows Media Player\Icons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\uk-UA\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\dcGoalFly_D.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\RenderingControl_DMP.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\WinFXList.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcolorthres_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WorldClockWideTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Awards\challenge\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\jsse.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\msolui.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.1.25002.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File created C:\Program Files\Internet Explorer\images\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\core\core.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\msvcr120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.transport.ecf_1.1.0.v20140408-1354.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\include\win32\bridge\AccessBridgePackages.h 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\offsymxl.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\tr-TR\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EXCEL_WHATSNEW.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\mfc140enu.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\rmid.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\RedAndBlackLetter.dotx 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\PROOF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libsepia_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pt_PT\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\SETLANG.HXS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\mpuxhostproxy.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core-startup.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusE5R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\TellMePowerPoint.nrr 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\INDUST\INDUST.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\1033\STSUCRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\vlc-cache-gen.exe 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\boxed-correct.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\34.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OsfInstallerConfig.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-locale-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libspdif_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\ij 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\EXCEL.VisualElementsManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\toast.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\plugin.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-swing-plaf.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\skins\fonts\FreeSans.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\indxicon.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Square44x44Logo.targetsize-16_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\tmcachemgr_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\dailymotion.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\SmallTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSGR8FR.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common Programs\Microsoft Office Tools\Database Compare.lnk 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\http\js\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0090-0000-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\fonts\LucidaBrightItalic.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jmx.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-white\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderAppList.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVIsvApi.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\PGOMESSAGES.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\cardview-linkedentity-dark.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-GB\doc_offline_speechrecognition.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Buttons\GiveUp\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Stars.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\zipfs.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientOSub_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFSYML.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\DUBAI-REGULAR.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\tmtransactions_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\ConfirmInitialize.ocx 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-60_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\about.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.XmlSerializers.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Microsoft.Vbe.Interop.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffd27a_256x240.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GameEnd\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTest-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.smile.small.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\j2pcsc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_TileWide.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libfreeze_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019VL_KMS_Client_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\VideoLAN Website.url 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-256_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\kk.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp2-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-white_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\LASER.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\ACEODBCI.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp7.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\images\cursors\win32_MoveNoDrop32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000042\mecontrol.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.WorkflowServices.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MicrosoftDataStreamerforExcel.vsto 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\1033\OcHelperResource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\StopwatchSmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-white\WideTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Hud\TitleGrid.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ConfigSecurityPolicy.exe 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4_1.0.800.v20140827-1444.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\_Resources\index.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\javaws.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-profiler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\Logo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedWideTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\TextConv\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Marquee.xml 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\sl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\175.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-30_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jawt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-24_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\jfxrt.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.smile.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Lift.Transcoding.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\cmm\CIEXYZ.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Lib3mfUAP.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\react-native-win32.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jre1.8.0_66\bin\plugin2\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\ECLIPSE_.SF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.smile.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\diamond_Badge_Earned.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOHTMED.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\Informix.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019MSDNR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BREEZE\BREEZE.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Security\BrowserCore\en-US\BrowserCore.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\MusicStoreLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.net.win32.x86_64.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Retail2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\an\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\mk.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\AppLocalUCRT.x-none.msi.16_AppLocalConditionalUCRT.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1036\MSO.ACL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.surprise.small.scale-150.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\zh-TW\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0090-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifestLoc.16.en-us.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000011\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ICE\ICE.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-process-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-masterfs.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations_2.4.0.v20131119-0908.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-bootstrap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSO40UIRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\IRIS\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SyncFusion.Tools.Windows.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libgradient_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jp2launcher.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Icon.targetsize-256.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\dbghelp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\StoreWideTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_cone.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\fontmanager.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\eu\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp6-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-utility-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProCO365R_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OSFROAMINGPROXY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp5.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProMSDNR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\NewScene.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\InkObj.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-locale-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RICEPAPR\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows NT\Accessories\wordpad.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ro\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\uz\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\SaveOut.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WorldClockMedTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\LTSHYPH_EN.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpostproc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFSYMXB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\mozglue.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-applemenu_zh_CN.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libwav_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraAppList.contrast-black_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppList.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\icons\flight_recorder.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\PUSH.WAV 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft SQL Server\130\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\iheart-radio.scale-200_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\en-GB.PostalAddress.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-sampler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\lcms.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Icon_Advanced Layout.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-30_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.security_1.2.0.v20130424-1801.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365EduCloudEDUR_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\Library\SOLVER\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Send2.16.White.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\ProjectionCylindric.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_ConsumerSub_Bypass30-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\libcurl.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\1033\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\Updates\Download\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\modules\httprequests.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\Offline\OfflineScannerShell.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\10px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jabswitch.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\msoe.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFSYMB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\ISO690.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Edit.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\it-IT.Messaging.config 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.jasper.glassfish_2.2.2.v201205150955.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOCRRES.ORP 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\PlatformCapabilities\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libdeinterlace_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\StoreBadgeLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Blue.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Latn-RS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\ALRTINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-lib-uihandler_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSPPT.OLB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\cardview-linkedentity.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\JitV.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\access_output\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_torus.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\orcl7.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-64_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\AppLocalUCRT32.x-none.msi.16_AppLocalConditionalUCRTCrossBitness.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\Common.ClientConfiguration.Resources.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SyncFusion.Shared.Base.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\3.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-72.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Awards\Assets\awards_years_base.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-dialogs.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\officeinventoryagentlogon.xml 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\meta_engine\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Paper.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.operations.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\vimeo.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\StoreMedTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.ui.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInCinemagraph.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\MedTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Office\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.targetsize-16_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL090.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Office 2007 - 2010.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdO365R_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.excelmui.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\ISO690Nmerical.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\ribbon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.ar-sa.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\VISUALIZATIONCHARTCOMMON.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TRANSLAT\ESEN\WT61ES.LEX 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ms\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\text_renderer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOIDCLIL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\XMLOffKeys\Keys_OffVer15.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.ScriptDom.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\JavaAccessBridge-64.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderSmallTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\Services\verisign.bmp 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\unpack.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\csi.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-256_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\officeimm.odf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\da-DK\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\surfaceHub\en-GB\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\SharedPerformance.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\about.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-filesystems.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Aero.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.ComponentModel.DataAnnotations.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\DailyChallenges\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknumpad\osknumpadbase.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\NAMEEXT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\ClrCompression.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ks_IN\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\net.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019XC2RVL_KMS_ClientC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\DESIGNER\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogo.contrast-black_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ecf.provider.filetransfer.httpclient4.ssl_1.0.0.v20140827-1444.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\1033\VBOB6.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\micaut.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MsMpRes.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_wedge.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\BOMB.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\sr\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\SmallLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7zFM.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_output\libyuv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Microsoft.AnalysisServices.AzureClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.Misc.v8.1.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\System.ValueTuple.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\oledbjvs.inc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_pt_BR.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host-views_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.EventSource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\SelectAll.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Icon.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\logo.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\Stationery\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office15\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\IRIS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\mshwgst.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Excel.DataWarehouse.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CONCRETE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\librawvid_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-20_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ro-RO\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-attach.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-tools.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Ungroup.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\195.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\ads_win10_300x250.scale-200.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\org-openide-modules.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Icon.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\tnameserv.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.officemuiset.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdXC2RVL_MAKC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\proof.es-es.msi.16.es-es.boot.tree.dat 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraLargeTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fi-FI\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\it-IT\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\bin\stopNetworkServer 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\vccorlib140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\es.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LAYERS\LAYERS.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.PasswordManager.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditRichCapture.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-options_zh_CN.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TRANSLAT\FREN\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\185.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.css.swt.theme.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\GR8GALRY.GRA 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Mso20win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\tnameserv.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\osmuxmui.msi.16_osmuxmui.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\SplashScreen.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Personal2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\xmsrv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppPackageLargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\msolui.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-40_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\cs\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft SQL Server\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GamePlayAssets\Klondike\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\diagnostic-command-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-text_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-favorites.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\config\Modules\org-netbeans-modules-profiler-oql.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxbgt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-uihandler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\default-browser-agent.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL048.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft Help\nslist.hxl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Simplify.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-explorer.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\logger\libfile_logger_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcDemoR_BypassTrial365-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\SFMESSAGES.XML 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-core_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\MicrosoftDataStreamerforExcel.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Library\Analysis\PROCDB.XLAM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\DatabaseCompare_col.hxc 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ca\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Images\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019R_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ach\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MsMpCom.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-256_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\RELEASE-NOTES.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\PRIVATE_ODBC32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\en-US\msdaremr.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OWSSUPP.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libtta_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\oak.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fr-FR\tipresx.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOPRIV.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\IEShims.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinStatusBar.v8.1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tet\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.services.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\Microsoft.Build.Engine.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\meta\art\00_musicbrainz.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\javafx_font.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.ssl.feature_1.0.0.v20140827-1444\about.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\Office.x-none.msi.16_Common.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientPreview_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderWideTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Badges\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\images\bing.ico 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\accessibility.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Cultures\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationCore.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.sk-sk.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\MSOSEC.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\tr\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusMSDNR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mce.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-core-localization-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Workflow.Runtime.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\MapsMedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-tools_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\ext\localedata.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\rmiregistry.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-views.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-filesystem-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SKY\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\mobile_equalizer.html 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\ClrCompression.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin_2.0.100.v20131209-2144.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\bn_IN\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\video_chroma\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Resources.pri 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\1036\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\pa\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\Movie-TVStoreLogo.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\IntegratedOffice.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\ssvagent.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-api-visual_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\OSMUX.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\EssentialLetter.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEODATA.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sqlpdw.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jp2native.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javaws.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_fdf5ce_1x400.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipshrv.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\Images\playbutton-rollover.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\t2k.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\LISTS\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sa_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.OleDbInterop.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\as80.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-windows.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PROTTPLV.DOC 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\mai\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\intf\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\powerpoint.x-none.msi.16.x-none.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-24.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\images\cursors\cursors.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-netbeans-core-output2.xml_hidden 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-00E2-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\Proof.Culture.msi.16_proof.mcxml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\hr\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msadomd28.tlb 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ECHO\ECHO.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Integral.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\fy\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_~_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\auxpad\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019XC2RVL_KMS_ClientC2R-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-math-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-36_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Microsoft.CPub.SkuInterop.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireMedTile.scale-125.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Slipstream.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\office32ww.msi.16_office32ww.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL103.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\FDATE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\whmarble.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\sunmscapi.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W3.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs-nio2_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mip_clienttelemetry.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Resources\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Animation\coins out burst_00018.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\tabskb.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\sl\msipc.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\sr\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-loaders.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-api-search.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-host_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-host-remote.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusEDUR_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdO365R_Subscription-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Mso40UIwin32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EXPEDITN\EXPEDITN.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-ui_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\Buttons\Menu\Menu-up.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\DRUMROLL.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\vi\msipc.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Trial2-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\zh-TW\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\XboxControl\Xbox-up.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\DataStreamerLibrary.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.browser.attach_5.5.0.165303.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\Office16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\GRPHFLT\MS.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Bears.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository_2.3.0.v20131211-1531.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-profiler_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\WEBSANDBOX.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.core.di_1.4.0.v20140414-1837.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Mso98win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-file-l1-2-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\http\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\dependentlibs.list 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim1.wink.small.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\_Resources\index.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-core-kit.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\CancelFluent.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Data.Odata.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_partstyle.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-autoupdate-ui.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\GKWord.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\liboldmovie_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyLocale_ja_JP.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LAYERS\LAYERS.ELM 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Spacer\8px.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Square150x150Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ApothecaryNewsletter.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PROTTPLV.XLS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSSP7FR.dub 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MUAUTH.CAB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTest2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\LICENSE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-charts.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdO365R_SubTest-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2R32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-options-keymap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProMSDNR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\1033\FM20.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraSplashScreen.contrast-black_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\pl.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageWideTile.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-host-views.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalDemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\es-ES\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\about.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\de\msipc.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\EQUATION\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\Weather_TileLargeSquare.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\ko-kr.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libftp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\msdaprst.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jstack.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-spi-actions.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\STSLISTI.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\NL7MODELS000A.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorSplashScreen.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.News\Assets\news_button_over.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ext.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.http.registry_1.1.300.v20130402-1529.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\MSUIGHUR.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\osmia32.msi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\System.Spatial.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\firefox.VisualElementsManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\decora_sse.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.contrast-white_scale-80.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\STARTUP\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\HeartbeatConfig.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-core-xstate-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WorldClockWideTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Square310x150Logo.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Shell\Themes\Glyphs\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\cy.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-sendopts.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegaudio_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\en-US\EppManifest.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.intro.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpCommu.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\contrast-white\DashboardDefaultThumbnail.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\en-US.PhoneNumber.SMS.model 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\XMLOffKeys\Keys_OffVer14.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-core-synch-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-modules-profiler-heapwalker.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OutlookR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\NativeShim.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\AppList.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ecf.ssl_1.1.0.v20140827-1444.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-lib-profiler-common.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Arial.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\excel.exe.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\join.avi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtospdif_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\202.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-jvm.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\msdarem.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SONORA\SONORA.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\AppSharingHookController.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\MapsWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\FileIcons\FileLogoExtensions.targetsize-256.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.hr-hr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\awards_gold.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\VSTO\vstoee.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\Logo.scale-200_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fr-CA\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\micaut.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\bwclassic.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GADUGIB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ARCTIC\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\symbols\ea-sym.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019MSDNR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_LogoSmall.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_TileSmallSquare.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\an\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderMedTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\THIRDPARTYLICENSEREADME.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-string-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.DataWarehouse.Interfaces.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000009\FA000000009 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\WHOOSH.WAV 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft SQL Server\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\ffjcext.zip 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\91.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Sort\AUTHOR.XSL 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsdan.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jp2iexp.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\sv\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\extensions\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\SmallLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\msdasql.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ProtectionManagement.mof 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\Video-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\org-openide-compat.xml_hidden 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CAPSULES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\DatabaseCompare_f_col.hxk 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsLargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-16_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-256_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-36_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-swing-outline.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_PrepidBypass-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderWideTile.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_LogoSmall.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\difficultyStar.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-sampler_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.greychart.ui.ja_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppPackageStoreLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_default_win7.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-explorer_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Median.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\1033\VBHW6.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-heap-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.director.app_1.0.300.v20140228-1829.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Century Schoolbook.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.IdentityModel.Selectors.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\Click_G.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\javaws.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-selector-api.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\WATERMAR\WATERMAR.INF 700a1s0ssssd7da.exe File created C:\Program Files\Windows NT\Accessories\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\rightnav.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.net_1.2.200.v20120807-0927.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-text.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\StreamServer.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\VBAJET32.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-charts.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\TellMeRuntime.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql120.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.services_1.1.0.v20140328-1925.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART13.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\Sybase.xsl 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\pl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\MTCORSVA.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Animation\crown_2.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.views.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\prism_d3d.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W7.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.core.contexts_1.3.100.v20140407-1019.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\5.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\ApprovePublish.m4a 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\8.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Container.exe.config 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\Training.potx 700a1s0ssssd7da.exe File created C:\Program Files\Mozilla Firefox\uninstall\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Popups\Upsell\calendar.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Photo Viewer\PhotoAcq.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-80_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalDemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-charts_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\DataServices\FOLDER.ICO 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLENDS\BLENDS.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\WordNaiveBayesCommandRanker.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\SystemX86\mfc140u.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\contrast-white\WideTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp3-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Office Setup Controller\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\as80.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA6\VBE6EXT.OLB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\MapsSmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\SkypeSrv\SKYPESERVER.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Roses.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconEditMoment.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\MusicStoreLogo.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Perfect\SnapPerfectRibbon.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\TRANSLAT\ENES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\core\locale\org-openide-filesystems_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common Programs\PowerPoint.lnk 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\rmiregistry.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.commands.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\System\ole db\xmlrwbin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Windows Portable Devices\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\spu\libmarq_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.targetsize-24_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\newsprnt.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp6-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\vccorlib140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp6-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\sk\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javafxpackager.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedSplash.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOMessageProvider.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\excelcnv.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\tmapi_xl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-multibyte-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\MeetingJoinAxOC.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019VL_KMS_Client_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\security\cacerts 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Configuration\card_terms_dict.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxhelper.exe.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SONORA\SONORA.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubSmallTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\badges_none.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\messages_fr.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-threaddump.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SLATE\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libstereo_widen_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\ScanIcon_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedWideTile.scale-200_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Tab\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.bindings_0.10.200.v20140424-2042.jar 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ff\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Garamond.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessEntry2019R_PrepidBypass-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\DUBAI-BOLD.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STUDIO\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\Simplify.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-templates.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Organic.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProMSDNR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\EventSource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudiobargraph_a_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.renderers.swt.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\prism_common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.PowerBI.AdomdClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\as80.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Luna.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-modules.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler_1.2.0.v20140422-1847.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-spi-quicksearch_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription1-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFSYMK.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ug.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\mobile\en-GB\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraWideTile.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Document Parts\1033\16\Built-In Building Blocks.dotx 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\it-IT\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\spu\librss_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SPRING\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msoshext.dll 700a1s0ssssd7da.exe File created C:\Program Files\Mozilla Firefox\defaults\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinToolbars.v8.1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\images\vlc16x16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\91.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\sr-Latn-RS\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp5-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EXCEL_COL.HXT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Web Server Extensions\16\BIN\FPSRVUTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libpuzzle_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\javax.annotation_1.2.0.v201401042248.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.http.servlet_1.1.500.v20140318-1755.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEXBE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\VC\msdia90.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\insert.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\zh-TW\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\javax.inject_1.0.0.v20091030.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.repository.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\jfr.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\Microsoft.Tools.Office.C2R.Common.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-root.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-environment-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-core-xstate-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraAppList.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\osmdp64.msi 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\lib\applet\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyoptionaltools.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.lucene.analysis_3.5.0.v20120725-1805.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOHEV.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Cultures\OFFICE.ODF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\mfc140u.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Icon_Finish.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.pt-pt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Microsoft.Excel.Amo.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-24_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\msadc\msadco.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\COPYRIGHT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.runtime_3.10.0.v20140318-2214.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSHY7EN.LEX 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Collections\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\bin\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\officestoragehost.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.ReportingServices.AdHoc.Excel.Client.Entry.Interfaces.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7Handle.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\librawdv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\liberase_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskmenu.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\fonts\LucidaTypewriterBold.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\MLASeventhEditionOfficeOnline.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\proof.en-us.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOIDCLIL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\it\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\kinit.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSHY7FR.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GARAIT.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_output\libadummy_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\PlaneCutKeepBoth.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_it.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.DataIntegration.FuzzyMatchingCommon.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\fonts\LucidaBrightDemiItalic.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AuthoredExtensions.16.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-attach_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\messages_pt_BR.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\management\snmp.acl.template 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OPTINPS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core-output2.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msotelemetry.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\VBA\VBA7.1\1033\VBEUIINTL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Office16\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msvcp120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core-execution.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\tracedefinition130.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_dummy_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraAppList.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\surfaceHub\en-US\doc_offline_getconnected.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\smtp.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Spatial.NetFX35.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\dcfmui.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.core\cache\binary\com.jrockit.mc.rcp.product_root_5.5.0.165303 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Trial2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalPipcR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\core_rtl.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_KMS_Client_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-stdio-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Sounds\StarsFlying_D_Gliss.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ospintl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\3082\MSO.ACL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\IEAWSDC.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\NL7MODELS000C.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\VBA\VBA7.1\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PREVIEWTEMPLATE.POTX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\Xusage.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\keypad\kor-kor.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.OSM.OSM.x-none.msi.16.x-none.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Media Renderer\DMR_48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W2.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Viewer\ViewEnv.hdr 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\unpack200.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-cli_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_output\libafile_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\DebugStart.edrwx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\AIRWER.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\demux\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jli.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-jvmstat.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\CancelDraftFluent.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\base_jpn.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\mcxml\es-es\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\proof.es-es.msi.16.es-es.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-runtime-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderMedTile.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\11.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.vi-vn.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\spu\libmosaic_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\js\common.js 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\bg\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwasapi_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\NavColumn_Black\Icon_Printer.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\VSTO\10.0\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\include\jawt.h 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GOTHICB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\PROFILE\THMBNAIL.PNG 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ckb\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\msado15.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\bouquet.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\157.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Sounds\CrownAppearance.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-core.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-core-file-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEEXCH.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.jdp_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rcp.intro_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.publisher.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-heap-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Templates\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-80_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\de-DE.PhoneNumber.SMS.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Stars.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\PlaneCutKeepBoth.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_2017.311.255.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-utility-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsSplashScreen.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubSmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Square44x44Logo.targetsize-256.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\iexplore.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\en-us\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL119.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\api-ms-win-core-xstate-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\IA2Marshal.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\main.css 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\hprof.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\StoreAppList.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.ui.ja_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Configuration\ssn_high_group_info.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\OpenSSL64.DllA\openssl64.dlla.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\1033\GrooveIntlResource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libwave_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\zh-changjei.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\awards_bronze.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-black\AppPackageMedTile.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN011.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\ProgressBar\progress_foreground.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\title.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\msvcr120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\cs\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_a52_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\LTR\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\LoadIconRTL_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\th.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\BOOKOSI.TTF 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ia\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorSmallTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\4-Point Star.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.workbench.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\PlatformCapabilities\CommonCapabilities.json 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\Logo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-60_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial1-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.core.commands.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler-oql.xml 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\af\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jli.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libpodcast_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Calendar\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\boot.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Wisp.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Sort\YEAR.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\lt-LT\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-profiler.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EAWFINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\pt\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\DataLayer.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Wave.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\WhatsNew.Store.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-uisupport.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\org-openide-util-lookup.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_Trial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ka\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\Icons_Icon_Wind_sm.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\dropins\README.TXT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-lib-profiler-common.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.ReportingServices.RsClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ECLIPSE\ECLIPSE.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Entity.Design.dll 700a1s0ssssd7da.exe File created C:\Program Files\Windows Media Player\Visualizations\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedWideTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskpred.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EVRGREEN\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\browser\features\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libinteger_mixer_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\3_badges_silver.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_classic_winxp.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipssve.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EDGE\EDGE.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubMedTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\pl-PL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeLargeTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubSmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\SmallLogo.scale-200_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\ODBC\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\gl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\Square71x71Logo.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusE5R_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jp2iexp.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Office Setup Controller\Office.en-us\SETUP.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\PROOF\MSLID.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\MusicStoreLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\mr.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\excel.x-none.msi.16.x-none.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\msth8EN.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Office Setup Controller\Office.en-us\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim2.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\ODBC\Data Sources\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\stream_out\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\twitch.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Arrow.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\29.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\MSOUC_F_COL.HXK 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\misc\libaudioscrobbler_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\DeselectAll.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\164.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\Square71x71Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.nl-nl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\HarvardAnglia2008OfficeOnline.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SpreadsheetIQ.ExcelServices.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\hwrenclm.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProCO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\1033\VBENDF98.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-string-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\uninstall.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MsMpEng.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppPackageMedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-attach.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-explorer.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\status.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.text.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\he\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\main_tile.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\wab32.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\OFFREL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Mso30win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\misc\libexport_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProCO365R_SubTest-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\IPSEventLogMsg.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosWideTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.surprise.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4-dark_mac.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActionExceptionHandlers.exsd 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\ko\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL081.XML 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GamePlayAssets\FreeCell\ResPacks\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\Alphabet.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART12.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubAppList.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.contrast-black_scale-180.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\gl\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\icecast.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Photo Viewer\ImagingEngine.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedSmallTile.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-io.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\kinit.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_PrepidBypass-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\msql.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\EXPSRV.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-progress-ui_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\7px.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\Source Engine\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-profiler.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Shims.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Icon.targetsize-48.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\lib\mailapi.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\.lock 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.net.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVClientIsv.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_output\libcaca_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_MAK-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\trdtv2r41.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipscsy.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.contrast-black_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows NT\TableTextService\TableTextServiceArray.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\LimitCompare.lnk 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\pt-BR\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-30_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTest-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.MashupEngine.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Core.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ClientWMIInstall.mof 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim1.surprise.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\FlickLearningWizard.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.ExcelServices.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Common\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\resources.8883896e.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.reconciler.dropins.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Office Setup Controller\Office.en-us\PSS10O.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\kn\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\keystore\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\JitV.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.updatechecker_1.1.200.v20131119-0908.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-black\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppPackageWideTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Personal2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOSPECTRE.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ga\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageMedTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\core\locale\com-sun-tools-visualvm-modules-startup_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\th\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Square150x150Logo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\instrument.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019VL_MAK_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EVRGREEN\EVRGREEN.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\sv.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\en\LocalizedStrings.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\cardview-warning.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019VL_KMS_Client_AE-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\id.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Configuration\config.xml 700a1s0ssssd7da.exe File created C:\Program Files\Windows Security\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ClickToRun\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\rjmx.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\wmpnssci.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\ct.sym 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-queries_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\management\jmxremote.access 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessEntry2019R_PrepidBypass-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdXC2RVL_MAKC2R-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\skype_titlebar_logo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Smiley face_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\desktop.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-environment-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libnfs_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusE5R_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\cmm\sRGB.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookbig.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.felix.gogo.shell_0.10.0.v201212101605.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.ReportingServices.ProgressiveProcessing.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\powerpointmui.msi.16.en-us.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskclearui\oskclearuibase.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EntityPickerIntl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\Pitchbook.potx 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-006E-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogo.contrast-white_scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Square44x44Logo.targetsize-256_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\TURABIAN.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\METCONV.TXT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Mso30win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\brmarble.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\sound.properties 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\it\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Data.Linq.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Smooth.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-windows_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-autoupdate-ui.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_SubTest-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\basicsimple.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ChronologicalResume.dotx 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\zu\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_TileLargeSquare.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.core.services_1.2.1.v20140808-1251.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fonts\LucidaBrightRegular.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\PowerPoint.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msoutilstat.etw.man 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\Microsoft.Advertising\ormma.js 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-actions.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\HxRuntime.HxS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\awards_perfect_ribbon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\management-agent.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN075.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\Delete.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEOLEDB.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\send-email-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProDemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\DcfMsoWrapper.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-16_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Grunge Texture.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SUMIPNTG\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libvcd_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientSub_M365_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Data.SapClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.contrast-white_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\PowerPntLogoSmall.contrast-black_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\weather_trends.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-autoupdate-services.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-black_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\bundles.info 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\msipc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\playlist\bbc_co_uk.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\SplashScreen.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\ru-RU\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Personal2019DemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\StoreAppList.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ko.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEXBE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosWideTile.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessR_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\EXCEL.HXS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\ant-javafx.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\WordVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\DatabaseCompare.HxS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\20.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\de.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\deploy\messages_zh_TW.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraSmallTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\mpvis.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\158.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.rcp_4.4.0.v20141007-2301\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\locale\org-openide-modules_zh_CN.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubLargeTile.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\151.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\surfaceHub\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\Green Bubbles.htm 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim2.smile.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\FilesystemMetadata.xml.md 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-core-ui.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.feature_3.9.1.v20140827-1444\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\cmm\PYCC.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\MergeBlock.mpv2 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProMSDNR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\osm.x-none.msi.16.x-none.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libtwolame_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.ja_5.5.0.165303\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square44x44Logo.targetsize-256.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.Word.Word.x-none.msi.16.x-none.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\OSM.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\resource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0018-0000-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\LTSHYPH_FR.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\msvcp120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\META-INF\ECLIPSE_.SF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-io_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Integration\Addons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\WINWORD_COL.HXT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\StudentReport.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\bn\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVOrchestration.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\SDXHelper.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraWideTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACECORE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\HintBarEllipses.16.GrayF.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\46.jpg 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\POWERPNT_K_COL.HXK 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\plus_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-96.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.flightrecorder.controlpanel.ui_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Standard2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\hu\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\manifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\StoreBadgeLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim2.surprise.small.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.uk-ua.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_diagonals-thick_20_666666_40x40.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-16_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-text.xml 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\license.html 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\hi\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.ReportingServices.ReportDesign.Forms.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Filters\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\is\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\AppxMetadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Personal2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W4.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-20_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-72_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.core.databinding.property.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.common_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.text.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sa.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\VOLTAGE.WAV 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\PROFILE\PROFILE.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\precomplete 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\WideLogo.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.common_2.10.1.v20140901-1043\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\MapsAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\surfaceHub\en-US\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\hrtfs\dodeca_and_7channel_3DSL_HRTF.sofa 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sqlpdw.xsl 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPHandle.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdO365R_SubTest-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\Updates\Apply\FilesInUse\5A1DF312-5349-45A2-A5CA-533D6765243A\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\LargeLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-48_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-application.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Container.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART7.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\sl.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\db\lib\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\bookicon.gif 700a1s0ssssd7da.exe File created C:\Program Files\Java\jre1.8.0_66\lib\images\cursors\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\GRPHFLT\PNG32.FLT 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\hr.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\_Resources\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\holoLens\en-US\doc_offline_use.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\VoiceRecorderAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\java.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\java.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\OriginLetter.Dotx 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ko\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\bin\server\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000042\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Resources\1033\msmdsrv.rll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.httpclient4.ssl.feature_1.0.0.v20140827-1444\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jmap.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\vlc.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-process-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_O16ConsumerPerp_Bypass30-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp4-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.contrast-white_scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft\OFFICE\DocumentRepository.ico 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\BOOKOSBI.TTF 700a1s0ssssd7da.exe File created C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.5\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\AppxBundleManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-uisupport.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_Subscription2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\OpenSSL64.DllA\libcrypto-1_1-x64.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Web Server Extensions\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Controls\EndOfLife\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial4-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000042\assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\Logo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\CubeTile_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Content\desktop\en-US\doc_offline_accessibility.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-sendopts_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft.NET\ADOMD.NET\130\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\amd64\jvm.cfg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-0016-0409-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.ReportingServices.Interfaces.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Web Server Extensions\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\Ole DB\sqloledb.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedAppList.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jfr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MEDIA\CHIMES.WAV 700a1s0ssssd7da.exe File created C:\Program Files\Windows Photo Viewer\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraSplashScreen.contrast-white_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-16_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\EXP_PDF.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSO40UIRES.DLL 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-3102-0000-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.contrast-white_scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL097.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\vcruntime140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libdmo_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\plugins.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_zh_TW.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\sawindbg.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-favorites_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-compat.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019VL_KMS_Client_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\msvcr110.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\InputPersonalization.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubMedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.wink.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\PrizeHistory\3_badges_none.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\META-INF\eclipse.inf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-keyring-impl_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RCom.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_KMS_ClientC2R-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Spatial.NetFX35.V7.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\management.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProDemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\salesforce.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libt140_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\cmm\LINEAR_RGB.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power View Excel Add-in\Microsoft.ReportingServices.Authorization.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\POWERPNT.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\msvcp120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ECHO\PREVIEW.GIF 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ckb\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\QRYINT32.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\Rotate.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mscss7es.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\misc\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Photo Viewer\ImagingDevices.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LivePersonaCard\images\default\linkedin_ghost_school.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\OpenSSL64.DllA\openssl64.dlla.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-32_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-editor-mimelookup_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\msmgdsrv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\omni.ja 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\settle.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\FileIcons\FileLogoExtensions.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedWideTile.scale-100_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Ion.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\EduWorks Data Streamer Add-In\DataStreamerLibrary.dll.config 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Lift.Engine.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\RICHED20.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp3-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\core\org-openide-filesystems.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\ucrtbase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\trdtv2r41.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\1033\VBAOWS10.CHM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\servertool.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp4-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\DatabaseCompare_col.hxt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AlarmsWideTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-64_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\klist.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Inquire.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_srt_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\MapsSplashScreen.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-awt.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\423x173\30.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\et\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOSVG.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\misc\libaddonsvorepository_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MSASCuiL.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Print.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedLargeTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-sampler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Extreme Shadow.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSOARIACAPI.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\StoreBadgeLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-heapdump_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_KMS_ClientC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\REFSPCL.TTF 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Shell\Themes\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_preferencestyle.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MML2OMML.XSL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-30.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogo.contrast-white_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-application-views.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\Bibliography\BIBFORM.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-black_scale-180.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\toast.dualsim1.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\hmmapi.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\offsymt.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\pl\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\topnav.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Ion Boardroom.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\AppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\Emboss.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\Weather_LogoSmall.targetsize-32.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.targetsize-48_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\.lastModified 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.help.base_4.0.200.v20141007-2301.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ThirdPartyNotices.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.ui.sdk.scheduler.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-awt_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC32.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-conio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.FileUtils.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim2.surprise.small.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\prism_sw.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial3-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BIPLAT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogo.scale-80.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ta\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\bltissue.jpg 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\is.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Office16\OfficeHubWin32.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.artifact.repository.prefs 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.jetty.servlet_8.1.14.v20131031.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-oql_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-attach.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\cardview-moreimages.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\th-TH\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_SplashScreen.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\SystemX64\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerLargeTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_mosaic_bridge_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Frosted Glass.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteFreeR_Bypass-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\IEEE2006OfficeOnline.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\MapsLargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\WideLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageStoreLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\deploy.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\WATER\THMBNAIL.PNG 700a1s0ssssd7da.exe File created C:\Program Files\Reference Assemblies\Microsoft\Framework\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\va.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp6-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Library\Analysis\ATPVBAEN.XLAM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WorldClockLargeTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubAppList.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubSplashWideTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_tetrahedron.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-core-ui.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\ProjectionPlanar.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Mashup.Client.Windows.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\msoshext.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ne\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\en-US\wmpnetwk.exe.mui 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-40_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientLangPack2019_eula.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Shell\Themes\Glyphs\Font\WeatherColorIcons.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Animation\coin particles.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\System\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\Office16\OSPP.VBS 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessRuntime2019R_PrepidBypass-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-math-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Smart Tag\FPERSON.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_ogg_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\SplashScreen.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019DemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\DEEPBLUE\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\System\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Green.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019R_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\office32mui.msi.16_office32mui.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\Network Sharing\wmpnss_color48.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\NavColumn_Black\Icon_Layout.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-30_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\en-US\TabTip.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSSOAP30.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-editor-mimelookup.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessR_SubTest-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\ODBCMESSAGES.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_hevc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\LockScreenBadgeLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInCinemagraph.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskmenu\oskmenubase.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libdtv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender Advanced Threat Protection\SenseCncProxy.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Object.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\sd\jamendo.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\fxplugins.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019XC2RVL_MAKC2R-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CAPSULES\CAPSULES.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\librtpvideo_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_splitter\libpanoramix_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\javap.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-charts_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\StopStart.dwfx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\contrast-black\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-openide-dialogs_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\icons\hprof-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-conio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Blue II.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\lt\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\1033\SQLENGINEMESSAGES.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common Programs\Excel.lnk 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\he-IL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-options-keymap_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorLargeTile.contrast-black_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim2.smile.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.osgi.compatibility.state.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\Sybase.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubWideTile.scale-125_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\VISUALIZATIONENGINE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ExcelFloatieTextModel.bin 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\SyncFusion.Grid.Grouping.Base.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\LoadIconRTL_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Orange.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\x-none\Office.x-none.msi.16_mondoww.mcxml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.SqlDatabase.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\Images\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\e4_basestyle.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Square44x44Logo.targetsize-24_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim2.smile.small.scale-150.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-core-timezone-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-48_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jinfo.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\dragHandle.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.ro-ro.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\AppvIsvSubsystems64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\ANTQUAB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsAlarms_10.1702.333.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\TimerWideTile.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\BooleanSubtract.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\SplashScreen.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\ads_win10_300x250.scale-100.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\ReportingServicesNativeClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-multitabs_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\PPINTL.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL075.XML 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\uk\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\DailyChallenges\Popup\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\es-ES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mscss7fr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL117.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Microsoft.People.Controls.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\gifs\masterix.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-swing-tabcontrol.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\contrast-white\MapsLargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-compat.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\eclipse_1665.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\core\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\orbd.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Wordcnvpxy.cnv 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-localization-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\ReachFramework.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d9_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskclearui\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Multiply_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\3.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessPipcR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.lv-lv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\DataServices\+Connect to New Data Source.odc 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\Fonts\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GetStartedMedTile.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.Xaml.Toolkit\Assets\XboxControl\Xbox-press.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019MSDNR_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ga\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_output\libwinhibit_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.targetsize-60_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_O17EnterpriseVL_Bypass30-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubSmallTile.scale-125_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSO.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\Mso98win32client.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\mn\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mscss7wre_fr.dub 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-core-file-l2-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\Url.ot 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\css\dark\e4-dark_globalstyle.css 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-ui_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ExcelInterProviderRanker.bin 700a1s0ssssd7da.exe File created C:\Program Files\Uninstall Information\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-40.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.help.ui.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Licenses16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\EQUATION\api-ms-win-crt-environment-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\win7TSFrame.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-sampler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial4-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Trial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\profileRegistry\JMC.profile\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-lib-profiler-common_ja.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ADDINS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_glass_100_f6f6f6_1x400.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeMedTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedStoreLogo.scale-100_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\BadgeLogo2.targetsize-54.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_ja.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jfxwebkit.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\he\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Bibliography\Style\APASixthEditionOfficeOnline.xsl 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\zh_TW\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-runtime-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-white\Movie-TVStoreLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-crt-locale-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim2.wink.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\weatherdotcom.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\server\jvm.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\config\Modules\com-sun-tools-visualvm-core.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-jvm_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-time-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\maintenanceservice.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\resource.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Office.Interop.Excel.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\OneNoteR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_highlight-soft_100_eeeeee_1x100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libaom_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\OpenSSL64.DllA\libssl-1_1-x64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_cycle_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender Advanced Threat Protection\WATPCSP.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\toast.dualsim1.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\wordmui.msi.16.en-us.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-application.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\lt\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEODTXT.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Wide310x150Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-favorites.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-core-file-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-white\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\TrafficHub\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\LightBlue.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\13.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\AppPackageMedTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.DataIntegration.FuzzyMatching.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\sdxs.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\excel.x-none.msi.16.x-none.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\SmallLogo.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\el\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-72.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\keypad\keypadbase.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\jaccess.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.touchpoint.eclipse.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\README.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\Hx.HxC 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\NETWORK\NETWORK.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\hive.xsl 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\cgg\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\html\dcommon\css\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageBadgeLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\ads_win10_728x90.scale-200.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.launcher.win32.win32.x86_64_1.1.200.v20141007-2033\META-INF\MANIFEST.MF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_MAK-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-core-localization-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\DataModel\Cartridges\sql90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubWideTile.scale-200_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\SmallLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.wordmui.msi.16.en-us.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libimem_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\mux\libmux_mp4_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.emf.ecore_2.10.1.v20140901-1043\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jfxmedia.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART9.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Infragistics2.Win.UltraWinStatusBar.v11.1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\ConnectTest.ogg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_fr.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\images\cursors\invalid32x32.gif 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\visualization\libglspectrum_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Builder3D.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\unpack200.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Mso20win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019XC2RVL_KMS_ClientC2R-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail2-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Data.Recommendation.Client.Core.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RADIAL\RADIAL.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubStoreLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageBadgeLogo.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Pin\155x105.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\mfc140u.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-24_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\en-GB\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\TrebuchetMs.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription5-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\uz\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\CT_ROOTS.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART3.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BOLDSTRI\BOLDSTRI.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_222222_256x240.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Livetiles\MicrosoftSolitaireLargeTile.scale-125.jpg 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\configuration\org.eclipse.equinox.simpleconfigurator\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\da\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosWideTile.contrast-black_scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x86__8wekyb3d8bbwe\Microsoft.Advertising\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGMN026.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeWideTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\kweather.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GamePlayAssets\FreeCell\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\mcxml\en-us\osmmui.msi.16_osmmui.mcxml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_~_8wekyb3d8bbwe\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\TEE\en-US.Messaging.config 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\sk-SK\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\Flattener.exe.config 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp4-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.targetsize-24_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\ECLIPSE_.RSA 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Home\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageAppList.scale-200_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudent2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosWideTile.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-convert-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ru-RU\tipresx.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\msvcr120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\RTL\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\Microsoft.Advertising\bootstrap.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\zh-phonetic.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\tools.jar 700a1s0ssssd7da.exe File created C:\Program Files\Mozilla Firefox\browser\features\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libreal_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppPackageAppList.targetsize-72_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVCatalog.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\ext\jhall-2.0_05.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-spi-actions_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.swt.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019VL_KMS_Client_AE-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LEVEL\LEVEL.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-attach_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\org-netbeans-lib-profiler.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\SpreadsheetCompare_col.hxc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Microsoft.People.Relevance.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7-zip32.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-util.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\System.Web.Mvc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\REFINED\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\REFINED\THMBNAIL.PNG 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-core-windows.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019MSDNR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\da\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-bg_flat_10_000000_40x100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\LiveTile\W6.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.rcp.feature_1.2.0.v20140523-0116\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Csi.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Smiley face.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\DC_HolderEarned.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jmc.ini 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\PresentationFramework.Royale.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\TopicPage\PartnerJS\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\verify.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Fonts\Arial Black-Arial.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Media Player\wmpnetwk.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Resources\GetSMDL2.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.smile.small.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winClassicHandle.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\liblive555_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\Images\Ratings\Yelp10.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\jfluid-server.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.ssl.feature_1.0.0.v20140827-1444\license.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.w3c.dom.svg_1.1.0.v201011041433.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\VISUALIZATIONDIRECTX.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedSplash.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\baseAltGr_rtl.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\batch_window.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.News\Assets\newsBackground.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.tr-tr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTrial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\AmMonitoringInstall.mof 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\GamesXboxHubMedTile.scale-125_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Internet Explorer\en-US\hmmapi.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\vccorlib110.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libx264_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\vi.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-masterfs-nio2.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProXC2RVL_MAKC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\ClientSub2019_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\PROOF\MSWDS_ES.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\sql120.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\liboggspots_plugin.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Viewer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.jsp.jasper.registry_1.0.300.v20130327-1442.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Buttons\TryAgain\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\rt.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\ADO210.CHM 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\183.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Microsoft.People.AutoSuggest.dll 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.core.feature_1.1.0.v20140827-1444\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\net.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.surprise.scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\hu-HU\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Publisher2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\api-ms-win-crt-utility-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LivePersonaCard\images\default\linkedin_logo_small.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\SplashScreen.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription3-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp2-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ky\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-16_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Calendar\ribbonicon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\InspectorOfficeGadget.exe 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\MSIPC\es\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-netbeans-modules-applemenu.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\com-sun-tools-visualvm-attach.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365BusinessR_SubTrial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PowerPoint2019R_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Retail2-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ast\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\services_discovery\libmicrodns_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\ProtectionManagement.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Perfect\crown.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppPackageSmallTile.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000018\cardview\lib\native-common\assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\HeroHelp\Scenario1.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\MessagingNativeBase.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Advertisement\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000006\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\ro\msipc.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\api-ms-win-crt-convert-l1-1-0.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\Assets\Office\clone.scale-140.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStd2019VL_KMS_Client_AE-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\RTL\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\10.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\Attribution\holiday_weather.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\GamePlayAssets\Spider\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-nodes.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019MSDNR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Double Wave.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.sad.small.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\pt-PT\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\ZeroByteFile 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\packetizer\libpacketizer_dts_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\82.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-keyring-fallback.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.notification_5.5.0.165303\toc.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-stdio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\da.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\lt-LT\tipresx.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\api-ms-win-crt-math-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\heart_icon.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\181.png 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessPipcDemoR_BypassTrial365-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GARA.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\AccessMessageDismissal.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.AddIn.Contract.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.contrast-white_scale-200.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\AppTiles\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsen.xml 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-swing-outline_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.rjmx_5.5.0.165303\schema\triggerActions.exsd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-utilities_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Access2019R_Retail-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyLocale_ru.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Sounds\StarsLand_F.wav 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\include\win32\bridge\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\excelmui.msi.16.en-us.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_KMS_Client-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\AXIS\AXIS.INF 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\codec\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\Sounds\Nudge.wma 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-openide-execution.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\System.Web.Extensions.Design.dll 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Icon.targetsize-32.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Selected_Hard.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Office16\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-core-processthreads-l1-1-1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.console.ui.mbeanbrowser.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Licenses\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-white\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Simplify.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_torus.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jstatd.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\CenterView.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\ui_collapsing.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\No Symbol.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\SystemX86\vcruntime140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.docs.zh_CN_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\OFFRHD.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSSOAP30.DLL 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Fues\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\security\javaws.policy 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\GARABD.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\IRIS\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\javacpl.cpl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-ui_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-crt-convert-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\api-ms-win-crt-conio-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\playlist.json 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\vlm_cmd.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.apache.httpcomponents.httpcore_4.2.5.v201311072007.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTest2-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\TextureBitmaps\papyrus.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.equinox.p2.core.feature_1.3.0.v20140523-0116\feature.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\modules\locale\com-sun-tools-visualvm-uisupport_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\mozavcodec.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\javafx_font_t2k.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npdeployJava1.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\msvcp120.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\nio.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\messages_zh_HK.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.widgets.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-api-visual.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-001F-040C-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Graph.exe.manifest 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\COMPASS\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libremap_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\Stationery\ShadesOfBlue.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Emboss.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-30.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libnsc_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProVL_MAK-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Data.OData.Query.NetFX35.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\OSFINTL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\eu\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\PhotosAppList.contrast-white_scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\9.jpg 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-api-progress_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_Subscription-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MINSBPROXY.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\MSOERES.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\com.jrockit.mc.feature.rcp.zh_CN_5.5.0.165303\feature.xml 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\Library\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\Services\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-templates_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\net.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Redshift\lib\sbicuuc53_64.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeAppList.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\cmm\LINEAR_RGB.pf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_ja_4.4.0.v20140623020002\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\Client2019_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mip_common.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\lua\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_setid_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\Weather_LogoSmall.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\security\cacerts 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fonts\LucidaSansDemiBold.ttf 700a1s0ssssd7da.exe File created C:\Program Files\Windows Photo Viewer\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Home\RTL\contrast-white\SmallTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-modules-keyring.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.sat4j.core_2.3.5.v201308161310.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\Interceptor.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\Interceptor.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubSplashWideTile.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\HeroHelp\Scenario2.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\mip.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusDemoR_BypassTrial365-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\MSOHTMED.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\StoreLargeTile.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim2.sad.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Flattener\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-core-file-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\INTLDATE.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\MSIPC\it\msipc.dll.mui 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppPackageBadgeLogo.scale-125_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\update_tracking\org-netbeans-modules-profiler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART14.BDR 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\contrast-white\Square310x150Logo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Audio\dcGoalCollapse_D.wav 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentVNextR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\Livetiles\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.dualsim2.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\LTSHYPH_ES.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubSplashSquareTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Square71x71Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_chromecast_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STRTEDGE\STRTEDGE.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libnormvol_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\170.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\SkypeForBusinessBasic2019_eula.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Cartridges\as90.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\PhotosSmallTile.contrast-black_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Rounded Rectangle.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\msitss55.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\ContemporaryPhotoAlbum.potx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ADALPREVIOUS.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\intf\telnet.luac 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\LTR\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim1.surprise.small.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\jfr\default.jfc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\SPPRedist.msi 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelVL_MAK-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\msotdintl.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\WacLangPack2019Eula.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\be\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\en_GB\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\j2pcsc.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProVL_KMS_Client-ul.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Office.PowerPivot.ExcelAddIn.tlb 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\contrast-black\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\Weather_TileSmallSquare.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdO365R_Subscription-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\as_IN\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\8-Point Star.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CASCADE\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-heapdump.xml 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\mn\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\an.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-3101-0000-1000-0000000FF1CE.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019VL_MAK_AE-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\osmux.x-none.msi.16.x-none.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\DEEPBLUE\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ECLIPSE\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Printing.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Defender\MpUXSrv.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\bin\jvisualvm.exe 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\WideLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\shape_wedge.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office15\pkeyconfig-office.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\StandardR_Trial-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_OEM_Perp-ul-phn.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ar\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\demux\libmpgv_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\Assets\LargeLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jjs.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.PowerBI.AdomdClient.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Popups\Upsell\green_button.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyLocale_hu.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Windows Mail\en-US\WinMail.exe.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\en-us\oregres.dll.mui 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\System\mfc140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Car\LTR\contrast-black\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft Help\MS.EXCEL.16.1033.hxn 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\libGLESv2.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\requests\browse.json 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\Ungroup.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\traintrackleftturn.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.8010.5926.0_x64__8wekyb3d8bbwe\Office16\OfficeHubBackgroundTask.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Office16\QUERIES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msotdaddin.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\STUDIO\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\WindowsIcons\WindowsCameraWideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\manifestAssets\Square44x44Logo.targetsize-16.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-white_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft Help\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Place\contrast-white\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Slice.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Office\BooleanIntersect.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\30.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.babel.nls_eclipse_zh_4.4.0.v20140623020002\about.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\config\Modules\org-netbeans-lib-uihandler.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_Retail-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\Word 2010 look.dotx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libsftp_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-72_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.da-dk.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\fonts\LucidaTypewriterRegular.ttf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentDemoR_BypassTrial180-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp4-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PAGESIZE\PGLBL083.XML 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\lua\http\dialogs\stream_config_window.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.w3c.dom.smil_1.0.0.v200806040011.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\fre\StartMenu_Win8_RTL.mp4 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\VVIEWRES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ACEEXCL.DLL 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\AppTiles\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_x64__8wekyb3d8bbwe\Assets\starttile.sad.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\System\ado\adovbs.inc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_filter\libmirror_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Car\LTR\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-black\SmallLogo.scale-125_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\plugins\d3d9\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Help\hxds.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\CONCRETE\CONCRETE.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\security\javaws.policy 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\System\ole db\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-125_8wekyb3d8bbwe\Lumia.ViewerPlugin\Assets\IconOpenInCinemagraph.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\hprof.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Integration\C2RManifest.PowerPivot.PowerPivot.x-none.msi.16.x-none.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\SETLANG.EXE 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.DatabaseCore.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.util_1.0.500.v20130404-1337.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial1-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\BloodPressureTracker.xltx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\140\Resources\1033\msolui.rll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\az\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ExcelR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\sdxs\FA000000027\assets\Icons\[email protected] 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Messaging_3.26.24002.0_neutral_split.scale-150_8wekyb3d8bbwe\Assets\starttile.dualsim1.surprise.scale-150.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\java.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_Subscription1-pl.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.StarClub\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\logging.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\NativeShim.Resources.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubBadgeLogo.scale-200_contrast-high.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\wordmui.msi.16.en-us.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Effects\Inset.eftx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Flattener\api-ms-win-core-timezone-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\sqmapi.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\xul.dll 700a1s0ssssd7da.exe File created C:\Program Files\Windows Mail\en-US\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\org-openide-util.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Theme Colors\Yellow Orange.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2017.125.40.0_neutral_split.scale-200_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\jre\lib\deploy\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\LTR\contrast-white\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.0.1605.0_x64__8wekyb3d8bbwe\AppxMetadata\CodeIntegrity.cat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_Subscription3-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-netbeans-modules-settings.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-io.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.engine_2.3.0.v20140506-1720.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\api-ms-win-core-synch-l1-2-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\ext\access-bridge-64.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.ecf.filetransfer.feature_3.9.0.v20140827-1444\epl-v10.html 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_Grace-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\Common.DatabaseServices.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Mozilla Firefox\api-ms-win-crt-math-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\tt.txt 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherImages\210x173\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Catalog\chess.3mf 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\SpreadsheetCompare_col.hxt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Place\RTL\contrast-black\WideTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderMedTile.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\api-ms-win-crt-math-l1-1-0.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.e4.ui.workbench.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\rt.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_Subscription-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\FirstRunLogoSmall.contrast-black_scale-80.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MUAUTH.CAB 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubSmallTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\155.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jsdt.dll 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\Client\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019VL_MAK_AE-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msoia.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\PROOF\MSGR8EN.LEX 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\stream_out\libstream_out_es_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Directions\Work\RTL\MedTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\10.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\include\win32\bridge\AccessBridgeCalls.c 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.simpleconfigurator.manipulator.nl_zh_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\BOOKOSB.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\Mso98win32client.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\140\Cartridges\orcl7.xsl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\keystore\libfile_keystore_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCalculator_10.1702.312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\CalculatorSplashScreen.scale-125.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\Awards\klondike\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\javacpl.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-200_8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-125_8wekyb3d8bbwe\microsoft.system.package.metadata\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\Common Files\microsoft shared\ink\el-GR\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.frameworkadmin.equinox.nl_ja_4.4.0.v20140623020002.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\org-openide-explorer.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\THIRDPARTYLICENSEREADME-JAVAFX.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\id\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.Windows.Photos_16.511.8780.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\fontconfig.bfc 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_SubTest-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\LEELAWDB.TTF 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\EXPEDITN\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\AXIS\AXIS.ELM 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessR_OEM_Perp-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioPro2019R_PrepidBypass-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\LEVEL\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\MSBuild\Microsoft\Windows Workflow Foundation\v3.0\Workflow.VisualBasic.Targets 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-140_8wekyb3d8bbwe\AppxSignature.p7x 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\rtscom.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Document Themes 16\Office Theme.thmx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Modeler.UI.rll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.scale-100.png 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\Common AppData\Microsoft\OFFICE\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\rsod\powerpivot.x-none.msi.16.x-none.boot.tree.dat 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\Fonts\private\SEGOEUISL.TTF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Resources\cursorXBOX_active.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\db\lib\derbyLocale_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ink\ipsesp.xml 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\features\org.eclipse.e4.rcp_1.3.100.v20141007-2033\META-INF\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-masterfs_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\wxpr.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppPackageSmallTile.scale-200_contrast-black.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\include\win32\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\Excel2019R_OEM_Perp-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\com-sun-tools-visualvm-tools.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\psfont.properties.ja 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Retail-ul-phn.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp4-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\tr\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsFeedbackHub_1.1612.10312.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\InsiderHubMedTile.scale-125_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\7zCon.sfx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365HomePremR_SubTrial1-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\codec\libedummy_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_neutral_split.scale-100_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Common Files\microsoft shared\ClickToRun\vccorlib140.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsStore_11701.1001.87.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxManifest.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneVideo_10.16112.11601.0_neutral_resources.scale-200_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.winmd 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Images\Tiles\Square310x310Logo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-modules-autoupdate-services_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Retail-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\1033\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\Workflow\Density_Selected_Light.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.jface_3.10.1.v20140813-1009.jar 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\visualvm\update_tracking\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019XC2RVL_KMS_ClientC2R-ul-oob.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\WinWordLogoSmall.contrast-black_scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-40_altform-unplated_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\lib\charsets.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ZuneMusic_10.16112.11621.0_neutral_resources.scale-125_8wekyb3d8bbwe\Assets\contrast-white\AppList.scale-125_contrast-white.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Assets\DailyChallenges\Tile\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUEPRNT\PREVIEW.GIF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\166.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\AppxBlockMap.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-64_altform-unplated.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_1.1702.21039.0_x64__8wekyb3d8bbwe\Assets\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_x64__8wekyb3d8bbwe\Assets\EmbossBitmaps\Sun_icon.png 700a1s0ssssd7da.exe File created C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\deployed\jdk16\windows-amd64\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\AccessVL_KMS_Client-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\p2\org.eclipse.equinox.p2.engine\.settings\org.eclipse.equinox.p2.metadata.repository.prefs 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\jce.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Grace-ppd.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Web Server Extensions\16\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\nl\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.contrast-black_scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_25.25.13009.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\GamesXboxHubStoreLogo.scale-200_contrast-white.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.3DBuilder_13.0.10349.0_neutral_split.scale-180_8wekyb3d8bbwe\Assets\Office\EmbossText.scale-180.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\orb.idl 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_x64__8wekyb3d8bbwe\Assets\AppTiles\StoreLogo.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.ds_1.4.200.v20131126-2331.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Microsoft.Data.ConnectionUI.dll 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ks_IN\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-96_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\com.jrockit.mc.alert_5.5.0.165303.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Client\AppVDllSurrogate64.exe 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019XC2RVL_MAKC2R-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\mscss7cm_fr.dub 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\SKY\SKY.INF 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsMaps_5.1611.10393.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\SecondaryTiles\Work\LargeTile.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\awt.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\CSIRESOURCES.DLL 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\ECLIPSE\THMBNAIL.PNG 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.56.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\Weather_BadgeLogo.scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\1033\officeinventoryagentfallback.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Subscription-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\RADIAL\Read_Me.txt 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ar\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\lib\calendars.properties 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\locale\org-openide-modules_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\update_tracking\org-openide-nodes.xml 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusEDUR_Subscription-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\VisioProR_Trial-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Templates\1033\QuizShow.potx 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Office\Office16\DCF\en\SpreadsheetIQ.Diagram.Resources.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\jre\bin\jp2ssv.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\7-Zip\Lang\ast.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\modules\locale\org-netbeans-core-io-ui_ja.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdCO365R_SubTrial-pl.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019DemoR_BypassTrial180-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\ky\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.SkypeApp_11.8.204.0_neutral_split.scale-125_kzf8qxf38zg5c\SkypeApp\Assets\SkypeLogo.scale-125.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsSoundRecorder_10.1702.301.0_neutral_split.scale-200_8wekyb3d8bbwe\Assets\VoiceRecorderSplashScreen.scale-200.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-64_altform-unplated.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.ui.themes_1.0.1.v20140819-1717\images\winXPOlive.png 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\contrast-white\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_x64__8wekyb3d8bbwe\Assets\AppPackageAppList.targetsize-32.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe\Assets\GetStartedAppList.targetsize-40_altform-unplated_contrast-black.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\msproof7.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalR_OEM_Perp-ul-oob.xrm-ms 700a1s0ssssd7da.exe File created C:\Program Files\VideoLAN\VLC\locale\lt\LC_MESSAGES\Read_Me.txt 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.jetty.util_8.1.14.v20131031.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\modules\locale\org-netbeans-modules-profiler-selector-api_zh_CN.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\missioncontrol\plugins\org.eclipse.equinox.p2.extensionlocation_1.2.100.v20131119-0908.jar 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\profiler\lib\deployed\jdk15\windows-amd64\profilerinterface.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\javafx_font_t2k.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_OEM_Perp2-ppd.xrm-ms 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Microsoft Office\root\Office16\LogoImages\ExcelLogoSmall.contrast-black_scale-100.png 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\locale\oc\LC_MESSAGES\vlc.mo 700a1s0ssssd7da.exe File opened for modification C:\Program Files\VideoLAN\VLC\plugins\access\libtimecode_plugin.dll 700a1s0ssssd7da.exe File opened for modification C:\Program Files\WindowsApps\Microsoft.DesktopAppInstaller_1.0.10252.0_neutral_split.scale-125_8wekyb3d8bbwe\resources.pri 700a1s0ssssd7da.exe File opened for modification C:\Program Files\Java\jdk1.8.0_66\lib\visualvm\platform\lib\locale\org-openide-util-lookup_zh_CN.jar 700a1s0ssssd7da.exe File created C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.14.1181.0_x64__8wekyb3d8bbwe\Arkadium.Win10.DailyChallenges\Assets\Animation\Read_Me.txt 700a1s0ssssd7da.exe